Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 07-12-2016
Executado por SAMSUNG 8.1 (administrador) em SAMSUNG (07-12-2016 08:42:17)
Executando a partir de C:\Users\SAMSUNG 8.1\Downloads
Perfis Carregados: SAMSUNG 8.1 (Perfis Disponíveis: SAMSUNG 8.1)
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(HP) C:\Windows\System32\HPSIsvc.exe
() C:\Program Files (x86)\WeatherTool\2.0.1.11244\WeatherService.exe
(ShenZhen Enode Techology co,.Ltd) C:\Program Files (x86)\WeatherTool\2.0.1.11244\weather.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIN8E.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIN8E.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2015-05-20] (Realtek Semiconductor)
HKLM\...\Run: [RtsCM] => C:\Windows\RTSCM64.EXE [196824 2015-01-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2793200 2013-11-29] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-25] (AVAST Software)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25838592 2016-11-28] (Dropbox, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065024 2014-06-10] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Firebird] => C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2006-01-17] (The Firebird Project)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [uTorrent] => C:\Users\SAMSUNG 8.1\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-05-18] (BitTorrent Inc.)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2995712 2013-10-23] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27219928 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [GoogleChromeAutoLaunch_95EB38379F0F6ACF63607C7A7557907A] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIN8E.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIN8E.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\MountPoints2: {0800a300-1594-11e6-826c-24f5aa5f8049} - "E:\SISetup.exe"
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\MountPoints2: {1be38f8a-476a-11e6-8273-24f5aa5f8049} - "F:\Autorun.exe"
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\MountPoints2: {97bc4ea2-0172-11e6-8266-24f5aa5f8049} - "E:\LaunchU3.exe" -a
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\...\MountPoints2: {bbca526a-1d18-11e4-824e-806e6f6e6963} - "D:\SETUP.exe"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-10] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
GroupPolicy: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 186.233.92.226 186.233.92.227
Tcpip\..\Interfaces\{D9DE50EB-8886-43A1-BB97-B4F088E34499}: [DhcpNameServer] 200.189.88.66 200.189.88.61
Tcpip\..\Interfaces\{ED77E36C-1FCF-4494-9E6E-8B99DB3519B3}: [DhcpNameServer] 186.233.92.226 186.233.92.227

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=f3a5754ede8e8d9fbfd797db2c66ba4d
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=f3a5754ede8e8d9fbfd797db2c66ba4d
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://br.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://br.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=f3a5754ede8e8d9fbfd797db2c66ba4d
HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_bxinw_16_45¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyByByDtN1L2XzutAtFtByEtFtAtDtFyDtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0EtBzzyBzyzy0FtGtDyBtAyEtGyD0AzytAtGyCtByDyEtGyBtB0B0ByC0C0A0FtB0D0A0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D336065763%26a%3Dwbf_bxinw_16_45%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKLM -> {73cd434e-8e1e-46b6-bb8d-7dd935140717} URL =
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://br.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-0e9b8027&q={searchTerms}
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=itm&hsimp=yhs-001&type=jmb_adsafld_16_11¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DJoomborio%26cd%3D2XzuyEtN2Y1L1QzutByE0FyD0A0AyD0FzztDyEzy0AtD0E0DtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyBzyyDyC0DzyyCzztGyEzztB0CtGyDzytDzztGtDyC0E0DtGyDtDtAzzyEyD0CtA0BtAtC0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEzy%26cr%3D812164163%26a%3Djmb_adsafld_16_11%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_adsafld_16_11¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutByE0FyD0A0AyD0FzztDyEzy0AtD0E0DtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyC0CyEtDyE0B0DyEtGyE0DtAtDtGtDtB0ByEtGyDyByEyCtG0FyBzzyDtAzztAtA0E0Dzy0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByDyB%26cr%3D1597994419%26a%3Dwncy_adsafld_16_11%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-0e9b8027&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> {73cd434e-8e1e-46b6-bb8d-7dd935140717} URL = hxxps://br.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2993519771-3572021459-3468829159-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-11-01] (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON CORPORATION)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-13] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-11-01] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-13] (Oracle Corporation)
BHO-x32: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll [2011-02-09] (ALLCinema Ltd.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON CORPORATION)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\SAMSUNG 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\Z5OXEhWR.default [2016-12-01]
FF NewTab: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> Yahoo! Powered
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> Yahoo! Powered
FF Homepage: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_frmr_16_47¶m1=1¶m2=f%3D1%26b%3DFirefox%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyDyC0FyD0A0AyD0FzztDyEzz0AtD0E0DtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyCtDyBtA0B0AyDtGtDyE0F0CtGyD0B0FtCtGyEyByB0CtGzytA0ByEyC0ByEyEyBzzzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0AyE0B0DyDtD0CtGtDyCtByDtGyEyCzytDtGzz0B0C0EtGtC0CyE0C0B0AtAyCtDzy0ByD2QtN0A0LzuyE%26cr%3D425124400%26a%3Dwbf_frmr_16_47%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro
FF Keyword.URL: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> user_pref("keyword.URL", true);
FF Homepage: Mozilla\Firefox\Profiles\Z5OXEhWR.default -> hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=f3a5754ede8e8d9fbfd797db2c66ba4d
FF Extension: (Firefox Hotfix) - C:\Users\SAMSUNG 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\Z5OXEhWR.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-21]
FF SearchPlugin: C:\Users\SAMSUNG 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\Z5OXEhWR.default\searchplugins\search provided by bing.xml [2016-11-13]
FF SearchPlugin: C:\Users\SAMSUNG 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\Z5OXEhWR.default\searchplugins\yahoo! powered.xml [2016-11-25]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default [2016-12-07]
CHR Extension: (Google Apresentações) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-01]
CHR Extension: (Google Docs) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-01]
CHR Extension: (Google Drive) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-01]
CHR Extension: (Rapport) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2016-09-27]
CHR Extension: (YouTube) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-01]
CHR Extension: (Google Search) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-01]
CHR Extension: (MediaNewTab) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddncgmfehaelaoifpbcjnfcnigflcplp [2016-10-13]
CHR Extension: (Dropbox para Gmail) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2016-05-28]
CHR Extension: (Avast SafePrice) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Planilhas do Google) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-01]
CHR Extension: (Segurança do navegador Avira) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-21]
CHR Extension: (Documentos Google off-line) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Alerta de ofertas e descontos) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jikhbokinakhjbhoifafpbaemffhomjl [2016-05-10]
CHR Extension: (FromDocToPDF) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk [2016-09-30]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (TVPlusNewtab) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdanggbhkbmafdjpoiidelfnnnlbbjck [2016-11-25]
CHR Extension: (Search Manager) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2016-11-15]
CHR Extension: (Gmail) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-01]
CHR Extension: (Chrome Media Router) - C:\Users\SAMSUNG 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-27]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2993519771-3572021459-3468829159-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [223600 2016-09-10] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-26] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-28] (Dropbox, Inc.)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [677376 2016-07-29] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [317640 2015-03-30] (Intel Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2387952 2016-11-22] (IBM Corp.)
R2 TheDesktopWeatherService; C:\Program Files (x86)\WeatherTool\2.0.1.11244\WeatherService.exe [141960 2016-03-11] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-10] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [453192 2016-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-25] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-01] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4282904 2015-05-11] (Qualcomm Atheros Communications, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 jrdusbser; C:\Windows\system32\DRIVERS\jrdusbser.sys [119680 2011-05-27] (Olivetti) [Arquivo não assinado]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-08-21] (Marvell Semiconductor, Inc.)
