cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-07-2016
Executado por Alfredo (administrador) em LENOVO-PC (08-07-2016 11:24:37)
Executando a partir de C:\Users\Alfredo\Desktop
Perfis Carregados: Alfredo (Perfis Disponíveis: Alfredo & DefaultAppPool)
Platform: Windows 8.1 Single Language (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\MoboMarket\1.3.7.5841\bassvc.exe
(brother Industries Ltd) C:\Windows\SysWOW64\BRSVC01A.EXE
(brother Industries Ltd) C:\Windows\SysWOW64\BRSS01A.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft) C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe
(Microsoft) C:\Program Files (x86)\Lenovo\GamePortal\Services\IdeaTouch.LocalDataServer.Game.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\jmesoft\Service.exe
() C:\Program Files (x86)\AppBrad\NetExpressUpdater.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Baidu Inc.) C:\Program Files (x86)\Baidu Security\PC App Store\4.8.1.7002\PCAppStoreSvc.exe
() C:\Windows\SysWOW64\spdsvc.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Sistema\Simples\TOTVS Série 1 Varejo (Simples)\CLOUD\AdmSchedulerService.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
() C:\Program Files (x86)\TOTVS\Série1\Genericcaller\TOTVS.S1.GenericCallerService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(BitTorrent Inc.) C:\Users\Alfredo\AppData\Roaming\uTorrent\uTorrent.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(BitTorrent Inc.) C:\Users\Alfredo\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Alfredo\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\MoboMarket\1.3.7.5841\bastray.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\EXCEL.EXE
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-07-31] (Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [jmekey] => C:\WINDOWS\jmesoft\hotkey.exe
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe
HKLM-x32\...\Run: [LVT] => C:\Program Files\Lenovo\LVT\LJYZ.exe [886112 2011-11-24] (Lenovo)
HKLM-x32\...\Run: [Lenovo Eye Distance System] => C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [270680 2012-07-19] (Lenovo)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-04] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\RunLDBS.exe [1753432 2012-09-18] (Lenovo)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-06-24] (cyberlink)
HKLM-x32\...\Run: [Diebold - Warsaw] => C:\Program Files (x86)\Diebold\Warsaw\core.exe
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-16] (Banco do Brasil)
Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2015-09-04] (Banco Itaú Unibanco)
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\...\Run: [Google Update] => C:\Users\Alfredo\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-10-29] (Google Inc.)
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\...\Run: [uTorrent] => C:\Users\Alfredo\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-05-17] (BitTorrent Inc.)
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\...\MountPoints2: {60adf8bc-a075-11e3-8250-806e6f6e6963} - "D:\start.exe"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll [1896696 2015-09-04] (Banco Itaú Unibanco)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1947872 2016-06-16] (Banco do Brasil)
Startup: C:\Users\Alfredo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk [2016-07-06]
ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Nenhum Arquivo)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 201.6.2.93 201.6.2.193
Tcpip\..\Interfaces\{EE4394AF-572D-488A-9551-A6562DAF3BD7}: [DhcpNameServer] 201.6.2.93 201.6.2.193
Tcpip\..\Interfaces\{F709BB84-5A2A-4FB8-B3FA-E6BAD20E950C}: [NameServer] 208.67.222.222,208.67.220.220
Tcpip\..\Interfaces\{F709BB84-5A2A-4FB8-B3FA-E6BAD20E950C}: [DhcpNameServer] 201.6.2.93 201.6.2.193

Internet Explorer:
==================
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN11406&pf=V7&trgb=IE&p2=%5EBBE%5EOSJ000%5EYY%5EBR&gct=hp&apn_ptnrs=BBE&apn_dtid=%5EOSJ000%5EYY%5EBR&apn_dbr=ie_11.0.9600.16384&apn_uid=67E24699-0388-4B10-B789-82ECF92F7107&itbv=12.15.5.30&doi=2014-08-15&psv=&pt=tb
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1532673202-1933264569-3065081144-1001 -> DefaultScope {7AF59DB9-CF70-4E77-9A7D-1FB0B0431373} URL =
SearchScopes: HKU\S-1-5-21-1532673202-1933264569-3065081144-1001 -> {7AF59DB9-CF70-4E77-9A7D-1FB0B0431373} URL =
SearchScopes: HKU\S-1-5-21-1532673202-1933264569-3065081144-1001 -> {D4DEEA84-63C9-4E7A-8FA2-F147998D5363} URL = hxxp://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=%5EBBE%5EOSJ000%5EYY%5EBR&gct=&itbv=12.15.5.30&apn_uid=67E24699-0388-4B10-B789-82ECF92F7107&apn_ptnrs=BBE&apn_dtid=%5EOSJ000%5EYY%5EBR&apn_dbr=ie_11.0.9600.16384&doi=2014-08-15&trgb=IE&q={searchTerms}&psv=&pt=tb
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2016-06-16] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehuni.dll [2015-09-04] (Banco Itaú Unibanco)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Alfredo\AppData\Roaming\Mozilla\Firefox\Profiles\lwtdljnh.default
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1532673202-1933264569-3065081144-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Alfredo\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-1532673202-1933264569-3065081144-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Alfredo\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-1532673202-1933264569-3065081144-1001: gastecnologia.com.br/sf/uni -> C:\Users\Alfredo\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-07-31] (Microsoft Corporation)
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF HKU\S-1-5-21-1532673202-1933264569-3065081144-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E8873}] - C:\Users\Alfredo\AppData\Local\GAS Tecnologia\GBBD\uni\xpi
FF Extension: Guardião - Itaú 30 horas - C:\Users\Alfredo\AppData\Local\GAS Tecnologia\GBBD\uni\xpi [2016-05-23] [não assinado]

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\51.0.2704.103\gcswf32.dll => Nenhum Arquivo
CHR Plugin: (Native Client) - C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Alfredo\AppData\Local\Google\Chrome\Application\51.0.2704.103\pdf.dll => Nenhum Arquivo
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => Nenhum Arquivo
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => Nenhum Arquivo
CHR Plugin: (Google Update) - C:\Users\Alfredo\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL => Nenhum Arquivo
CHR Profile: C:\Users\Alfredo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (IE Tab) - C:\Users\Alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2016-06-27]
CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2014-12-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Chrome Media Router) - C:\Users\Alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-06-10]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 BASSVC; C:\Program Files (x86)\Baidu Security\MoboMarket\1.3.7.5841\bassvc.exe [208928 2015-03-30] (Baidu, Inc.)
