Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-04-2016
Executado por Darlene (administrador) em DESKTOP-ATVE37D (30-04-2016 00:19:18)
Executando a partir de C:\Users\dadhy\Desktop
Perfis Carregados: Darlene (Perfis Disponíveis: Darlene)
Platform: Windows 10 Home Single Language Versão 1511 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCRTP.exe
(Intel Corporation) C:\Windows\syswow64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Users\dadhy\AppData\Roaming\Rokgufga\Rokgufga.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
() C:\Program Files\Uweergigamed\Nokwujf.exe
() C:\Program Files\Uweergigamed\EcynCufemh.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe
() C:\Users\dadhy\AppData\Roaming\Rokgufga\Raslunge.exe
() C:\Program Files\Uweergigamed\Uciev.exe
() C:\Program Files\Uweergigamed\Uciev64.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\calendar.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\Users\dadhy\AppData\Roaming\cpuminer\cpm.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Microsoft Corporation) C:\Windows\syswow64\rundll32.exe
(Tencent) C:\Program Files (x86)\Common Files\Tencent\QQDownload\130\Tencentdl.exe
(Microsoft Corporation) C:\Windows\syswow64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpUXSrv.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMDL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
HKLM\...\Run: [cpuminer] => C:\Users\dadhy\AppData\Roaming\cpuminer\cpm.exe [1417216 2016-03-31] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [aim] => C:\Users\dadhy\AppData\Local\Temp\16497\aim <===== ATENÇÃO
HKLM-x32\...\Run: [ QQPCTray] => C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe [356464 2016-04-29] (Tencent)
HKLM\...\RunOnce: [OTUTPRODUCT_E3JVS] => C:\Program Files (x86)\mobilepcstarterkit\otutnetwork.exe [611328 2016-04-28] (iKOLD)
HKLM\...\RunOnce: [OTUTPRODUCT_V9TEO] => C:\Program Files (x86)\mybestofferstoday\otutnetwork.exe [611328 2016-04-28] (iKOLD)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [WindApp] => "C:\Users\dadhy\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [Selection Tools] => "C:\Users\dadhy\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [Installer] => C:\Users\dadhy\AppData\Local\Temp\CJNVNJ6YK\CJNVNJ6YK.exe [1965568 2016-04-29] (TZ) <===== ATENÇÃO
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [msiql] => C:\ProgramData\msiql.exe [1916928 2016-04-26] ()
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMGCShellExt64.dll [2016-04-29] (Tencent)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 201.21.192.111 201.21.192.116
Tcpip\..\Interfaces\{0caf1adb-9207-4e02-b090-f440699bed00}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{2fb89910-fd44-11e5-9810-806e6f6e6963}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{629d31db-aa96-42ff-881d-593037683cea}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{68ca0148-0ac7-45a1-a014-f6877da43699}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{8ecd5b73-cbef-42e4-b789-b7f788907406}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{aa74706d-d195-4182-a818-301d552d956b}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{aa74706d-d195-4182-a818-301d552d956b}: [DhcpNameServer] 201.21.192.111 201.21.192.116
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=92552456_hao_pg
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=92552456_hao_pg
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKU\S-1-5-21-650882461-1424332723-2798721165-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKU\S-1-5-21-650882461-1424332723-2798721165-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSWebMon64.dat [2016-04-29] (Tencent)
BHO: Uweergigamed -> {933D6B13-78B2-4519-8DA5-8CC5F44880D4} -> C:\Program Files\Uweergigamed\Canba64.dll => Nenhum Arquivo
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Uweergigamed -> {933D6B13-78B2-4519-8DA5-8CC5F44880D4} -> C:\Program Files\Uweergigamed\Canba.dll => Nenhum Arquivo
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @qq.com/QQPCMgr -> C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\npQMExtensionsMozilla.dll [2016-04-29] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-17] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxps://www.google.com.br/"
CHR Profile: C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-28]
CHR Extension: (Google Docs) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-28]
CHR Extension: (Google Drive) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-28]
CHR Extension: (YouTube) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28]
CHR Extension: (Planilhas do Google) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-28]
CHR Extension: (Documentos Google off-line) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR Extension: (Gmail) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-28]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 BugreportW; C:\Program Files (x86)\yesbnd\prosotain.exe [963736 2016-04-29] ()
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [593120 2015-09-22] (GAS Tecnologia)
S2 GoogleChromeUpService; C:\ProgramData\service.exe [1755136 2016-04-27] () [Arquivo não assinado]
S2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\svrupg.exe [2783744 2016-04-29] (TODO: ) [Arquivo não assinado]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-10-07] (Intel Corporation)
R2 Joodb; C:\Users\dadhy\AppData\Roaming\Rokgufga\Rokgufga.exe [174968 2016-04-29] ()
R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-04-28] (DotC United Inc)
S2 Nmclogservice; C:\Program Files (x86)\Nimeckreelule\Nmclogservice.exe [299504 2016-04-29] ()
S2 ProntSpooler; C:\Users\dadhy\AppData\Local\Apps\2.0\abril.exe [124928 2016-04-07] () [Arquivo não assinado]
R2 QQPCRTP; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCRTP.exe [301656 2016-04-29] (Tencent)
U2 QQRepair1c18; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepair1c18 [140608 2016-04-29] ()
S2 QQRepairFixSVC; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepairFixSVC [140608 2016-04-29] ()
R2 TheCalendarService; C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe [141960 2015-12-25] ()
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 2B19F262-724B-4C41-8531-E22656DFE5FB; "C:\Program Files\Uweergigamed\Fukva.exe" [X]
R2 EcynCufemh; "C:\Program Files\Uweergigamed\EcynCufemh.exe" [X]
S2 Jitgui; "C:\Users\dadhy\AppData\Roaming\CucqGups\Ogoxsul.exe" -cms [X]
S2 rijufoze; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\hnseBEC4.tmp [X]
S2 rocufyky; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\jnsl9C27.tmp [X]
R2 Uweergigamed Updater; C:\Program Files\Uweergigamed\Nokwujf.exe [X]
S2 wikikobuzbt; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\knsw4334.tmp [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 bsdpf64; C:\WINDOWS\system32\Drivers\bsdpf64.sys [27456 2016-04-29] ()
R1 bsdpr64; C:\WINDOWS\system32\Drivers\bsdpr64.sys [26944 2016-04-29] ()
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [65344 2016-04-29] (Windows (R) Win 7 DDK provider)
R3 ETDI2C; C:\Windows\System32\drivers\ETDI2C.sys [173384 2014-04-07] (ELAN Microelectronic Corp.)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-12-08] (GAS Tecnologia)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-10] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-10] (Intel Corporation)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-04-28] (DotC United Inc)
R1 QMUdisk; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMUdisk64.sys [184952 2016-04-18] (Tencent)
R2 QQSysMonX64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQSysMonX64.sys [138488 2016-04-29] (电脑管家)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R1 softaal; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\softaal64.sys [35064 2016-04-29] (Tencent)
R1 SRepairDrv; \??\C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\SRepairDrv [172664 2016-04-29] ()
R3 TAOAccelerator; C:\WINDOWS\system32\Drivers\TAOAccelerator64.sys [89880 2016-04-29] (Tencent)
R2 TAOKernelDriver; C:\WINDOWS\system32\Drivers\TAOKernelEx64.sys [132344 2016-04-29] (Tencent Technology(Shenzhen) Company Limited)
R3 TcHardWare; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCHW-x64.sys [16552 2016-04-29] (Tencent)
R3 TFsFlt; C:\Windows\System32\Drivers\TFsFltX64.sys [87800 2016-04-29] (电脑管家)
R3 TS888x64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TS888x64.sys [38520 2016-04-29] (Tencent)
S1 TSDefenseBt; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSDefenseBT64.sys [28984 2016-04-29] (Tencent)
R2 tsnethlpx64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TsNetHlpX64.sys [48376 2016-04-29] ()
R1 TSSysKit; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSSysKit64.sys [87288 2016-04-29] (电脑管家)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-12-08] (GAS Tecnologia LTDA)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-04-29] (GAS Tecnologia)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-30 00:19 - 2016-04-30 00:20 - 00017003 _____ C:\Users\dadhy\Desktop\FRST.txt
2016-04-30 00:19 - 2016-04-30 00:19 - 00000000 ____D C:\FRST
2016-04-30 00:17 - 2016-04-30 00:18 - 02376704 _____ (Farbar) C:\Users\dadhy\Desktop\FRST64.exe
2016-04-29 23:36 - 2016-04-29 23:39 - 00284940 _____ C:\WINDOWS\Minidump\042916-31375-01.dmp
2016-04-29 23:34 - 2016-04-29 23:34 - 00000000 ____D C:\WINDOWS\system32\bedo
2016-04-29 23:23 - 2016-04-29 23:23 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\MCorp
2016-04-29 23:19 - 2016-04-29 23:38 - 00038520 _____ (Tencent) C:\WINDOWS\SysWOW64\Drivers\TS888x64.sys
2016-04-29 23:04 - 2016-04-29 23:04 - 00000000 ____D C:\Users\dadhy\AppData\Local\ElevatedDiagnostics
2016-04-29 23:02 - 2016-04-29 23:02 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-04-29 23:01 - 2016-04-29 23:01 - 00005120 _____ C:\Users\dadhy\AppData\Roaming\GiftBag.db
2016-04-29 23:01 - 2016-04-29 23:01 - 00004142 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EEDBB101-EDEB-41A9-B41A-B80C9CFA039E}
2016-04-29 23:01 - 2016-04-29 23:01 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\TENCENT
2016-04-29 23:01 - 2016-04-29 23:01 - 00000000 ____D C:\Program Files\Common Files\Tencent
2016-04-29 23:01 - 2016-04-29 22:59 - 00132344 _____ (Tencent Technology(Shenzhen) Company Limited) C:\WINDOWS\system32\Drivers\TAOKernelEx64.sys
2016-04-29 23:01 - 2016-04-29 22:59 - 00089880 _____ (Tencent) C:\WINDOWS\system32\Drivers\TAOAccelerator64.sys
2016-04-29 23:00 - 2016-04-29 23:38 - 00000000 ____D C:\Users\Todos os Usuários\TXQMPC
2016-04-29 22:59 - 2016-04-29 22:59 - 00087800 _____ (电脑管家) C:\WINDOWS\system32\Drivers\TFsFltX64.sys
2016-04-29 22:59 - 2016-04-29 22:59 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-04-29 22:56 - 2016-04-29 23:57 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Tencent
2016-04-29 22:56 - 2016-04-29 23:18 - 00000000 ____D C:\Users\Todos os Usuários\Tencent
2016-04-29 22:56 - 2016-04-29 22:56 - 00000000 ____D C:\Program Files (x86)\Tencent
2016-04-29 22:55 - 2016-04-29 22:55 - 00413439 _____ C:\Users\Todos os Usuários\xdo.zip
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Todos os Usuários\Thunder Network
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Public\Thunder Network
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Program Files (x86)\osTip
2016-04-29 22:55 - 2016-04-26 12:07 - 01253376 _____ (eee) C:\Users\Todos os Usuários\apptj.exe
2016-04-29 22:54 - 2016-04-29 23:02 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\CalendarTool
2016-04-29 22:54 - 2016-04-29 22:54 - 02783744 _____ (TODO: ) C:\Users\dadhy\AppData\Roaming\svrupg.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 00002303 _____ C:\Users\Todos os Usuários\webad.xml
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Users\Todos os Usuários\Windows Update
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Program Files (x86)\CalendarTool
2016-04-29 22:54 - 2016-04-26 09:16 - 01916928 _____ C:\Users\Todos os Usuários\msiql.exe
2016-04-29 22:54 - 2016-04-25 11:46 - 00114176 _____ C:\Users\Todos os Usuários\hp.exe
2016-04-29 22:54 - 2016-04-21 12:18 - 01266688 _____ C:\Users\Todos os Usuários\conhost514934.exe
2016-04-29 22:53 - 2016-04-29 22:53 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-04-29 22:52 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\yesbnd
2016-04-29 22:52 - 2016-04-29 23:17 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Rokgufga
2016-04-29 22:52 - 2016-04-29 22:53 - 00000000 ____D C:\Program Files\Uweergigamed
2016-04-29 22:52 - 2016-04-29 22:52 - 00027456 _____ C:\WINDOWS\system32\Drivers\bsdpf64.sys
2016-04-29 22:52 - 2016-04-29 22:52 - 00026944 _____ C:\WINDOWS\system32\Drivers\bsdpr64.sys
2016-04-29 22:52 - 2016-04-29 22:52 - 00008972 _____ C:\WINDOWS\System32\Tasks\Nimeckreelule Log
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\Company
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\Local\Tempfolder
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\uninst
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files\UweergigamedUn
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files (x86)\Nimeckreelule
2016-04-29 22:52 - 2016-04-27 09:46 - 01755136 _____ C:\Users\Todos os Usuários\service.exe
2016-04-29 22:52 - 2016-04-27 09:46 - 01755136 _____ C:\Users\dadhy\AppData\Roaming\service.exe
2016-04-29 22:51 - 2016-04-29 22:52 - 00003068 _____ C:\WINDOWS\System32\Tasks\svchost
2016-04-29 22:51 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files (x86)\Hostify
2016-04-29 22:51 - 2016-04-29 22:51 - 00003660 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2016-04-29 19:56 - 2016-04-29 22:52 - 00065344 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\cherimoya.sys
2016-04-29 00:30 - 2016-04-29 23:08 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\WTools
2016-04-28 16:51 - 2016-04-29 00:49 - 00000000 ____D C:\Users\dadhy\AppData\Local\Apps\2.0
2016-04-28 16:27 - 2016-04-29 23:07 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Store
2016-04-28 16:23 - 2016-04-28 16:40 - 00000000 ____D C:\Program Files (x86)\mybestofferstoday
2016-04-28 16:23 - 2016-04-28 16:24 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\gplyra
2016-04-28 16:23 - 2016-04-28 16:24 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\cpuminer
2016-04-28 16:22 - 2016-04-29 23:08 - 00000000 ____D C:\Program Files (x86)\mobilepcstarterkit
2016-04-28 16:21 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\CleanBrowser
2016-04-28 16:19 - 2016-04-28 16:19 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Nosibay
2016-04-28 16:18 - 2016-04-28 16:15 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-04-28 16:17 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8
2016-04-28 16:14 - 2016-04-29 23:18 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2016-04-28 16:14 - 2016-04-28 16:14 - 00060136 _____ (DotC United Inc) C:\WINDOWS\system32\Drivers\MPCKpt.sys
2016-04-28 16:12 - 2016-04-28 16:28 - 00000000 ____D C:\FFOutput
2016-04-28 16:12 - 2016-04-28 16:12 - 00000000 _____ C:\WINDOWS\SysWOW64\track
2016-04-28 16:09 - 2016-04-28 16:09 - 00001140 _____ C:\Users\dadhy\Desktop\Format Factory.lnk
2016-04-28 16:09 - 2016-04-28 16:09 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2016-04-28 16:08 - 2016-04-28 16:09 - 00000000 ____D C:\Program Files (x86)\FormatFactory
2016-04-28 13:29 - 2016-04-28 15:21 - 00003446 _____ C:\WINDOWS\System32\Tasks\Format Factory
2016-04-28 13:28 - 2016-04-28 13:28 - 04506061 _____ (Free Time Inc ) C:\Users\dadhy\Downloads\FormatFactory-3.8.0.2.exe
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\IsolatedStorage
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\dadhy\AppData\Local\FileViewPro
2016-04-28 13:25 - 2016-04-28 13:25 - 00000000 ____D C:\Spacekace
2016-04-28 13:23 - 2016-04-28 13:25 - 02173104 _____ C:\Users\dadhy\Downloads\Setup_FileViewPro_2016.exe
2016-04-28 12:50 - 2016-04-28 15:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-04-28 12:50 - 2016-04-28 12:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-04-28 12:49 - 2016-04-28 12:49 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-04-28 12:48 - 2016-04-28 12:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-04-28 12:47 - 2016-04-29 00:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-04-28 12:47 - 2016-04-28 12:47 - 00000000 __RHD C:\MSOCache
2016-04-28 12:45 - 2016-04-28 12:45 - 00000000 ____D C:\Users\dadhy\Desktop\MS Office
2016-04-28 12:44 - 2016-04-28 12:44 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\WinRAR
2016-04-28 12:42 - 2016-04-28 12:42 - 00001048 _____ C:\Users\Public\Desktop\WinRAR.lnk
2016-04-28 12:42 - 2016-04-28 12:42 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-28 12:42 - 2016-04-28 12:42 - 00000000 ____D C:\Program Files\WinRAR
2016-04-26 13:04 - 2016-04-26 13:04 - 00226321 _____ C:\Users\dadhy\Downloads\Programacao-ApostilaPHP.pdf
2016-04-26 13:01 - 2016-04-26 13:01 - 00367975 _____ C:\Users\dadhy\Downloads\2464_php_com_mysql.pdf
2016-04-26 13:00 - 2016-04-26 13:00 - 00275214 _____ C:\Users\dadhy\Downloads\php.pdf
2016-04-26 12:59 - 2016-04-26 12:59 - 00515772 _____ C:\Users\dadhy\Downloads\apostila php.pdf
2016-04-26 09:24 - 2016-04-26 09:24 - 00000009 _____ C:\Users\Todos os Usuários\a.bat
2016-04-25 15:17 - 2016-04-25 15:17 - 00931661 _____ C:\Users\dadhy\Downloads\Apostila-HTML-e-CSS.pdf
2016-04-25 13:41 - 2016-04-25 13:41 - 01909270 _____ C:\Users\dadhy\Downloads\html5-web.pdf
2016-04-23 19:42 - 2016-04-23 19:46 - 48732990 _____ C:\Users\dadhy\Downloads\DSC_2649.bmp
2016-04-21 23:09 - 2016-04-29 23:36 - 00000000 ____D C:\WINDOWS\Minidump
2016-04-21 23:09 - 2016-04-21 23:09 - 00284948 _____ C:\WINDOWS\Minidump\042116-41000-01.dmp
2016-04-21 23:08 - 2016-04-29 23:36 - 584556846 _____ C:\WINDOWS\MEMORY.DMP
2016-04-21 23:03 - 2016-04-21 23:04 - 01155024 _____ ( ) C:\Users\dadhy\Downloads\Stremio_Setup.exe
2016-04-21 23:01 - 2016-04-21 23:03 - 34052006 _____ (Popcorn Time) C:\Users\dadhy\Downloads\Popcorn-Time-0.3.9-Setup.exe
2016-04-19 13:41 - 2016-04-30 00:09 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-19 13:41 - 2016-04-19 13:41 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-04-19 13:41 - 2016-04-19 13:41 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Macromedia