S3 Olicard155net; C:\Windows\system32\DRIVERS\Olicard155Usbnet.sys [138240 2011-05-27] (Olivetti) [Arquivo não assinado]
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
R1 RapportCerberus_1609053; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [1181672 2016-09-19] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [566248 2016-11-22] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [235688 2016-11-22] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [489704 2016-11-22] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [548008 2016-11-22] (IBM Corp.)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [2584792 2015-01-13] (Realtek Semiconductor Corp.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [214832 2015-12-08] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinDivert1.1; C:\Program Files\KMSpico\WinDivert.sys [35376 2014-08-05] (Basil Projects)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-12-07 08:42 - 2016-12-07 08:43 - 00034957 _____ C:\Users\SAMSUNG 8.1\Downloads\FRST.txt
2016-12-07 08:42 - 2016-12-07 08:42 - 00000000 ____D C:\FRST
2016-12-07 08:41 - 2016-12-07 08:41 - 02420224 _____ (Farbar) C:\Users\SAMSUNG 8.1\Downloads\FRST64.exe
2016-12-07 08:34 - 2016-09-06 21:11 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-07 08:34 - 2016-09-06 21:11 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-06 08:56 - 2016-12-06 08:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-12-06 08:50 - 2016-12-02 14:43 - 00000000 ____D C:\Users\SAMSUNG 8.1\Desktop\FABIO OUT
2016-12-06 08:37 - 2016-12-06 08:37 - 00109735 _____ C:\Users\SAMSUNG 8.1\Downloads\FABIO OUT.rar
2016-12-01 19:04 - 2015-12-05 01:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-12-01 19:04 - 2015-12-05 01:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-12-01 19:04 - 2015-12-05 01:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-12-01 19:04 - 2015-12-03 14:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-12-01 19:04 - 2015-12-03 14:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-12-01 19:04 - 2015-12-03 14:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-12-01 19:04 - 2015-12-03 14:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-12-01 19:04 - 2015-12-03 14:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-12-01 19:04 - 2015-12-03 13:58 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-12-01 19:04 - 2015-12-03 13:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-12-01 19:04 - 2015-12-03 13:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-12-01 19:04 - 2015-12-03 13:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-12-01 19:04 - 2015-12-03 13:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-12-01 19:04 - 2015-12-03 13:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-12-01 19:04 - 2015-12-03 13:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-12-01 19:04 - 2015-12-03 13:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-12-01 19:04 - 2015-12-03 13:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-12-01 19:04 - 2015-12-03 13:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-12-01 19:04 - 2015-12-03 12:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-12-01 19:04 - 2015-12-03 12:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-12-01 19:04 - 2015-08-26 22:43 - 22372152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-12-01 19:04 - 2015-08-26 22:42 - 19795904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-12-01 19:04 - 2014-10-28 23:58 - 00014528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-12-01 19:04 - 2014-10-28 23:52 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-12-01 19:04 - 2014-10-28 23:07 - 00019096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-12-01 19:04 - 2014-10-28 22:47 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-12-01 19:04 - 2014-10-28 22:46 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-12-01 18:41 - 2015-07-15 20:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-12-01 18:41 - 2015-07-10 13:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-12-01 18:31 - 2016-03-03 12:47 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-12-01 18:31 - 2016-03-03 12:33 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-12-01 18:26 - 2016-07-08 10:19 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-12-01 18:26 - 2016-07-08 10:17 - 00696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-12-01 18:14 - 2015-04-23 11:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-12-01 18:14 - 2015-04-23 11:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2016-12-01 18:13 - 2014-06-16 18:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-12-01 18:13 - 2014-06-16 18:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-12-01 18:11 - 2016-03-11 10:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-12-01 18:11 - 2016-03-10 13:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-12-01 18:11 - 2016-03-10 12:48 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-12-01 18:10 - 2016-03-02 21:39 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-12-01 18:10 - 2016-03-02 21:39 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-12-01 18:10 - 2015-07-16 14:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2016-12-01 18:10 - 2015-07-10 15:06 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2016-12-01 18:09 - 2016-04-10 00:21 - 01763376 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-12-01 18:09 - 2016-04-10 00:21 - 01489088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-12-01 18:09 - 2016-04-09 17:58 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-12-01 18:09 - 2016-04-09 17:50 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-12-01 18:09 - 2016-01-05 11:00 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-12-01 18:09 - 2015-12-02 11:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-12-01 18:09 - 2015-12-02 11:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-12-01 18:09 - 2015-06-15 18:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-12-01 18:09 - 2015-06-15 18:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-01 18:09 - 2015-06-15 17:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-12-01 18:09 - 2015-06-15 17:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-01 18:09 - 2015-05-30 17:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2016-12-01 18:09 - 2015-05-30 15:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2016-12-01 18:09 - 2015-05-30 15:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-12-01 18:09 - 2015-03-05 23:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-12-01 18:09 - 2015-03-05 22:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-12-01 18:09 - 2014-12-08 15:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2016-12-01 18:09 - 2014-12-08 15:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2016-12-01 18:09 - 2014-10-29 00:03 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-12-01 18:09 - 2014-10-29 00:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2016-12-01 18:09 - 2014-10-29 00:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2016-12-01 18:09 - 2014-10-28 23:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-12-01 18:09 - 2014-10-28 23:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-12-01 18:09 - 2014-10-28 23:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-12-01 18:09 - 2014-10-28 23:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-12-01 18:09 - 2014-10-28 23:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2016-12-01 18:09 - 2014-10-28 23:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2016-12-01 18:09 - 2014-10-28 23:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-12-01 18:09 - 2014-10-28 23:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-12-01 18:09 - 2014-10-28 23:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-12-01 18:09 - 2014-10-28 22:44 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-01 18:09 - 2014-10-28 22:22 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-12-01 18:09 - 2014-10-28 21:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2016-12-01 18:09 - 2014-10-28 21:58 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2016-12-01 18:09 - 2014-10-28 21:54 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-12-01 18:09 - 2014-10-28 21:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-12-01 18:09 - 2014-10-28 21:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShextAutoplay.exe
2016-12-01 18:09 - 2014-10-28 21:22 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-12-01 18:08 - 2014-09-26 23:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2016-12-01 18:07 - 2016-01-10 13:50 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2016-12-01 18:07 - 2016-01-10 13:31 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-12-01 18:07 - 2016-01-10 13:16 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-12-01 18:07 - 2016-01-10 13:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2016-12-01 18:07 - 2016-01-10 13:12 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-12-01 18:07 - 2016-01-10 12:58 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-12-01 18:07 - 2016-01-10 12:51 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-12-01 18:07 - 2016-01-10 12:49 - 00443392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-12-01 18:07 - 2016-01-10 12:40 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-12-01 18:06 - 2016-06-25 14:13 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-12-01 18:06 - 2016-06-25 12:24 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-12-01 18:06 - 2016-06-25 12:15 - 01094656 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-12-01 18:06 - 2016-06-25 12:13 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-12-01 18:06 - 2016-06-25 12:05 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-12-01 18:06 - 2016-01-30 15:50 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2016-12-01 18:06 - 2016-01-30 15:00 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2016-12-01 18:06 - 2016-01-30 14:48 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2016-12-01 18:06 - 2016-01-30 14:18 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2016-12-01 18:06 - 2016-01-30 13:48 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2016-12-01 18:06 - 2016-01-30 13:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2016-12-01 18:06 - 2015-12-20 10:56 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2016-12-01 18:06 - 2015-09-07 12:21 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-12-01 18:06 - 2015-09-07 12:17 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2016-12-01 18:06 - 2015-03-19 23:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2016-12-01 18:06 - 2014-10-28 22:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2016-12-01 18:06 - 2014-10-28 22:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-12-01 18:06 - 2014-10-28 22:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-12-01 18:06 - 2014-10-28 22:33 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-12-01 18:06 - 2014-10-28 22:29 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2016-12-01 18:06 - 2014-10-28 22:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2016-12-01 18:06 - 2014-10-28 22:00 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2016-12-01 18:06 - 2014-10-28 21:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2016-12-01 18:06 - 2014-10-28 21:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-12-01 18:06 - 2014-10-28 21:52 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2016-12-01 18:06 - 2014-10-28 21:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2016-12-01 18:06 - 2014-10-28 21:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2016-12-01 18:06 - 2014-10-28 21:45 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2016-12-01 18:06 - 2014-10-28 21:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2016-12-01 18:06 - 2014-10-28 21:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2016-12-01 18:06 - 2014-10-28 21:15 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2016-12-01 18:04 - 2015-10-13 13:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-12-01 18:04 - 2015-10-13 13:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-12-01 18:01 - 2016-08-04 10:17 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-12-01 18:01 - 2016-08-03 14:06 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-12-01 18:01 - 2016-08-03 14:05 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-12-01 18:01 - 2016-07-08 10:32 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-12-01 18:01 - 2016-07-08 10:25 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-12-01 18:01 - 2016-05-12 14:38 - 00135336 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-12-01 18:01 - 2016-05-12 13:43 - 00115704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-12-01 18:01 - 2016-05-12 12:24 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-12-01 18:01 - 2016-05-12 12:17 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-12-01 18:01 - 2016-05-12 12:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-12-01 18:01 - 2016-05-12 12:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-12-01 18:01 - 2016-05-12 12:07 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-12-01 18:01 - 2016-05-12 11:59 - 00398848 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-12-01 18:01 - 2016-05-12 11:48 - 00580096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-12-01 18:01 - 2016-05-12 11:43 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-12-01 18:01 - 2016-05-12 11:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-12-01 18:01 - 2016-05-12 11:37 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-12-01 18:01 - 2016-05-06 11:45 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-12-01 18:01 - 2016-05-06 11:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-12-01 18:01 - 2016-03-31 02:50 - 01307328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-01 18:01 - 2016-03-30 23:40 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-12-01 18:01 - 2016-01-10 13:02 - 00987648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-12-01 18:01 - 2016-01-10 12:43 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-12-01 18:01 - 2014-10-28 21:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-12-01 18:01 - 2014-10-28 21:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-12-01 18:01 - 2014-10-28 21:04 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-12-01 18:01 - 2014-10-28 21:02 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-12-01 18:00 - 2015-11-05 04:59 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-12-01 18:00 - 2014-12-08 21:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-12-01 18:00 - 2014-10-28 22:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-12-01 18:00 - 2014-10-28 21:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-12-01 18:00 - 2014-06-12 21:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-12-01 18:00 - 2014-06-12 20:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-12-01 18:00 - 2014-06-06 07:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-12-01 18:00 - 2014-04-03 03:59 - 02518872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-01 18:00 - 2014-04-03 03:59 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-12-01 18:00 - 2014-03-06 08:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-12-01 18:00 - 2014-03-06 07:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-12-01 18:00 - 2014-03-06 02:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-12-01 17:58 - 2015-05-12 09:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-12-01 17:58 - 2015-01-29 21:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2016-12-01 17:58 - 2014-12-08 23:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-12-01 17:58 - 2014-12-08 21:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-12-01 17:58 - 2014-10-28 21:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2016-12-01 17:58 - 2014-10-28 21:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\EventAggregation.dll
2016-12-01 17:58 - 2014-10-28 21:27 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\CSystemEventsBrokerClient.dll
2016-12-01 17:58 - 2014-10-28 21:12 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-12-01 17:55 - 2014-12-11 22:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-12-01 13:30 - 2014-12-11 20:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2016-12-01 13:29 - 2015-11-21 12:59 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-12-01 13:29 - 2015-11-21 12:49 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-12-01 13:29 - 2015-11-21 12:47 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-12-01 13:29 - 2015-11-21 12:40 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-12-01 13:01 - 2016-02-03 11:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-12-01 13:01 - 2016-02-03 11:00 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-12-01 13:01 - 2016-02-03 11:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-12-01 13:01 - 2015-11-08 17:23 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-12-01 13:01 - 2015-11-08 17:13 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-12-01 13:01 - 2015-11-08 16:52 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-12-01 12:59 - 2016-08-20 19:45 - 07076864 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-12-01 12:59 - 2016-08-20 19:22 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-12-01 12:59 - 2016-08-20 19:05 - 05273600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-12-01 12:59 - 2016-08-20 18:50 - 00360448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-12-01 12:59 - 2016-08-20 18:42 - 07795712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-12-01 12:59 - 2016-08-20 18:27 - 05268480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-12-01 12:59 - 2016-08-09 18:47 - 00803176 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-12-01 12:59 - 2016-08-09 18:47 - 00611576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-12-01 12:59 - 2016-06-10 23:44 - 00107984 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-12-01 12:59 - 2016-06-10 23:44 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-12-01 12:59 - 2016-04-06 17:13 - 00137976 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-12-01 12:59 - 2016-04-06 13:49 - 00120384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-12-01 12:58 - 2014-09-03 20:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-12-01 12:58 - 2014-09-03 20:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-12-01 12:57 - 2015-03-23 17:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-12-01 12:57 - 2015-03-23 17:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-12-01 12:57 - 2015-03-19 23:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-12-01 12:57 - 2015-03-19 22:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-12-01 12:57 - 2015-03-19 22:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-12-01 12:57 - 2015-03-19 22:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-12-01 12:57 - 2014-10-28 22:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-12-01 12:57 - 2014-10-28 22:17 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-12-01 12:57 - 2014-10-28 21:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-12-01 12:57 - 2014-10-28 21:38 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-12-01 12:57 - 2014-10-28 21:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-12-01 12:57 - 2014-10-28 21:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-12-01 12:57 - 2014-10-28 21:04 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-12-01 12:57 - 2014-10-28 21:04 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-12-01 12:56 - 2016-08-31 23:08 - 20312064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-01 12:56 - 2016-08-31 22:46 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-01 12:56 - 2016-08-31 22:24 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-01 12:56 - 2016-08-31 21:39 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-12-01 12:56 - 2016-08-31 21:30 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-01 12:56 - 2016-08-31 21:27 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-01 12:56 - 2016-08-31 21:24 - 04607488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-01 12:56 - 2016-08-31 20:45 - 25770496 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-01 12:56 - 2016-08-31 20:43 - 02445824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-01 12:56 - 2016-08-31 20:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-12-01 12:56 - 2016-08-31 20:38 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-01 12:56 - 2016-08-31 20:24 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-01 12:56 - 2016-08-31 20:10 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-01 12:56 - 2016-08-31 20:06 - 06047232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-01 12:56 - 2016-08-31 19:38 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-01 12:56 - 2016-08-31 19:28 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-01 12:56 - 2016-08-31 19:15 - 15411712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-01 12:56 - 2016-08-31 19:10 - 02921472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-01 12:56 - 2016-08-31 18:58 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-01 12:56 - 2016-08-31 18:47 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-01 12:56 - 2016-08-26 01:51 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-12-01 12:56 - 2016-08-26 00:44 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-12-01 12:56 - 2016-08-26 00:41 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-12-01 12:56 - 2016-08-26 00:00 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-12-01 12:56 - 2016-08-02 02:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-12-01 12:56 - 2016-08-02 01:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-12-01 12:56 - 2016-08-02 01:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-12-01 12:56 - 2016-08-02 01:39 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-12-01 12:56 - 2016-08-02 01:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-12-01 12:56 - 2016-08-02 01:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-12-01 12:56 - 2016-08-02 01:15 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-12-01 12:56 - 2016-08-02 01:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-12-01 12:56 - 2016-06-11 13:22 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-12-01 12:56 - 2016-06-11 13:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-12-01 12:56 - 2016-06-11 13:20 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-12-01 12:56 - 2016-06-11 12:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-12-01 12:56 - 2016-06-11 12:43 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-12-01 12:56 - 2016-06-11 12:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-12-01 12:56 - 2016-02-08 16:29 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-12-01 12:56 - 2016-02-08 14:14 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-12-01 12:56 - 2015-11-09 20:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-12-01 12:56 - 2015-09-10 13:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-12-01 12:56 - 2015-09-10 12:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-12-01 12:56 - 2015-09-10 12:17 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-12-01 12:56 - 2015-09-10 12:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-12-01 12:56 - 2015-07-16 16:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-12-01 12:56 - 2015-07-16 15:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-12-01 12:56 - 2015-06-15 18:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-12-01 12:56 - 2015-06-15 17:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-12-01 12:56 - 2015-06-15 16:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-12-01 12:56 - 2015-06-15 16:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-12-01 12:56 - 2015-05-22 23:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-12-01 12:56 - 2015-05-22 14:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-12-01 12:56 - 2015-04-21 12:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-12-01 12:56 - 2014-10-31 01:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-12-01 12:56 - 2014-10-31 01:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-12-01 12:56 - 2014-10-31 01:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-12-01 12:56 - 2014-10-31 01:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-12-01 12:56 - 2014-10-31 01:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-12-01 12:56 - 2014-10-31 01:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-12-01 12:56 - 2014-10-31 01:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-12-01 12:56 - 2014-10-31 01:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-12-01 12:56 - 2014-10-31 00:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-01 12:56 - 2014-10-31 00:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-12-01 12:56 - 2014-10-31 00:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-12-01 12:56 - 2014-10-31 00:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-12-01 12:56 - 2014-10-31 00:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-12-01 12:56 - 2014-10-31 00:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-12-01 12:56 - 2014-10-31 00:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-01 12:56 - 2014-10-31 00:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-12-01 12:56 - 2014-10-31 00:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-12-01 12:56 - 2014-10-31 00:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-12-01 12:56 - 2014-10-30 23:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-12-01 12:56 - 2014-10-30 23:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-12-01 12:56 - 2014-10-30 23:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-12-01 12:56 - 2014-10-30 23:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-12-01 12:56 - 2014-10-30 23:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-12-01 12:56 - 2014-10-30 23:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-12-01 12:56 - 2014-10-30 23:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-12-01 12:56 - 2014-10-30 23:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-12-01 12:56 - 2014-10-30 23:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-12-01 12:56 - 2014-10-30 23:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-12-01 12:56 - 2014-10-30 23:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-12-01 12:56 - 2014-10-30 23:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-12-01 12:56 - 2014-10-30 23:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-12-01 12:56 - 2014-10-30 23:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-12-01 12:56 - 2014-10-30 22:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-12-01 12:56 - 2014-10-30 22:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-12-01 12:56 - 2014-10-30 22:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-12-01 12:56 - 2014-10-30 22:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-12-01 12:56 - 2014-10-30 22:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-12-01 12:56 - 2014-10-30 22:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-12-01 12:56 - 2014-02-06 07:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-01 12:56 - 2014-02-06 07:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-12-01 12:56 - 2014-02-06 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-12-01 12:55 - 2015-09-24 13:51 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2016-12-01 12:55 - 2015-09-24 13:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2016-12-01 12:55 - 2015-09-24 13:30 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2016-12-01 12:55 - 2015-09-24 12:42 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2016-12-01 12:55 - 2015-09-24 12:40 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-12-01 12:55 - 2015-07-30 13:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-12-01 12:55 - 2015-07-30 12:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-12-01 12:55 - 2015-04-08 18:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-12-01 12:55 - 2014-10-28 22:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2016-12-01 12:55 - 2014-10-28 22:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizard.exe