R2 Brother XP spl Service; C:\WINDOWS\SysWOW64\brsvc01a.exe [57344 2014-04-30] (brother Industries Ltd) [Arquivo não assinado]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Arquivo não assinado]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
S2 CLKMSVC10_3A60B698; C:\Program Files (x86)\Lenovo\PowerDVD10\NavFilter\kmsvc.exe [244696 2013-06-24] (CyberLink)
R2 Dashboard Service; C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe [25184 2013-08-08] (Microsoft) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2016-07-06] (GAS Tecnologia)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 IdeaTouch.LocalDataServer.Game; C:\Program Files (x86)\Lenovo\GamePortal\Services\IdeaTouch.LocalDataServer.Game.exe [7680 2013-01-17] (Microsoft) [Arquivo não assinado]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Arquivo não assinado]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-12] (Intel Corporation)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-08-16] () [Arquivo não assinado]
R2 NetExpress Updater; C:\Program Files (x86)\AppBrad\NetExpressUpdater.exe [20568 2015-08-21] ()
R2 PCAppStoreSvc_{PCAppStore_4.8.1.7002}; C:\Program Files (x86)\Baidu Security\PC App Store\4.8.1.7002\PCAppStoreSvc.exe [550944 2014-09-01] (Baidu Inc.)
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [491328 2015-12-05] ()
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2016-02-16] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 TOTVSCloud; C:\Sistema\Simples\TOTVS Série 1 Varejo (Simples)\CLOUD\AdmSchedulerService.exe [10752 2014-02-13] () [Arquivo não assinado]
R2 TOTVSS1SaaSGenericCaller; C:\Program Files (x86)\TOTVS\Série1\Genericcaller\TOTVS.S1.GenericCallerService.exe [22528 2015-04-22] () [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S2 TOTVSServiceMatriz; C:\Sistema\Simples\TOTVS Série 1 Varejo (Simples)\WS\AdmSchedulerService.exe [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-07-08] (GAS Tecnologia)
R1 gbpddfac; C:\Windows\SysWOW64\drivers\gbpddfac64.sys [28888 2015-09-04] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-04] (GAS Tecnologia)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-12] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [290008 2013-07-05] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R3 VMC412; C:\Windows\System32\Drivers\VMC412.sys [232576 2013-09-10] (Vimicro Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-07-08] (GAS Tecnologia LTDA)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R0 WinI2C-DDC; C:\Windows\System32\drivers\DDCDrv.sys [20832 2008-04-08] (Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-22] (Nicomsoft Ltd.)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-07-08] (GAS Tecnologia)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
S3 BprotectEx; \??\C:\WINDOWS\System32\drivers\BprotectEx.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-08 11:24 - 2016-07-08 11:24 - 00026597 _____ C:\Users\Alfredo\Desktop\FRST.txt
2016-07-08 11:19 - 2016-07-08 11:24 - 00000000 ____D C:\FRST
2016-07-08 11:19 - 2016-07-08 11:19 - 02390016 _____ (Farbar) C:\Users\Alfredo\Desktop\FRST64.exe
2016-07-08 11:14 - 2016-07-08 11:14 - 00002953 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002881 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002809 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002807 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00002793 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-07-08 11:14 - 2016-07-08 11:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-07-08 11:13 - 2016-07-08 11:13 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-07-08 11:13 - 2016-07-08 11:13 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-07-08 11:13 - 2016-07-08 11:13 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-07-08 11:13 - 2016-07-08 11:13 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-07-08 11:09 - 2016-07-08 11:13 - 00000000 ____D C:\Program Files\Microsoft Office
2016-07-08 11:09 - 2016-07-08 11:09 - 00000000 __RHD C:\MSOCache
2016-07-08 11:09 - 2016-07-08 11:09 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-07-08 11:09 - 2016-07-08 11:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-07-08 11:03 - 2016-07-08 11:07 - 00000000 ____D C:\Users\Alfredo\Downloads\OFFICE 2016
2016-07-08 10:53 - 2016-07-08 10:53 - 00000000 ____D C:\Users\Alfredo\Desktop\OFFICE 2016
2016-07-08 10:42 - 2016-07-08 11:07 - 00000000 ____D C:\Users\Alfredo\AppData\LocalLow\uTorrent
2016-07-08 10:38 - 2016-07-08 11:02 - 00000000 ____D C:\Program Files\KMSpico
2016-07-08 10:38 - 2016-07-08 10:38 - 00004608 _____ C:\WINDOWS\SECOH-QAD.exe
2016-07-08 10:38 - 2016-07-08 10:38 - 00003584 _____ C:\WINDOWS\SECOH-QAD.dll
2016-07-08 10:33 - 2016-07-08 11:14 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-07-08 10:06 - 2016-07-06 21:39 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-08 10:01 - 2014-04-15 20:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-07-08 10:01 - 2014-04-15 20:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-07-08 09:54 - 2016-07-08 10:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-08 09:54 - 2016-07-08 09:54 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-08 09:53 - 2013-12-20 07:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-08 09:53 - 2013-12-20 07:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-08 09:53 - 2013-11-27 12:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-07-08 09:53 - 2013-11-27 10:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-07-08 09:53 - 2013-11-27 05:20 - 04106240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-07-08 09:53 - 2013-10-03 06:16 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-07-08 09:53 - 2013-10-03 06:02 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-07-08 09:53 - 2013-10-02 08:00 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-07-08 09:53 - 2013-10-02 06:47 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-07-08 09:53 - 2013-10-01 00:42 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-08 09:53 - 2013-10-01 00:36 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-07-08 09:52 - 2014-10-30 19:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-07-08 09:52 - 2014-10-30 19:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-07-08 09:52 - 2013-12-11 04:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2016-07-08 09:52 - 2013-12-08 21:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-07-08 09:52 - 2013-12-08 21:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2016-07-08 09:52 - 2013-12-08 21:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-07-08 09:52 - 2013-12-08 20:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2016-07-08 09:52 - 2013-11-27 12:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-07-08 09:52 - 2013-11-27 11:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-07-08 09:52 - 2013-11-27 09:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2016-07-08 09:52 - 2013-11-27 07:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-08 09:52 - 2013-11-27 06:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2016-07-08 09:52 - 2013-11-27 06:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-07-08 09:52 - 2013-11-27 06:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-07-08 09:52 - 2013-11-27 06:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-07-08 09:52 - 2013-11-27 05:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-07-08 09:52 - 2013-11-27 05:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2016-07-08 09:52 - 2013-11-26 10:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-08 09:52 - 2013-11-26 10:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-08 09:52 - 2013-11-26 08:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-07-08 09:52 - 2013-11-24 22:45 - 00142680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-07-08 09:52 - 2013-11-24 22:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-07-08 09:52 - 2013-11-24 20:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-07-08 09:52 - 2013-11-24 20:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-07-08 09:52 - 2013-11-23 09:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2016-07-08 09:52 - 2013-11-23 04:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2016-07-08 09:52 - 2013-11-23 04:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2016-07-08 09:52 - 2013-11-23 04:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-07-08 09:52 - 2013-11-23 01:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-07-08 09:52 - 2013-11-23 00:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-08 09:52 - 2013-11-23 00:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-07-08 09:52 - 2013-11-21 03:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2016-07-08 09:52 - 2013-11-21 03:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-07-08 09:52 - 2013-11-15 11:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-07-08 09:52 - 2013-11-15 11:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-07-08 09:52 - 2013-11-15 11:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-07-08 09:52 - 2013-11-15 10:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-08 09:52 - 2013-10-30 21:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-07-08 09:52 - 2013-10-30 20:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-07-08 09:52 - 2013-10-19 05:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2016-07-08 09:52 - 2013-10-19 04:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2016-07-08 09:52 - 2013-09-21 02:20 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-07-08 09:52 - 2013-09-21 02:09 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-07-08 09:51 - 2014-03-10 07:35 - 02008408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-07-08 09:51 - 2014-03-10 07:35 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-07-08 09:51 - 2014-03-06 06:19 - 01287576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-07-08 09:51 - 2014-03-06 06:02 - 01109424 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-08 09:51 - 2014-03-06 03:17 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-07-08 09:51 - 2014-03-06 03:10 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-07-08 09:51 - 2014-01-31 13:15 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-07-08 09:51 - 2014-01-31 13:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-07-08 09:51 - 2014-01-31 13:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-07-08 09:51 - 2014-01-31 10:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-07-08 09:51 - 2014-01-31 06:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2016-07-08 09:51 - 2014-01-29 05:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2016-07-08 09:51 - 2014-01-29 05:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-07-08 09:51 - 2014-01-29 05:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-07-08 09:51 - 2014-01-29 05:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-08 09:51 - 2014-01-29 04:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-07-08 09:51 - 2014-01-29 04:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2016-07-08 09:51 - 2014-01-29 04:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-07-08 09:51 - 2014-01-29 03:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2016-07-08 09:51 - 2014-01-28 21:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2016-07-08 09:51 - 2014-01-27 16:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-07-08 09:51 - 2014-01-27 16:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2016-07-08 09:51 - 2014-01-27 16:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2016-07-08 09:51 - 2014-01-27 15:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-07-08 09:51 - 2014-01-27 15:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2016-07-08 09:51 - 2014-01-27 15:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2016-07-08 09:51 - 2014-01-27 15:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-07-08 09:51 - 2014-01-27 14:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-07-08 09:51 - 2014-01-27 14:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-07-08 09:51 - 2014-01-27 14:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-07-08 09:51 - 2014-01-27 12:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-07-08 09:51 - 2014-01-27 12:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-08 09:51 - 2014-01-27 08:45 - 00386722 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-07-08 09:51 - 2014-01-17 20:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-07-08 09:51 - 2014-01-17 18:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-07-08 09:51 - 2014-01-07 02:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-07-08 09:51 - 2014-01-07 01:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-07-08 09:51 - 2013-12-21 11:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-07-08 09:51 - 2013-12-21 05:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2016-07-08 09:51 - 2013-12-08 21:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-08 09:51 - 2013-12-08 20:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-07-08 09:51 - 2013-11-23 01:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-08 09:51 - 2013-11-23 01:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-07-08 09:51 - 2013-11-21 03:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-08 09:51 - 2013-11-21 02:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-07-08 09:51 - 2013-10-12 23:48 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-07-08 09:51 - 2013-10-12 18:48 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-07-08 09:51 - 2013-10-12 18:34 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-08 09:51 - 2013-10-05 11:21 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-07-08 09:51 - 2013-10-05 05:39 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-07-08 09:51 - 2013-09-21 07:53 - 00996320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-07-08 09:50 - 2014-04-19 08:15 - 21186352 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-08 09:50 - 2014-04-19 03:49 - 18644072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-07-08 09:50 - 2014-02-10 23:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-07-08 09:50 - 2014-02-10 23:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-07-08 09:50 - 2014-01-04 17:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-08 09:50 - 2014-01-04 16:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-07-08 09:50 - 2014-01-04 11:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-08 09:50 - 2014-01-04 11:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-07-08 09:50 - 2014-01-04 11:03 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-07-08 09:50 - 2014-01-04 10:47 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-07-08 09:50 - 2014-01-04 10:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-08 09:50 - 2014-01-04 10:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-08 09:50 - 2014-01-04 10:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-07-08 09:50 - 2014-01-04 10:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-07-08 09:50 - 2013-12-20 23:10 - 00009701 _____ C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2016-07-08 09:50 - 2013-12-20 23:10 - 00009701 _____ C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2016-07-08 09:50 - 2013-11-27 12:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-08 09:50 - 2013-11-27 08:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2016-07-08 09:50 - 2013-11-27 05:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-08 09:50 - 2013-11-27 05:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-08 09:50 - 2013-11-27 05:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-07-08 09:50 - 2013-11-27 05:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-08 09:49 - 2014-01-07 22:46 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-07-08 09:49 - 2014-01-07 22:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-08 09:49 - 2014-01-07 22:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-08 09:49 - 2014-01-04 12:54 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2016-07-08 09:49 - 2014-01-04 12:08 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2016-07-08 09:49 - 2014-01-04 11:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-08 09:49 - 2014-01-04 10:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-07-08 09:49 - 2014-01-02 20:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2016-07-08 09:49 - 2014-01-02 20:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2016-07-08 09:49 - 2013-12-31 22:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-07-08 09:49 - 2013-12-31 22:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-08 09:49 - 2013-12-31 21:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-07-08 09:49 - 2013-12-31 21:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-07-08 09:49 - 2013-12-31 20:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-07-08 09:49 - 2013-12-31 20:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-08 09:49 - 2013-12-31 20:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-08 09:49 - 2013-12-30 20:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2016-07-08 09:49 - 2013-12-30 20:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-07-08 09:49 - 2013-12-30 20:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2016-07-08 09:49 - 2013-12-30 20:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-08 09:49 - 2013-12-30 20:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-07-08 09:49 - 2013-12-27 12:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-07-08 09:49 - 2013-12-27 05:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-08 09:49 - 2013-12-27 05:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-08 09:49 - 2013-12-27 05:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-08 09:49 - 2013-12-27 04:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-07-08 09:49 - 2013-12-27 04:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-07-08 09:49 - 2013-12-27 03:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-07-08 09:49 - 2013-12-21 04:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2016-07-08 09:49 - 2013-12-17 04:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-07-08 09:49 - 2013-12-14 03:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-07-08 09:49 - 2013-12-14 03:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-08 09:49 - 2013-12-13 07:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-07-08 09:49 - 2013-12-13 03:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-07-08 09:49 - 2013-12-13 02:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-07-08 09:49 - 2013-11-10 23:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-07-08 09:49 - 2013-11-09 03:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-08 09:49 - 2013-11-09 02:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-07-08 09:49 - 2013-11-08 07:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-08 09:49 - 2013-11-08 01:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-07-08 09:49 - 2013-11-08 01:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-07-08 09:49 - 2013-11-08 01:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-07-08 09:49 - 2013-11-08 00:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-08 09:49 - 2013-11-08 00:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-08 09:49 - 2013-11-05 11:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-08 09:49 - 2013-11-05 10:17 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-07-08 09:49 - 2013-11-04 10:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-07-08 09:49 - 2013-11-04 08:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-08 09:49 - 2013-11-04 07:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-07-08 09:49 - 2013-11-03 23:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-07-08 09:49 - 2013-11-03 22:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-07-08 09:49 - 2013-11-01 08:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-07-08 09:49 - 2013-11-01 03:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-07-08 09:49 - 2013-11-01 02:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-07-08 09:49 - 2013-10-30 21:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-07-08 09:49 - 2013-10-30 21:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-08 09:49 - 2013-10-30 21:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-08 09:49 - 2013-10-30 21:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-08 09:49 - 2013-10-25 22:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2016-07-08 09:49 - 2013-10-24 06:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2016-07-08 09:49 - 2013-10-24 06:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2016-07-08 09:49 - 2013-10-23 08:29 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-08 09:49 - 2013-10-23 08:21 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2016-07-08 09:49 - 2013-10-23 08:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2016-07-08 09:49 - 2013-10-22 04:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-08 09:49 - 2013-10-22 03:03 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-07-08 09:49 - 2013-10-22 02:15 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-07-08 09:49 - 2013-10-22 01:04 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-07-08 09:49 - 2013-10-22 00:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2016-07-08 09:49 - 2013-10-22 00:44 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-07-08 09:49 - 2013-10-21 23:38 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-07-08 09:49 - 2013-10-21 23:22 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-07-08 09:49 - 2013-10-21 23:13 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-07-08 09:49 - 2013-10-21 22:53 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-07-08 09:49 - 2013-10-19 05:08 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-08 09:49 - 2013-10-19 03:37 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-07-08 09:49 - 2013-10-19 03:02 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-08 09:49 - 2013-10-19 02:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2016-07-08 09:49 - 2013-10-19 02:19 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-07-08 09:49 - 2013-10-19 02:10 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-08 09:49 - 2013-10-19 01:52 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-07-08 09:49 - 2013-10-19 01:48 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-07-08 09:49 - 2013-10-19 01:44 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-07-08 09:49 - 2013-10-19 01:37 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-08 09:49 - 2013-10-19 01:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-08 09:49 - 2013-10-19 01:03 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-07-08 09:49 - 2013-10-19 00:56 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-07-08 09:49 - 2013-10-19 00:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-07-08 09:49 - 2013-10-19 00:53 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-08 09:49 - 2013-10-19 00:26 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-08 09:49 - 2013-10-19 00:23 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-08 09:49 - 2013-10-19 00:14 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-07-08 09:49 - 2013-10-19 00:09 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-07-08 09:49 - 2013-10-19 00:02 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-07-08 09:49 - 2013-10-17 08:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-08 09:49 - 2013-10-17 07:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-07-08 09:49 - 2013-10-16 06:34 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-07-08 09:49 - 2013-10-16 06:33 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-08 09:49 - 2013-10-13 00:06 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2016-07-08 09:49 - 2013-10-12 23:43 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-07-08 09:49 - 2013-10-10 13:26 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-07-08 09:49 - 2013-10-10 13:26 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-07-08 09:49 - 2013-10-10 11:53 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-07-08 09:49 - 2013-10-10 11:53 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-07-08 09:49 - 2013-10-10 08:53 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-07-08 09:49 - 2013-10-10 08:38 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-07-08 09:49 - 2013-10-10 08:26 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-07-08 09:49 - 2013-10-10 08:21 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-07-08 09:49 - 2013-10-10 08:05 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-07-08 09:49 - 2013-10-10 07:34 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-08 09:49 - 2013-10-10 07:27 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-07-08 09:49 - 2013-10-08 07:28 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-07-08 09:49 - 2013-10-08 03:46 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-07-08 09:49 - 2013-10-08 02:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2016-07-08 09:49 - 2013-10-08 02:50 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-07-08 09:49 - 2013-10-08 02:48 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-07-08 09:49 - 2013-10-08 02:15 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-07-08 09:49 - 2013-10-08 02:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-07-08 09:49 - 2013-10-08 01:50 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-07-08 09:49 - 2013-10-08 01:50 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-07-08 09:49 - 2013-10-07 04:21 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-08 09:49 - 2013-10-06 23:13 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-08 09:49 - 2013-10-05 12:25 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-07-08 09:49 - 2013-10-05 11:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-08 09:49 - 2013-10-05 11:21 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-07-08 09:49 - 2013-10-05 11:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-08 09:49 - 2013-10-05 09:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-07-08 09:49 - 2013-10-05 09:05 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-07-08 09:49 - 2013-10-05 09:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-07-08 09:49 - 2013-10-05 08:01 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-07-08 09:49 - 2013-10-05 06:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-07-08 09:49 - 2013-10-05 06:18 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-07-08 09:49 - 2013-10-05 06:07 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-08 09:49 - 2013-10-05 05:56 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-07-08 09:49 - 2013-10-05 05:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2016-07-08 09:49 - 2013-10-05 05:40 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2016-07-08 09:49 - 2013-10-05 05:24 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2016-07-08 09:49 - 2013-10-05 05:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-07-08 09:49 - 2013-10-05 05:15 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2016-07-08 09:49 - 2013-10-05 04:43 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-08 09:49 - 2013-10-05 04:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-08 09:49 - 2013-10-04 05:10 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-07-08 09:49 - 2013-09-26 05:24 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-07-08 09:49 - 2013-09-21 04:17 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2016-07-08 09:49 - 2013-09-21 03:01 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2016-07-08 09:49 - 2013-09-19 04:19 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2016-07-08 09:49 - 2013-09-19 03:27 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2016-07-08 09:49 - 2013-09-19 03:23 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2016-07-08 09:49 - 2013-09-17 06:06 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-07-08 09:49 - 2013-09-17 06:06 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-07-08 09:49 - 2013-09-17 03:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-07-08 09:49 - 2013-09-17 03:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-07-08 09:49 - 2013-09-17 01:37 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-07-08 09:49 - 2013-09-14 11:07 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-08 09:49 - 2013-09-14 11:00 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-07-08 09:49 - 2013-09-14 09:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-07-08 09:49 - 2013-09-14 09:33 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-07-08 09:49 - 2013-09-14 07:05 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-07-08 09:49 - 2013-09-14 06:11 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-07-08 09:49 - 2013-09-13 05:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2016-07-08 09:49 - 2013-09-13 04:47 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2016-07-08 09:49 - 2013-09-12 05:45 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-07-08 09:49 - 2013-09-12 05:08 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-07-08 09:49 - 2013-09-12 05:08 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-07-08 09:49 - 2013-09-12 05:02 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-07-08 09:49 - 2013-09-12 04:44 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-07-08 09:49 - 2013-09-12 04:37 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-07-08 09:49 - 2013-09-12 04:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2016-07-08 09:49 - 2013-09-12 04:21 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-07-08 09:49 - 2013-09-12 04:16 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-07-08 09:49 - 2013-09-12 04:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-07-08 09:49 - 2013-09-10 01:52 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2016-07-08 09:48 - 2014-02-11 00:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-07-08 09:48 - 2014-01-07 04:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-07-08 09:48 - 2014-01-07 02:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-07-08 09:48 - 2013-10-15 05:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2016-07-08 09:48 - 2013-10-15 05:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2016-07-08 09:47 - 2013-12-08 21:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-07-08 09:47 - 2013-11-09 03:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-07-08 09:47 - 2013-11-09 03:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-07-08 09:47 - 2013-11-09 02:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-07-08 09:47 - 2013-10-16 12:58 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-08 09:47 - 2013-10-16 10:54 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-07-08 09:46 - 2013-09-26 06:20 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2016-07-08 09:46 - 2013-09-26 04:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-07-08 09:46 - 2013-09-26 04:14 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-07-08 09:46 - 2013-09-26 03:51 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-07-08 09:46 - 2013-09-26 03:34 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-07-08 09:46 - 2013-09-26 03:34 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2016-07-08 09:46 - 