2016-04-19 13:39 - 2016-04-19 13:41 - 00000000 ____D C:\Users\dadhy\AppData\Local\Adobe
2016-04-17 23:56 - 2016-04-30 00:08 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-17 23:55 - 2016-04-30 00:00 - 00001102 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-17 23:55 - 2016-04-30 00:00 - 00001098 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-17 23:55 - 2016-04-17 23:55 - 00004160 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-04-17 23:55 - 2016-04-17 23:55 - 00003928 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-04-17 23:52 - 2016-04-29 23:07 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-04-17 23:51 - 2016-04-21 00:20 - 00000000 ____D C:\Program Files (x86)\yesbnd_83106d
2016-04-17 23:51 - 2016-04-18 23:22 - 00000000 ____D C:\Program Files (x86)\Jejochclipasp
2016-04-17 23:51 - 2016-04-17 23:51 - 00000000 ____D C:\Users\dadhy\AppData\Local\F727A298-4DB4-456A-AC54-A93EA5F8554D
2016-04-17 23:51 - 2016-02-24 19:11 - 00058184 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\crfilterdrv.sys
2016-04-17 23:51 - 2016-02-24 19:10 - 00058680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\asfilterdrv.sys
2016-04-17 23:50 - 2016-04-29 22:54 - 00000000 ____D C:\Users\dadhy\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-04-17 22:34 - 2016-04-17 22:34 - 00000000 ____D C:\Users\dadhy\Documents\Modelos Personalizados do Office
2016-04-14 16:05 - 2016-04-14 16:29 - 681619456 _____ C:\Users\dadhy\Downloads\OfficeProfessionalPlus_x86_pt-br.img
2016-04-14 12:46 - 2016-04-14 12:46 - 00001024 _____ C:\.rnd
2016-04-14 12:45 - 2016-04-29 23:37 - 00101080 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2016-04-14 12:45 - 2015-03-18 11:23 - 00103640 ____N (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddpp.sys
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ___HD C:\Program Files (x86)\Diebold
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ____D C:\Program Files\Diebold
2016-04-14 12:42 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-04-14 12:42 - 2016-04-14 12:43 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-04-14 12:42 - 2016-04-14 12:42 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-04-14 12:41 - 2016-04-14 12:41 - 02665128 _____ (CAIXA) C:\Users\dadhy\Downloads\iGBPCEFwr.exe
2016-04-13 13:47 - 2016-04-13 13:47 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2016-04-13 13:47 - 2016-04-13 13:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-04-13 13:36 - 2016-04-13 13:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-12 23:34 - 2016-04-13 00:21 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-04-12 23:33 - 2016-04-12 23:33 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Toolkit
2016-04-12 23:30 - 2016-04-12 23:46 - 00000022 _____ C:\Users\dadhy\Downloads\MTKV25ARPATUTORIAIS.zip
2016-04-12 23:03 - 2016-04-29 01:01 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-04-12 23:03 - 2016-04-28 12:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-04-12 23:03 - 2016-04-12 23:03 - 00000000 ____D C:\Users\dadhy\AppData\Local\Microsoft Help
2016-04-12 22:18 - 2016-04-12 22:47 - 789321728 _____ C:\Users\dadhy\Downloads\OfficeProfessionalPlus_x64_pt-br.img
2016-04-12 21:37 - 2016-04-02 00:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-12 21:37 - 2016-04-02 00:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-12 21:37 - 2016-04-02 00:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-12 21:37 - 2016-04-02 00:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-12 21:37 - 2016-04-02 00:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-12 21:37 - 2016-04-02 00:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-12 21:37 - 2016-04-02 00:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-12 21:37 - 2016-04-02 00:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-12 21:37 - 2016-03-29 07:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-12 21:37 - 2016-03-29 07:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-12 21:37 - 2016-03-29 06:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-12 21:37 - 2016-03-29 06:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-12 21:37 - 2016-03-29 06:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-12 21:37 - 2016-03-29 06:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-12 21:37 - 2016-03-29 04:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-12 21:37 - 2016-03-29 04:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-12 21:37 - 2016-03-29 04:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-12 21:37 - 2016-03-29 04:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-12 21:37 - 2016-03-29 04:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-12 21:37 - 2016-03-29 04:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-12 21:37 - 2016-03-29 04:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-12 21:37 - 2016-03-29 04:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-12 21:37 - 2016-03-29 04:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-12 21:37 - 2016-03-29 03:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-12 21:37 - 2016-03-29 03:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-12 21:37 - 2016-03-29 03:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-12 21:37 - 2016-03-29 03:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-12 21:37 - 2016-03-29 03:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-12 21:37 - 2016-03-29 03:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-12 21:37 - 2016-03-29 03:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-12 21:37 - 2016-03-29 03:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-12 21:37 - 2016-03-29 03:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-12 21:37 - 2016-03-29 03:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-12 21:37 - 2016-03-29 03:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-12 21:37 - 2016-03-29 02:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-12 21:37 - 2016-03-29 02:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-12 21:37 - 2016-03-29 02:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-12 21:37 - 2016-03-29 02:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-12 21:37 - 2016-03-29 02:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-12 21:37 - 2016-03-29 02:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-12 21:37 - 2016-03-29 02:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-12 21:37 - 2016-03-29 02:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-12 21:37 - 2016-03-29 02:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-12 21:37 - 2016-03-29 02:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-12 21:37 - 2016-03-29 02:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-12 21:37 - 2016-03-29 02:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-12 21:37 - 2016-03-29 02:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-12 21:37 - 2016-03-29 02:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-12 21:37 - 2016-03-29 02:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-12 21:37 - 2016-03-29 02:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-12 21:37 - 2016-03-29 02:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-12 21:36 - 2016-04-12 21:36 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-12 21:36 - 2016-04-12 21:36 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-12 21:36 - 2016-04-02 01:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-12 21:36 - 2016-04-02 01:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-12 21:36 - 2016-04-02 01:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-12 21:36 - 2016-04-02 01:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-12 21:36 - 2016-04-02 00:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-12 21:36 - 2016-04-02 00:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-12 21:36 - 2016-04-02 00:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-12 21:36 - 2016-04-02 00:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-12 21:36 - 2016-03-29 07:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-12 21:36 - 2016-03-29 07:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-12 21:36 - 2016-03-29 07:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-12 21:36 - 2016-03-29 07:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-12 21:36 - 2016-03-29 07:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-12 21:36 - 2016-03-29 07:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-12 21:36 - 2016-03-29 07:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-12 21:36 - 2016-03-29 07:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-12 21:36 - 2016-03-29 07:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-12 21:36 - 2016-03-29 07:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-12 21:36 - 2016-03-29 06:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-12 21:36 - 2016-03-29 06:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-12 21:36 - 2016-03-29 06:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-12 21:36 - 2016-03-29 06:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-12 21:36 - 2016-03-29 06:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-12 21:36 - 2016-03-29 06:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-12 21:36 - 2016-03-29 06:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-12 21:36 - 2016-03-29 06:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-12 21:36 - 2016-03-29 06:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-12 21:36 - 2016-03-29 06:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-12 21:36 - 2016-03-29 06:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-12 21:36 - 2016-03-29 06:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-12 21:36 - 2016-03-29 05:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-12 21:36 - 2016-03-29 05:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-12 21:36 - 2016-03-29 05:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-12 21:36 - 2016-03-29 05:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-12 21:36 - 2016-03-29 05:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-12 21:36 - 2016-03-29 05:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-12 21:36 - 2016-03-29 05:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-12 21:36 - 2016-03-29 05:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-12 21:36 - 2016-03-29 05:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-12 21:36 - 2016-03-29 05:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-12 21:36 - 2016-03-29 05:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-12 21:36 - 2016-03-29 05:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-12 21:36 - 2016-03-29 05:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-12 21:36 - 2016-03-29 04:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-12 21:36 - 2016-03-29 04:51 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-12 21:36 - 2016-03-29 04:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-12 21:36 - 2016-03-29 04:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-12 21:36 - 2016-03-29 04:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-12 21:36 - 2016-03-29 04:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-12 21:36 - 2016-03-29 04:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-12 21:36 - 2016-03-29 04:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-12 21:36 - 2016-03-29 04:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-12 21:36 - 2016-03-29 04:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-12 21:36 - 2016-03-29 04:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-12 21:36 - 2016-03-29 04:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-12 21:36 - 2016-03-29 04:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-12 21:36 - 2016-03-29 04:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-12 21:36 - 2016-03-29 04:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-12 21:36 - 2016-03-29 04:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-12 21:36 - 2016-03-29 04:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-12 21:36 - 2016-03-29 04:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-12 21:36 - 2016-03-29 04:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-12 21:36 - 2016-03-29 04:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-12 21:36 - 2016-03-29 04:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-12 21:36 - 2016-03-29 04:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-12 21:36 - 2016-03-29 04:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-12 21:36 - 2016-03-29 04:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-12 21:36 - 2016-03-29 04:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-12 21:36 - 2016-03-29 04:14 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-12 21:36 - 2016-03-29 04:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-12 21:36 - 2016-03-29 04:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-12 21:36 - 2016-03-29 04:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-12 21:36 - 2016-03-29 04:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-12 21:36 - 2016-03-29 04:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-12 21:36 - 2016-03-29 04:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-12 21:36 - 2016-03-29 04:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-12 21:36 - 2016-03-29 04:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-12 21:36 - 2016-03-29 04:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-12 21:36 - 2016-03-29 04:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-12 21:36 - 2016-03-29 04:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-12 21:36 - 2016-03-29 04:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-12 21:36 - 2016-03-29 03:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-12 21:36 - 2016-03-29 03:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-12 21:36 - 2016-03-29 03:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-12 21:36 - 2016-03-29 03:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-12 21:36 - 2016-03-29 03:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-12 21:36 - 2016-03-29 03:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-12 21:36 - 2016-03-29 03:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-12 21:36 - 2016-03-29 03:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-12 21:36 - 2016-03-29 03:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-12 21:36 - 2016-03-29 03:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-12 21:36 - 2016-03-29 03:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-12 21:36 - 2016-03-29 03:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-12 21:36 - 2016-03-29 03:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-12 21:36 - 2016-03-29 03:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-12 21:36 - 2016-03-29 03:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-12 21:36 - 2016-03-29 03:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-12 21:36 - 2016-03-29 03:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-12 21:36 - 2016-03-29 03:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-12 21:36 - 2016-03-29 03:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-12 21:36 - 2016-03-29 03:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-12 21:36 - 2016-03-29 03:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-12 21:36 - 2016-03-29 03:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-12 21:36 - 2016-03-29 03:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-12 21:36 - 2016-03-29 03:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-12 21:36 - 2016-03-29 03:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-12 21:36 - 2016-03-29 03:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-12 21:36 - 2016-03-29 03:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-12 21:36 - 2016-03-29 03:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-12 21:36 - 2016-03-29 03:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-12 21:36 - 2016-03-29 03:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-12 21:36 - 2016-03-29 03:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-12 21:36 - 2016-03-29 02:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-12 21:36 - 2016-03-29 02:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-12 21:36 - 2016-03-29 02:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-12 21:36 - 2016-03-29 02:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-12 21:35 - 2016-04-02 00:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-12 21:35 - 2016-04-02 00:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-12 21:35 - 2016-04-02 00:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-12 21:35 - 2016-04-02 00:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-12 21:35 - 2016-04-02 00:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-12 21:35 - 2016-04-02 00:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-12 21:35 - 2016-04-02 00:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-12 21:35 - 2016-03-29 06:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-12 21:35 - 2016-03-29 05:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-12 21:35 - 2016-03-29 05:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-12 21:35 - 2016-03-29 05:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-12 21:35 - 2016-03-29 05:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-12 21:35 - 2016-03-29 05:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-12 21:35 - 2016-03-29 05:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-12 21:35 - 2016-03-29 05:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-12 21:35 - 2016-03-29 05:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-12 21:35 - 2016-03-29 05:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-12 21:35 - 2016-03-29 04:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-12 21:35 - 2016-03-29 04:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-12 21:35 - 2016-03-29 04:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-12 21:35 - 2016-03-29 04:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-12 21:35 - 2016-03-29 04:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-12 