2016-12-01 12:55 - 2014-10-28 22:13 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2016-12-01 12:55 - 2014-10-28 21:52 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2016-12-01 12:55 - 2014-10-28 21:26 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2016-12-01 12:55 - 2014-10-28 21:16 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-12-01 12:54 - 2015-07-01 18:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-12-01 12:54 - 2015-07-01 18:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-12-01 12:54 - 2015-07-01 17:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-12-01 12:54 - 2015-07-01 17:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-12-01 12:54 - 2015-03-12 22:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-12-01 12:54 - 2015-03-12 22:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-12-01 12:53 - 2015-07-22 10:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-12-01 12:53 - 2015-07-22 10:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-12-01 12:53 - 2015-07-18 14:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-12-01 12:53 - 2015-07-18 14:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-12-01 12:53 - 2015-07-18 14:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-12-01 12:53 - 2015-07-18 14:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-12-01 12:52 - 2016-05-18 01:31 - 00372568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-12-01 12:52 - 2016-05-18 01:31 - 00315224 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-12-01 12:52 - 2016-05-13 19:04 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-12-01 12:52 - 2016-05-13 18:19 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-12-01 12:52 - 2016-02-06 14:08 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-12-01 12:52 - 2015-10-28 11:49 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-01 12:52 - 2015-10-28 11:29 - 02462720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-01 12:51 - 2016-04-10 03:48 - 00738096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-12-01 12:51 - 2016-04-10 03:48 - 00613624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-12-01 12:51 - 2016-02-05 11:03 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-12-01 12:51 - 2016-01-19 15:13 - 02175008 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-12-01 12:51 - 2016-01-19 15:13 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-12-01 12:51 - 2016-01-19 15:12 - 01133744 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-12-01 12:51 - 2016-01-19 14:23 - 01564496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-12-01 12:51 - 2016-01-19 14:23 - 00548024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-12-01 12:51 - 2016-01-19 13:30 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-12-01 12:51 - 2016-01-19 12:37 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2016-12-01 12:51 - 2015-03-08 22:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsp.sys
2016-12-01 12:51 - 2014-10-28 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2016-12-01 12:51 - 2014-10-23 01:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-12-01 12:51 - 2014-10-23 01:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-12-01 12:50 - 2016-09-08 17:51 - 00443224 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-12-01 12:50 - 2016-09-08 17:51 - 00332632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-12-01 12:50 - 2016-08-22 12:06 - 00179248 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-12-01 12:50 - 2016-08-22 12:06 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-01 12:50 - 2016-08-20 21:03 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-12-01 12:50 - 2016-08-20 21:01 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-01 12:50 - 2016-08-20 21:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-12-01 12:50 - 2016-08-20 20:17 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-12-01 12:50 - 2016-08-20 19:27 - 01445376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-12-01 12:50 - 2016-08-20 19:26 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-12-01 12:50 - 2016-08-20 18:55 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-12-01 12:50 - 2016-06-21 14:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-12-01 12:50 - 2016-06-21 10:12 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-12-01 12:50 - 2016-05-18 19:18 - 00563024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-01 12:50 - 2016-05-18 19:18 - 00397232 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-12-01 12:50 - 2016-05-18 19:16 - 00178016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-12-01 12:50 - 2016-05-18 18:28 - 00340880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-12-01 12:50 - 2016-02-05 15:07 - 00292696 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2016-12-01 12:50 - 2016-02-05 15:07 - 00243032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2016-12-01 12:50 - 2016-02-05 11:00 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-12-01 12:50 - 2016-01-31 15:16 - 00148832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-12-01 12:50 - 2016-01-06 14:25 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-12-01 12:50 - 2014-10-28 23:51 - 00047024 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-12-01 12:50 - 2014-10-28 22:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-12-01 12:50 - 2014-10-28 22:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-12-01 12:50 - 2014-10-28 22:48 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-12-01 12:50 - 2014-10-28 22:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-12-01 12:50 - 2014-10-28 22:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-12-01 12:50 - 2014-10-28 22:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\LAPRXY.DLL
2016-12-01 12:50 - 2014-10-28 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-12-01 12:50 - 2014-10-28 22:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-12-01 12:50 - 2014-10-28 22:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-12-01 12:50 - 2014-10-28 22:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-12-01 12:50 - 2014-10-28 22:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-12-01 12:50 - 2014-10-28 21:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2016-12-01 12:50 - 2014-10-28 21:32 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-12-01 12:50 - 2014-03-11 09:21 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2016-12-01 12:50 - 2014-03-11 09:02 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2016-12-01 12:48 - 2016-08-13 03:41 - 07445848 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-01 12:48 - 2016-08-13 03:40 - 01737080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-12-01 12:48 - 2016-08-13 03:40 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-12-01 12:48 - 2016-08-13 03:40 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-12-01 12:48 - 2016-08-13 03:40 - 01490120 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-12-01 12:48 - 2016-08-13 03:40 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-12-01 12:48 - 2016-08-12 20:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-01 12:48 - 2016-02-11 16:16 - 01501488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-12-01 12:48 - 2016-02-09 14:07 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-12-01 12:48 - 2015-07-13 23:22 - 02529880 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-12-01 12:48 - 2015-07-13 23:21 - 01901776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-12-01 12:48 - 2015-07-09 13:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-12-01 12:48 - 2015-07-09 13:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-12-01 12:48 - 2015-07-09 12:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-12-01 12:48 - 2015-04-24 22:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-12-01 12:48 - 2015-04-24 22:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-12-01 12:48 - 2015-01-30 19:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-12-01 12:48 - 2014-12-08 15:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-12-01 12:48 - 2014-12-05 23:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-12-01 12:48 - 2014-12-05 21:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-12-01 12:48 - 2014-10-28 21:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-12-01 12:48 - 2014-10-28 21:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-12-01 12:47 - 2015-12-28 17:42 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2016-12-01 12:47 - 2015-12-28 16:31 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSync.dll
2016-12-01 12:47 - 2015-08-03 17:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-12-01 12:47 - 2015-08-03 17:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-12-01 12:47 - 2015-08-01 10:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-12-01 12:47 - 2015-07-31 23:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2016-12-01 12:47 - 2015-07-31 23:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2016-12-01 12:47 - 2015-07-31 23:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-12-01 12:47 - 2015-07-31 23:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2016-12-01 12:47 - 2015-07-31 23:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2016-12-01 12:47 - 2015-07-10 14:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-12-01 12:47 - 2015-07-10 13:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-12-01 12:47 - 2015-07-10 13:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-12-01 12:47 - 2015-07-10 12:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-12-01 12:47 - 2015-02-24 04:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-12-01 12:47 - 2014-10-28 22:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-12-01 12:47 - 2014-10-28 22:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-12-01 12:47 - 2014-10-28 22:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-12-01 12:47 - 2014-10-28 22:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-12-01 12:47 - 2014-10-28 21:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-12-01 12:46 - 2016-08-14 15:34 - 01541248 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-01 12:46 - 2016-08-14 14:25 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-01 12:46 - 2016-08-14 12:14 - 01376768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-01 12:46 - 2016-08-11 12:26 - 01156608 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-12-01 12:46 - 2016-08-11 12:17 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-12-01 12:46 - 2016-08-11 12:16 - 00455680 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-12-01 12:46 - 2016-04-11 02:21 - 00074584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2016-12-01 12:46 - 2016-04-10 01:37 - 01549144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-12-01 12:46 - 2015-01-27 21:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-12-01 12:46 - 2015-01-27 21:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-12-01 12:46 - 2014-10-28 23:57 - 00389952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-12-01 12:46 - 2014-10-28 23:51 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-12-01 12:46 - 2014-10-28 22:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanpref.dll
2016-12-01 12:45 - 2016-05-18 19:15 - 01379040 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-01 12:45 - 2016-05-18 16:35 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-01 12:45 - 2016-02-04 13:24 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-12-01 12:45 - 2016-02-04 13:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-12-01 12:45 - 2015-12-17 14:29 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-12-01 12:45 - 2015-12-17 12:17 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-12-01 12:45 - 2015-07-13 23:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2016-12-01 12:45 - 2015-03-04 06:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2016-12-01 12:45 - 2015-03-03 23:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-12-01 12:45 - 2015-03-03 22:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-12-01 12:45 - 2014-10-28 23:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-12-01 12:45 - 2014-10-28 22:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-12-01 12:45 - 2014-10-28 22:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-12-01 12:45 - 2014-10-28 22:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-12-01 12:45 - 2014-10-28 22:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2016-12-01 12:45 - 2014-10-28 22:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-12-01 12:45 - 2014-10-28 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-12-01 12:45 - 2014-10-28 22:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-12-01 12:44 - 2016-03-03 12:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-12-01 12:44 - 2015-11-21 14:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-12-01 12:44 - 2015-11-21 13:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-12-01 12:44 - 2015-03-20 00:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-12-01 12:44 - 2015-03-20 00:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-12-01 12:44 - 2014-10-28 21:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-12-01 12:44 - 2014-10-28 21:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-12-01 12:44 - 2014-10-28 21:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-12-01 12:44 - 2014-10-28 21:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-12-01 12:43 - 2016-05-14 16:01 - 00363104 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-12-01 12:43 - 2016-05-14 16:01 - 00320720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-12-01 12:43 - 2016-05-13 19:07 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-12-01 12:43 - 2016-05-13 17:58 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-12-01 12:43 - 2016-05-13 17:45 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-12-01 12:43 - 2016-05-13 17:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-12-01 12:43 - 2016-05-13 17:26 - 00631808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-12-01 12:43 - 2015-10-08 12:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-12-01 12:43 - 2015-08-10 14:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2016-12-01 12:43 - 2015-08-10 14:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-12-01 12:43 - 2015-08-10 13:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-12-01 12:43 - 2015-08-10 12:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-12-01 12:43 - 2015-08-10 12:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-12-01 12:43 - 2015-03-14 04:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-12-01 12:43 - 2015-03-13 21:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-12-01 12:43 - 2015-03-13 21:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-12-01 12:43 - 2015-03-13 21:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-12-01 12:43 - 2015-03-13 21:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-12-01 12:43 - 2015-03-13 21:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-12-01 12:43 - 2015-03-13 20:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-12-01 12:43 - 2015-03-13 20:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-12-01 12:43 - 2015-03-13 20:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-12-01 12:43 - 2015-03-13 20:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2016-12-01 12:43 - 2015-03-13 20:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2016-12-01 12:43 - 2015-03-13 20:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-12-01 12:43 - 2015-03-13 20:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-12-01 12:43 - 2015-03-13 20:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-12-01 12:43 - 2015-03-13 20:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-12-01 12:43 - 2015-03-13 20:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-12-01 12:43 - 2015-03-13 19:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-12-01 12:43 - 2015-03-13 19:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-12-01 12:43 - 2014-11-10 14:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2016-12-01 12:43 - 2014-10-18 02:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2016-12-01 12:42 - 2015-12-08 15:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-12-01 12:42 - 2015-12-08 15:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-12-01 12:42 - 2015-01-21 01:54 - 01384712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-12-01 12:42 - 2015-01-21 01:15 - 01123848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-30 08:49 - 2016-11-30 08:59 - 154007305 _____ C:\Users\SAMSUNG 8.1\Downloads\SCNES_arquivos_AM_201611.zip
2016-11-29 11:40 - 2016-12-07 08:36 - 00001040 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-29 11:40 - 2016-12-06 09:45 - 00001044 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-29 11:40 - 2016-11-29 11:40 - 00004016 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-29 11:40 - 2016-11-29 11:40 - 00003780 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-29 08:49 - 2016-11-29 08:49 - 00097316 _____ C:\Users\SAMSUNG 8.1\Documents\estrato pis fabio.pdf
2016-11-28 10:39 - 2016-11-28 10:46 - 86462536 _____ C:\Users\SAMSUNG 8.1\Downloads\SCNES3270-ATUALIZACAO.zip
2016-11-28 10:24 - 2016-11-28 10:24 - 00315628 _____ C:\Users\SAMSUNG 8.1\Downloads\CNESEAM2811201610001120163260.bck
2016-11-28 10:05 - 2016-11-28 10:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-11-28 10:05 - 2016-11-28 10:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-11-28 10:05 - 2016-11-28 10:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-11-28 10:05 - 2016-11-28 10:05 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-11-28 09:33 - 2016-11-28 09:33 - 00000000 ____D C:\Users\Todos os Usuários\CorelDRAW Graphics Suite X8.1
2016-11-28 09:33 - 2016-11-28 09:33 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X8.1
2016-11-28 09:20 - 2016-11-28 09:20 - 00003146 _____ C:\Windows\System32\Tasks\CorelUpdateHelperTask
2016-11-28 09:18 - 2016-11-28 09:35 - 00003326 _____ C:\Windows\System32\Tasks\CorelUpdateHelperTaskCore
2016-11-28 09:18 - 2016-11-28 09:14 - 00002847 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X8.lnk
2016-11-28 09:18 - 2016-11-28 09:14 - 00002840 _____ C:\Users\Public\Desktop\Corel CAPTURE X8.lnk
2016-11-28 09:18 - 2016-11-28 09:14 - 00002799 _____ C:\Users\Public\Desktop\CorelDRAW X8.lnk
2016-11-28 09:18 - 2016-11-28 09:14 - 00002371 _____ C:\Users\Public\Desktop\Corel CONNECT X8.lnk
2016-11-28 09:18 - 2016-11-28 09:14 - 00002278 _____ C:\Users\Public\Desktop\Corel Font Manager X8.lnk
2016-11-28 09:14 - 2016-11-28 09:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X8
2016-11-28 09:14 - 2016-11-28 09:14 - 00000000 ____D C:\Users\Public\Documents\Corel
2016-11-28 09:11 - 2016-11-28 09:18 - 00000000 ____D C:\Program Files (x86)\Corel
2016-11-28 08:24 - 2016-11-28 08:24 - 00002800 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-11-28 08:11 - 2016-11-28 08:11 - 00000000 ____D C:\Users\SAMSUNG 8.1\Desktop\NerdTetudo.com.br
2016-11-28 08:09 - 2015-08-29 13:17 - 608622825 _____ (Microsoft) C:\Users\SAMSUNG 8.1\Desktop\Portable CorelDRAW X7.exe
2016-11-25 13:44 - 2016-11-28 08:11 - 206605415 _____ C:\Users\SAMSUNG 8.1\Downloads\RATON-CRLDW7-www.ratondownloads.com.br.rar
2016-11-25 12:54 - 2016-12-07 08:42 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2993519771-3572021459-3468829159-1001
2016-11-25 12:51 - 2016-11-25 12:51 - 00000000 ____D C:\Users\Todos os Usuários\MAGIX
2016-11-25 12:51 - 2016-11-25 12:51 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\MAGIX
2016-11-25 12:51 - 2016-11-25 12:51 - 00000000 ____D C:\ProgramData\MAGIX
2016-11-25 12:46 - 2016-03-21 11:25 - 2315827200 _____ C:\Users\SAMSUNG 8.1\Downloads\CorelDRAW Graphics Suite X8 18.0.0.448.iso
2016-11-25 12:36 - 2016-11-25 12:36 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Corel
2016-11-25 12:35 - 2016-11-25 12:35 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-25 12:34 - 2016-11-25 12:34 - 00000000 ____D C:\Users\Todos os Usuários\VsTelemetry
2016-11-25 12:34 - 2016-11-25 12:34 - 00000000 ____D C:\ProgramData\VsTelemetry
2016-11-25 12:28 - 2016-11-28 09:33 - 00000000 ____D C:\Users\Todos os Usuários\Corel
2016-11-25 12:28 - 2016-11-28 09:33 - 00000000 ____D C:\ProgramData\Corel
2016-11-25 12:09 - 2016-11-25 12:09 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Crashpad
2016-11-25 12:09 - 2016-11-25 12:09 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\AliExpress
2016-11-25 11:42 - 2016-11-25 11:42 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2016-11-25 11:42 - 2016-11-25 11:42 - 00027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-11-25 11:04 - 2016-11-25 11:25 - 2027360458 ____R C:\Users\SAMSUNG 8.1\Downloads\CorelDRAW X8.0 Graphics Suite v18.0.0.448 [PT-BR] [x86 & x64] BRSHARES.rar
2016-11-25 10:33 - 2016-11-25 12:51 - 00000000 ____D C:\Users\Todos os Usuários\simplitec
2016-11-25 10:33 - 2016-11-25 12:51 - 00000000 ____D C:\ProgramData\simplitec
2016-11-25 10:33 - 2016-06-03 17:16 - 00120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
2016-11-25 10:29 - 2016-11-25 10:29 - 00001318 _____ C:\Users\Public\Desktop\Criar Crachas.lnk
2016-11-25 10:29 - 2016-11-25 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Criador de Crachas
2016-11-25 10:29 - 2016-11-25 10:29 - 00000000 ____D C:\Program Files (x86)\Jeferson Lopes App
2016-11-25 10:27 - 2016-11-25 10:27 - 00000000 ___HD C:\Users\SAMSUNG 8.1\AppData\Roaming\AliExpress_helper
2016-11-25 10:24 - 2016-11-25 10:24 - 01849781 _____ (Jeferson Lopes ) C:\Users\SAMSUNG 8.1\Downloads\criar-crachas [1].exe
2016-11-25 10:22 - 2016-11-25 10:22 - 01671584 _____ ( ) C:\Users\SAMSUNG 8.1\Downloads\criar-crachas.exe
2016-11-25 09:54 - 2016-11-25 10:18 - 00000000 ____D C:\Users\SAMSUNG 8.1\Desktop\CRACHAS
2016-11-25 08:46 - 2016-11-25 08:47 - 11024069 _____ C:\Users\SAMSUNG 8.1\Downloads\EQUIPESBRASIL_201611.ZIP
2016-11-25 08:28 - 2016-11-25 08:28 - 00240591 _____ C:\Users\SAMSUNG 8.1\Desktop\COMPEC - Cartão de Confirmação de Inscrição - CCI.pdf
2016-11-23 09:15 - 2016-11-23 09:15 - 00478930 _____ C:\Users\SAMSUNG 8.1\Desktop\calendario_2016.pdf
2016-11-22 11:53 - 2016-11-22 12:04 - 86667308 _____ C:\Users\SAMSUNG 8.1\Downloads\SCNES3260-ATUALIZACAO.zip
2016-11-22 11:48 - 2016-11-22 11:48 - 00055296 _____ C:\Users\SAMSUNG 8.1\AppData\Local\A5B8078F33C34fb58C5435E4487B9050.CardDesigner1.card
2016-11-22 10:27 - 2016-11-22 10:27 - 02501179 _____ C:\Users\SAMSUNG 8.1\Downloads\camaloon_horizontal.zip
2016-11-22 09:03 - 2016-11-22 09:03 - 00001091 _____ C:\Users\Public\Desktop\Designer de cartão.lnk
2016-11-22 09:03 - 2016-11-22 09:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\POINTMAN
2016-11-22 09:03 - 2016-11-22 09:03 - 00000000 ____D C:\Program Files\POINTMAN
2016-11-22 09:03 - 2016-08-30 15:02 - 01786880 _____ C:\Windows\system32\CITPRTLIB.DLL
2016-11-22 09:03 - 2016-08-23 16:02 - 00012792 _____ C:\Windows\SysWOW64\CITSETUP.DAT
2016-11-22 09:03 - 2016-08-23 16:02 - 00012792 _____ C:\Windows\system32\CITSETUP.DAT
2016-11-22 09:03 - 2016-08-04 15:05 - 00292352 _____ C:\Windows\system32\CitSpanish.dll
2016-11-22 09:03 - 2016-08-04 15:05 - 00289280 _____ C:\Windows\system32\CitPortuguese.dll
2016-11-22 09:03 - 2016-08-04 15:05 - 00288768 _____ ( ) C:\Windows\system32\CITITALIAN.DLL
2016-11-22 09:03 - 2016-08-04 15:05 - 00282112 _____ ( ) C:\Windows\system32\CITENGLISH.DLL
2016-11-22 09:03 - 2016-08-04 15:05 - 00271360 _____ ( ) C:\Windows\system32\CITKOREAN.DLL
2016-11-22 09:03 - 2016-08-04 15:05 - 00263168 _____ ( ) C:\Windows\system32\CITCHINESE.DLL
2016-11-22 09:03 - 2016-07-27 10:57 - 00509952 _____ ( ) C:\Windows\system32\CITUNST.EXE
2016-11-22 09:03 - 2016-06-14 12:44 - 00268268 _____ C:\Windows\system32\CITMODEL.BMP
2016-11-22 09:03 - 2016-05-26 13:18 - 00024576 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\CITPJLMON.DLL
2016-11-22 09:03 - 2015-01-07 18:53 - 01131200 _____ C:\Windows\system32\CIT_DPS2_150107.ICM
2016-11-22 09:03 - 2014-09-22 18:54 - 00445440 _____ C:\Windows\system32\CIT_CLIENT.EXE
2016-11-22 09:03 - 2014-07-03 22:04 - 00042496 _____ C:\Windows\system32\CITSETUP.DLL
2016-11-22 09:03 - 2014-07-01 19:13 - 01131216 _____ C:\Windows\system32\CIT_DPS_140701.ICM
2016-11-22 09:03 - 2014-07-01 19:13 - 01131200 _____ C:\Windows\system32\nuvia_ITWo_160405.icm
2016-11-22 09:03 - 2014-07-01 19:13 - 01131200 _____ C:\Windows\system32\CIT_ITW_140701.ICM
2016-11-22 09:03 - 2014-07-01 19:13 - 01131200 _____ C:\Windows\system32\CIT_DNP_140701.ICM
2016-11-22 09:03 - 2013-10-01 21:00 - 00542208 _____ ( ) C:\Windows\system32\CITUSBSP.EXE
2016-11-22 09:03 - 2013-08-23 14:22 - 01131204 _____ C:\Windows\system32\CITPRTR11.ICM
2016-11-22 09:03 - 2013-04-18 14:18 - 01131216 _____ C:\Windows\system32\CITPRTR01.ICM
2016-11-22 09:03 - 2012-04-16 18:28 - 02408960 _____ () C:\Windows\system32\CITCMS.DLL
2016-11-22 09:03 - 2012-04-10 16:15 - 00003144 _____ C:\Windows\system32\CITMNTR01.ICC
2016-11-22 09:03 - 2011-03-18 14:46 - 00237960 _____ (FTDI Ltd.) C:\Windows\system32\FTD2XX.DLL
2016-11-22 09:03 - 2006-04-12 19:44 - 00102400 _____ (Gemplus) C:\Windows\system32\CITGSC.DLL
2016-11-22 08:47 - 2016-11-22 09:00 - 49458536 _____ C:\Users\SAMSUNG 8.1\Downloads\CardPrinter2023_3017_20160902.zip
2016-11-17 11:13 - 2012-05-21 04:58 - 04706247 _____ C:\Users\SAMSUNG 8.1\Documents\Elaboração de Proposta da MV.pdf
2016-11-16 09:46 - 2016-11-16 09:46 - 01638961 _____ C:\Users\SAMSUNG 8.1\Downloads\manual-de-credenciamento-[442-090212-SES-MT].pdf
2016-11-16 09:30 - 2016-11-16 09:30 - 00349506 _____ C:\Users\SAMSUNG 8.1\Downloads\portaria n 272 1998 (1).pdf
2016-11-16 08:45 - 2016-11-16 08:45 - 00349506 _____ C:\Users\SAMSUNG 8.1\Downloads\portaria n 272 1998.pdf
2016-11-16 07:59 - 2016-11-16 07:55 - 00108615 ____N C:\Users\SAMSUNG 8.1\Desktop\Multa Tulio Araujo-1.pdf
2016-11-14 19:26 - 2016-11-14 19:26 - 00001765 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-14 19:26 - 2016-11-14 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-14 19:25 - 2016-11-14 19:26 - 00000000 ____D C:\Program Files\iTunes
2016-11-14 19:25 - 2016-11-14 19:25 - 00000000 ____D C:\Program Files\iPod
2016-11-14 19:23 - 2016-11-14 19:23 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-11-14 19:22 - 2016-11-14 19:22 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-11-14 18:16 - 2016-11-14 18:16 - 00000000 ____D C:\Program Files\Bonjour
2016-11-14 18:16 - 2016-11-14 18:16 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-14 18:10 - 2016-11-14 18:20 - 00000000 ____D C:\Users\Todos os Usuários\34BE82C4-E596-4e99-A191-52C6199EBF69
2016-11-14 18:10 - 2016-11-14 18:20 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2016-11-14 18:04 - 2016-11-14 19:22 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-11-14 09:51 - 2016-11-14 10:02 - 122383176 _____ (Apple Inc.) C:\Users\SAMSUNG 8.1\Downloads\itunes-12-5-1-64-bit.exe
2016-11-13 16:27 - 2016-11-14 18:02 - 00000000 ____D C:\Users\Todos os Usuários\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2016-11-13 16:27 - 2016-11-14 18:02 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2016-11-13 16:22 - 2012-08-21 13:01 - 00125872 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi64.dll
2016-11-13 16:22 - 2012-08-21 13:01 - 00106928 _____ (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2016-11-13 16:22 - 2009-05-18 13:17 - 00034152 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2016-11-13 15:53 - 2016-11-13 15:54 - 00000000 ____D C:\Users\SAMSUNG 8.1\Downloads\iTunes 12.3.0.44
2016-11-13 15:50 - 2016-11-13 16:17 - 137699664 _____ (Apple Inc.) C:\Users\SAMSUNG 8.1\Downloads\iTunesSetup.exe
2016-11-13 15:42 - 2016-11-14 22:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-13 14:48 - 2016-11-13 14:48 - 00001857 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-11-13 14:48 - 2016-11-13 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-11-13 14:47 - 2016-11-13 15:01 - 112794960 _____ (Apple Inc.) C:\Users\SAMSUNG 8.1\Downloads\iTunes64Setup (3).exe
2016-11-13 14:36 - 2016-11-13 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puxa Rápido
2016-11-13 14:35 - 2016-11-13 15:13 - 00000000 ____D C:\Program Files (x86)\Opera
2016-11-13 14:35 - 2016-11-13 14:35 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\opera_helper
2016-11-13 14:35 - 2016-11-13 14:35 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2016-11-13 10:35 - 2016-11-13 10:35 - 00005678 _____ C:\Users\SAMSUNG 8.1\Desktop\PAPSCZSS-.txt
2016-11-11 18:50 - 2016-11-25 08:37 - 00000000 ____D C:\Users\Todos os Usuários\{A0016562-2A43-EFA4-AC85-71E636C7FA28}
2016-11-11 18:50 - 2016-11-25 08:37 - 00000000 ____D C:\ProgramData\{A0016562-2A43-EFA4-AC85-71E636C7FA28}
2016-11-11 18:50 - 2016-11-11 18:50 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Setup1719281