2013-09-25 07:25 - 00783504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-07-08 09:46 - 2013-09-25 05:58 - 00648648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-07-08 09:46 - 2013-09-25 04:32 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-07-08 09:46 - 2013-09-25 02:40 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2016-07-08 09:46 - 2013-09-24 03:55 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2016-07-08 09:46 - 2013-09-24 02:59 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2016-07-08 09:46 - 2013-09-24 02:54 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-07-08 09:46 - 2013-09-24 02:10 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-07-08 09:46 - 2013-09-24 02:05 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-07-08 09:46 - 2013-09-24 00:56 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2016-07-08 09:46 - 2013-09-21 09:10 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-07-08 09:46 - 2013-09-21 09:10 - 00236376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-08 09:46 - 2013-09-21 09:10 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-07-08 09:46 - 2013-09-21 08:50 - 00528048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-07-08 09:46 - 2013-09-21 08:48 - 00534048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-07-08 09:46 - 2013-09-21 08:48 - 00123480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-07-08 09:46 - 2013-09-21 07:56 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-07-08 09:46 - 2013-09-21 07:53 - 01534504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-08 09:46 - 2013-09-21 07:53 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-07-08 09:46 - 2013-09-21 07:53 - 00366688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-07-08 09:46 - 2013-09-21 07:45 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-07-08 09:46 - 2013-09-21 06:23 - 00427096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-07-08 09:46 - 2013-09-21 06:23 - 00098104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-07-08 09:46 - 2013-09-21 06:12 - 01092896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-07-08 09:46 - 2013-09-21 06:09 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-07-08 09:46 - 2013-09-21 06:09 - 00312936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-07-08 09:46 - 2013-09-21 04:58 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-07-08 09:46 - 2013-09-21 04:57 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-07-08 09:46 - 2013-09-21 04:55 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-07-08 09:46 - 2013-09-21 04:50 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-07-08 09:46 - 2013-09-21 03:55 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-07-08 09:46 - 2013-09-21 03:33 - 11366912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-07-08 09:46 - 2013-09-21 02:59 - 00940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-07-08 09:46 - 2013-09-21 02:57 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2016-07-08 09:46 - 2013-09-21 02:56 - 08712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-07-08 09:46 - 2013-09-21 02:43 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-07-08 09:46 - 2013-09-21 02:38 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-07-08 09:46 - 2013-09-21 02:37 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-07-08 09:46 - 2013-09-21 02:34 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-07-08 09:46 - 2013-09-21 02:31 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-07-08 09:46 - 2013-09-21 02:26 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-07-08 09:46 - 2013-09-21 02:10 - 12028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-08 09:46 - 2013-09-21 02:05 - 08875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-07-08 09:46 - 2013-09-21 02:02 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-07-08 09:46 - 2013-09-21 01:54 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-07-08 09:46 - 2013-09-21 01:44 - 01662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-08 09:46 - 2013-09-21 01:39 - 01455616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-07-08 09:46 - 2013-09-21 01:38 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2016-07-08 09:46 - 2013-09-21 01:38 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-07-08 09:46 - 2013-09-21 01:37 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-07-08 09:46 - 2013-09-21 01:36 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2016-07-08 09:46 - 2013-09-19 03:39 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2016-07-08 09:46 - 2013-09-19 03:17 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2016-07-08 09:46 - 2013-09-19 02:47 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2016-07-08 09:46 - 2013-09-19 02:29 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2016-07-08 09:46 - 2013-09-19 02:08 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-08 09:46 - 2013-09-19 02:01 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2016-07-08 09:46 - 2013-09-19 01:37 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-07-08 09:46 - 2013-09-19 01:32 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2016-07-08 09:46 - 2013-09-19 01:27 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-08 09:46 - 2013-09-19 01:27 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-08 09:46 - 2013-09-19 01:25 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-07-08 09:46 - 2013-09-19 01:11 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-07-08 09:46 - 2013-09-19 01:10 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-08 09:46 - 2013-09-19 00:59 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-08 09:46 - 2013-09-19 00:55 - 00552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-07-08 09:46 - 2013-09-19 00:34 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-07-08 09:46 - 2013-09-19 00:32 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-08 09:46 - 2013-09-17 06:18 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-07-08 09:46 - 2013-09-17 03:58 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-07-08 09:46 - 2013-09-17 02:26 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-07-08 09:46 - 2013-09-17 02:15 - 01225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-07-08 09:46 - 2013-09-17 02:00 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-07-08 09:46 - 2013-09-17 01:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-07-08 09:46 - 2013-09-17 01:08 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-07-08 09:46 - 2013-09-17 00:28 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2016-07-08 09:46 - 2013-09-14 11:06 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2016-07-08 09:46 - 2013-09-14 11:06 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2016-07-08 09:46 - 2013-09-14 08:39 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-07-08 09:46 - 2013-09-13 09:14 - 00872328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-08 09:46 - 2013-09-13 07:52 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-07-08 09:46 - 2013-09-13 06:52 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2016-07-08 09:46 - 2013-09-13 05:54 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-07-08 09:46 - 2013-09-13 05:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-07-08 09:46 - 2013-09-13 04:55 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-07-08 09:46 - 2013-09-13 04:30 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-07-08 09:46 - 2013-09-12 04:37 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2016-07-08 09:46 - 2013-09-11 06:31 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-08 09:46 - 2013-09-11 06:31 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-07-08 09:46 - 2013-09-11 04:41 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-07-08 09:46 - 2013-09-11 04:09 