21:35 - 2016-03-29 04:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-12 21:35 - 2016-03-29 04:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-12 21:35 - 2016-03-29 04:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-12 21:35 - 2016-03-29 04:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-12 21:35 - 2016-03-29 04:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-12 21:35 - 2016-03-29 04:54 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-12 21:35 - 2016-03-29 04:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-12 21:35 - 2016-03-29 04:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-12 21:35 - 2016-03-29 04:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-12 21:35 - 2016-03-29 04:49 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-04-12 21:35 - 2016-03-29 04:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-12 21:35 - 2016-03-29 04:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-12 21:35 - 2016-03-29 04:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-12 21:35 - 2016-03-29 04:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-12 21:35 - 2016-03-29 04:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-12 21:35 - 2016-03-29 04:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-12 21:35 - 2016-03-29 04:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-12 21:35 - 2016-03-29 04:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-12 21:35 - 2016-03-29 04:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-12 21:35 - 2016-03-29 04:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-12 21:35 - 2016-03-29 04:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-12 21:35 - 2016-03-29 04:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-12 21:35 - 2016-03-29 04:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 21:35 - 2016-03-29 04:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-12 21:35 - 2016-03-29 04:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-12 21:35 - 2016-03-29 04:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-12 21:35 - 2016-03-29 04:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-12 21:35 - 2016-03-29 04:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-12 21:35 - 2016-03-29 04:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-12 21:35 - 2016-03-29 04:14 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-04-12 21:35 - 2016-03-29 04:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-12 21:35 - 2016-03-29 04:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-12 21:35 - 2016-03-29 04:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-12 21:35 - 2016-03-29 04:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-12 21:35 - 2016-03-29 04:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-12 21:35 - 2016-03-29 04:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-12 21:35 - 2016-03-29 04:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-12 21:35 - 2016-03-29 04:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-12 21:35 - 2016-03-29 04:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-12 21:35 - 2016-03-29 04:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-12 21:35 - 2016-03-29 04:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-12 21:35 - 2016-03-29 03:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-12 21:35 - 2016-03-29 03:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-12 21:35 - 2016-03-29 03:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-12 21:35 - 2016-03-29 03:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-12 21:35 - 2016-03-29 03:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-12 21:35 - 2016-03-29 03:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-12 21:35 - 2016-03-29 03:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 21:35 - 2016-03-29 03:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-12 21:35 - 2016-03-29 03:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-12 21:35 - 2016-03-29 03:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-12 21:35 - 2016-03-29 03:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-12 21:35 - 2016-03-29 03:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-12 21:35 - 2016-03-29 03:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-12 21:35 - 2016-03-29 03:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-12 21:35 - 2016-03-29 02:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-12 21:35 - 2016-03-29 02:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-12 21:35 - 2016-03-29 02:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-12 21:35 - 2016-03-29 02:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-12 21:35 - 2016-03-29 02:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-12 21:35 - 2016-03-29 02:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-12 21:06 - 2016-04-12 21:06 - 00002597 _____ C:\Users\dadhy\Downloads\ActiveEnrollments.pdf
2016-04-12 20:50 - 2016-04-28 10:07 - 00000000 ____D C:\Users\dadhy\Desktop\Modelagem de dados Escola Virtual Bradesco
2016-04-12 08:48 - 2016-04-12 08:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-04-10 22:56 - 2016-04-10 22:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-04-10 19:10 - 2016-04-10 19:10 - 07929237 _____ C:\Users\dadhy\Documents\cms-files-12835-1459436113Glossario_Alcides+Maya_.pdf
2016-04-08 13:08 - 2016-04-22 04:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-08 13:04 - 2016-04-12 21:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-08 13:04 - 2016-04-12 21:39 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-08 13:02 - 2016-04-08 13:02 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-08 08:57 - 2016-04-17 23:56 - 00000000 ____D C:\Program Files (x86)\Google
2016-04-08 08:57 - 2016-04-08 14:10 - 00000000 ____D C:\Users\dadhy\AppData\Local\Google
2016-04-08 08:56 - 2016-04-18 00:24 - 00000000 ____D C:\Users\dadhy\AppData\Local\MicrosoftEdge
2016-04-08 08:36 - 2016-04-26 13:03 - 00002373 _____ C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-08 08:36 - 2016-04-08 08:36 - 00001333 _____ C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gerenciador de áudio HD.lnk
2016-04-08 08:36 - 2016-04-08 08:36 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-04-08 08:35 - 2016-04-08 08:35 - 00000000 ____D C:\Users\dadhy\AppData\Local\Comms
2016-04-08 08:35 - 2016-04-08 08:35 - 00000000 ____D C:\Users\dadhy\AppData\Local\ActiveSync
2016-04-08 08:34 - 2016-04-08 08:34 - 00000000 ____D C:\Users\dadhy\AppData\Local\Publishers
2016-04-08 08:33 - 2016-04-29 23:01 - 00000000 ____D C:\Users\dadhy\AppData\Local\VirtualStore
2016-04-08 08:33 - 2016-04-26 13:04 - 00000000 ____D C:\Users\dadhy\AppData\Local\Packages
2016-04-08 08:33 - 2016-04-08 08:33 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-04-08 08:33 - 2016-04-08 08:33 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Adobe
2016-04-08 08:33 - 2016-04-08 08:33 - 00000000 ____D C:\Users\dadhy\AppData\Local\TileDataLayer
2016-04-08 08:32 - 2016-04-08 08:32 - 00000020 ___SH C:\Users\dadhy\ntuser.ini
2016-04-08 02:00 - 2016-04-29 23:45 - 01819274 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Modelos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-04-08 01:54 - 2016-04-23 23:36 - 00000000 ____D C:\Users\dadhy
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Modelos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Meus Documentos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Menu Iniciar
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Minhas Músicas
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Minhas Imagens
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Meus Vídeos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Dados de Aplicativos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Configurações Locais
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Local\Histórico
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Local\Dados de Aplicativos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Ambiente de Rede
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Ambiente de Impressão
2016-04-08 01:47 - 2016-04-08 01:47 - 00000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
2016-04-08 01:47 - 2016-04-08 01:47 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\Program Files\Realtek
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\Program Files\Intel
2016-04-08 01:46 - 2015-10-07 11:29 - 00072696 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-04-08 01:46 - 2015-10-07 11:29 - 00069112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-04-08 01:45 - 2016-04-08 01:45 - 00000000 ____D C:\Users\Todos os Usuários\USOShared
2016-04-08 01:45 - 2015-10-30 04:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-04-08 01:43 - 2016-04-29 23:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-08 01:42 - 2016-04-29 23:36 - 00353288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-08 01:42 - 2016-04-08 01:42 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-04-08 01:40 - 2016-04-11 15:52 - 00000000 ____D C:\Windows.old
2016-04-08 01:40 - 2016-04-08 01:57 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-08 01:40 - 2016-04-08 01:40 - 00000000 ____D C:\WINDOWS\InfusedApps
2016-04-08 01:39 - 2016-04-08 01:39 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-04-08 01:38 - 2016-04-08 01:38 - 00000000 ____D C:\Program Files\Elantech
2016-04-08 01:37 - 2016-04-08 01:37 - 00000000 ____D C:\WINDOWS\Setup
2016-04-08 01:33 - 2016-04-28 12:50 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\OCR
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files\MSBuild
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-04-08 01:32 - 2016-04-29 23:45 - 00785460 _____ C:\WINDOWS\system32\prfh0416.dat
2016-04-08 01:32 - 2016-04-29 23:45 - 00154246 _____ C:\WINDOWS\system32\prfc0416.dat
2016-04-08 01:32 - 2016-04-08 01:31 - 00328354 _____ C:\WINDOWS\system32\prfi0416.dat
2016-04-08 01:32 - 2016-04-08 01:31 - 00040752 _____ C:\WINDOWS\system32\prfd0416.dat
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\0409
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-04-08 01:27 - 2016-04-06 15:32 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-08 01:27 - 2016-04-06 15:32 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-08 01:24 - 2016-04-29 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-04-08 01:24 - 2016-04-29 09:21 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-08 01:24 - 2016-04-29 09:21 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-08 01:24 - 2016-04-29 00:46 - 00000167 _____ C:\WINDOWS\win.ini
2016-04-08 01:24 - 2016-04-28 12:52 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-08 01:24 - 2016-04-28 12:50 - 00000000 ____D C:\WINDOWS\ShellNew
2016-04-08 01:24 - 2016-04-28 12:49 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-08 01:24 - 2016-04-21 20:22 - 00000000 ____D C:\WINDOWS\rescache
2016-04-08 01:24 - 2016-04-18 00:32 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-04-08 01:24 - 2016-04-17 23:52 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-04-08 01:24 - 2016-04-17 23:52 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-04-08 01:24 - 2016-04-17 23:43 - 00000000 ____D C:\Program Files\Common Files\System
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-08 01:24 - 2016-04-08 13:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 __RSD C:\WINDOWS\Media
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-04-08 01:24 - 2016-04-08 08:50 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-04-08 01:24 - 2016-04-08 08:35 - 00000000 ____D C:\WINDOWS\appcompat
2016-04-08 01:24 - 2016-04-08 08:34 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-04-08 01:24 - 2016-04-08 08:33 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-04-08 01:24 - 2016-04-08 01:56 - 00000000 ____D C:\Program Files\Windows NT
2016-04-08 01:24 - 2016-04-08 01:55 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-08 01:24 - 2016-04-08 01:55 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-04-08 01:24 - 2016-04-08 01:51 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-04-08 01:24 - 2016-04-08 01:50 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-08 01:24 - 2016-04-08 01:45 - 00000000 ____D C:\Users\Todos os Usuários\USOPrivate
2016-04-08 01:24 - 2016-04-08 01:40 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ____D C:\WINDOWS\Provisioning
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SystemApps
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\setup
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\Com
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\IME
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\Help
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files\Windows Defender
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\system32\Nui
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Web
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Vss
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\tracing
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\TAPI
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SystemResources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\winevt
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ras
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\icsxml
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ias
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\downlevel
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\System
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SKB
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\security
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\schemas
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SchCache
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Resources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Registration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\PLA
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Performance
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\L2Schemas
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Globalization
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Cursors
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Branding
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\addins
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Users\Todos os Usuários\Comms
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Program Files\Common Files\Services
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-04-08 01:24 - 2016-04-08 01:21 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2016-04-08 01:24 - 2016-04-08 01:21 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2016-04-08 01:24 - 2016-04-08 01:21 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2016-04-08 01:24 - 2016-04-08 01:21 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2016-04-08 01:24 - 2016-04-08 01:21 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2016-04-08 01:24 - 2016-04-08 01:20 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2016-04-08 01:24 - 2016-04-08 01:20 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2016-04-08 01:24 - 2016-04-08 01:20 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2016-04-08 01:24 - 2016-04-08 01:20 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-04-08 01:24 - 2016-04-08 01:20 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2016-04-08 01:24 - 2016-04-08 01:20 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2016-04-08 01:24 - 2016-04-08 01:20 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2016-04-08 01:24 - 2016-04-08 01:20 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2016-04-08 01:24 - 2016-04-08 01:20 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2016-04-08 01:24 - 2016-04-08 01:20 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2016-04-08 01:24 - 2016-04-08 01:20 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2016-04-08 01:24 - 2016-04-08 01:20 - 00000389 _____ C:\WINDOWS\system32\AutoWorkplace.exe.config
2016-04-08 01:24 - 2016-04-08 01:20 - 00000219 _____ C:\WINDOWS\system.ini
2016-04-08 01:22 - 2016-04-29 23:45 - 00000000 ____D C:\WINDOWS\INF
2016-04-08 01:13 - 2016-04-15 03:33 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-08 01:00 - 2016-04-28 15:24 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-08 01:00 - 2016-04-08 01:45 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-08 01:00 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\servicing
2016-04-08 01:00 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\SMI
2016-04-08 01:00 - 2015-10-30 03:33 - 00000164 _____ C:\WINDOWS\system32\config\FP
2016-04-07 16:45 - 2016-04-29 22:52 - 00000000 ____D C:\extensions
2016-04-07 16:45 - 2016-04-07 16:45 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-04-04 13:03 - 2016-04-04 13:03 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\Temp
2016-04-04 12:57 - 2016-04-28 12:45 - 00000000 ____D C:\Users\dadhy\Desktop\Meus arquivos
2016-04-03 21:31 - 2016-04-03 21:31 - 00000000 ___RD C:\Users\dadhy\3D Objects
2016-04-03 20:42 - 2016-04-03 20:43 - 00987728 _____ (Google Inc.) C:\Users\dadhy\Downloads\ChromeSetup.exe
2016-04-03 11:39 - 2016-04-26 13:03 - 00000000 ___RD C:\Users\dadhy\OneDrive
2016-04-03 11:36 - 2016-04-08 13:23 - 00000000 __SHD C:\Users\dadhy\IntelGraphicsProfiles
2016-04-03 11:36 - 2016-04-08 13:23 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Músicas
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Imagens
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Meus Vídeos
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Documents and Settings
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Arquivos de Programas
2016-04-03 08:45 - 2016-04-08 13:47 - 00000000 ____D C:\Intel
2016-04-03 04:40 - 2016-04-03 04:40 - 00000000 _____ C:\Recovery.txt
2016-04-03 00:41 - 2016-04-08 08:45 - 00000000 ___HD C:\$SysReset