2016-11-11 17:44 - 2016-11-11 17:44 - 00070533 _____ C:\Users\SAMSUNG 8.1\Documents\Diagnósticos do iTunes.spx
2016-11-11 10:40 - 2016-11-11 10:40 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-11-11 10:40 - 2016-11-11 10:40 - 00001213 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-11-11 10:40 - 2016-11-11 10:40 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Thunderbird
2016-11-11 10:40 - 2016-11-11 10:40 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Thunderbird
2016-11-11 10:39 - 2016-11-11 10:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-11-11 10:37 - 2016-11-11 10:38 - 35023576 _____ (Mozilla) C:\Users\SAMSUNG 8.1\Downloads\Thunderbird Setup 45.4.0.exe
2016-11-11 09:56 - 2016-11-11 09:56 - 00000350 _____ C:\Users\SAMSUNG 8.1\Desktop\PRODUÇÃO REJEITADAS TABWIN.tab
2016-11-11 09:52 - 2016-11-11 09:52 - 00000369 _____ C:\Users\SAMSUNG 8.1\Desktop\PRODUÇÃO APRESENTADAS TABWIN.tab
2016-11-11 08:50 - 2016-11-11 08:50 - 04665907 _____ C:\Users\SAMSUNG 8.1\Downloads\Arq_18928143204 (5).zip
2016-11-11 08:45 - 2016-11-11 08:45 - 00000127 _____ C:\Users\SAMSUNG 8.1\Downloads\contacts.vcf
2016-11-11 08:22 - 2016-11-11 08:31 - 152447768 _____ (Apple Inc.) C:\Users\SAMSUNG 8.1\Downloads\iTunes6464Setup.exe
2016-11-10 22:42 - 2016-11-13 10:42 - 00000000 ____D C:\Users\Todos os Usuários\{97055266-1D47-D8A0-9B81-46E201C3CD2C}
2016-11-10 22:42 - 2016-11-13 10:42 - 00000000 ____D C:\ProgramData\{97055266-1D47-D8A0-9B81-46E201C3CD2C}
2016-11-10 22:41 - 2016-11-10 22:41 - 00000000 ___HD C:\Users\SAMSUNG 8.1\AppData\Roaming\Booking_helper
2016-11-10 22:35 - 2016-11-10 22:35 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-11-10 21:17 - 2016-11-11 17:26 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Apple Computer
2016-11-10 21:17 - 2016-11-10 21:17 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Apple Computer
2016-11-10 21:16 - 2016-11-10 21:16 - 00000000 ____D C:\Users\Todos os Usuários\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2016-11-10 21:16 - 2016-11-10 21:16 - 00000000 ____D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2016-11-10 21:15 - 2016-11-13 14:48 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer
2016-11-10 21:15 - 2016-11-13 14:48 - 00000000 ____D C:\ProgramData\Apple Computer
2016-11-10 21:15 - 2016-11-10 21:15 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Apple
2016-11-10 21:14 - 2016-11-14 19:25 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-10 21:14 - 2016-11-13 15:38 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-11-10 21:14 - 2016-11-13 15:38 - 00000000 ____D C:\ProgramData\Apple
2016-11-10 21:14 - 2016-11-10 21:14 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\LocalLow\Apple Computer
2016-11-10 20:58 - 2016-11-10 21:13 - 81614632 _____ (Apple Inc.) C:\Users\SAMSUNG 8.1\Downloads\iTunes64Setup.exe
2016-11-10 08:33 - 2016-11-10 08:33 - 00284716 _____ C:\Users\SAMSUNG 8.1\Downloads\201610AIH2012472.TXT
2016-11-10 08:32 - 2016-11-10 08:33 - 16608471 _____ ( ) C:\Users\SAMSUNG 8.1\Downloads\sisaih01_ver1310 (1).exe
2016-11-09 12:00 - 2016-12-06 08:39 - 00011206 _____ C:\Users\SAMSUNG 8.1\Desktop\Lista de Funcionarios Connection.xlsx
2016-11-09 10:34 - 2016-11-09 10:43 - 00000000 ____D C:\Users\SAMSUNG 8.1\Downloads\12 Horas para Sobreviver - O Ano da Eleição 2016 WWW.BLUDV.COM
2016-11-09 09:42 - 2016-11-09 10:45 - 00038509 _____ C:\Users\SAMSUNG 8.1\Downloads\Cópia de ATENDIMENTO DIARIO 2016 - OUTUBRO UPA CAMPOS SALES - Cópia.xlsx
2016-11-09 08:42 - 2016-11-09 08:43 - 00270548 _____ C:\Users\SAMSUNG 8.1\Desktop\PAUPACS-.SET
2016-11-09 08:21 - 2016-11-09 08:21 - 00000173 _____ C:\Users\SAMSUNG 8.1\Desktop\webmail.url
2016-11-09 08:10 - 2016-11-09 08:14 - 16608471 _____ ( ) C:\Users\SAMSUNG 8.1\Downloads\sisaih01_ver1310.exe
2016-11-09 08:09 - 2016-11-09 08:10 - 06684609 _____ (Igor Pavlov) C:\Users\SAMSUNG 8.1\Downloads\BDSIA201610b.exe

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-12-07 08:43 - 2016-03-16 14:16 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\WeatherTool
2016-12-07 08:40 - 2016-03-30 20:34 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\CrashDumps
2016-12-07 08:38 - 2014-03-18 06:09 - 01707228 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-07 08:38 - 2014-03-18 05:30 - 00738078 _____ C:\Windows\system32\prfh0416.dat
2016-12-07 08:38 - 2014-03-18 05:30 - 00150714 _____ C:\Windows\system32\prfc0416.dat
2016-12-07 08:38 - 2013-08-22 09:36 - 00000000 ____D C:\Windows\Inf
2016-12-07 08:36 - 2014-08-05 23:38 - 00000000 __SHD C:\Users\SAMSUNG 8.1\IntelGraphicsProfiles
2016-12-07 08:31 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\tracing
2016-12-07 08:30 - 2013-08-22 10:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-07 08:30 - 2013-08-22 10:44 - 00560784 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-07 08:29 - 2016-04-26 10:14 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-12-07 08:25 - 2014-03-18 05:47 - 00000000 ____D C:\Windows\ShellNew
2016-12-07 08:25 - 2013-08-22 11:36 - 00000000 ___RD C:\Windows\ToastData
2016-12-07 08:24 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-12-07 08:23 - 2013-08-22 11:20 - 00000000 ____D C:\Windows\CbsTemp
2016-12-06 10:06 - 2016-02-01 18:51 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{45F0B83D-5C5D-4F70-A297-86BD64140067}
2016-12-06 09:28 - 2016-04-26 13:49 - 00000000 ____D C:\Amazonia
2016-12-01 18:55 - 2016-06-15 08:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer
2016-12-01 18:45 - 2016-02-26 11:04 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\pwclean
2016-12-01 18:45 - 2016-02-18 09:16 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\pwclean
2016-12-01 18:45 - 2014-08-05 23:25 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\VirtualStore
2016-12-01 18:23 - 2016-02-07 10:36 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Media Player Classic
2016-12-01 18:23 - 2016-02-02 20:44 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\uTorrent
2016-12-01 17:53 - 2016-04-26 10:20 - 00000000 ___RD C:\Users\SAMSUNG 8.1\Dropbox
2016-12-01 17:52 - 2016-03-30 21:08 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\Skype
2016-11-28 10:51 - 2016-02-02 19:32 - 00000000 ____D C:\DATASUS
2016-11-28 10:50 - 2016-02-19 11:21 - 00000657 _____ C:\Users\SAMSUNG 8.1\Desktop\SCNES.lnk
2016-11-28 10:45 - 2014-08-05 23:25 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Packages
2016-11-28 09:12 - 2016-03-12 19:12 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-11-28 09:12 - 2016-03-12 19:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-25 22:18 - 2016-11-01 16:17 - 00000000 ____D C:\Users\SAMSUNG 8.1\Downloads\JP Neves
2016-11-25 12:49 - 2016-03-22 07:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-11-25 12:49 - 2016-03-22 07:20 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2016-11-25 12:41 - 2013-08-22 09:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-11-25 12:34 - 2013-08-22 11:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-25 10:37 - 2016-04-28 13:45 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\LocalLow\uTorrent
2016-11-25 10:27 - 2016-03-16 14:23 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Roaming\GoldenGate
2016-11-25 10:25 - 2016-03-16 14:16 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-11-25 10:25 - 2016-03-16 14:16 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-11-25 08:32 - 2013-08-22 11:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-25 08:32 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\AppReadiness
2016-11-23 08:53 - 2016-03-30 21:07 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 08:53 - 2016-03-30 21:07 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-11-23 08:53 - 2016-03-30 21:07 - 00000000 ____D C:\ProgramData\Skype
2016-11-22 22:20 - 2016-06-15 08:27 - 00489704 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2016-11-22 22:20 - 2016-06-15 08:27 - 00235688 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2016-11-20 12:39 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\LiveKernelReports
2016-11-16 13:08 - 2016-11-06 11:13 - 00033727 _____ C:\Users\SAMSUNG 8.1\Desktop\Produção Ambulatorial DANILO_TABWIM.xlsx
2016-11-15 19:16 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\system32\NDF
2016-11-14 22:38 - 2016-05-11 10:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-14 18:51 - 2016-02-01 18:55 - 00002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-14 18:51 - 2016-02-01 18:55 - 00002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-14 17:57 - 2016-08-29 12:45 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\ElevatedDiagnostics
2016-11-13 21:11 - 2016-03-16 14:54 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-13 15:11 - 2016-02-01 19:37 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-11-13 14:48 - 2016-03-25 01:55 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-11-13 14:45 - 2016-02-02 20:32 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-11-13 14:45 - 2016-02-02 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-13 14:44 - 2016-02-02 20:32 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-09 08:00 - 2016-02-01 18:53 - 00000000 ____D C:\Users\SAMSUNG 8.1\AppData\Local\Google

==================== Arquivos na raiz de alguns diretórios =======

2016-11-22 11:48 - 2016-11-22 11:48 - 0055296 _____ () C:\Users\SAMSUNG 8.1\AppData\Local\A5B8078F33C34fb58C5435E4487B9050.CardDesigner1.card
2014-08-05 23:32 - 2014-08-05 23:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2016-11-13 21:12

==================== Fim de FRST.txt ============================