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-07-08 09:46 - 2013-09-07 09:44 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2016-07-08 09:46 - 2013-09-07 09:29 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-07-08 09:46 - 2013-09-07 09:00 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2016-07-08 09:46 - 2013-09-07 08:50 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2016-07-08 09:46 - 2013-09-07 08:45 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-07-08 09:46 - 2013-09-07 08:30 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-07-08 09:46 - 2013-09-07 08:22 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-07-08 09:46 - 2013-09-07 08:13 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-07-08 09:46 - 2013-09-07 08:07 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2016-07-08 09:46 - 2013-09-07 07:51 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2016-07-08 09:46 - 2013-09-07 07:51 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2016-07-08 09:46 - 2013-09-05 04:39 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2016-07-08 09:46 - 2013-09-05 03:42 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2016-07-08 09:46 - 2013-09-05 02:40 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2016-07-08 09:46 - 2013-09-04 04:01 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2016-07-08 09:46 - 2013-09-04 03:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-07-08 09:46 - 2013-09-04 02:47 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-07-08 09:46 - 2013-09-04 02:12 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-07-08 09:46 - 2013-09-04 01:57 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-07-08 09:46 - 2013-09-04 01:48 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-07-08 09:46 - 2013-09-04 01:35 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-07-08 09:46 - 2013-08-31 11:18 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-07-08 09:46 - 2013-08-31 09:15 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-07-08 09:46 - 2013-08-31 09:04 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2016-07-08 09:46 - 2013-08-31 07:46 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2016-07-08 09:46 - 2013-08-31 07:00 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-07-08 09:46 - 2013-08-31 06:25 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-07-08 09:46 - 2013-08-30 04:31 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2016-07-08 09:46 - 2013-08-28 04:55 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-07-08 09:46 - 2013-08-28 04:49 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-07-08 09:46 - 2013-08-28 04:09 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2016-07-08 09:46 - 2013-08-27 03:09 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-07-08 09:46 - 2013-08-27 02:24 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-07-08 09:44 - 2016-07-08 09:44 - 00000000 ____D C:\04b2a872cc4d6f6200bc50f1b2
2016-07-08 09:33 - 2016-07-08 09:33 - 01005170 _____ C:\Users\Alfredo\Downloads\Windows8.1-KB2999226-x64.msu
2016-07-08 08:43 - 2016-07-08 11:01 - 1597205932 _____ C:\Users\Alfredo\Downloads\OFFICE 2016 32 e 64 Bits.rar
2016-07-07 22:21 - 2016-07-07 22:33 - 00000000 ____D C:\Users\Alfredo\AppData\Local\Songr
2016-07-07 22:21 - 2016-07-07 22:21 - 00001034 _____ C:\Users\Alfredo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Songr.lnk
2016-07-07 22:21 - 2016-07-07 22:21 - 00001026 _____ C:\Users\Alfredo\Desktop\Songr.lnk
2016-07-07 22:19 - 2016-07-07 22:19 - 01345293 _____ C:\Users\Alfredo\Downloads\songr.zip
2016-07-07 22:16 - 2016-07-07 22:16 - 00979760 _____ (Napihigub ) C:\Users\Alfredo\Downloads\songr.exe
2016-07-07 16:33 - 2016-07-07 16:33 - 00216113 _____ C:\Users\Alfredo\Downloads\Dados Cadastrais.pdf
2016-07-07 11:10 - 2016-07-07 17:53 - 00011316 _____ C:\Users\Alfredo\Desktop\Tabela Preço.xlsx
2016-07-06 19:31 - 2016-07-06 19:31 - 00000000 ____D C:\Users\Alfredo\AppData\Local\mpress
2016-07-06 19:29 - 2016-07-06 19:29 - 01812525 _____ C:\Users\Alfredo\Downloads\RATON DOWNLOADS -atof2016 www.ratondownloads.com.br.rar
2016-07-06 17:59 - 2016-07-08 09:26 - 00000000 ____D C:\Users\Alfredo\Desktop\Carnes Florence
2016-07-06 14:17 - 2016-07-06 14:17 - 00137210 _____ C:\Users\Alfredo\Downloads\Boletos(1).pdf
2016-07-06 11:56 - 2016-07-06 11:56 - 00084989 _____ C:\Users\Alfredo\Downloads\Kanguru mens nf (1).pdf
2016-07-06 11:55 - 2016-07-06 11:55 - 00008897 _____ C:\Users\Alfredo\Downloads\35160704450303000167550000000012151473000005-procNFe (1).xml
2016-07-06 11:40 - 2016-07-06 11:41 - 00324024 _____ C:\Users\Alfredo\Downloads\35160704450303000167550000000012151473000005-procNFe (1).pdf
2016-07-06 11:16 - 2016-07-07 14:35 - 00000000 ____D C:\Users\Alfredo\Desktop\Fiscal
2016-07-06 11:02 - 2016-07-06 11:02 - 00000000 ____D C:\Users\Alfredo\AppData\Local\TeamViewer
2016-07-06 10:54 - 2016-07-06 10:54 - 00000000 ____D C:\Users\Alfredo\Desktop\Arquivo Banco
2016-07-06 10:51 - 2016-07-06 10:53 - 00000000 ____D C:\Users\Alfredo\Desktop\Func Maestro
2016-07-06 10:50 - 2016-07-06 10:53 - 00000000 ____D C:\Users\Alfredo\Desktop\Boletos
2016-07-06 10:49 - 2016-07-07 14:41 - 00000000 ____D C:\Users\Alfredo\Desktop\Func Kanguru
2016-07-06 10:40 - 2016-07-06 10:40 - 00084989 _____ C:\Users\Alfredo\Downloads\Kanguru mens nf.pdf
2016-07-06 10:39 - 2016-07-06 10:39 - 00128406 _____ C:\Users\Alfredo\Downloads\Kanguru mens boleto.pdf
2016-07-06 10:39 - 2016-07-06 10:39 - 00051459 _____ C:\Users\Alfredo\Downloads\BOLETO NF 1215 (1).pdf
2016-07-06 10:38 - 2016-07-06 10:38 - 00324024 _____ C:\Users\Alfredo\Downloads\35160704450303000167550000000012151473000005-procNFe.pdf
2016-07-06 10:38 - 2016-07-06 10:38 - 00008903 _____ C:\Users\Alfredo\Downloads\35160704450303000167550000000012151473000005-procNFe.xml
2016-07-06 10:36 - 2016-07-06 10:36 - 00051459 _____ C:\Users\Alfredo\Downloads\BOLETO NF 1215.pdf
2016-06-27 12:01 - 2016-06-27 12:01 - 00639333 _____ C:\Users\Alfredo\Downloads\Atrasados 27 Jun 16.pdf
2016-06-24 09:35 - 2016-06-24 09:35 - 00137280 _____ C:\Users\Alfredo\Downloads\Boletos (22).pdf
2016-06-22 15:44 - 2016-06-22 15:44 - 00137062 _____ C:\Users\Alfredo\Downloads\Boletos (21).pdf
2016-06-21 10:16 - 2016-06-21 10:16 - 00001134 _____ C:\Users\Alfredo\Downloads\comprovante (9).pdf
2016-06-21 10:16 - 2016-06-21 10:16 - 00001134 _____ C:\Users\Alfredo\Downloads\comprovante (10).pdf
2016-06-21 10:15 - 2016-06-21 10:15 - 00001134 _____ C:\Users\Alfredo\Downloads\comprovante (8).pdf
2016-06-21 09:50 - 2016-06-21 09:50 - 00018373 _____ C:\Users\Alfredo\Downloads\DAS ref. 05-2016 KANGURU MATRIZ (1).pdf
2016-06-21 09:42 - 2016-06-21 09:42 - 00018373 _____ C:\Users\Alfredo\Downloads\DAS ref. 05-2016 KANGURU MATRIZ.pdf
2016-06-21 09:36 - 2016-06-21 09:36 - 00152952 _____ C:\Users\Alfredo\Downloads\PIS ref. 05-2016 EMPREENDIMENTOS IMOB MAESTRO.pdf
2016-06-21 09:35 - 2016-06-21 09:35 - 00153642 _____ C:\Users\Alfredo\Downloads\COFINS ref. 05-2016 EMPREENDIMENTOS IMOB MAESTRO.pdf
2016-06-20 11:24 - 2016-06-20 11:24 - 00062734 _____ C:\Users\Alfredo\Downloads\QUITAÇÃO Leidiani KANGURU 2.pdf
2016-06-20 11:20 - 2016-06-20 11:20 - 00060423 _____ C:\Users\Alfredo\Downloads\FOLHA ADIANTAMENTO ref. 06-2016 KANGURU FILIAL 2.pdf
2016-06-20 11:20 - 2016-06-20 11:20 - 00060181 _____ C:\Users\Alfredo\Downloads\FGTS EXTRATO Leidiani KANGURU 2.pdf
2016-06-20 11:20 - 2016-06-20 11:20 - 00050147 _____ C:\Users\Alfredo\Downloads\CTPS-ATUALIZAÇÃO Leidiani KANGURU 2.pdf
2016-06-20 11:19 - 2016-06-20 11:19 - 00080879 _____ C:\Users\Alfredo\Downloads\RESCISÃO Leidiani KANGURU 2.pdf
2016-06-17 15:43 - 2016-06-17 15:43 - 00015360 _____ C:\Users\Alfredo\Downloads\CARGA - HORARIO (1).xls
2016-06-17 13:39 - 2016-06-17 13:39 - 00015360 _____ C:\Users\Alfredo\Downloads\CARGA - HORARIO.xls
2016-06-17 10:11 - 2016-06-17 10:11 - 00000075 _____ C:\Users\Alfredo\Downloads\Texto (21)