2016-04-01 22:08 - 2016-04-01 22:08 - 22564328 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 21124344 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 14252544 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 12586496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 08705672 ____N (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 07533568 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06972416 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06952088 ____N (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06740992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06607080 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 05321728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 05242496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04894208 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04827136 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04412928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03671888 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03666432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03449168 ____N (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02919320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02912256 ____N (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02773096 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02604032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02581504 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02544264 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02295808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02186864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02180136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02061312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01997328 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01997152 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 01996288 ____N (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01847808 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 01818696 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01707520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01613664 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01557768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01542816 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01497088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 01490432 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01322248 ____N (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01318912 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01224704 ____N (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01173344 ____N (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01152328 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01139712 ____N (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01131520 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01118208 ____N (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01105920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01062480 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01017032 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00997376 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00990720 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00982016 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00980352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00957608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00949248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00938496 ____N (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00915456 ____N (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00895080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00890368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00882720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00870912 ____N (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00870400 ____N (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00848168 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00847360 ____N (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00838144 ____N (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00828928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00819648 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00808800 ____N (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00794888 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00791744 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00790528 ____N (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00779384 ____N (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00769536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00755712 ____N (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00754176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00726528 ____N (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713568 ____N (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00709688 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00703840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00700416 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00685568 ____N (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00673792 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00670928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00652392 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00649216 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00640472 ____N (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00625000 ____N (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00613376 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00606720 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00591872 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00585216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00576864 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00572272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00567808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00563552 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00558080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00552960 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00540160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00538736 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00536256 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00534368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-04-01 22:08 - 2016-04-01 22:08 - 00526336 ____N (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00523752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00517632 ____N (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-04-01 22:08 - 2016-04-01 22:08 - 00513888 ____N (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00503296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00498448 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00493568 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00489984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00480256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00476728 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00463360 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00456704 ____N (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00451584 ____N (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00450912 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00450560 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00436736 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00430944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00420928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00412672 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00401408 ____N (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00400896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-04-01 22:08 - 2016-04-01 22:08 - 00394752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00394080 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00389992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00382464 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00379392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00376536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00372224 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00369664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00360448 ____N (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00342528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00320000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00318976 ____N (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00315904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00307712 ____N (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00305664 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00297472 ____N (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00288768 ____N (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00287712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00285696 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00275456 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00274944 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00274944 ____N (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00266752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00258560 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00258280 ____N (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00252928 ____N (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00243712 ____N (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00237056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00228352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00228352 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00224256 ____N (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00223744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00220064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00216576 ____N (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00216416 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00214528 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00200704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00200704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00196608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00196608 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00195072 ____N (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00189952 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00187744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00178176 ____N (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00169984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00168448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00164864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00163840 ____N (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00163328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00161280 ____N (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00159232 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00157184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00147808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00146432 ____N (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00146272 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00141664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00141560 ____N (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00135168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00129536 ____N (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00129024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00127840 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-04-01 22:08 - 2016-04-01 22:08 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00115712 ____N (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00114688 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00111616 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00104960 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00099328 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00098304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00091648 ____N (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00089088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00088576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00087040 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00086016 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00078848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00077824 ____N (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00074240 ____N (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00070656 ____N (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00069632 ____N (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00068096 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00067584 ____N (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00048128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00045568 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00045056 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00041984 ____N (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00031744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00031232 ____N (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00027648 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00023552 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00020480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00778936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00103120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00035480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-04-01 21:57 - 2015-10-23 17:46 - 01166520 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:46 - 00035480 ____N (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-01 21:57 - 2015-10-23 17:45 - 00124624 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
==================== Arquivos na raiz de alguns diretórios =======
2016-04-28 16:17 - 2016-04-29 00:30 - 0001291 _____ () C:\Users\dadhy\AppData\Roaming\Bubble Dock.boostrap.log
2016-04-28 16:19 - 2016-04-28 16:22 - 0005711 _____ () C:\Users\dadhy\AppData\Roaming\Bubble Dock.installation.log
2016-04-29 23:01 - 2016-04-29 23:01 - 0005120 _____ () C:\Users\dadhy\AppData\Roaming\GiftBag.db
2016-04-29 00:29 - 2016-04-29 00:29 - 0000078 _____ () C:\Users\dadhy\AppData\Roaming\Selection Tools.installation.log
2016-04-29 22:52 - 2016-04-27 09:46 - 1755136 _____ () C:\Users\dadhy\AppData\Roaming\service.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 2783744 _____ (TODO: ) C:\Users\dadhy\AppData\Roaming\svrupg.exe
2016-04-28 16:17 - 2016-04-28 16:17 - 0000097 _____ () C:\Users\dadhy\AppData\Roaming\WindApp.boostrap.log
2016-04-28 16:27 - 2016-04-28 16:27 - 0000078 _____ () C:\Users\dadhy\AppData\Roaming\WindApp.installation.log
2016-04-26 09:24 - 2016-04-26 09:24 - 0000009 _____ () C:\ProgramData\a.bat
2010-08-28 17:43 - 2010-08-28 17:43 - 0577335 _____ () C:\ProgramData\adb.exe
2010-08-28 17:43 - 2010-08-28 17:43 - 0096256 _____ (Google, inc) C:\ProgramData\AdbWinApi.dll
2010-08-28 17:43 - 2010-08-28 17:43 - 0060928 _____ (Google, inc) C:\ProgramData\AdbWinUsbApi.dll
2016-04-29 22:55 - 2016-04-26 12:07 - 1253376 _____ (eee) C:\ProgramData\apptj.exe
2016-04-29 22:54 - 2016-04-21 12:18 - 1266688 _____ () C:\ProgramData\conhost514934.exe
2016-04-08 01:47 - 2016-04-08 01:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2010-08-28 17:43 - 2010-08-28 17:43 - 0356009 _____ () C:\ProgramData\fastboot.exe
2016-04-29 22:54 - 2016-04-25 11:46 - 0114176 _____ () C:\ProgramData\hp.exe
2016-04-29 22:54 - 2016-04-26 09:16 - 1916928 _____ () C:\ProgramData\msiql.exe
2016-04-29 22:52 - 2016-04-27 09:46 - 1755136 _____ () C:\ProgramData\service.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 0002303 _____ () C:\ProgramData\webad.xml
2016-04-29 22:55 - 2016-04-29 22:55 - 0413439 _____ () C:\ProgramData\xdo.zip
Arquivos para serem movidos ou deletados:
====================
C:\Users\dadhy\AppData\Local\Temp\CJNVNJ6YK\CJNVNJ6YK.exe
C:\Users\Todos os Usuários\a.bat
C:\Users\Todos os Usuários\adb.exe
C:\Users\Todos os Usuários\AdbWinApi.dll
C:\Users\Todos os Usuários\AdbWinUsbApi.dll
C:\Users\Todos os Usuários\apptj.exe
C:\Users\Todos os Usuários\conhost514934.exe
C:\Users\Todos os Usuários\fastboot.exe
C:\Users\Todos os Usuários\hp.exe
C:\Users\Todos os Usuários\msiql.exe
C:\Users\Todos os Usuários\service.exe
Alguns arquivos em TEMP:
====================
C:\Users\dadhy\AppData\Local\Temp\fsd29BE.exe
C:\Users\dadhy\AppData\Local\Temp\fsd4D99.exe
C:\Users\dadhy\AppData\Local\Temp\fsd971A.exe
C:\Users\dadhy\AppData\Local\Temp\fsdB112.exe
C:\Users\dadhy\AppData\Local\Temp\fsdB67E.exe
C:\Users\dadhy\AppData\Local\Temp\fsdEF49.exe
C:\Users\dadhy\AppData\Local\Temp\PidGenX.dll
C:\Users\dadhy\AppData\Local\Temp\qqpcmgr_v11.4.17339.217_45391_Silence.exe
C:\Users\dadhy\AppData\Local\Temp\ZEDYFUPWDY.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll
[2016-04-12 21:36] - [2016-04-12 21:36] - 0686976 ____A (Microsoft Corporation) 74CF3C31A00901ED181ECCD08F5C9988
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-04-12 21:36] - [2016-04-12 21:36] - 0535080 ____A (Microsoft Corporation) 7FD176B835B2A339764A2E4667105F47
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-04-21 19:18
==================== Fim de FRST.txt ============================
Executado por Darlene (administrador) em DESKTOP-ATVE37D (30-04-2016 00:19:18)
Executando a partir de C:\Users\dadhy\Desktop
Perfis Carregados: Darlene (Perfis Disponíveis: Darlene)
Platform: Windows 10 Home Single Language Versão 1511 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCRTP.exe
(Intel Corporation) C:\Windows\syswow64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Users\dadhy\AppData\Roaming\Rokgufga\Rokgufga.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
() C:\Program Files\Uweergigamed\Nokwujf.exe
() C:\Program Files\Uweergigamed\EcynCufemh.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe
() C:\Users\dadhy\AppData\Roaming\Rokgufga\Raslunge.exe
() C:\Program Files\Uweergigamed\Uciev.exe
() C:\Program Files\Uweergigamed\Uciev64.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\calendar.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\Users\dadhy\AppData\Roaming\cpuminer\cpm.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Microsoft Corporation) C:\Windows\syswow64\rundll32.exe
(Tencent) C:\Program Files (x86)\Common Files\Tencent\QQDownload\130\Tencentdl.exe
(Microsoft Corporation) C:\Windows\syswow64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpUXSrv.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tencent) C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMDL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
HKLM\...\Run: [cpuminer] => C:\Users\dadhy\AppData\Roaming\cpuminer\cpm.exe [1417216 2016-03-31] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [aim] => C:\Users\dadhy\AppData\Local\Temp\16497\aim <===== ATENÇÃO
HKLM-x32\...\Run: [ QQPCTray] => C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCTray.exe [356464 2016-04-29] (Tencent)
HKLM\...\RunOnce: [OTUTPRODUCT_E3JVS] => C:\Program Files (x86)\mobilepcstarterkit\otutnetwork.exe [611328 2016-04-28] (iKOLD)
HKLM\...\RunOnce: [OTUTPRODUCT_V9TEO] => C:\Program Files (x86)\mybestofferstoday\otutnetwork.exe [611328 2016-04-28] (iKOLD)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [WindApp] => "C:\Users\dadhy\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [Selection Tools] => "C:\Users\dadhy\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [Installer] => C:\Users\dadhy\AppData\Local\Temp\CJNVNJ6YK\CJNVNJ6YK.exe [1965568 2016-04-29] (TZ) <===== ATENÇÃO
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [msiql] => C:\ProgramData\msiql.exe [1916928 2016-04-26] ()
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMGCShellExt64.dll [2016-04-29] (Tencent)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 201.21.192.111 201.21.192.116
Tcpip\..\Interfaces\{0caf1adb-9207-4e02-b090-f440699bed00}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{2fb89910-fd44-11e5-9810-806e6f6e6963}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{629d31db-aa96-42ff-881d-593037683cea}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{68ca0148-0ac7-45a1-a014-f6877da43699}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{8ecd5b73-cbef-42e4-b789-b7f788907406}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{aa74706d-d195-4182-a818-301d552d956b}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{aa74706d-d195-4182-a818-301d552d956b}: [DhcpNameServer] 201.21.192.111 201.21.192.116
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=92552456_hao_pg
HKU\S-1-5-21-650882461-1424332723-2798721165-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=92552456_hao_pg
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKU\S-1-5-21-650882461-1424332723-2798721165-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
SearchScopes: HKU\S-1-5-21-650882461-1424332723-2798721165-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.globasearch.com/?serie=211&installkey=jgZKN2Oeq8V5nDAd1752&b=3&q={searchTerms}
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSWebMon64.dat [2016-04-29] (Tencent)
BHO: Uweergigamed -> {933D6B13-78B2-4519-8DA5-8CC5F44880D4} -> C:\Program Files\Uweergigamed\Canba64.dll => Nenhum Arquivo
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Uweergigamed -> {933D6B13-78B2-4519-8DA5-8CC5F44880D4} -> C:\Program Files\Uweergigamed\Canba.dll => Nenhum Arquivo
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @qq.com/QQPCMgr -> C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\npQMExtensionsMozilla.dll [2016-04-29] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-17] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxps://www.google.com.br/"
CHR Profile: C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-28]
CHR Extension: (Google Docs) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-28]
CHR Extension: (Google Drive) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-28]
CHR Extension: (YouTube) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28]
CHR Extension: (Planilhas do Google) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-28]
CHR Extension: (Documentos Google off-line) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR Extension: (Gmail) - C:\Users\dadhy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-28]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 BugreportW; C:\Program Files (x86)\yesbnd\prosotain.exe [963736 2016-04-29] ()
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [593120 2015-09-22] (GAS Tecnologia)
S2 GoogleChromeUpService; C:\ProgramData\service.exe [1755136 2016-04-27] () [Arquivo não assinado]
S2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\svrupg.exe [2783744 2016-04-29] (TODO: ) [Arquivo não assinado]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-10-07] (Intel Corporation)
R2 Joodb; C:\Users\dadhy\AppData\Roaming\Rokgufga\Rokgufga.exe [174968 2016-04-29] ()
R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-04-28] (DotC United Inc)
S2 Nmclogservice; C:\Program Files (x86)\Nimeckreelule\Nmclogservice.exe [299504 2016-04-29] ()
S2 ProntSpooler; C:\Users\dadhy\AppData\Local\Apps\2.0\abril.exe [124928 2016-04-07] () [Arquivo não assinado]
R2 QQPCRTP; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCRTP.exe [301656 2016-04-29] (Tencent)
U2 QQRepair1c18; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepair1c18 [140608 2016-04-29] ()
S2 QQRepairFixSVC; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepairFixSVC [140608 2016-04-29] ()
R2 TheCalendarService; C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe [141960 2015-12-25] ()
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 2B19F262-724B-4C41-8531-E22656DFE5FB; "C:\Program Files\Uweergigamed\Fukva.exe" [X]
R2 EcynCufemh; "C:\Program Files\Uweergigamed\EcynCufemh.exe" [X]
S2 Jitgui; "C:\Users\dadhy\AppData\Roaming\CucqGups\Ogoxsul.exe" -cms [X]
S2 rijufoze; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\hnseBEC4.tmp [X]
S2 rocufyky; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\jnsl9C27.tmp [X]
R2 Uweergigamed Updater; C:\Program Files\Uweergigamed\Nokwujf.exe [X]
S2 wikikobuzbt; C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8\knsw4334.tmp [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 bsdpf64; C:\WINDOWS\system32\Drivers\bsdpf64.sys [27456 2016-04-29] ()
R1 bsdpr64; C:\WINDOWS\system32\Drivers\bsdpr64.sys [26944 2016-04-29] ()
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [65344 2016-04-29] (Windows (R) Win 7 DDK provider)
R3 ETDI2C; C:\Windows\System32\drivers\ETDI2C.sys [173384 2014-04-07] (ELAN Microelectronic Corp.)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-12-08] (GAS Tecnologia)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-10] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-10] (Intel Corporation)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-04-28] (DotC United Inc)
R1 QMUdisk; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QMUdisk64.sys [184952 2016-04-18] (Tencent)
R2 QQSysMonX64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQSysMonX64.sys [138488 2016-04-29] (电脑管家)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R1 softaal; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\softaal64.sys [35064 2016-04-29] (Tencent)
R1 SRepairDrv; \??\C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\SRepairDrv [172664 2016-04-29] ()
R3 TAOAccelerator; C:\WINDOWS\system32\Drivers\TAOAccelerator64.sys [89880 2016-04-29] (Tencent)
R2 TAOKernelDriver; C:\WINDOWS\system32\Drivers\TAOKernelEx64.sys [132344 2016-04-29] (Tencent Technology(Shenzhen) Company Limited)
R3 TcHardWare; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\QQPCHW-x64.sys [16552 2016-04-29] (Tencent)
R3 TFsFlt; C:\Windows\System32\Drivers\TFsFltX64.sys [87800 2016-04-29] (电脑管家)
R3 TS888x64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TS888x64.sys [38520 2016-04-29] (Tencent)
S1 TSDefenseBt; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSDefenseBT64.sys [28984 2016-04-29] (Tencent)
R2 tsnethlpx64; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TsNetHlpX64.sys [48376 2016-04-29] ()
R1 TSSysKit; C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\TSSysKit64.sys [87288 2016-04-29] (电脑管家)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-12-08] (GAS Tecnologia LTDA)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-04-29] (GAS Tecnologia)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-30 00:19 - 2016-04-30 00:20 - 00017003 _____ C:\Users\dadhy\Desktop\FRST.txt
2016-04-30 00:19 - 2016-04-30 00:19 - 00000000 ____D C:\FRST
2016-04-30 00:17 - 2016-04-30 00:18 - 02376704 _____ (Farbar) C:\Users\dadhy\Desktop\FRST64.exe
2016-04-29 23:36 - 2016-04-29 23:39 - 00284940 _____ C:\WINDOWS\Minidump\042916-31375-01.dmp
2016-04-29 23:34 - 2016-04-29 23:34 - 00000000 ____D C:\WINDOWS\system32\bedo
2016-04-29 23:23 - 2016-04-29 23:23 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\MCorp
2016-04-29 23:19 - 2016-04-29 23:38 - 00038520 _____ (Tencent) C:\WINDOWS\SysWOW64\Drivers\TS888x64.sys
2016-04-29 23:04 - 2016-04-29 23:04 - 00000000 ____D C:\Users\dadhy\AppData\Local\ElevatedDiagnostics
2016-04-29 23:02 - 2016-04-29 23:02 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-04-29 23:01 - 2016-04-29 23:01 - 00005120 _____ C:\Users\dadhy\AppData\Roaming\GiftBag.db
2016-04-29 23:01 - 2016-04-29 23:01 - 00004142 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EEDBB101-EDEB-41A9-B41A-B80C9CFA039E}
2016-04-29 23:01 - 2016-04-29 23:01 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\TENCENT
2016-04-29 23:01 - 2016-04-29 23:01 - 00000000 ____D C:\Program Files\Common Files\Tencent
2016-04-29 23:01 - 2016-04-29 22:59 - 00132344 _____ (Tencent Technology(Shenzhen) Company Limited) C:\WINDOWS\system32\Drivers\TAOKernelEx64.sys
2016-04-29 23:01 - 2016-04-29 22:59 - 00089880 _____ (Tencent) C:\WINDOWS\system32\Drivers\TAOAccelerator64.sys
2016-04-29 23:00 - 2016-04-29 23:38 - 00000000 ____D C:\Users\Todos os Usuários\TXQMPC
2016-04-29 22:59 - 2016-04-29 22:59 - 00087800 _____ (电脑管家) C:\WINDOWS\system32\Drivers\TFsFltX64.sys
2016-04-29 22:59 - 2016-04-29 22:59 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-04-29 22:56 - 2016-04-29 23:57 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Tencent
2016-04-29 22:56 - 2016-04-29 23:18 - 00000000 ____D C:\Users\Todos os Usuários\Tencent
2016-04-29 22:56 - 2016-04-29 22:56 - 00000000 ____D C:\Program Files (x86)\Tencent
2016-04-29 22:55 - 2016-04-29 22:55 - 00413439 _____ C:\Users\Todos os Usuários\xdo.zip
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Todos os Usuários\Thunder Network
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Users\Public\Thunder Network
2016-04-29 22:55 - 2016-04-29 22:55 - 00000000 ____D C:\Program Files (x86)\osTip
2016-04-29 22:55 - 2016-04-26 12:07 - 01253376 _____ (eee) C:\Users\Todos os Usuários\apptj.exe
2016-04-29 22:54 - 2016-04-29 23:02 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\CalendarTool
2016-04-29 22:54 - 2016-04-29 22:54 - 02783744 _____ (TODO: ) C:\Users\dadhy\AppData\Roaming\svrupg.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 00002303 _____ C:\Users\Todos os Usuários\webad.xml
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Users\Todos os Usuários\Windows Update
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-04-29 22:54 - 2016-04-29 22:54 - 00000000 ____D C:\Program Files (x86)\CalendarTool
2016-04-29 22:54 - 2016-04-26 09:16 - 01916928 _____ C:\Users\Todos os Usuários\msiql.exe
2016-04-29 22:54 - 2016-04-25 11:46 - 00114176 _____ C:\Users\Todos os Usuários\hp.exe
2016-04-29 22:54 - 2016-04-21 12:18 - 01266688 _____ C:\Users\Todos os Usuários\conhost514934.exe
2016-04-29 22:53 - 2016-04-29 22:53 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-04-29 22:52 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\yesbnd
2016-04-29 22:52 - 2016-04-29 23:17 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Rokgufga
2016-04-29 22:52 - 2016-04-29 22:53 - 00000000 ____D C:\Program Files\Uweergigamed
2016-04-29 22:52 - 2016-04-29 22:52 - 00027456 _____ C:\WINDOWS\system32\Drivers\bsdpf64.sys
2016-04-29 22:52 - 2016-04-29 22:52 - 00026944 _____ C:\WINDOWS\system32\Drivers\bsdpr64.sys
2016-04-29 22:52 - 2016-04-29 22:52 - 00008972 _____ C:\WINDOWS\System32\Tasks\Nimeckreelule Log
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\Company
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Users\dadhy\AppData\Local\Tempfolder
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\uninst
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files\UweergigamedUn
2016-04-29 22:52 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files (x86)\Nimeckreelule
2016-04-29 22:52 - 2016-04-27 09:46 - 01755136 _____ C:\Users\Todos os Usuários\service.exe
2016-04-29 22:52 - 2016-04-27 09:46 - 01755136 _____ C:\Users\dadhy\AppData\Roaming\service.exe
2016-04-29 22:51 - 2016-04-29 22:52 - 00003068 _____ C:\WINDOWS\System32\Tasks\svchost
2016-04-29 22:51 - 2016-04-29 22:52 - 00000000 ____D C:\Program Files (x86)\Hostify
2016-04-29 22:51 - 2016-04-29 22:51 - 00003660 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2016-04-29 19:56 - 2016-04-29 22:52 - 00065344 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\cherimoya.sys
2016-04-29 00:30 - 2016-04-29 23:08 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\WTools
2016-04-28 16:51 - 2016-04-29 00:49 - 00000000 ____D C:\Users\dadhy\AppData\Local\Apps\2.0
2016-04-28 16:27 - 2016-04-29 23:07 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Store
2016-04-28 16:23 - 2016-04-28 16:40 - 00000000 ____D C:\Program Files (x86)\mybestofferstoday
2016-04-28 16:23 - 2016-04-28 16:24 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\gplyra
2016-04-28 16:23 - 2016-04-28 16:24 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\cpuminer
2016-04-28 16:22 - 2016-04-29 23:08 - 00000000 ____D C:\Program Files (x86)\mobilepcstarterkit
2016-04-28 16:21 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\CleanBrowser
2016-04-28 16:19 - 2016-04-28 16:19 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Nosibay
2016-04-28 16:18 - 2016-04-28 16:15 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-04-28 16:17 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\9D8912A0-1461871035-E511-B0D2-1C39470BA6E8
2016-04-28 16:14 - 2016-04-29 23:18 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2016-04-28 16:14 - 2016-04-28 16:14 - 00060136 _____ (DotC United Inc) C:\WINDOWS\system32\Drivers\MPCKpt.sys
2016-04-28 16:12 - 2016-04-28 16:28 - 00000000 ____D C:\FFOutput
2016-04-28 16:12 - 2016-04-28 16:12 - 00000000 _____ C:\WINDOWS\SysWOW64\track
2016-04-28 16:09 - 2016-04-28 16:09 - 00001140 _____ C:\Users\dadhy\Desktop\Format Factory.lnk
2016-04-28 16:09 - 2016-04-28 16:09 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2016-04-28 16:08 - 2016-04-28 16:09 - 00000000 ____D C:\Program Files (x86)\FormatFactory
2016-04-28 13:29 - 2016-04-28 15:21 - 00003446 _____ C:\WINDOWS\System32\Tasks\Format Factory
2016-04-28 13:28 - 2016-04-28 13:28 - 04506061 _____ (Free Time Inc ) C:\Users\dadhy\Downloads\FormatFactory-3.8.0.2.exe
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\IsolatedStorage
2016-04-28 13:26 - 2016-04-28 13:26 - 00000000 ____D C:\Users\dadhy\AppData\Local\FileViewPro
2016-04-28 13:25 - 2016-04-28 13:25 - 00000000 ____D C:\Spacekace
2016-04-28 13:23 - 2016-04-28 13:25 - 02173104 _____ C:\Users\dadhy\Downloads\Setup_FileViewPro_2016.exe
2016-04-28 12:50 - 2016-04-28 15:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-04-28 12:50 - 2016-04-28 12:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-04-28 12:49 - 2016-04-28 12:49 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-04-28 12:48 - 2016-04-28 12:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-04-28 12:47 - 2016-04-29 00:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-04-28 12:47 - 2016-04-28 12:47 - 00000000 __RHD C:\MSOCache
2016-04-28 12:45 - 2016-04-28 12:45 - 00000000 ____D C:\Users\dadhy\Desktop\MS Office
2016-04-28 12:44 - 2016-04-28 12:44 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\WinRAR
2016-04-28 12:42 - 2016-04-28 12:42 - 00001048 _____ C:\Users\Public\Desktop\WinRAR.lnk
2016-04-28 12:42 - 2016-04-28 12:42 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-28 12:42 - 2016-04-28 12:42 - 00000000 ____D C:\Program Files\WinRAR
2016-04-26 13:04 - 2016-04-26 13:04 - 00226321 _____ C:\Users\dadhy\Downloads\Programacao-ApostilaPHP.pdf
2016-04-26 13:01 - 2016-04-26 13:01 - 00367975 _____ C:\Users\dadhy\Downloads\2464_php_com_mysql.pdf
2016-04-26 13:00 - 2016-04-26 13:00 - 00275214 _____ C:\Users\dadhy\Downloads\php.pdf
2016-04-26 12:59 - 2016-04-26 12:59 - 00515772 _____ C:\Users\dadhy\Downloads\apostila php.pdf
2016-04-26 09:24 - 2016-04-26 09:24 - 00000009 _____ C:\Users\Todos os Usuários\a.bat
2016-04-25 15:17 - 2016-04-25 15:17 - 00931661 _____ C:\Users\dadhy\Downloads\Apostila-HTML-e-CSS.pdf
2016-04-25 13:41 - 2016-04-25 13:41 - 01909270 _____ C:\Users\dadhy\Downloads\html5-web.pdf
2016-04-23 19:42 - 2016-04-23 19:46 - 48732990 _____ C:\Users\dadhy\Downloads\DSC_2649.bmp
2016-04-21 23:09 - 2016-04-29 23:36 - 00000000 ____D C:\WINDOWS\Minidump
2016-04-21 23:09 - 2016-04-21 23:09 - 00284948 _____ C:\WINDOWS\Minidump\042116-41000-01.dmp
2016-04-21 23:08 - 2016-04-29 23:36 - 584556846 _____ C:\WINDOWS\MEMORY.DMP
2016-04-21 23:03 - 2016-04-21 23:04 - 01155024 _____ ( ) C:\Users\dadhy\Downloads\Stremio_Setup.exe
2016-04-21 23:01 - 2016-04-21 23:03 - 34052006 _____ (Popcorn Time) C:\Users\dadhy\Downloads\Popcorn-Time-0.3.9-Setup.exe
2016-04-19 13:41 - 2016-04-30 00:09 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-19 13:41 - 2016-04-19 13:41 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-04-19 13:41 - 2016-04-19 13:41 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Macromedia
2016-04-19 13:39 - 2016-04-19 13:41 - 00000000 ____D C:\Users\dadhy\AppData\Local\Adobe
2016-04-17 23:56 - 2016-04-30 00:08 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-17 23:55 - 2016-04-30 00:00 - 00001102 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-17 23:55 - 2016-04-30 00:00 - 00001098 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-17 23:55 - 2016-04-17 23:55 - 00004160 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-04-17 23:55 - 2016-04-17 23:55 - 00003928 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-04-17 23:52 - 2016-04-29 23:07 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-04-17 23:51 - 2016-04-21 00:20 - 00000000 ____D C:\Program Files (x86)\yesbnd_83106d
2016-04-17 23:51 - 2016-04-18 23:22 - 00000000 ____D C:\Program Files (x86)\Jejochclipasp
2016-04-17 23:51 - 2016-04-17 23:51 - 00000000 ____D C:\Users\dadhy\AppData\Local\F727A298-4DB4-456A-AC54-A93EA5F8554D
2016-04-17 23:51 - 2016-02-24 19:11 - 00058184 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\crfilterdrv.sys
2016-04-17 23:51 - 2016-02-24 19:10 - 00058680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\asfilterdrv.sys
2016-04-17 23:50 - 2016-04-29 22:54 - 00000000 ____D C:\Users\dadhy\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-04-17 22:34 - 2016-04-17 22:34 - 00000000 ____D C:\Users\dadhy\Documents\Modelos Personalizados do Office
2016-04-14 16:05 - 2016-04-14 16:29 - 681619456 _____ C:\Users\dadhy\Downloads\OfficeProfessionalPlus_x86_pt-br.img
2016-04-14 12:46 - 2016-04-14 12:46 - 00001024 _____ C:\.rnd
2016-04-14 12:45 - 2016-04-29 23:37 - 00101080 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2016-04-14 12:45 - 2015-03-18 11:23 - 00103640 ____N (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddpp.sys
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ___HD C:\Program Files (x86)\Diebold
2016-04-14 12:44 - 2016-04-14 12:44 - 00000000 ____D C:\Program Files\Diebold
2016-04-14 12:42 - 2016-04-29 23:36 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-04-14 12:42 - 2016-04-14 12:43 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-04-14 12:42 - 2016-04-14 12:42 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-04-14 12:41 - 2016-04-14 12:41 - 02665128 _____ (CAIXA) C:\Users\dadhy\Downloads\iGBPCEFwr.exe
2016-04-13 13:47 - 2016-04-13 13:47 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2016-04-13 13:47 - 2016-04-13 13:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-04-13 13:36 - 2016-04-13 13:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-12 23:34 - 2016-04-13 00:21 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-04-12 23:33 - 2016-04-12 23:33 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Toolkit
2016-04-12 23:30 - 2016-04-12 23:46 - 00000022 _____ C:\Users\dadhy\Downloads\MTKV25ARPATUTORIAIS.zip
2016-04-12 23:03 - 2016-04-29 01:01 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-04-12 23:03 - 2016-04-28 12:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-04-12 23:03 - 2016-04-12 23:03 - 00000000 ____D C:\Users\dadhy\AppData\Local\Microsoft Help
2016-04-12 22:18 - 2016-04-12 22:47 - 789321728 _____ C:\Users\dadhy\Downloads\OfficeProfessionalPlus_x64_pt-br.img
2016-04-12 21:37 - 2016-04-02 00:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-12 21:37 - 2016-04-02 00:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-12 21:37 - 2016-04-02 00:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-12 21:37 - 2016-04-02 00:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-12 21:37 - 2016-04-02 00:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-12 21:37 - 2016-04-02 00:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-12 21:37 - 2016-04-02 00:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-12 21:37 - 2016-04-02 00:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-12 21:37 - 2016-03-29 07:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-12 21:37 - 2016-03-29 07:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-12 21:37 - 2016-03-29 06:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-12 21:37 - 2016-03-29 06:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-12 21:37 - 2016-03-29 06:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-12 21:37 - 2016-03-29 06:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-12 21:37 - 2016-03-29 04:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-12 21:37 - 2016-03-29 04:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-12 21:37 - 2016-03-29 04:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-12 21:37 - 2016-03-29 04:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-12 21:37 - 2016-03-29 04:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-12 21:37 - 2016-03-29 04:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-12 21:37 - 2016-03-29 04:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-12 21:37 - 2016-03-29 04:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-12 21:37 - 2016-03-29 04:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-12 21:37 - 2016-03-29 03:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-12 21:37 - 2016-03-29 03:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-12 21:37 - 2016-03-29 03:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-12 21:37 - 2016-03-29 03:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-12 21:37 - 2016-03-29 03:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-12 21:37 - 2016-03-29 03:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-12 21:37 - 2016-03-29 03:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-12 21:37 - 2016-03-29 03:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-12 21:37 - 2016-03-29 03:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-12 21:37 - 2016-03-29 03:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-12 21:37 - 2016-03-29 03:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-12 21:37 - 2016-03-29 02:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-12 21:37 - 2016-03-29 02:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-12 21:37 - 2016-03-29 02:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-12 21:37 - 2016-03-29 02:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-12 21:37 - 2016-03-29 02:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-12 21:37 - 2016-03-29 02:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-12 21:37 - 2016-03-29 02:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-12 21:37 - 2016-03-29 02:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-12 21:37 - 2016-03-29 02:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-12 21:37 - 2016-03-29 02:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-12 21:37 - 2016-03-29 02:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-12 21:37 - 2016-03-29 02:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-12 21:37 - 2016-03-29 02:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-12 21:37 - 2016-03-29 02:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-12 21:37 - 2016-03-29 02:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-12 21:37 - 2016-03-29 02:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-12 21:37 - 2016-03-29 02:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-12 21:36 - 2016-04-12 21:36 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-12 21:36 - 2016-04-12 21:36 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-12 21:36 - 2016-04-02 01:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-12 21:36 - 2016-04-02 01:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-12 21:36 - 2016-04-02 01:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-12 21:36 - 2016-04-02 01:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-12 21:36 - 2016-04-02 00:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-12 21:36 - 2016-04-02 00:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-12 21:36 - 2016-04-02 00:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-12 21:36 - 2016-04-02 00:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-12 21:36 - 2016-03-29 07:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-12 21:36 - 2016-03-29 07:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-12 21:36 - 2016-03-29 07:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-12 21:36 - 2016-03-29 07:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-12 21:36 - 2016-03-29 07:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-12 21:36 - 2016-03-29 07:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-12 21:36 - 2016-03-29 07:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-12 21:36 - 2016-03-29 07:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-12 21:36 - 2016-03-29 07:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-12 21:36 - 2016-03-29 07:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-12 21:36 - 2016-03-29 06:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-12 21:36 - 2016-03-29 06:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-12 21:36 - 2016-03-29 06:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-12 21:36 - 2016-03-29 06:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-12 21:36 - 2016-03-29 06:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-12 21:36 - 2016-03-29 06:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-12 21:36 - 2016-03-29 06:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-12 21:36 - 2016-03-29 06:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-12 21:36 - 2016-03-29 06:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-12 21:36 - 2016-03-29 06:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-12 21:36 - 2016-03-29 06:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-12 21:36 - 2016-03-29 06:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-12 21:36 - 2016-03-29 05:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-12 21:36 - 2016-03-29 05:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-12 21:36 - 2016-03-29 05:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-12 21:36 - 2016-03-29 05:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-12 21:36 - 2016-03-29 05:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-12 21:36 - 2016-03-29 05:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-12 21:36 - 2016-03-29 05:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-12 21:36 - 2016-03-29 05:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-12 21:36 - 2016-03-29 05:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-12 21:36 - 2016-03-29 05:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-12 21:36 - 2016-03-29 05:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-12 21:36 - 2016-03-29 05:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-12 21:36 - 2016-03-29 05:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-12 21:36 - 2016-03-29 04:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-12 21:36 - 2016-03-29 04:51 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-12 21:36 - 2016-03-29 04:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-12 21:36 - 2016-03-29 04:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-12 21:36 - 2016-03-29 04:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-12 21:36 - 2016-03-29 04:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-12 21:36 - 2016-03-29 04:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-12 21:36 - 2016-03-29 04:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-12 21:36 - 2016-03-29 04:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-12 21:36 - 2016-03-29 04:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-12 21:36 - 2016-03-29 04:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-12 21:36 - 2016-03-29 04:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-12 21:36 - 2016-03-29 04:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-12 21:36 - 2016-03-29 04:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-12 21:36 - 2016-03-29 04:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-12 21:36 - 2016-03-29 04:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-12 21:36 - 2016-03-29 04:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-12 21:36 - 2016-03-29 04:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-12 21:36 - 2016-03-29 04:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-12 21:36 - 2016-03-29 04:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-12 21:36 - 2016-03-29 04:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-12 21:36 - 2016-03-29 04:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-12 21:36 - 2016-03-29 04:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-12 21:36 - 2016-03-29 04:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-12 21:36 - 2016-03-29 04:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-12 21:36 - 2016-03-29 04:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-12 21:36 - 2016-03-29 04:14 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-12 21:36 - 2016-03-29 04:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-12 21:36 - 2016-03-29 04:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-12 21:36 - 2016-03-29 04:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-12 21:36 - 2016-03-29 04:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-12 21:36 - 2016-03-29 04:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-12 21:36 - 2016-03-29 04:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-12 21:36 - 2016-03-29 04:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-12 21:36 - 2016-03-29 04:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-12 21:36 - 2016-03-29 04:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-12 21:36 - 2016-03-29 04:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-12 21:36 - 2016-03-29 04:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-12 21:36 - 2016-03-29 04:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-12 21:36 - 2016-03-29 04:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-12 21:36 - 2016-03-29 03:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-12 21:36 - 2016-03-29 03:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-12 21:36 - 2016-03-29 03:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-12 21:36 - 2016-03-29 03:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-12 21:36 - 2016-03-29 03:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-12 21:36 - 2016-03-29 03:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-12 21:36 - 2016-03-29 03:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-12 21:36 - 2016-03-29 03:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-12 21:36 - 2016-03-29 03:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-12 21:36 - 2016-03-29 03:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-12 21:36 - 2016-03-29 03:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-12 21:36 - 2016-03-29 03:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-12 21:36 - 2016-03-29 03:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-12 21:36 - 2016-03-29 03:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-12 21:36 - 2016-03-29 03:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-12 21:36 - 2016-03-29 03:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-12 21:36 - 2016-03-29 03:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-12 21:36 - 2016-03-29 03:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-12 21:36 - 2016-03-29 03:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-12 21:36 - 2016-03-29 03:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-12 21:36 - 2016-03-29 03:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-12 21:36 - 2016-03-29 03:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-12 21:36 - 2016-03-29 03:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-12 21:36 - 2016-03-29 03:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-12 21:36 - 2016-03-29 03:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-12 21:36 - 2016-03-29 03:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-12 21:36 - 2016-03-29 03:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-12 21:36 - 2016-03-29 03:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-12 21:36 - 2016-03-29 03:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-12 21:36 - 2016-03-29 03:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-12 21:36 - 2016-03-29 03:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-12 21:36 - 2016-03-29 03:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-12 21:36 - 2016-03-29 03:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-12 21:36 - 2016-03-29 03:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-12 21:36 - 2016-03-29 03:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-12 21:36 - 2016-03-29 03:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-12 21:36 - 2016-03-29 02:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-12 21:36 - 2016-03-29 02:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-12 21:36 - 2016-03-29 02:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-12 21:36 - 2016-03-29 02:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-12 21:35 - 2016-04-02 00:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-12 21:35 - 2016-04-02 00:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-12 21:35 - 2016-04-02 00:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-12 21:35 - 2016-04-02 00:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-12 21:35 - 2016-04-02 00:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-12 21:35 - 2016-04-02 00:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-12 21:35 - 2016-04-02 00:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-12 21:35 - 2016-03-29 06:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-12 21:35 - 2016-03-29 05:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-12 21:35 - 2016-03-29 05:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-12 21:35 - 2016-03-29 05:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-12 21:35 - 2016-03-29 05:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-12 21:35 - 2016-03-29 05:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-12 21:35 - 2016-03-29 05:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-12 21:35 - 2016-03-29 05:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-12 21:35 - 2016-03-29 05:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-12 21:35 - 2016-03-29 05:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-12 21:35 - 2016-03-29 05:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-12 21:35 - 2016-03-29 04:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-12 21:35 - 2016-03-29 04:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-12 21:35 - 2016-03-29 04:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-12 21:35 - 2016-03-29 04:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-12 21:35 - 2016-03-29 04:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-12 21:35 - 2016-03-29 04:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-12 21:35 - 2016-03-29 04:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-12 21:35 - 2016-03-29 04:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-12 21:35 - 2016-03-29 04:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-12 21:35 - 2016-03-29 04:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-12 21:35 - 2016-03-29 04:54 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-12 21:35 - 2016-03-29 04:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-12 21:35 - 2016-03-29 04:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-12 21:35 - 2016-03-29 04:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-12 21:35 - 2016-03-29 04:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-12 21:35 - 2016-03-29 04:49 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-04-12 21:35 - 2016-03-29 04:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-12 21:35 - 2016-03-29 04:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-12 21:35 - 2016-03-29 04:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-12 21:35 - 2016-03-29 04:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-12 21:35 - 2016-03-29 04:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-12 21:35 - 2016-03-29 04:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-12 21:35 - 2016-03-29 04:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-12 21:35 - 2016-03-29 04:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-12 21:35 - 2016-03-29 04:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-12 21:35 - 2016-03-29 04:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-12 21:35 - 2016-03-29 04:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-12 21:35 - 2016-03-29 04:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-12 21:35 - 2016-03-29 04:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 21:35 - 2016-03-29 04:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-12 21:35 - 2016-03-29 04:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-12 21:35 - 2016-03-29 04:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-12 21:35 - 2016-03-29 04:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-12 21:35 - 2016-03-29 04:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-12 21:35 - 2016-03-29 04:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-12 21:35 - 2016-03-29 04:14 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-04-12 21:35 - 2016-03-29 04:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-12 21:35 - 2016-03-29 04:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-12 21:35 - 2016-03-29 04:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-12 21:35 - 2016-03-29 04:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-12 21:35 - 2016-03-29 04:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-12 21:35 - 2016-03-29 04:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-12 21:35 - 2016-03-29 04:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-12 21:35 - 2016-03-29 04:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-12 21:35 - 2016-03-29 04:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-12 21:35 - 2016-03-29 04:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-12 21:35 - 2016-03-29 04:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-12 21:35 - 2016-03-29 04:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-12 21:35 - 2016-03-29 03:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-12 21:35 - 2016-03-29 03:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-12 21:35 - 2016-03-29 03:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-12 21:35 - 2016-03-29 03:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-12 21:35 - 2016-03-29 03:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-12 21:35 - 2016-03-29 03:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-12 21:35 - 2016-03-29 03:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 21:35 - 2016-03-29 03:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-12 21:35 - 2016-03-29 03:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-12 21:35 - 2016-03-29 03:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-12 21:35 - 2016-03-29 03:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-12 21:35 - 2016-03-29 03:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-12 21:35 - 2016-03-29 03:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-12 21:35 - 2016-03-29 03:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-12 21:35 - 2016-03-29 03:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-12 21:35 - 2016-03-29 02:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-12 21:35 - 2016-03-29 02:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-12 21:35 - 2016-03-29 02:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-12 21:35 - 2016-03-29 02:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-12 21:35 - 2016-03-29 02:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-12 21:35 - 2016-03-29 02:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-12 21:06 - 2016-04-12 21:06 - 00002597 _____ C:\Users\dadhy\Downloads\ActiveEnrollments.pdf
2016-04-12 20:50 - 2016-04-28 10:07 - 00000000 ____D C:\Users\dadhy\Desktop\Modelagem de dados Escola Virtual Bradesco
2016-04-12 08:48 - 2016-04-12 08:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-04-10 22:56 - 2016-04-10 22:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-04-10 19:10 - 2016-04-10 19:10 - 07929237 _____ C:\Users\dadhy\Documents\cms-files-12835-1459436113Glossario_Alcides+Maya_.pdf
2016-04-08 13:08 - 2016-04-22 04:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-08 13:04 - 2016-04-12 21:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-08 13:04 - 2016-04-12 21:39 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-08 13:02 - 2016-04-08 13:02 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-08 08:57 - 2016-04-17 23:56 - 00000000 ____D C:\Program Files (x86)\Google
2016-04-08 08:57 - 2016-04-08 14:10 - 00000000 ____D C:\Users\dadhy\AppData\Local\Google
2016-04-08 08:56 - 2016-04-18 00:24 - 00000000 ____D C:\Users\dadhy\AppData\Local\MicrosoftEdge
2016-04-08 08:36 - 2016-04-26 13:03 - 00002373 _____ C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-08 08:36 - 2016-04-08 08:36 - 00001333 _____ C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gerenciador de áudio HD.lnk
2016-04-08 08:36 - 2016-04-08 08:36 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-04-08 08:35 - 2016-04-08 08:35 - 00000000 ____D C:\Users\dadhy\AppData\Local\Comms
2016-04-08 08:35 - 2016-04-08 08:35 - 00000000 ____D C:\Users\dadhy\AppData\Local\ActiveSync
2016-04-08 08:34 - 2016-04-08 08:34 - 00000000 ____D C:\Users\dadhy\AppData\Local\Publishers
2016-04-08 08:33 - 2016-04-29 23:01 - 00000000 ____D C:\Users\dadhy\AppData\Local\VirtualStore
2016-04-08 08:33 - 2016-04-26 13:04 - 00000000 ____D C:\Users\dadhy\AppData\Local\Packages
2016-04-08 08:33 - 2016-04-08 08:33 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-04-08 08:33 - 2016-04-08 08:33 - 00000000 ____D C:\Users\dadhy\AppData\Roaming\Adobe
2016-04-08 08:33 - 2016-04-08 08:33 - 00000000 ____D C:\Users\dadhy\AppData\Local\TileDataLayer
2016-04-08 08:32 - 2016-04-08 08:32 - 00000020 ___SH C:\Users\dadhy\ntuser.ini
2016-04-08 02:00 - 2016-04-29 23:45 - 01819274 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Modelos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-04-08 01:56 - 2016-04-08 01:56 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-04-08 01:54 - 2016-04-23 23:36 - 00000000 ____D C:\Users\dadhy
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Modelos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Meus Documentos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Menu Iniciar
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Minhas Músicas
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Minhas Imagens
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Documents\Meus Vídeos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Dados de Aplicativos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Configurações Locais
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Local\Histórico
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\AppData\Local\Dados de Aplicativos
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Ambiente de Rede
2016-04-08 01:54 - 2016-04-08 01:54 - 00000000 _SHDL C:\Users\dadhy\Ambiente de Impressão
2016-04-08 01:47 - 2016-04-08 01:47 - 00000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
2016-04-08 01:47 - 2016-04-08 01:47 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\Program Files\Realtek
2016-04-08 01:46 - 2016-04-08 01:46 - 00000000 ____D C:\Program Files\Intel
2016-04-08 01:46 - 2015-10-07 11:29 - 00072696 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-04-08 01:46 - 2015-10-07 11:29 - 00069112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-04-08 01:45 - 2016-04-08 01:45 - 00000000 ____D C:\Users\Todos os Usuários\USOShared
2016-04-08 01:45 - 2015-10-30 04:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-04-08 01:43 - 2016-04-29 23:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-08 01:42 - 2016-04-29 23:36 - 00353288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-08 01:42 - 2016-04-08 01:42 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-04-08 01:40 - 2016-04-11 15:52 - 00000000 ____D C:\Windows.old
2016-04-08 01:40 - 2016-04-08 01:57 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-08 01:40 - 2016-04-08 01:40 - 00000000 ____D C:\WINDOWS\InfusedApps
2016-04-08 01:39 - 2016-04-08 01:39 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-04-08 01:38 - 2016-04-08 01:38 - 00000000 ____D C:\Program Files\Elantech
2016-04-08 01:37 - 2016-04-08 01:37 - 00000000 ____D C:\WINDOWS\Setup
2016-04-08 01:33 - 2016-04-28 12:50 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\OCR
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files\MSBuild
2016-04-08 01:33 - 2016-04-08 01:33 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-04-08 01:32 - 2016-04-29 23:45 - 00785460 _____ C:\WINDOWS\system32\prfh0416.dat
2016-04-08 01:32 - 2016-04-29 23:45 - 00154246 _____ C:\WINDOWS\system32\prfc0416.dat
2016-04-08 01:32 - 2016-04-08 01:31 - 00328354 _____ C:\WINDOWS\system32\prfi0416.dat
2016-04-08 01:32 - 2016-04-08 01:31 - 00040752 _____ C:\WINDOWS\system32\prfd0416.dat
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\0409
2016-04-08 01:31 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-04-08 01:27 - 2016-04-06 15:32 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-08 01:27 - 2016-04-06 15:32 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-08 01:24 - 2016-04-29 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-04-08 01:24 - 2016-04-29 09:21 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-08 01:24 - 2016-04-29 09:21 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-08 01:24 - 2016-04-29 00:46 - 00000167 _____ C:\WINDOWS\win.ini
2016-04-08 01:24 - 2016-04-28 12:52 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-08 01:24 - 2016-04-28 12:50 - 00000000 ____D C:\WINDOWS\ShellNew
2016-04-08 01:24 - 2016-04-28 12:49 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-08 01:24 - 2016-04-21 20:22 - 00000000 ____D C:\WINDOWS\rescache
2016-04-08 01:24 - 2016-04-18 00:32 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-04-08 01:24 - 2016-04-17 23:52 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-04-08 01:24 - 2016-04-17 23:52 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-04-08 01:24 - 2016-04-17 23:43 - 00000000 ____D C:\Program Files\Common Files\System
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-08 01:24 - 2016-04-14 03:31 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-08 01:24 - 2016-04-08 13:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 __RSD C:\WINDOWS\Media
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-04-08 01:24 - 2016-04-08 13:11 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-04-08 01:24 - 2016-04-08 08:50 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-04-08 01:24 - 2016-04-08 08:35 - 00000000 ____D C:\WINDOWS\appcompat
2016-04-08 01:24 - 2016-04-08 08:34 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-04-08 01:24 - 2016-04-08 08:33 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-04-08 01:24 - 2016-04-08 01:56 - 00000000 ____D C:\Program Files\Windows NT
2016-04-08 01:24 - 2016-04-08 01:55 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-08 01:24 - 2016-04-08 01:55 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-04-08 01:24 - 2016-04-08 01:51 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-04-08 01:24 - 2016-04-08 01:50 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-08 01:24 - 2016-04-08 01:45 - 00000000 ____D C:\Users\Todos os Usuários\USOPrivate
2016-04-08 01:24 - 2016-04-08 01:40 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-08 01:24 - 2016-04-08 01:36 - 00000000 ____D C:\WINDOWS\Provisioning
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\SystemApps
2016-04-08 01:24 - 2016-04-08 01:33 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\setup
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\system32\Com
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\IME
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\Help
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files\Windows Defender
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-04-08 01:24 - 2016-04-08 01:31 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\system32\Nui
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Web
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Vss
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\tracing
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\TAPI
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SystemResources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\winevt
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ras
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\icsxml
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\ias
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\downlevel
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\System
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SKB
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\security
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\schemas
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\SchCache
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Resources
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Registration
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\PLA
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Performance
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\L2Schemas
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Globalization
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Cursors
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\Branding
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\addins
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Users\Todos os Usuários\Comms
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Program Files\Common Files\Services
2016-04-08 01:24 - 2016-04-08 01:24 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-04-08 01:24 - 2016-04-08 01:21 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2016-04-08 01:24 - 2016-04-08 01:21 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2016-04-08 01:24 - 2016-04-08 01:21 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2016-04-08 01:24 - 2016-04-08 01:21 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2016-04-08 01:24 - 2016-04-08 01:21 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2016-04-08 01:24 - 2016-04-08 01:20 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2016-04-08 01:24 - 2016-04-08 01:20 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2016-04-08 01:24 - 2016-04-08 01:20 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2016-04-08 01:24 - 2016-04-08 01:20 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-04-08 01:24 - 2016-04-08 01:20 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2016-04-08 01:24 - 2016-04-08 01:20 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2016-04-08 01:24 - 2016-04-08 01:20 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2016-04-08 01:24 - 2016-04-08 01:20 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2016-04-08 01:24 - 2016-04-08 01:20 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2016-04-08 01:24 - 2016-04-08 01:20 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2016-04-08 01:24 - 2016-04-08 01:20 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2016-04-08 01:24 - 2016-04-08 01:20 - 00000389 _____ C:\WINDOWS\system32\AutoWorkplace.exe.config
2016-04-08 01:24 - 2016-04-08 01:20 - 00000219 _____ C:\WINDOWS\system.ini
2016-04-08 01:22 - 2016-04-29 23:45 - 00000000 ____D C:\WINDOWS\INF
2016-04-08 01:13 - 2016-04-15 03:33 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-08 01:00 - 2016-04-28 15:24 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-08 01:00 - 2016-04-08 01:45 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-08 01:00 - 2016-04-08 01:31 - 00000000 ____D C:\WINDOWS\servicing
2016-04-08 01:00 - 2016-04-08 01:24 - 00000000 ____D C:\WINDOWS\system32\SMI
2016-04-08 01:00 - 2015-10-30 03:33 - 00000164 _____ C:\WINDOWS\system32\config\FP
2016-04-07 16:45 - 2016-04-29 22:52 - 00000000 ____D C:\extensions
2016-04-07 16:45 - 2016-04-07 16:45 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-04-04 13:03 - 2016-04-04 13:03 - 00000000 ____D C:\Users\dadhy\AppData\LocalLow\Temp
2016-04-04 12:57 - 2016-04-28 12:45 - 00000000 ____D C:\Users\dadhy\Desktop\Meus arquivos
2016-04-03 21:31 - 2016-04-03 21:31 - 00000000 ___RD C:\Users\dadhy\3D Objects
2016-04-03 20:42 - 2016-04-03 20:43 - 00987728 _____ (Google Inc.) C:\Users\dadhy\Downloads\ChromeSetup.exe
2016-04-03 11:39 - 2016-04-26 13:03 - 00000000 ___RD C:\Users\dadhy\OneDrive
2016-04-03 11:36 - 2016-04-08 13:23 - 00000000 __SHD C:\Users\dadhy\IntelGraphicsProfiles
2016-04-03 11:36 - 2016-04-08 13:23 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Músicas
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Imagens
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Users\Public\Documents\Meus Vídeos
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Documents and Settings
2016-04-03 08:50 - 2016-04-03 08:50 - 00000000 _SHDL C:\Arquivos de Programas
2016-04-03 08:45 - 2016-04-08 13:47 - 00000000 ____D C:\Intel
2016-04-03 04:40 - 2016-04-03 04:40 - 00000000 _____ C:\Recovery.txt
2016-04-03 00:41 - 2016-04-08 08:45 - 00000000 ___HD C:\$SysReset
2016-04-01 22:08 - 2016-04-01 22:08 - 22564328 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 21124344 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 14252544 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 12586496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 08705672 ____N (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 07533568 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06972416 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06952088 ____N (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06740992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 06607080 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 05321728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 05242496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04894208 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04827136 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 04412928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03671888 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03666432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 03449168 ____N (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02919320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02912256 ____N (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02773096 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02604032 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02581504 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02544264 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02295808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02186864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02180136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 02061312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01997328 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01997152 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 01996288 ____N (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01847808 ____N (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 01818696 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01707520 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01613664 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01557768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01542816 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01497088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 01490432 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01322248 ____N (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01318912 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01224704 ____N (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01173344 ____N (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01152328 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01139712 ____N (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01131520 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01118208 ____N (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01105920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01062480 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 01017032 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00997376 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00990720 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00982016 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00980352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00957608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00949248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00938496 ____N (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00915456 ____N (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00895080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00890368 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00882720 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00870912 ____N (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00870400 ____N (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00848168 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00847360 ____N (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00838144 ____N (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00828928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00819648 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00808800 ____N (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00794888 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00791744 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00790528 ____N (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00779384 ____N (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00769536 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00755712 ____N (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00754176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00726528 ____N (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00713568 ____N (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00709688 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00703840 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00700416 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00685568 ____N (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00673792 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00670928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00652392 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00649216 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00640472 ____N (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00625000 ____N (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00613376 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00606720 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00591872 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00585216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00576864 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00572272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00567808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00563552 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00558080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00552960 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00540160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00538736 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00536256 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00534368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-04-01 22:08 - 2016-04-01 22:08 - 00526336 ____N (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00523752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00517632 ____N (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-04-01 22:08 - 2016-04-01 22:08 - 00513888 ____N (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00503296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00498448 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00493568 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00489984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00480256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00476728 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00463360 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00456704 ____N (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00451584 ____N (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00450912 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00450560 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00436736 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00430944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00420928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00412672 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00401408 ____N (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00400896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-04-01 22:08 - 2016-04-01 22:08 - 00394752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00394080 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00389992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00382464 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00379392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00376536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00372224 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00369664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00360448 ____N (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00342528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00320000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00318976 ____N (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00315904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00307712 ____N (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00305664 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00297472 ____N (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00288768 ____N (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00287712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00285696 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00275456 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00274944 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00274944 ____N (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00266752 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00258560 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00258280 ____N (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00252928 ____N (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00243712 ____N (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00238592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00237056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00228352 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00228352 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00224256 ____N (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00223744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00221184 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00220064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00216576 ____N (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00216416 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00214528 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00200704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00200704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00196608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00196608 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00195072 ____N (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00189952 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00187744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00178176 ____N (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00169984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00168448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00164864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00163840 ____N (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00163328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00161280 ____N (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00159232 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00157184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00147808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00146432 ____N (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00146272 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00141664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00141560 ____N (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00135168 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00129536 ____N (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00129024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00127840 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-04-01 22:08 - 2016-04-01 22:08 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00115712 ____N (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00114688 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00111616 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00104960 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-04-01 22:08 - 2016-04-01 22:08 - 00099328 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00098304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00091648 ____N (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00089088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00088576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00087040 ____N (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00086016 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00078848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00077824 ____N (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00074240 ____N (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00070656 ____N (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00069632 ____N (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00068096 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00067584 ____N (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00048128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00045568 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00045056 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00041984 ____N (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00031744 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00031232 ____N (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-04-01 22:08 - 2016-04-01 22:08 - 00027648 ____N (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00023552 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00020480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-01 22:08 - 2016-04-01 22:08 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00778936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00103120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:47 - 00035480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-04-01 21:57 - 2015-10-23 17:46 - 01166520 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-01 21:57 - 2015-10-23 17:46 - 00035480 ____N (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-01 21:57 - 2015-10-23 17:45 - 00124624 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
==================== Arquivos na raiz de alguns diretórios =======
2016-04-28 16:17 - 2016-04-29 00:30 - 0001291 _____ () C:\Users\dadhy\AppData\Roaming\Bubble Dock.boostrap.log
2016-04-28 16:19 - 2016-04-28 16:22 - 0005711 _____ () C:\Users\dadhy\AppData\Roaming\Bubble Dock.installation.log
2016-04-29 23:01 - 2016-04-29 23:01 - 0005120 _____ () C:\Users\dadhy\AppData\Roaming\GiftBag.db
2016-04-29 00:29 - 2016-04-29 00:29 - 0000078 _____ () C:\Users\dadhy\AppData\Roaming\Selection Tools.installation.log
2016-04-29 22:52 - 2016-04-27 09:46 - 1755136 _____ () C:\Users\dadhy\AppData\Roaming\service.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 2783744 _____ (TODO: ) C:\Users\dadhy\AppData\Roaming\svrupg.exe
2016-04-28 16:17 - 2016-04-28 16:17 - 0000097 _____ () C:\Users\dadhy\AppData\Roaming\WindApp.boostrap.log
2016-04-28 16:27 - 2016-04-28 16:27 - 0000078 _____ () C:\Users\dadhy\AppData\Roaming\WindApp.installation.log
2016-04-26 09:24 - 2016-04-26 09:24 - 0000009 _____ () C:\ProgramData\a.bat
2010-08-28 17:43 - 2010-08-28 17:43 - 0577335 _____ () C:\ProgramData\adb.exe
2010-08-28 17:43 - 2010-08-28 17:43 - 0096256 _____ (Google, inc) C:\ProgramData\AdbWinApi.dll
2010-08-28 17:43 - 2010-08-28 17:43 - 0060928 _____ (Google, inc) C:\ProgramData\AdbWinUsbApi.dll
2016-04-29 22:55 - 2016-04-26 12:07 - 1253376 _____ (eee) C:\ProgramData\apptj.exe
2016-04-29 22:54 - 2016-04-21 12:18 - 1266688 _____ () C:\ProgramData\conhost514934.exe
2016-04-08 01:47 - 2016-04-08 01:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2010-08-28 17:43 - 2010-08-28 17:43 - 0356009 _____ () C:\ProgramData\fastboot.exe
2016-04-29 22:54 - 2016-04-25 11:46 - 0114176 _____ () C:\ProgramData\hp.exe
2016-04-29 22:54 - 2016-04-26 09:16 - 1916928 _____ () C:\ProgramData\msiql.exe
2016-04-29 22:52 - 2016-04-27 09:46 - 1755136 _____ () C:\ProgramData\service.exe
2016-04-29 22:54 - 2016-04-29 22:54 - 0002303 _____ () C:\ProgramData\webad.xml
2016-04-29 22:55 - 2016-04-29 22:55 - 0413439 _____ () C:\ProgramData\xdo.zip
Arquivos para serem movidos ou deletados:
====================
C:\Users\dadhy\AppData\Local\Temp\CJNVNJ6YK\CJNVNJ6YK.exe
C:\Users\Todos os Usuários\a.bat
C:\Users\Todos os Usuários\adb.exe
C:\Users\Todos os Usuários\AdbWinApi.dll
C:\Users\Todos os Usuários\AdbWinUsbApi.dll
C:\Users\Todos os Usuários\apptj.exe
C:\Users\Todos os Usuários\conhost514934.exe
C:\Users\Todos os Usuários\fastboot.exe
C:\Users\Todos os Usuários\hp.exe
C:\Users\Todos os Usuários\msiql.exe
C:\Users\Todos os Usuários\service.exe
Alguns arquivos em TEMP:
====================
C:\Users\dadhy\AppData\Local\Temp\fsd29BE.exe
C:\Users\dadhy\AppData\Local\Temp\fsd4D99.exe
C:\Users\dadhy\AppData\Local\Temp\fsd971A.exe
C:\Users\dadhy\AppData\Local\Temp\fsdB112.exe
C:\Users\dadhy\AppData\Local\Temp\fsdB67E.exe
C:\Users\dadhy\AppData\Local\Temp\fsdEF49.exe
C:\Users\dadhy\AppData\Local\Temp\PidGenX.dll
C:\Users\dadhy\AppData\Local\Temp\qqpcmgr_v11.4.17339.217_45391_Silence.exe
C:\Users\dadhy\AppData\Local\Temp\ZEDYFUPWDY.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll
[2016-04-12 21:36] - [2016-04-12 21:36] - 0686976 ____A (Microsoft Corporation) 74CF3C31A00901ED181ECCD08F5C9988
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-04-12 21:36] - [2016-04-12 21:36] - 0535080 ____A (Microsoft Corporation) 7FD176B835B2A339764A2E4667105F47
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-04-21 19:18
==================== Fim de FRST.txt ============================