2016-06-16 08:53 - 2016-06-16 08:53 - 00268390 _____ C:\Users\Alfredo\Downloads\conta.pdf
2016-06-16 08:53 - 2016-06-16 08:53 - 00268229 _____ C:\Users\Alfredo\Downloads\conta (1).pdf
2016-06-16 08:35 - 2016-06-16 08:35 - 00003462 _____ C:\Users\Alfredo\Downloads\Texto (20)
2016-06-14 12:03 - 2016-06-14 12:03 - 00137057 _____ C:\Users\Alfredo\Downloads\Boletos (20).pdf
2016-06-13 09:17 - 2016-06-13 09:17 - 00066718 _____ C:\Users\Alfredo\Downloads\FOLHA ADIANTAMENTO ref. 06-2016 KANGURU FILIAL.pdf
2016-06-13 09:17 - 2016-06-13 09:17 - 00062377 _____ C:\Users\Alfredo\Downloads\FOLHA ADIANTAMENTO ref. 06-2016 KANGURU.pdf
2016-06-13 09:17 - 2016-06-13 09:17 - 00049014 _____ C:\Users\Alfredo\Downloads\GPS ref. 05-2016 KANGURU FILIAL (2).pdf
2016-06-13 09:16 - 2016-06-13 09:16 - 00055644 _____ C:\Users\Alfredo\Downloads\FOLHA ADIANTAMENTO ref. 06-2016 MAESTRO.pdf
2016-06-10 11:15 - 2016-06-10 11:15 - 00069632 _____ C:\Users\Alfredo\Downloads\Cópia de ESPELHO EMPRESARIAL VERONA.xls

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-08 11:22 - 2015-12-14 16:05 - 00000000 ____D C:\Users\Alfredo\AppData\Roaming\uTorrent
2016-07-08 11:19 - 2014-05-31 15:05 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1532673202-1933264569-3065081144-1001
2016-07-08 11:18 - 2014-05-31 15:20 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1532673202-1933264569-3065081144-1001Core.job
2016-07-08 11:14 - 2013-08-22 16:12 - 00000000 ____D C:\WINDOWS\ShellNew
2016-07-08 11:14 - 2013-08-22 12:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-07-08 11:13 - 2014-05-31 15:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-08 11:13 - 2013-08-22 12:36 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-07-08 11:13 - 2013-08-22 12:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-08 11:11 - 2014-02-28 14:36 - 00876660 _____ C:\WINDOWS\system32\prfh0416.dat
2016-07-08 11:11 - 2014-02-28 14:36 - 00196830 _____ C:\WINDOWS\system32\prfc0416.dat
2016-07-08 11:11 - 2013-08-31 12:40 - 02070762 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-08 11:11 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Inf
2016-07-08 11:10 - 2013-08-22 12:36 - 00000000 ____D C:\Program Files\Common Files\System
2016-07-08 11:10 - 2013-08-22 10:25 - 00000199 _____ C:\WINDOWS\win.ini
2016-07-08 11:09 - 2014-02-28 09:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-07-08 11:08 - 2014-05-31 15:20 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1532673202-1933264569-3065081144-1001UA.job
2016-07-08 11:07 - 2016-05-25 16:10 - 00028888 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\gbpddfac64.sys
2016-07-08 11:07 - 2016-01-19 15:05 - 00000000 ____D C:\Users\Alfredo\AppData\Roaming\Skype
2016-07-08 11:07 - 2014-12-05 14:45 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-07-08 11:06 - 2016-05-23 09:22 - 00101080 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2016-07-08 11:06 - 2013-08-22 11:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-08 11:05 - 2013-08-22 11:44 - 00482656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-08 11:05 - 2013-08-22 10:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-07-08 11:02 - 2014-05-31 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2016-07-08 11:02 - 2014-05-31 15:08 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-07-08 11:02 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-08 11:02 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-08 11:01 - 2014-05-31 14:59 - 00000000 ____D C:\Users\Alfredo\AppData\Local\Packages
2016-07-08 11:00 - 2014-05-31 15:20 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\FileManager
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\Camera
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-08 10:24 - 2013-08-22 12:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-07-08 10:24 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-07-08 10:24 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-08 10:24 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-07-08 10:15 - 2013-08-22 12:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-07-08 10:00 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-07-08 09:39 - 2015-04-28 15:37 - 00476672 ___SH C:\Users\Alfredo\Downloads\Thumbs.db
2016-07-08 09:29 - 2014-12-05 14:45 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-07-08 09:29 - 2014-12-05 14:45 - 00000000 ____D C:\ProgramData\GbPlugin
2016-07-08 09:26 - 2014-07-11 11:34 - 02722304 ___SH C:\Users\Alfredo\Desktop\Thumbs.db
2016-07-08 09:20 - 2014-07-02 13:55 - 00003954 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6468165B-7831-40CD-9A61-20F645034423}
2016-07-08 09:12 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-07-08 08:40 - 2015-12-14 14:52 - 00085158 _____ C:\Users\Alfredo\Desktop\Assinatura e-mail.pptx
2016-07-07 19:30 - 2016-01-19 15:04 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-07-07 19:30 - 2016-01-19 15:04 - 00000000 ____D C:\ProgramData\Skype
2016-07-07 19:29 - 2016-01-19 15:05 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-07 15:08 - 2014-11-05 10:13 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1532673202-1933264569-3065081144-1001Core1cff8fa566e87fe.job
2016-07-06 14:17 - 2014-12-05 14:44 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-07-06 14:17 - 2014-12-05 14:44 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2016-07-06 11:12 - 2015-12-11 09:11 - 00000994 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-07-06 11:12 - 2015-12-11 09:11 - 00000982 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-07-06 11:12 - 2015-12-11 09:11 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-07-06 11:03 - 2015-12-11 09:11 - 00000000 ____D C:\Users\Alfredo\AppData\Roaming\TeamViewer
2016-07-06 10:59 - 2016-02-23 12:46 - 00000000 ____D C:\Users\Alfredo\Desktop\D. Lourdes
2016-07-05 20:25 - 2016-03-03 10:24 - 00000000 ____D C:\Users\Alfredo\AppData\Roaming\ControlCenter4
2016-07-05 20:04 - 2016-03-03 10:08 - 00000232 _____ C:\WINDOWS\Brpfx04a.ini
2016-07-05 20:04 - 2016-03-03 10:08 - 00000093 _____ C:\WINDOWS\brpcfx.ini
2016-06-28 11:23 - 2016-03-31 15:36 - 00000082 _____ C:\Users\Alfredo\AppData\Roaming\RSIpAndPort.fig
2016-06-22 15:19 - 2015-12-03 10:51 - 00000000 ____D C:\Users\Alfredo\AppData\LocalLow\Scpad
2016-06-21 15:51 - 2014-05-31 14:59 - 00000000 ____D C:\Users\Alfredo
2016-06-20 10:09 - 2014-05-31 15:20 - 00002451 _____ C:\Users\Alfredo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-10 14:09 - 2015-12-16 15:26 - 00000000 ____D C:\Users\Alfredo\AppData\Local\IE Tab

==================== Arquivos na raiz de alguns diretórios =======

2016-03-03 09:59 - 2007-11-20 04:31 - 0000060 ____R () C:\Program Files (x86)\BRINST.INI
2015-11-30 16:01 - 2015-11-30 16:01 - 0000000 _____ () C:\Users\Alfredo\AppData\Roaming\RSDevID.fig
2016-03-31 15:36 - 2016-06-28 11:23 - 0000082 _____ () C:\Users\Alfredo\AppData\Roaming\RSIpAndPort.fig
2014-12-05 14:44 - 2016-05-23 09:25 - 0033913 _____ () C:\Users\Alfredo\AppData\Roaming\unins000.dat
2016-05-23 09:25 - 2016-05-23 09:25 - 0720082 _____ () C:\Users\Alfredo\AppData\Roaming\unins000.exe
2014-02-28 09:45 - 2014-02-28 09:45 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-11-30 16:01 - 2015-11-30 16:01 - 0000281 _____ () C:\ProgramData\RSUserCfg.ini

Alguns arquivos em TEMP:
====================
C:\Users\Alfredo\AppData\Local\Temp\APNSetup.exe
C:\Users\Alfredo\AppData\Local\Temp\ose00000.exe
C:\Users\Alfredo\AppData\Local\Temp\totaluninstaller2.exe
C:\Users\Alfredo\AppData\Local\Temp\_is5495.exe
C:\Users\Alfredo\AppData\Local\Temp\_is6A24.exe
C:\Users\Alfredo\AppData\Local\Temp\_isBE84.exe
C:\Users\Alfredo\AppData\Local\Temp\_isC38F.exe
C:\Users\Alfredo\AppData\Local\Temp\_isE470.exe
C:\Users\Alfredo\AppData\Local\Temp\_isED41.exe
C:\Users\Alfredo\AppData\Local\Temp\_isF51F.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-07-07 08:01

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité