Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Daniel Aquiles

Suspeita de programa espião.

Recommended Posts

Caros amigos, boa noite!

 

Tenho motivos para acreditar que meu computador está com um programa de monitoramento ilegal instalado.

 

Podem me ajudar a identificar e remover se for o caso?

 

Log do ZA-Scan anexo.

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites
diego_moicano    472

Caro @Daniel Aquiles

 

Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe Como Administrador

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Baixe o Junkware Removal Tool (JRT) e salve em sua Área de trabalho (Desktop)

 

Execute o jrt.exe Como Administrador

  • A ferramenta começará o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Ao final um log se abrirá. Será salvo no desktop com o nome de JRT.txt.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 
# Etapa nº 3 #
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
Daniel Aquiles    0
  • Autor do tópico
  • Boa noite! Muito obrigado pela ajuda!

     

    # AdwCleaner 7.0.1.0 - Logfile created on Tue Aug 29 21:08:50 2017
    # Updated on 2017/05/08 by Malwarebytes 
    # Database: 08-29-2017.2
    # Running on Windows 10 Home Single Language (X64)
    # Mode: scan
    # Support: https://www.malwarebytes.com/support

    ***** [ Services ] *****

    No malicious services found.

    ***** [ Folders ] *****

    PUP.Adware.Heuristic, C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
    PUP.Adware.Heuristic, C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
    PUP.Adware.Heuristic, C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
    PUP.Adware.Heuristic, C:\ProgramData\{E1646825-D391-42A0-93AA-27FA810DA093}.log


    ***** [ Files ] *****

    No malicious files found.

    ***** [ DLL ] *****

    No malicious DLLs found.

    ***** [ WMI ] *****

    No malicious WMI found.

    ***** [ Shortcuts ] *****

    No malicious shortcuts found.

    ***** [ Tasks ] *****

    No malicious tasks found.

    ***** [ Registry ] *****

    No malicious registry entries found.

    ***** [ Firefox (and derivatives) ] *****

    No malicious Firefox entries.

    ***** [ Chromium (and derivatives) ] *****

    No malicious Chromium entries.

    *************************

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

     

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Malwarebytes
    Version: 8.1.4 (07.09.2017)
    Operating System: Windows 10 Home Single Language x64 
    Ran by krodr (Administrator) on 29/08/2017 at 18:38:22,93
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


    File System: 2 

    Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task)
    Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)

    Registry: 0 

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 29/08/2017 at 18:42:08,89
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     

    ~ ZHPCleaner v2017.8.29.147 by Nicolas Coolman (2017/08/29)
    ~ Run by krodr (Administrator)  (29/08/2017 18:47:31)
    ~ Web: https://www.nicolascoolman.com
    ~ Blog: https://nicolascoolman.eu/
    ~ Facebook : https://www.facebook.com/nicolascoolman1
    ~ State version : Version OK
    ~ Certificate ZHPCleaner: Legal
    ~ Type : Scanner
    ~ Report : C:\Users\krodr\Desktop\ZHPCleaner.txt
    ~ Quarantine : C:\Users\krodr\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
    ~ UAC : Activate
    ~ Boot Mode : Normal (Normal boot)
    Windows 10 Home Single Language, 64-bit  (Build 15063)


    ---\\  Serviços (0)
    ~ Nenhum ítem malicioso o desnecessários foi encontrado.


    ---\\  Navegadores de Internet (0)
    ~ Nenhum ítem malicioso o desnecessários foi encontrado.


    ---\\  Arquivo hosts (1)
    ~ O arquivo hosts é legítimo (21)


    ---\\  Tarefas automáticas agendadas. (0)
    ~ Nenhum ítem malicioso o desnecessários foi encontrado.


    ---\\  Explorer ( Arquivos, Pastas) (0)
    ~ Nenhum ítem malicioso o desnecessários foi encontrado.


    ---\\  Registro ( Chaves, Valores, Dados ) (0)
    ~ Nenhum ítem malicioso o desnecessários foi encontrado.


    ---\\ Resultado de reparação
    ~ Eventuais reparações feita
    ~ Este navegador está faltando ! (Mozilla Firefox)
    ~ Este navegador está faltando ! (Opera Software)


    ---\\ Estatísticas
    ~ Items scan : 85369
    ~ Items encontrado : 0
    ~ items cancelados : 0
    ~ Items réparo : 0


    ~ End of search in 00h05mn44s
    ~====================
    ZHPCleaner--29082017-18_53_15.txt
     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    diego_moicano    472

    Caro @Daniel Aquiles

     

    Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

     

    Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


    32 bit (x86) ou 64 bit (x64)

    • Clique com o botão direito e escolha Executar como Administrador;
    • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
    • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
    • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
    • Anexe o log Addition.txt.

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Daniel Aquiles    0
  • Autor do tópico
  • Boa noite! Mas uma vez muito obrigado pela ajuda

     

    Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20-08-2017
    Executado por krodr (administrador) em DESKTOP-JSR94N7 (31-08-2017 18:38:16)
    Executando a partir de C:\Users\krodr\Desktop
    Perfis Carregados: krodr (Perfis Disponíveis: krodr)
    Platform: Windows 10 Home Single Language Versão 1703 (X64) Idioma: Português (Brasil)
    Internet Explorer Versão 11 (Navegador padrão: Edge)
    Modo da Inicialização: Normal
    Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processos (Whitelisted) =================

    (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
    (McAfee, Inc.) C:\Windows\System32\mfevtps.exe
    () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
    (Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
    (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
    (McAfee, Inc.) C:\Windows\System32\mfevtps.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
    (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
    (Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
    (Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
    () C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
    (Dell) C:\Program Files\Dell\Product Registration\PRSvc.exe
    (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    () C:\Windows\System32\igfxTray.exe
    () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
    (CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
    () C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
    (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
    (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11707.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
    (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
    (McAfee, Inc.) C:\Program Files\Common Files\McAfee\amcontent\scanners\x86_64\datrep\54.0\mcdatrep.exe
    (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe

    ==================== Registro (Whitelisted) ====================

    (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

    HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8712960 2015-10-07] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-07] (Realtek Semiconductor)
    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
    HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [714160 2015-09-21] (Waves Audio Ltd.)

    ==================== Internet (Whitelisted) ====================

    (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

    Tcpip\Parameters: [DhcpNameServer] 201.6.2.70 201.6.2.170
    Tcpip\..\Interfaces\{4efe9819-b421-490c-b108-0e5466c7a236}: [DhcpNameServer] 201.6.2.70 201.6.2.170
    Tcpip\..\Interfaces\{9f958187-ef7a-4df7-9d53-84d80748e2c3}: [DhcpNameServer] 10.42.0.251 10.42.0.252

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-2895497334-2066401177-3513617416-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-2895497334-2066401177-3513617416-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
    BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-07-25] (McAfee, Inc.)
    BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-07-25] (McAfee, Inc.)
    Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-07-25] (McAfee, Inc.)
    Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-07-25] (McAfee, Inc.)
    Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-09-23] (McAfee, Inc.)
    Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-09-23] (McAfee, Inc.)

    FireFox:
    ========
    FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
    FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-08-30] [não assinado]
    FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
    FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-29] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-29] (Google Inc.)

    Chrome: 
    =======
    CHR Profile: C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default [2017-08-31]
    CHR Extension: (Google Apresentações) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-29]
    CHR Extension: (Google Docs) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-29]
    CHR Extension: (Google Drive) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-29]
    CHR Extension: (YouTube) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-29]
    CHR Extension: (Planilhas do Google) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-29]
    CHR Extension: (McAfee® WebAdvisor) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-08-30]
    CHR Extension: (Documentos Google off-line) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-29]
    CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-29]
    CHR Extension: (Gmail) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-29]
    CHR Extension: (Chrome Media Router) - C:\Users\krodr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-29]
    CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

    ==================== Serviços (Whitelisted) ====================

    (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

    R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [323152 2015-06-07] (Windows (R) Win 7 DDK provider)
    S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-30] (Dropbox, Inc.)
    S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-30] (Dropbox, Inc.)
    R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [153328 2015-06-15] (Dell Inc.)
    R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
    R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [28008 2015-12-09] ()
    R2 Dell Product Registration; C:\Program Files\Dell\Product Registration\PRSvc.exe [32104 2016-01-25] (Dell)
    R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (Dell Inc.)
    R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
    R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [382456 2017-02-28] (Intel Corporation)
    S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
    R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
    S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
    R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [590880 2017-07-25] (McAfee, Inc.)
    R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-09-23] (McAfee, Inc.)
    S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [379896 2015-07-03] (McAfee, Inc.)
    R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
    R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
    S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
    R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-08-02] (McAfee, Inc.)
    R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
    R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-09-13] (McAfee, Inc.)
    S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
    R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
    S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
    R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
    R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] ()
    R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-10-07] (Realtek Semiconductor)
    R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [566192 2015-08-19] (Waves Audio Ltd.)
    S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
    S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

    ===================== Drivers (Whitelisted) ======================

    (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

    R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4325808 2016-07-28] (Qualcomm Atheros Communications, Inc.)
    R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-08-02] (McAfee, Inc.)
    R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
    R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
    S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc.)
    S3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation)
    S3 iaLPSS_I2C; C:\WINDOWS\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation)
    S3 iaLPSS_SPI; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [113416 2015-06-15] (Intel Corporation)
    S3 iaLPSS_UART2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [155400 2015-06-15] (Intel Corporation)
    R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419624 2016-08-02] (McAfee, Inc.)
    R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-08-02] (McAfee, Inc.)
    S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-08-02] (McAfee, Inc.)
    R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-08-02] (McAfee, Inc.)
    R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-08-02] (McAfee, Inc.)
    R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc.)
    S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc.)
    R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
    R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243496 2016-08-02] (McAfee, Inc.)
    R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
    S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [28344 2015-08-27] (Windows (R) Win 7 DDK provider)
    R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
    R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
    R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [402960 2015-05-13] (Realsil Semiconductor Corporation)
    S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
    S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
    S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
    S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

    ==================== NetSvcs (Whitelisted) ===================

    (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


    ==================== Três Meses Criados arquivos e pastas ========

    (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

    2017-08-31 18:38 - 2017-08-31 18:40 - 000019506 _____ C:\Users\krodr\Desktop\FRST.txt
    2017-08-31 18:38 - 2017-08-31 18:38 - 000000000 ____D C:\FRST
    2017-08-31 18:37 - 2017-08-31 18:37 - 002395648 _____ (Farbar) C:\Users\krodr\Desktop\FRST64.exe
    2017-08-30 21:00 - 2017-08-30 21:00 - 000002425 _____ C:\Users\krodr\Downloads\Versão27.1.4.154.zip
    2017-08-30 12:03 - 2017-08-30 12:03 - 000000684 _____ C:\Users\krodr\Downloads\senhas.txt
    2017-08-30 12:02 - 2017-08-31 18:37 - 000004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
    2017-08-30 12:02 - 2017-08-30 12:02 - 000004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
    2017-08-30 12:02 - 2016-08-02 01:03 - 000216704 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
    2017-08-29 20:26 - 2017-08-29 20:26 - 000000000 ____D C:\Users\Todos os Usuários\9f8d562e-dc42-499c-ac92-91c932b4901e
    2017-08-29 18:53 - 2017-08-29 18:59 - 000001514 _____ C:\Users\krodr\Desktop\ZHPCleaner.txt
    2017-08-29 18:46 - 2017-08-29 18:53 - 000000000 ____D C:\Users\krodr\AppData\Roaming\ZHP
    2017-08-29 18:46 - 2017-08-29 18:46 - 000000877 _____ C:\Users\krodr\Desktop\ZHPCleaner.lnk
    2017-08-29 18:46 - 2017-08-29 18:46 - 000000000 ____D C:\Users\krodr\AppData\Local\ZHP
    2017-08-29 18:45 - 2017-08-29 18:46 - 002867584 _____ C:\Users\krodr\Desktop\ZHPCleaner.exe
    2017-08-29 18:42 - 2017-08-29 18:43 - 000000726 _____ C:\Users\krodr\Desktop\JRT.txt
    2017-08-29 18:37 - 2017-08-29 18:37 - 000001164 _____ C:\Users\krodr\Desktop\AdwCleaner[S2].txt
    2017-08-29 18:37 - 2017-08-29 18:37 - 000001096 _____ C:\Users\krodr\Desktop\AdwCleaner[S1].txt
    2017-08-29 18:36 - 2017-08-29 18:36 - 000001258 _____ C:\Users\krodr\Desktop\AdwCleaner[S0].txt
    2017-08-29 18:29 - 2017-08-29 18:29 - 001790024 _____ (Malwarebytes) C:\Users\krodr\Desktop\JRT.exe
    2017-08-29 18:27 - 2017-08-29 18:27 - 000000000 ____D C:\Program Files (x86)\Dell Update
    2017-08-29 18:09 - 2017-08-29 18:09 - 000003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
    2017-08-29 18:09 - 2017-08-29 18:09 - 000000000 ____D C:\Users\Todos os Usuários\Intel Security
    2017-08-29 18:08 - 2017-08-29 18:08 - 000000000 ____D C:\Program Files\Common Files\Intel Security
    2017-08-29 18:06 - 2017-08-29 18:35 - 000000000 ____D C:\AdwCleaner
    2017-08-29 18:05 - 2017-08-29 18:05 - 008185288 _____ (Malwarebytes) C:\Users\krodr\Desktop\adwcleaner_7.0.1.0.exe
    2017-08-29 14:54 - 2017-08-29 14:54 - 000012901 _____ C:\Users\krodr\Desktop\ZA-Scan.txt
    2017-08-29 14:52 - 2017-08-29 14:52 - 000000000 ____D C:\Users\krodr\AppData\Local\PackageStaging
    2017-08-29 14:50 - 2017-08-29 14:50 - 000012898 _____ C:\ZA-Scan.txt
    2017-08-29 14:48 - 2017-08-29 14:48 - 000000000 ____D C:\Users\krodr\AppData\Local\DBG
    2017-08-29 14:47 - 2017-08-29 14:47 - 000000000 ____D C:\zoek_backup
    2017-08-29 14:45 - 2017-08-29 14:47 - 000000000 ____D C:\WINDOWS\system32\MRT
    2017-08-29 14:45 - 2017-08-29 14:46 - 001370112 _____ C:\Users\krodr\Desktop\ZA-Scan.exe
    2017-08-29 14:45 - 2017-08-29 14:45 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2017-08-29 07:45 - 2017-08-29 07:45 - 000003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
    2017-08-29 07:45 - 2017-08-29 07:45 - 000003462 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
    2017-08-29 07:45 - 2017-08-29 07:45 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2895497334-2066401177-3513617416-1001
    2017-08-29 07:45 - 2017-08-29 07:45 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
    2017-08-29 07:45 - 2017-08-29 07:45 - 000000000 ____D C:\Program Files (x86)\Google
    2017-08-29 07:44 - 2017-08-29 18:33 - 000000000 ____D C:\Users\krodr\AppData\Local\Google
    2017-08-29 07:44 - 2017-08-29 07:44 - 000000000 ____D C:\Users\krodr\AppData\Roaming\Skype
    2017-08-29 07:44 - 2017-08-29 07:44 - 000000000 ____D C:\Users\krodr\AppData\Local\MicrosoftEdge
    2017-08-29 07:43 - 2017-08-29 07:45 - 000002375 _____ C:\Users\krodr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
    2017-08-29 07:43 - 2017-08-29 07:45 - 000000000 ___RD C:\Users\krodr\OneDrive
    2017-08-29 07:42 - 2017-08-29 07:42 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
    2017-08-29 07:42 - 2017-08-29 07:42 - 000000000 ____D C:\Users\krodr\AppData\Roaming\Macromedia
    2017-08-29 07:41 - 2017-08-29 07:41 - 000000000 ____D C:\Users\krodr\AppData\Roaming\DropboxOEM
    2017-08-29 07:41 - 2017-08-29 07:41 - 000000000 ____D C:\Users\krodr\AppData\Local\DropboxOEM
    2017-08-29 07:41 - 2017-08-29 07:41 - 000000000 ____D C:\Users\krodr\AppData\Local\Comms
    2017-08-29 07:40 - 2017-08-29 14:57 - 000000000 ____D C:\Users\krodr\AppData\Local\Publishers
    2017-08-29 07:40 - 2017-08-29 07:40 - 000000000 ____D C:\Users\krodr\AppData\Local\Power2Go8
    2017-08-29 07:40 - 2017-08-29 07:40 - 000000000 ____D C:\Users\krodr\AppData\Local\NVIDIA
    2017-08-29 07:39 - 2017-08-30 20:18 - 000000000 __SHD C:\Users\krodr\IntelGraphicsProfiles
    2017-08-29 07:39 - 2017-08-29 18:51 - 000000000 ____D C:\Users\krodr\AppData\Local\Packages
    2017-08-29 07:39 - 2017-08-29 18:25 - 000000000 ____D C:\Users\krodr\AppData\Local\ConnectedDevicesPlatform
    2017-08-29 07:39 - 2017-08-29 07:39 - 000000000 ____D C:\Users\krodr\AppData\Roaming\Adobe
    2017-08-29 07:39 - 2017-08-29 07:39 - 000000000 ____D C:\Users\krodr\AppData\Local\VirtualStore
    2017-08-29 07:39 - 2017-08-29 07:39 - 000000000 ____D C:\Users\krodr\AppData\Local\TileDataLayer
    2017-08-29 07:37 - 2017-08-29 18:54 - 000000000 ____D C:\Users\krodr
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000020 ___SH C:\Users\krodr\ntuser.ini
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Modelos
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Meus Documentos
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Menu Iniciar
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Documents\Minhas Músicas
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Documents\Minhas Imagens
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Documents\Meus Vídeos
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Dados de Aplicativos
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Configurações Locais
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\AppData\Local\Histórico
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\AppData\Local\Dados de Aplicativos
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Ambiente de Rede
    2017-08-29 07:37 - 2017-08-29 07:37 - 000000000 _SHDL C:\Users\krodr\Ambiente de Impressão
    2017-08-29 04:33 - 2017-08-29 04:33 - 000003322 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Usuário Padrão
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Todos os Usuários\Modelos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Todos os Usuários\Documentos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Todos os Usuários\Dados de Aplicativos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Todos os Usuários
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Músicas
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Imagens
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Public\Documents\Meus Vídeos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Modelos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Meus Documentos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Menu Iniciar
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Configurações Locais
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Program Files\Common Files\Sistema
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Program Files\Arquivos Comuns
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Documents and Settings
    2017-08-29 04:31 - 2017-08-29 04:31 - 000000000 _SHDL C:\Arquivos de Programas
    2017-08-29 04:29 - 2017-08-30 17:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
    2017-08-29 04:29 - 2017-08-30 12:02 - 000003186 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
    2017-08-29 04:29 - 2017-08-30 11:56 - 000004106 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
    2017-08-29 04:29 - 2017-08-30 11:56 - 000003874 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
    2017-08-29 04:29 - 2017-08-29 18:09 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
    2017-08-29 04:29 - 2017-08-29 04:29 - 000022956 _____ C:\WINDOWS\system32\emptyregdb.dat
    2017-08-29 04:29 - 2017-08-29 04:29 - 000002528 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
    2017-08-29 04:29 - 2017-08-29 04:29 - 000002528 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
    2017-08-29 04:29 - 2017-08-29 04:29 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
    2017-08-29 04:28 - 2017-03-18 17:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
    2017-08-29 04:18 - 2017-08-29 04:18 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
    2017-08-29 04:17 - 2017-08-29 04:17 - 000000000 ____D C:\Users\Todos os Usuários\USOShared
    2017-08-29 04:11 - 2017-08-29 04:23 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
    2017-08-29 04:11 - 2017-08-29 04:19 - 000000000 ____D C:\Program Files\NVIDIA Corporation
    2017-08-29 04:11 - 2017-08-29 04:11 - 000000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
    2017-08-29 04:11 - 2017-08-29 04:11 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
    2017-08-29 04:11 - 2017-08-29 04:11 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
    2017-08-29 04:11 - 2017-08-29 04:11 - 000000000 ____D C:\Program Files\Common Files\Atheros
    2017-08-29 04:11 - 2016-08-01 09:54 - 006386744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 002466360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 001762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 001365048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
    2017-08-29 04:11 - 2016-08-01 09:54 - 000547896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 000393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
    2017-08-29 04:11 - 2016-08-01 09:54 - 000071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
    2017-08-29 04:11 - 2016-07-28 10:02 - 007242545 _____ C:\WINDOWS\system32\nvcoproc.bin
    2017-08-29 04:10 - 2017-08-30 20:18 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
    2017-08-29 04:10 - 2017-08-29 04:19 - 000000000 ____D C:\Program Files\Intel
    2017-08-29 04:10 - 2017-08-29 04:18 - 000000000 ____D C:\Intel
    2017-08-29 04:10 - 2017-08-29 04:10 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
    2017-08-29 04:10 - 2017-08-29 04:10 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
    2017-08-29 04:10 - 2017-08-29 04:10 - 000000000 ____D C:\Program Files\Realtek
    2017-08-29 04:10 - 2017-08-29 04:10 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
    2017-08-29 04:10 - 2017-02-28 00:14 - 000112656 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
    2017-08-29 04:10 - 2017-02-28 00:14 - 000108560 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
    2017-08-29 04:06 - 2017-08-31 18:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
    2017-08-29 04:06 - 2017-08-29 04:06 - 000000000 ____D C:\WINDOWS\ServiceProfiles
    2017-08-29 04:05 - 2017-08-29 18:21 - 000235096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
    2017-08-29 00:40 - 2017-08-29 00:40 - 000000000 ____D C:\WINDOWS\InfusedApps
    2017-08-29 00:39 - 2017-08-29 00:45 - 000000000 ____D C:\Windows.old
    2017-08-29 00:39 - 2017-08-29 00:39 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
    2017-08-29 00:35 - 2017-08-29 00:35 - 000000000 ____D C:\WINDOWS\Setup
    2017-08-29 00:34 - 2017-08-29 04:23 - 000000000 ____D C:\WINDOWS\OCR
    2017-08-29 00:34 - 2017-08-29 00:34 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
    2017-08-29 00:34 - 2017-08-29 00:34 - 000000000 ____D C:\Program Files\Reference Assemblies
    2017-08-29 00:34 - 2017-08-29 00:34 - 000000000 ____D C:\Program Files\MSBuild
    2017-08-29 00:34 - 2017-08-29 00:34 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
    2017-08-29 00:34 - 2017-08-29 00:34 - 000000000 ____D C:\Program Files (x86)\MSBuild
    2017-08-29 00:33 - 2017-08-30 17:21 - 000810932 _____ C:\WINDOWS\system32\prfh0416.dat
    2017-08-29 00:33 - 2017-08-30 17:21 - 000173214 _____ C:\WINDOWS\system32\prfc0416.dat
    2017-08-29 00:33 - 2017-08-29 00:32 - 000328664 _____ C:\WINDOWS\system32\prfi0416.dat
    2017-08-29 00:33 - 2017-08-29 00:32 - 000040858 _____ C:\WINDOWS\system32\prfd0416.dat
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\winrm
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\WCN
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\slmgr
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\0409
    2017-08-29 00:32 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\DigitalLocker
    2017-08-29 00:30 - 2017-07-31 12:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
    2017-08-29 00:30 - 2017-07-31 12:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
    2017-08-29 00:28 - 2017-08-31 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
    2017-08-29 00:28 - 2017-08-31 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
    2017-08-29 00:28 - 2017-08-30 20:16 - 000000000 ____D C:\WINDOWS\system32\NDF
    2017-08-29 00:28 - 2017-08-29 18:27 - 000000000 ___RD C:\Program Files (x86)
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ___SD C:\WINDOWS\system32\F12
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\oobe
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\migwiz
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\Dism
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\system32\appraiser
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\ShellExperiences
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\WINDOWS\Provisioning
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\Program Files\Windows Photo Viewer
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\Program Files\Windows Defender
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
    2017-08-29 00:28 - 2017-08-29 18:17 - 000000000 ____D C:\Program Files (x86)\Windows Defender
    2017-08-29 00:28 - 2017-08-29 18:11 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
    2017-08-29 00:28 - 2017-08-29 04:34 - 000000000 ____D C:\WINDOWS\rescache
    2017-08-29 00:28 - 2017-08-29 04:32 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
    2017-08-29 00:28 - 2017-08-29 04:31 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
    2017-08-29 00:28 - 2017-08-29 04:31 - 000000000 ____D C:\Program Files\Windows NT
    2017-08-29 00:28 - 2017-08-29 04:30 - 000000000 ____D C:\WINDOWS\Registration
    2017-08-29 00:28 - 2017-08-29 04:29 - 000000000 __RHD C:\Users\Public\Libraries
    2017-08-29 00:28 - 2017-08-29 04:23 - 000000000 ____D C:\WINDOWS\system32\spool
    2017-08-29 00:28 - 2017-08-29 04:17 - 000000000 ____D C:\Users\Todos os Usuários\USOPrivate
    2017-08-29 00:28 - 2017-08-29 04:15 - 000000000 ____D C:\WINDOWS\system32\Sysprep
    2017-08-29 00:28 - 2017-08-29 04:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
    2017-08-29 00:28 - 2017-08-29 04:12 - 000000000 ___RD C:\WINDOWS\MiracastView
    2017-08-29 00:28 - 2017-08-29 04:12 - 000000000 ____D C:\WINDOWS\HoloShell
    2017-08-29 00:28 - 2017-08-29 04:11 - 000000000 ____D C:\WINDOWS\Help
    2017-08-29 00:28 - 2017-08-29 00:39 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
    2017-08-29 00:28 - 2017-08-29 00:34 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
    2017-08-29 00:28 - 2017-08-29 00:34 - 000000000 ____D C:\WINDOWS\SystemApps
    2017-08-29 00:28 - 2017-08-29 00:34 - 000000000 ____D C:\WINDOWS\system32\MUI
    2017-08-29 00:28 - 2017-08-29 00:34 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ___SD C:\WINDOWS\system32\dsc
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\setup
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\system32\Com
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\IME
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\Program Files\Common Files\System
    2017-08-29 00:28 - 2017-08-29 00:32 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 __SHD C:\Program Files\Windows Sidebar
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 __RSD C:\WINDOWS\Media
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___SD C:\WINDOWS\system32\Nui
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___SD C:\WINDOWS\system32\Configuration
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Web
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Vss
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\tracing
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\TAPI
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\MsDtc
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SystemResources
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\winevt
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\ras
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\PointOfService
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\MsDtc
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\Macromed
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\Ipmi
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\InputMethod
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\inetsrv
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\IME
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\icsxml
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\ias
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\downlevel
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\DDFs
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\config\TxR
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\config\Journal
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\Bthprops
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\AppLocker
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\System
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SKB
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\security
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\schemas
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\SchCache
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Resources
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\PLA
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Performance
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\ModemLogs
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\L2Schemas
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\InputMethod
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Globalization
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Cursors
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\Branding
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\bcastdvr
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\appcompat
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\addins
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Users\Todos os Usuários\WindowsHolographicDevices
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files\Windows Security
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files\Windows Portable Devices
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files\Common Files\Services
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files (x86)\Windows NT
    2017-08-29 00:28 - 2017-08-29 00:28 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
    2017-08-29 00:28 - 2017-08-29 00:25 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
    2017-08-29 00:28 - 2017-08-29 00:25 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
    2017-08-29 00:28 - 2017-08-29 00:25 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
    2017-08-29 00:28 - 2017-08-29 00:25 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
    2017-08-29 00:28 - 2017-08-29 00:25 - 000015940 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
    2017-08-29 00:28 - 2017-08-29 00:25 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
    2017-08-29 00:28 - 2017-08-29 00:25 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
    2017-08-29 00:28 - 2017-08-29 00:25 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
    2017-08-29 00:28 - 2017-08-29 00:25 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
    2017-08-29 00:28 - 2017-08-29 00:25 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
    2017-08-29 00:26 - 2017-08-30 17:15 - 000000000 ____D C:\WINDOWS\INF
    2017-08-29 00:18 - 2017-08-29 14:50 - 000000000 ____D C:\WINDOWS\CbsTemp
    2017-08-29 00:12 - 2017-08-29 18:20 - 000786432 _____ C:\WINDOWS\system32\config\BBI
    2017-08-29 00:12 - 2017-08-29 18:20 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
    2017-08-29 00:12 - 2017-08-29 07:43 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
    2017-08-29 00:11 - 2017-08-29 18:20 - 078381056 _____ C:\WINDOWS\system32\config\SOFTWARE
    2017-08-29 00:11 - 2017-08-29 18:20 - 022282240 _____ C:\WINDOWS\system32\config\SYSTEM
    2017-08-29 00:11 - 2017-08-29 18:20 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY
    2017-08-29 00:11 - 2017-08-29 04:32 - 000000000 ____D C:\$Windows.~BT
    2017-08-29 00:11 - 2017-08-29 04:31 - 000000000 ____D C:\WINDOWS\Panther
    2017-08-29 00:11 - 2017-08-29 00:32 - 000000000 ____D C:\WINDOWS\servicing
    2017-08-29 00:11 - 2017-08-29 00:30 - 000131072 _____ C:\WINDOWS\system32\config\SAM
    2017-08-29 00:11 - 2017-08-29 00:28 - 000000000 ____D C:\WINDOWS\system32\SMI
    2017-08-28 23:57 - 2017-08-29 00:43 - 000000000 ___HD C:\$SysReset
    2017-08-08 23:34 - 2017-07-28 01:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
    2017-08-08 23:34 - 2017-07-28 01:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
    2017-08-08 23:34 - 2017-07-28 01:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
    2017-08-08 23:34 - 2017-07-28 01:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
    2017-08-08 23:33 - 2017-07-31 23:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
    2017-08-08 23:33 - 2017-07-31 23:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
    2017-08-08 23:33 - 2017-07-31 23:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
    2017-08-08 23:33 - 2017-07-31 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
    2017-08-08 23:33 - 2017-07-31 23:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
    2017-08-08 23:33 - 2017-07-31 23:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
    2017-08-08 23:33 - 2017-07-31 23:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
    2017-08-08 23:33 - 2017-07-31 23:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
    2017-08-08 23:33 - 2017-07-31 23:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
    2017-08-08 23:33 - 2017-07-31 23:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
    2017-08-08 23:33 - 2017-07-31 23:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
    2017-08-08 23:33 - 2017-07-31 23:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
    2017-08-08 23:33 - 2017-07-31 23:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2017-08-08 23:33 - 2017-07-31 23:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
    2017-08-08 23:33 - 2017-07-31 23:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
    2017-08-08 23:33 - 2017-07-31 23:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
    2017-08-08 23:33 - 2017-07-31 23:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
    2017-08-08 23:33 - 2017-07-31 23:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
    2017-08-08 23:33 - 2017-07-31 23:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
    2017-08-08 23:33 - 2017-07-31 23:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2017-08-08 23:33 - 2017-07-31 23:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
    2017-08-08 23:33 - 2017-07-31 23:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
    2017-08-08 23:33 - 2017-07-31 23:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2017-08-08 23:33 - 2017-07-31 23:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
    2017-08-08 23:33 - 2017-07-31 23:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2017-08-08 23:33 - 2017-07-31 23:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
    2017-08-08 23:33 - 2017-07-31 23:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
    2017-08-08 23:33 - 2017-07-31 23:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2017-08-08 23:33 - 2017-07-31 23:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2017-08-08 23:33 - 2017-07-31 23:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
    2017-08-08 23:33 - 2017-07-31 23:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2017-08-08 23:33 - 2017-07-31 23:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
    2017-08-08 23:33 - 2017-07-31 22:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2017-08-08 23:33 - 2017-07-31 22:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
    2017-08-08 23:33 - 2017-07-31 22:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2017-08-08 23:33 - 2017-07-31 22:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
    2017-08-08 23:33 - 2017-07-31 19:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
    2017-08-08 23:33 - 2017-07-28 02:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2017-08-08 23:33 - 2017-07-28 02:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
    2017-08-08 23:33 - 2017-07-28 02:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
    2017-08-08 23:33 - 2017-07-28 02:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
    2017-08-08 23:33 - 2017-07-28 02:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
    2017-08-08 23:33 - 2017-07-28 02:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
    2017-08-08 23:33 - 2017-07-28 02:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
    2017-08-08 23:33 - 2017-07-28 02:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
    2017-08-08 23:33 - 2017-07-28 01:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2017-08-08 23:33 - 2017-07-28 01:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
    2017-08-08 23:33 - 2017-07-28 01:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
    2017-08-08 23:33 - 2017-07-28 01:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2017-08-08 23:33 - 2017-07-28 01:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
    2017-08-08 23:33 - 2017-07-28 01:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
    2017-08-08 23:33 - 2017-07-28 01:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
    2017-08-08 23:33 - 2017-07-28 01:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
    2017-08-08 23:33 - 2017-07-28 01:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
    2017-08-08 23:33 - 2017-07-28 01:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
    2017-08-08 23:33 - 2017-07-28 01:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
    2017-08-08 23:33 - 2017-07-28 01:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2017-08-08 23:33 - 2017-07-28 01:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
    2017-08-08 23:33 - 2017-07-28 01:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
    2017-08-08 23:33 - 2017-07-28 01:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
    2017-08-08 23:33 - 2017-07-28 01:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
    2017-08-08 23:33 - 2017-07-28 01:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
    2017-08-08 23:33 - 2017-07-28 01:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
    2017-08-08 23:33 - 2017-07-28 01:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
    2017-08-08 23:33 - 2017-07-28 01:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
    2017-08-08 23:33 - 2017-07-28 01:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
    2017-08-08 23:33 - 2017-07-28 01:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
    2017-08-08 23:33 - 2017-07-28 01:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
    2017-08-08 23:33 - 2017-07-28 01:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
    2017-08-08 23:33 - 2017-07-28 01:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
    2017-08-08 23:33 - 2017-07-28 01:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
    2017-08-08 23:33 - 2017-07-28 01:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
    2017-08-08 23:33 - 2017-07-28 01:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
    2017-08-08 23:33 - 2017-07-28 01:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
    2017-08-08 23:33 - 2017-07-28 01:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
    2017-08-08 23:33 - 2017-07-28 01:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
    2017-08-08 23:33 - 2017-07-28 01:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
    2017-08-08 23:33 - 2017-07-28 01:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
    2017-08-08 23:33 - 2017-07-28 01:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
    2017-08-08 23:33 - 2017-07-28 01:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
    2017-08-08 23:33 - 2017-07-28 01:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
    2017-08-08 23:33 - 2017-07-28 01:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
    2017-08-08 23:33 - 2017-07-28 01:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
    2017-08-08 23:33 - 2017-07-28 01:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
    2017-08-08 23:33 - 2017-07-28 01:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
    2017-08-08 23:33 - 2017-07-28 01:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
    2017-08-08 23:33 - 2017-07-28 01:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
    2017-08-08 23:33 - 2017-07-28 01:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
    2017-08-08 23:33 - 2017-07-28 01:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
    2017-08-08 23:33 - 2017-07-28 01:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2017-08-08 23:33 - 2017-07-28 01:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
    2017-08-08 23:33 - 2017-07-28 01:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2017-08-08 23:33 - 2017-07-28 01:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
    2017-08-08 23:33 - 2017-07-28 01:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
    2017-08-08 23:33 - 2017-07-28 01:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
    2017-08-08 23:33 - 2017-07-28 01:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
    2017-08-08 23:33 - 2017-07-28 01:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
    2017-08-08 23:33 - 2017-07-28 01:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
    2017-08-08 23:33 - 2017-07-28 01:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
    2017-08-08 23:33 - 2017-07-28 01:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
    2017-08-08 23:33 - 2017-07-28 01:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
    2017-08-08 23:33 - 2017-07-28 01:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
    2017-08-08 23:33 - 2017-07-28 01:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
    2017-08-08 23:33 - 2017-07-28 01:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
    2017-08-08 23:32 - 2017-07-31 23:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2017-08-08 23:32 - 2017-07-31 23:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
    2017-08-08 23:32 - 2017-07-31 23:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
    2017-08-08 23:32 - 2017-07-31 23:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2017-08-08 23:32 - 2017-07-31 23:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2017-08-08 23:32 - 2017-07-31 23:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
    2017-08-08 23:32 - 2017-07-31 23:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
    2017-08-08 23:32 - 2017-07-31 23:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
    2017-08-08 23:32 - 2017-07-31 23:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
    2017-08-08 23:32 - 2017-07-31 23:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
    2017-08-08 23:32 - 2017-07-31 23:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
    2017-08-08 23:32 - 2017-07-31 23:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
    2017-08-08 23:32 - 2017-07-31 23:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
    2017-08-08 23:32 - 2017-07-31 23:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
    2017-08-08 23:32 - 2017-07-31 23:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
    2017-08-08 23:32 - 2017-07-31 23:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
    2017-08-08 23:32 - 2017-07-31 23:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2017-08-08 23:32 - 2017-07-31 23:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2017-08-08 23:32 - 2017-07-31 22:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
    2017-08-08 23:32 - 2017-07-31 22:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2017-08-08 23:32 - 2017-07-31 22:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
    2017-08-08 23:32 - 2017-07-31 22:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
    2017-08-08 23:32 - 2017-07-31 22:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
    2017-08-08 23:32 - 2017-07-31 22:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
    2017-08-08 23:32 - 2017-07-31 22:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
    2017-08-08 23:32 - 2017-07-31 22:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2017-08-08 23:32 - 2017-07-31 22:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
    2017-08-08 23:32 - 2017-07-31 22:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
    2017-08-08 23:32 - 2017-07-31 22:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
    2017-08-08 23:32 - 2017-07-31 22:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
    2017-08-08 23:32 - 2017-07-31 22:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
    2017-08-08 23:32 - 2017-07-31 22:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2017-08-08 23:32 - 2017-07-31 22:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
    2017-08-08 23:32 - 2017-07-31 22:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2017-08-08 23:32 - 2017-07-31 22:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2017-08-08 23:32 - 2017-07-31 22:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2017-08-08 23:32 - 2017-07-31 22:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
    2017-08-08 23:32 - 2017-07-31 22:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2017-08-08 23:32 - 2017-07-31 22:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
    2017-08-08 23:32 - 2017-07-28 02:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
    2017-08-08 23:32 - 2017-07-28 02:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
    2017-08-08 23:32 - 2017-07-28 02:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
    2017-08-08 23:32 - 2017-07-28 02:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
    2017-08-08 23:32 - 2017-07-28 02:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
    2017-08-08 23:32 - 2017-07-28 02:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
    2017-08-08 23:32 - 2017-07-28 02:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2017-08-08 23:32 - 2017-07-28 02:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
    2017-08-08 23:32 - 2017-07-28 02:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2017-08-08 23:32 - 2017-07-28 02:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
    2017-08-08 23:32 - 2017-07-28 02:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
    2017-08-08 23:32 - 2017-07-28 02:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
    2017-08-08 23:32 - 2017-07-28 02:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
    2017-08-08 23:32 - 2017-07-28 02:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
    2017-08-08 23:32 - 2017-07-28 02:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2017-08-08 23:32 - 2017-07-28 02:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
    2017-08-08 23:32 - 2017-07-28 02:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
    2017-08-08 23:32 - 2017-07-28 02:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
    2017-08-08 23:32 - 2017-07-28 02:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2017-08-08 23:32 - 2017-07-28 02:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
    2017-08-08 23:32 - 2017-07-28 02:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
    2017-08-08 23:32 - 2017-07-28 02:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
    2017-08-08 23:32 - 2017-07-28 02:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
    2017-08-08 23:32 - 2017-07-28 02:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
    2017-08-08 23:32 - 2017-07-28 02:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
    2017-08-08 23:32 - 2017-07-28 01:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
    2017-08-08 23:32 - 2017-07-28 01:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
    2017-08-08 23:32 - 2017-07-28 01:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
    2017-08-08 23:32 - 2017-07-28 01:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
    2017-08-08 23:32 - 2017-07-28 01:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
    2017-08-08 23:32 - 2017-07-28 01:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
    2017-08-08 23:32 - 2017-07-28 01:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
    2017-08-08 23:32 - 2017-07-28 01:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
    2017-08-08 23:32 - 2017-07-28 01:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
    2017-08-08 23:32 - 2017-07-28 01:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
    2017-08-08 23:32 - 2017-07-28 01:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
    2017-08-08 23:32 - 2017-07-28 01:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
    2017-08-08 23:32 - 2017-07-28 01:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
    2017-08-08 23:32 - 2017-07-28 01:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
    2017-08-08 23:32 - 2017-07-28 01:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
    2017-08-08 23:32 - 2017-07-28 01:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
    2017-08-08 23:32 - 2017-07-28 01:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
    2017-08-08 23:32 - 2017-07-28 01:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
    2017-08-08 23:32 - 2017-07-28 01:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
    2017-08-08 23:32 - 2017-07-28 01:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
    2017-08-08 23:32 - 2017-07-28 01:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
    2017-08-08 23:32 - 2017-07-28 01:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
    2017-08-08 23:32 - 2017-07-28 01:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
    2017-08-08 23:32 - 2017-07-28 01:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
    2017-08-08 23:32 - 2017-07-28 01:20 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
    2017-08-08 23:32 - 2017-07-28 01:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
    2017-08-08 23:32 - 2017-07-28 01:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
    2017-08-08 23:32 - 2017-07-28 01:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
    2017-08-08 23:32 - 2017-07-28 01:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
    2017-08-08 23:32 - 2017-07-28 01:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
    2017-08-08 23:32 - 2017-07-28 01:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
    2017-08-08 23:32 - 2017-07-28 01:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
    2017-08-08 23:32 - 2017-07-28 01:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
    2017-08-08 23:32 - 2017-07-28 01:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2017-08-08 23:32 - 2017-07-28 01:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
    2017-08-08 23:32 - 2017-07-28 01:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
    2017-08-08 23:32 - 2017-07-28 01:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
    2017-08-08 23:32 - 2017-07-28 01:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
    2017-08-08 23:32 - 2017-07-28 01:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2017-08-08 23:32 - 2017-07-28 01:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
    2017-08-08 23:32 - 2017-07-28 01:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
    2017-08-08 23:32 - 2017-07-28 01:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
    2017-08-08 23:32 - 2017-07-28 01:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
    2017-08-08 23:32 - 2017-07-28 01:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
    2017-08-08 23:32 - 2017-07-28 01:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
    2017-08-08 23:32 - 2017-07-28 01:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
    2017-08-08 23:32 - 2017-07-28 01:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
    2017-08-08 23:32 - 2017-07-28 01:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2017-08-08 23:32 - 2017-07-28 01:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
    2017-08-08 23:32 - 2017-07-28 01:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
    2017-08-08 23:32 - 2017-07-28 01:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
    2017-08-08 23:32 - 2017-07-28 01:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
    2017-08-08 23:32 - 2017-07-28 01:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
    2017-08-08 23:32 - 2017-07-28 01:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
    2017-08-08 23:32 - 2017-07-28 01:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
    2017-08-08 23:32 - 2017-07-28 01:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
    2017-08-08 23:32 - 2017-07-28 01:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
    2017-08-08 23:32 - 2017-07-28 01:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
    2017-08-08 23:32 - 2017-07-28 01:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
    2017-08-08 23:32 - 2017-07-28 01:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
    2017-08-08 23:32 - 2017-07-28 01:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
    2017-08-08 23:32 - 2017-07-28 01:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
    2017-08-08 23:31 - 2017-07-31 23:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
    2017-08-08 23:31 - 2017-07-31 22:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
    2017-08-08 23:31 - 2017-07-31 22:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
    2017-08-08 23:31 - 2017-07-31 22:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
    2017-08-08 23:31 - 2017-07-31 22:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
    2017-08-08 23:31 - 2017-07-31 22:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
    2017-08-08 23:31 - 2017-07-31 22:41 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
    2017-08-08 23:31 - 2017-07-31 22:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
    2017-08-08 23:31 - 2017-07-31 22:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
    2017-08-08 23:31 - 2017-07-31 22:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
    2017-08-08 23:31 - 2017-07-31 22:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
    2017-08-08 23:31 - 2017-07-31 22:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
    2017-08-08 23:31 - 2017-07-31 22:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
    2017-08-08 23:31 - 2017-07-31 22:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
    2017-08-08 23:31 - 2017-07-31 22:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
    2017-08-08 23:31 - 2017-07-31 22:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
    2017-08-08 23:31 - 2017-07-31 22:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
    2017-08-08 23:31 - 2017-07-31 22:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
    2017-08-08 23:31 - 2017-07-31 22:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
    2017-08-08 23:31 - 2017-07-31 22:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
    2017-08-08 23:31 - 2017-07-31 22:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
    2017-08-08 23:31 - 2017-07-28 02:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
    2017-08-08 23:31 - 2017-07-28 02:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
    2017-08-08 23:31 - 2017-07-28 02:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
    2017-08-08 23:31 - 2017-07-28 01:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
    2017-08-08 23:31 - 2017-07-28 01:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
    2017-08-08 23:31 - 2017-07-28 01:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
    2017-08-08 23:31 - 2017-07-28 01:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
    2017-08-08 23:31 - 2017-07-28 01:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
    2017-08-08 23:31 - 2017-07-28 01:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
    2017-08-08 23:31 - 2017-07-28 01:25 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
    2017-08-08 23:31 - 2017-07-28 01:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
    2017-08-08 23:31 - 2017-07-28 01:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
    2017-08-08 23:31 - 2017-07-28 01:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
    2017-08-08 23:31 - 2017-07-28 01:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
    2017-08-08 23:31 - 2017-07-28 01:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
    2017-08-08 23:31 - 2017-07-28 01:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
    2017-08-08 23:31 - 2017-07-28 01:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
    2017-08-08 23:31 - 2017-07-28 01:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
    2017-08-08 23:31 - 2017-07-28 01:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
    2017-08-08 23:31 - 2017-07-28 01:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
    2017-08-08 23:31 - 2017-07-28 01:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
    2017-08-08 23:31 - 2017-07-28 01:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
    2017-08-08 23:31 - 2017-07-28 01:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
    2017-07-12 01:03 - 2017-07-07 04:13 - 000336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
    2017-07-12 01:03 - 2017-07-07 04:10 - 001670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
    2017-07-12 01:03 - 2017-07-07 03:57 - 000626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
    2017-07-12 01:03 - 2017-07-07 03:57 - 000125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
    2017-07-12 01:03 - 2017-07-07 03:31 - 001518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
    2017-07-12 01:03 - 2017-07-07 03:31 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
    2017-07-12 01:03 - 2017-07-07 03:30 - 000949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
    2017-07-12 01:03 - 2017-07-07 03:29 - 000123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
    2017-07-12 01:03 - 2017-07-07 03:26 - 001529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
    2017-07-12 01:03 - 2017-07-07 03:25 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
    2017-07-12 01:03 - 2017-07-07 03:22 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
    2017-07-12 01:03 - 2017-07-07 03:14 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
    2017-07-12 01:03 - 2017-07-07 03:10 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
    2017-07-12 01:03 - 2017-07-07 03:09 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
    2017-07-12 01:03 - 2017-07-07 03:07 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
    2017-07-12 01:03 - 2017-07-07 03:06 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
    2017-07-12 01:03 - 2017-07-07 03:05 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
    2017-07-12 01:03 - 2017-07-07 03:05 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
    2017-07-12 01:03 - 2017-07-07 03:04 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
    2017-07-12 01:03 - 2017-07-07 03:04 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2017-07-12 01:03 - 2017-07-07 03:03 - 006123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
    2017-07-12 01:03 - 2017-07-07 03:01 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
    2017-07-12 01:03 - 2017-07-07 03:00 - 007596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
    2017-07-12 01:03 - 2017-07-07 03:00 - 002588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
    2017-07-12 01:03 - 2017-07-07 03:00 - 001565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
    2017-07-12 01:03 - 2017-07-07 02:59 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
    2017-07-12 01:03 - 2017-07-07 02:59 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
    2017-07-12 01:03 - 2017-07-07 02:58 - 002782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
    2017-07-12 01:03 - 2017-07-07 02:58 - 002298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
    2017-07-12 01:03 - 2017-07-07 02:58 - 001237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
    2017-07-12 01:03 - 2017-07-07 02:55 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
    2017-07-12 01:03 - 2017-07-07 02:55 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
    2017-07-12 01:03 - 2017-07-07 02:53 - 001301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
    2017-07-12 01:03 - 2017-07-07 02:53 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
    2017-07-12 01:03 - 2017-06-20 03:02 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
    2017-07-12 01:03 - 2017-06-20 02:34 - 000192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
    2017-07-12 01:03 - 2017-06-20 02:15 - 000455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
    2017-07-12 01:03 - 2017-06-20 02:13 - 000787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2017-07-12 01:03 - 2017-06-20 02:12 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
    2017-07-12 01:03 - 2017-06-20 02:12 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
    2017-07-12 01:03 - 2017-06-20 02:08 - 004469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
    2017-07-12 01:03 - 2017-06-20 02:07 - 002475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
    2017-07-12 01:03 - 2017-06-20 02:07 - 000346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
    2017-07-12 01:03 - 2017-06-20 02:07 - 000138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
    2017-07-12 01:03 - 2017-06-20 02:06 - 000754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
    2017-07-12 01:03 - 2017-06-20 02:06 - 000278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
    2017-07-12 01:03 - 2017-06-20 02:05 - 000438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
    2017-07-12 01:03 - 2017-06-20 02:05 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
    2017-07-12 01:03 - 2017-06-20 02:04 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
    2017-07-12 01:03 - 2017-06-20 02:04 - 001178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
    2017-07-12 01:03 - 2017-06-20 02:04 - 001077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
    2017-07-12 01:03 - 2017-06-20 02:04 - 000181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
    2017-07-12 01:03 - 2017-06-20 02:04 - 000049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
    2017-07-12 01:03 - 2017-06-20 02:03 - 000443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
    2017-07-12 01:03 - 2017-06-20 02:02 - 001121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
    2017-07-12 01:03 - 2017-06-20 02:02 - 000354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
    2017-07-12 01:03 - 2017-06-20 02:00 - 002597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
    2017-07-12 01:03 - 2017-06-20 01:56 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
    2017-07-12 01:03 - 2017-06-20 01:49 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
    2017-07-12 01:03 - 2017-06-20 01:49 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
    2017-07-12 01:03 - 2017-06-20 01:46 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-12 01:03 - 2017-06-20 01:45 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
    2017-07-12 01:03 - 2017-06-20 01:43 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
    2017-07-12 01:03 - 2017-06-20 01:43 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
    2017-07-12 01:03 - 2017-06-20 01:43 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
    2017-07-12 01:03 - 2017-06-20 01:42 - 000641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
    2017-07-12 01:03 - 2017-06-20 01:42 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
    2017-07-12 01:03 - 2017-06-20 01:42 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
    2017-07-12 01:03 - 2017-06-20 01:41 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
    2017-07-12 01:03 - 2017-06-20 01:41 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
    2017-07-12 01:03 - 2017-06-20 01:41 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
    2017-07-12 01:03 - 2017-06-20 01:41 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
    2017-07-12 01:03 - 2017-06-20 01:41 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
    2017-07-12 01:03 - 2017-06-20 01:40 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
    2017-07-12 01:03 - 2017-06-20 01:40 - 000247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
    2017-07-12 01:03 - 2017-06-20 01:40 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
    2017-07-12 01:03 - 2017-06-20 01:40 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
    2017-07-12 01:03 - 2017-06-20 01:39 - 002814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
    2017-07-12 01:03 - 2017-06-20 01:39 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
    2017-07-12 01:03 - 2017-06-20 01:39 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
    2017-07-12 01:03 - 2017-06-20 01:39 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
    2017-07-12 01:03 - 2017-06-20 01:39 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
    2017-07-12 01:03 - 2017-06-20 01:38 - 001451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
    2017-07-12 01:03 - 2017-06-20 01:38 - 001285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
    2017-07-12 01:03 - 2017-06-20 01:38 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
    2017-07-12 01:03 - 2017-06-20 01:38 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
    2017-07-12 01:03 - 2017-06-20 01:35 - 002679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
    2017-07-12 01:03 - 2017-06-20 01:35 - 002132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
    2017-07-12 01:03 - 2017-06-20 01:35 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
    2017-07-12 01:03 - 2017-06-20 01:34 - 002750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
    2017-07-12 01:03 - 2017-06-20 01:34 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
    2017-07-12 01:03 - 2017-06-20 01:31 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
    2017-07-12 01:03 - 2017-06-20 01:30 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
    2017-07-12 01:03 - 2017-06-20 01:30 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
    2017-07-12 01:03 - 2017-06-20 01:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
    2017-07-12 01:03 - 2017-06-20 01:28 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
    2017-07-12 01:02 - 2017-07-07 11:00 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
    2017-07-12 01:02 - 2017-07-07 04:27 - 001147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
    2017-07-12 01:02 - 2017-07-07 04:27 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
    2017-07-12 01:02 - 2017-07-07 04:27 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
    2017-07-12 01:02 - 2017-07-07 04:26 - 001065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
    2017-07-12 01:02 - 2017-07-07 04:25 - 000899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
    2017-07-12 01:02 - 2017-07-07 04:24 - 000117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
    2017-07-12 01:02 - 2017-07-07 04:22 - 001186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
    2017-07-12 01:02 - 2017-07-07 04:21 - 032688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
    2017-07-12 01:02 - 2017-07-07 04:20 - 002021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
    2017-07-12 01:02 - 2017-07-07 04:20 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
    2017-07-12 01:02 - 2017-07-07 04:14 - 001760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
    2017-07-12 01:02 - 2017-07-07 04:11 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
    2017-07-12 01:02 - 2017-07-07 04:10 - 000372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
    2017-07-12 01:02 - 2017-07-07 04:10 - 000254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
    2017-07-12 01:02 - 2017-07-07 04:09 - 000041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
    2017-07-12 01:02 - 2017-07-07 04:07 - 001106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
    2017-07-12 01:02 - 2017-07-07 04:07 - 000058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
    2017-07-12 01:02 - 2017-07-07 03:37 - 031652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
    2017-07-12 01:02 - 2017-07-07 03:37 - 001339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
    2017-07-12 01:02 - 2017-07-07 03:27 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
    2017-07-12 01:02 - 2017-07-07 03:27 - 000443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
    2017-07-12 01:02 - 2017-07-07 03:27 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
    2017-07-12 01:02 - 2017-07-07 03:22 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
    2017-07-12 01:02 - 2017-07-07 03:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
    2017-07-12 01:02 - 2017-07-07 03:19 - 007149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
    2017-07-12 01:02 - 2017-07-07 03:19 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
    2017-07-12 01:02 - 2017-07-07 03:18 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
    2017-07-12 01:02 - 2017-07-07 03:18 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
    2017-07-12 01:02 - 2017-07-07 03:18 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
    2017-07-12 01:02 - 2017-07-07 03:17 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2017-07-12 01:02 - 2017-07-07 03:17 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
    2017-07-12 01:02 - 2017-07-07 03:16 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
    2017-07-12 01:02 - 2017-07-07 03:15 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
    2017-07-12 01:02 - 2017-07-07 03:14 - 008211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
    2017-07-12 01:02 - 2017-07-07 03:14 - 003784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
    2017-07-12 01:02 - 2017-07-07 03:14 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
    2017-07-12 01:02 - 2017-07-07 03:13 - 005892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
    2017-07-12 01:02 - 2017-07-07 03:13 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
    2017-07-12 01:02 - 2017-07-07 03:12 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
    2017-07-12 01:02 - 2017-07-07 03:12 - 002499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
    2017-07-12 01:02 - 2017-07-07 03:12 - 001420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
    2017-07-12 01:02 - 2017-07-07 03:12 - 001142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
    2017-07-12 01:02 - 2017-07-07 03:12 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
    2017-07-12 01:02 - 2017-07-07 03:11 - 002829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
    2017-07-12 01:02 - 2017-07-07 03:11 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
    2017-07-12 01:02 - 2017-07-07 03:11 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
    2017-07-12 01:02 - 2017-07-07 03:11 - 001888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
    2017-07-12 01:02 - 2017-07-07 03:11 - 001812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
    2017-07-12 01:02 - 2017-07-07 03:08 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
    2017-07-12 01:02 - 2017-07-07 03:07 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
    2017-07-12 01:02 - 2017-07-07 03:06 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
    2017-07-12 01:02 - 2017-07-07 03:06 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
    2017-07-12 01:02 - 2017-07-07 03:04 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
    2017-07-12 01:02 - 2017-07-07 03:02 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
    2017-07-12 01:02 - 2017-07-01 19:52 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
    2017-07-12 01:02 - 2017-06-20 03:18 - 001564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
    2017-07-12 01:02 - 2017-06-20 03:17 - 000034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
    2017-07-12 01:02 - 2017-06-20 03:16 - 000335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
    2017-07-12 01:02 - 2017-06-20 03:15 - 000233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
    2017-07-12 01:02 - 2017-06-20 03:11 - 001395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
    2017-07-12 01:02 - 2017-06-20 03:11 - 000411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
    2017-07-12 01:02 - 2017-06-20 03:10 - 001930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2017-07-12 01:02 - 2017-06-20 03:08 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
    2017-07-12 01:02 - 2017-06-20 03:05 - 001057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
    2017-07-12 01:02 - 2017-06-20 03:04 - 004847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
    2017-07-12 01:02 - 2017-06-20 03:03 - 000102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
    2017-07-12 01:02 - 2017-06-20 03:00 - 000255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
    2017-07-12 01:02 - 2017-06-20 03:00 - 000142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
    2017-07-12 01:02 - 2017-06-20 02:59 - 001220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
    2017-07-12 01:02 - 2017-06-20 02:59 - 000467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
    2017-07-12 01:02 - 2017-06-20 02:58 - 000833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
    2017-07-12 01:02 - 2017-06-20 02:58 - 000406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
    2017-07-12 01:02 - 2017-06-20 02:15 - 001620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2017-07-12 01:02 - 2017-06-20 02:14 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
    2017-07-12 01:02 - 2017-06-20 02:13 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
    2017-07-12 01:02 - 2017-06-20 02:12 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2017-07-12 01:02 - 2017-06-20 02:11 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
    2017-07-12 01:02 - 2017-06-20 02:11 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
    2017-07-12 01:02 - 2017-06-20 02:10 - 000722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
    2017-07-12 01:02 - 2017-06-20 02:10 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
    2017-07-12 01:02 - 2017-06-20 02:10 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
    2017-07-12 01:02 - 2017-06-20 02:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
    2017-07-12 01:02 - 2017-06-20 02:09 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
    2017-07-12 01:02 - 2017-06-20 02:09 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
    2017-07-12 01:02 - 2017-06-20 02:09 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
    2017-07-12 01:02 - 2017-06-20 02:09 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
    2017-07-12 01:02 - 2017-06-20 02:09 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
    2017-07-12 01:02 - 2017-06-20 02:09 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
    2017-07-12 01:02 - 2017-06-20 02:08 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
    2017-07-12 01:02 - 2017-06-20 02:08 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
    2017-07-12 01:02 - 2017-06-20 02:08 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
    2017-07-12 01:02 - 2017-06-20 02:08 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
    2017-07-12 01:02 - 2017-06-20 02:08 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
    2017-07-12 01:02 - 2017-06-20 02:07 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
    2017-07-12 01:02 - 2017-06-20 02:07 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
    2017-07-12 01:02 - 2017-06-20 02:07 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
    2017-07-12 01:02 - 2017-06-20 02:07 - 000510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
    2017-07-12 01:02 - 2017-06-20 02:07 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
    2017-07-12 01:02 - 2017-06-20 02:06 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
    2017-07-12 01:02 - 2017-06-20 02:06 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
    2017-07-12 01:02 - 2017-06-20 02:05 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
    2017-07-12 01:02 - 2017-06-20 02:05 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
    2017-07-12 01:02 - 2017-06-20 02:04 - 001818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
    2017-07-12 01:02 - 2017-06-20 02:04 - 001425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
    2017-07-12 01:02 - 2017-06-20 02:04 - 001177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
    2017-07-12 01:02 - 2017-06-20 02:04 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
    2017-07-12 01:02 - 2017-06-20 02:04 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
    2017-07-12 01:02 - 2017-06-20 02:04 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
    2017-07-12 01:02 - 2017-06-20 02:03 - 002077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
    2017-07-12 01:02 - 2017-06-20 02:02 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
    2017-07-12 01:02 - 2017-06-20 02:01 - 003803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
    2017-07-12 01:02 - 2017-06-20 02:01 - 003332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
    2017-07-12 01:02 - 2017-06-20 02:01 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
    2017-07-12 01:02 - 2017-06-20 02:01 - 001076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
    2017-07-12 01:02 - 2017-06-20 02:00 - 003057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
    2017-07-12 01:02 - 2017-06-20 02:00 - 002171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
    2017-07-12 01:02 - 2017-06-20 01:59 - 001674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
    2017-07-12 01:02 - 2017-06-20 01:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
    2017-07-12 01:02 - 2017-06-20 01:43 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
    2017-07-12 01:02 - 2017-06-20 01:43 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
    2017-07-12 01:02 - 2017-06-20 01:43 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
    2017-07-12 01:02 - 2017-06-20 01:42 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
    2017-07-12 01:02 - 2017-06-20 01:42 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
    2017-07-12 01:02 - 2017-06-20 01:38 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
    2017-07-12 01:02 - 2017-06-20 01:37 - 002008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
    2017-07-12 01:01 - 2017-07-07 04:27 - 000965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
    2017-07-12 01:01 - 2017-07-07 04:27 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
    2017-07-12 01:01 - 2017-07-07 04:17 - 001017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
    2017-07-12 01:01 - 2017-07-07 04:14 - 001171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
    2017-07-12 01:01 - 2017-07-07 04:13 - 000147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
    2017-07-12 01:01 - 2017-07-07 04:12 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
    2017-07-12 01:01 - 2017-07-07 03:27 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
    2017-07-12 01:01 - 2017-07-07 03:27 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
    2017-07-12 01:01 - 2017-07-07 03:27 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
    2017-07-12 01:01 - 2017-07-07 03:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
    2017-07-12 01:01 - 2017-07-07 03:21 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
    2017-07-12 01:01 - 2017-07-07 03:19 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
    2017-07-12 01:01 - 2017-07-07 03:18 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
    2017-07-12 01:01 - 2017-07-07 03:12 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
    2017-07-12 01:01 - 2017-07-07 03:11 - 003139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
    2017-07-12 01:01 - 2017-07-07 03:07 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
    2017-07-12 01:01 - 2017-07-07 03:07 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
    2017-07-12 01:01 - 2017-07-07 03:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
    2017-07-12 01:01 - 2017-07-07 03:04 - 001703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
    2017-07-12 01:01 - 2017-07-07 03:04 - 001403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
    2017-07-12 01:01 - 2017-06-20 03:18 - 000096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
    2017-07-12 01:01 - 2017-06-20 03:17 - 000629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
    2017-07-12 01:01 - 2017-06-20 03:17 - 000544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
    2017-07-12 01:01 - 2017-06-20 03:17 - 000334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
    2017-07-12 01:01 - 2017-06-20 03:17 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
    2017-07-12 01:01 - 2017-06-20 03:16 - 001214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
    2017-07-12 01:01 - 2017-06-20 03:03 - 000179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
    2017-07-12 01:01 - 2017-06-20 03:02 - 000426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
    2017-07-12 01:01 - 2017-06-20 03:00 - 000558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
    2017-07-12 01:01 - 2017-06-20 02:59 - 000583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
    2017-07-12 01:01 - 2017-06-20 02:58 - 000203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
    2017-07-12 01:01 - 2017-06-20 02:16 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
    2017-07-12 01:01 - 2017-06-20 02:16 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
    2017-07-12 01:01 - 2017-06-20 02:14 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
    2017-07-12 01:01 - 2017-06-20 02:13 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-12 01:01 - 2017-06-20 02:13 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
    2017-07-12 01:01 - 2017-06-20 02:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
    2017-07-12 01:01 - 2017-06-20 02:12 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
    2017-07-12 01:01 - 2017-06-20 02:09 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
    2017-07-12 01:01 - 2017-06-20 02:09 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
    2017-07-12 01:01 - 2017-06-20 02:09 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
    2017-07-12 01:01 - 2017-06-20 02:09 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
    2017-07-12 01:01 - 2017-06-20 02:08 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
    2017-07-12 01:01 - 2017-06-20 02:07 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
    2017-07-12 01:01 - 2017-06-20 02:07 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
    2017-07-12 01:01 - 2017-06-20 02:07 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
    2017-07-12 01:01 - 2017-06-20 02:06 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
    2017-07-12 01:01 - 2017-06-20 02:06 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
    2017-07-12 01:01 - 2017-06-20 02:06 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
    2017-07-12 01:01 - 2017-06-20 02:06 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
    2017-07-12 01:01 - 2017-06-20 02:05 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
    2017-07-12 01:01 - 2017-06-20 02:05 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
    2017-07-12 01:01 - 2017-06-20 02:05 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
    2017-07-12 01:01 - 2017-06-20 02:04 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
    2017-07-12 01:01 - 2017-06-20 02:02 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
    2017-07-12 01:01 - 2017-06-20 02:01 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
    2017-07-12 01:01 - 2017-06-20 01:57 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
    2017-07-12 01:01 - 2017-06-20 01:57 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
    2017-07-12 01:01 - 2017-06-20 01:56 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv
    2017-06-18 23:57 - 2017-06-18 23:57 - 004709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 004672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 002341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 002088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 001035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
    2017-06-18 23:57 - 2017-06-18 23:57 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
    2017-06-18 23:57 - 2017-06-18 23:57 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
    2017-06-18 23:57 - 2017-06-18 23:57 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
    2017-06-18 23:57 - 2017-06-18 23:57 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
    2017-06-18 23:57 - 2017-06-18 23:57 - 000059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 006726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 006535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 003135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 002730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 002625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 002438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 002347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 002085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 001003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
    2017-06-18 23:56 - 2017-06-18 23:56 - 000382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
    2017-06-18 23:56 - 2017-06-18 23:56 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
    2017-06-18 23:56 - 2017-06-18 23:56 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
    2017-06-18 23:56 - 2017-06-18 23:56 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
    2017-06-18 23:56 - 2017-06-18 23:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
    2017-06-18 23:56 - 2017-06-18 23:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
    2017-06-18 23:47 - 2017-02-10 11:26 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
    2017-06-18 23:47 - 2017-02-10 11:26 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
    2017-06-18 23:47 - 2017-02-10 11:26 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
    2017-06-18 23:47 - 2017-02-10 11:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
    2017-06-18 23:47 - 2017-02-10 11:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2017-06-18 23:47 - 2017-02-10 11:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

    ==================== Três Meses Modificados arquivos e pastas ========

    (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

    2017-08-31 18:39 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files (x86)\McAfee
    2017-08-30 17:21 - 2016-03-16 18:03 - 001910752 _____ C:\WINDOWS\system32\PerfStringBackup.INI
    2017-08-30 17:15 - 2016-03-16 18:23 - 000001046 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
    2017-08-30 17:15 - 2016-03-16 18:23 - 000001042 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
    2017-08-30 12:57 - 2016-03-16 18:26 - 000000000 ____D C:\Users\Todos os Usuários\McAfee
    2017-08-30 12:04 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files\mcafee
    2017-08-30 12:02 - 2016-03-16 18:23 - 000000000 ____D C:\Program Files (x86)\Dropbox
    2017-08-30 12:01 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files\Common Files\AV
    2017-08-29 20:26 - 2016-03-16 18:22 - 000000000 ____D C:\Program Files\Dell
    2017-08-29 18:31 - 2016-03-16 17:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2017-08-29 18:25 - 2016-03-16 18:29 - 000000000 __RHD C:\Users\Public\AccountPictures
    2017-08-29 18:11 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files\Common Files\McAfee
    2017-08-29 04:33 - 2016-03-16 18:23 - 000000000 ____D C:\Users\Todos os Usuários\PCDr
    2017-08-29 04:29 - 2015-10-30 04:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
    2017-08-29 04:23 - 2016-03-16 18:23 - 000000000 ____D C:\Users\Todos os Usuários\PC-Doctor for Windows
    2017-08-29 04:23 - 2016-03-16 18:18 - 000000000 ____D C:\WINDOWS\nvmup
    2017-08-29 04:23 - 2016-03-16 18:16 - 000000000 ____D C:\WINDOWS\system32\nn-NO
    2017-08-29 04:23 - 2016-03-16 18:16 - 000000000 ____D C:\WINDOWS\Options
    2017-08-29 04:23 - 2016-03-16 18:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
    2017-08-29 04:23 - 2016-03-16 18:10 - 000000000 ____D C:\Users\Public\CyberLink
    2017-08-29 04:23 - 2016-03-16 18:08 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
    2017-08-29 04:23 - 2016-03-16 17:59 - 000000000 ____D C:\Users\Todos os Usuários\Temp
    2017-08-29 04:23 - 2015-10-30 04:24 - 000000000 ___RD C:\WINDOWS\PurchaseDialog
    2017-08-29 04:23 - 2015-10-30 04:24 - 000000000 ___RD C:\WINDOWS\DesktopTileResources
    2017-08-29 04:22 - 2016-03-16 22:27 - 000000000 ____D C:\Users\Todos os Usuários\Dell
    2017-08-29 04:22 - 2016-03-16 18:23 - 000000000 ____D C:\Users\Todos os Usuários\Dropbox
    2017-08-29 04:22 - 2016-03-16 18:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2017-08-29 04:22 - 2016-03-16 18:14 - 000000000 ____D C:\Users\Todos os Usuários\Intel
    2017-08-29 04:22 - 2016-03-16 18:13 - 000000000 ____D C:\Program Files (x86)\Realtek
    2017-08-29 04:22 - 2016-03-16 17:59 - 000000000 ____D C:\Users\Todos os Usuários\install_clap
    2017-08-29 04:22 - 2016-03-16 17:59 - 000000000 ____D C:\Users\Todos os Usuários\CyberLink
    2017-08-29 04:22 - 2016-03-16 17:59 - 000000000 ____D C:\Users\Todos os Usuários\CLSK
    2017-08-29 04:21 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files (x86)\mcafee.com
    2017-08-29 04:21 - 2016-03-16 18:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
    2017-08-29 04:21 - 2016-03-16 18:24 - 000000000 ____D C:\Program Files (x86)\Dell Customer Connect
    2017-08-29 04:21 - 2016-03-16 18:23 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery
    2017-08-29 04:21 - 2016-03-16 18:16 - 000000000 ____D C:\Program Files (x86)\Dell Wireless
    2017-08-29 04:21 - 2016-03-16 18:00 - 000000000 ____D C:\Program Files (x86)\CyberLink
    2017-08-29 04:21 - 2016-03-16 17:48 - 000000000 ____D C:\Program Files (x86)\Intel
    2017-08-29 04:19 - 2016-03-16 18:26 - 000000000 ____D C:\Program Files\mcafee.com
    2017-08-29 04:19 - 2016-03-16 18:23 - 000000000 ____D C:\Program Files\Dell Support Center
    2017-08-29 04:19 - 2016-03-16 18:16 - 000000000 ____D C:\Program Files (x86)\Cisco
    2017-08-29 04:19 - 2016-03-16 18:13 - 000000000 ____D C:\Program Files\Waves
    2017-08-29 04:19 - 2015-10-30 06:05 - 000000000 ____D C:\Program Files\Windows Journal
    2017-08-29 04:18 - 2016-03-16 22:43 - 000000000 ____D C:\backup
    2017-08-29 04:18 - 2016-03-16 18:16 - 000000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
    2017-08-29 04:18 - 2015-11-06 11:19 - 000000000 ____D C:\Dell
    2017-08-29 04:18 - 2015-11-06 10:29 - 000000000 ____D C:\langpacks
    2017-08-29 00:23 - 2017-03-18 17:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys

    ==================== Arquivos na raiz de alguns diretórios =======

    2017-08-29 04:11 - 2017-08-29 04:11 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

    ==================== Bamital & volsnap ======================

    (Não há correção automática para arquivos que não passaram na verificação.)

    C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
    C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
    C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
    C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

    LastRegBack: 2017-08-29 04:05

    ==================== Fim de FRST.txt ============================

    Addition.txt

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    diego_moicano    472

    Caro @Daniel Aquiles

     

    Citação

    Tenho motivos para acreditar que meu computador está com um programa de monitoramento ilegal instalado.

     

    E por quais motivos seriam? Se achar melhor, pode me responder via mensagem privada. ;)

     

    Faz uso destes IPs:

     

    10.42.0.251

    10.42.0.252

     

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Daniel Aquiles    0
  • Autor do tópico
  • Boa noite, Diego! Muito obrigado por toda a ajuda. O site não me deixa enviar mensagens privadas.

     

    A suspeita é porque minha familiar que é a principal usuária sofreu o assédio de um stalker. Inclusive o suspeito pode ter tido acesso ao equipamento devido a amizade com membros da família. Desconheço os ips mencionados.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    diego_moicano    472

    Caro @Daniel Aquiles

     

    Baixe o RogueKiller e salve em sua Área de Trabalho (Desktop).
    32 bit (x86) ou 64 bit (x64)

    Execute o arquivo RogueKiller.exe como Administrador.

     

    • Clique na aba Scan, depois Start Scan. Aguarde o exame finalizar.
    • Clique no botão Open Report, e seguida em Open TXT
    • Abrirá um bloco de notas com informações.
    • Copie e cole o conteúdo desse arquivo em sua próxima resposta.

     

    OBS: não use o botão Remove Selected pois precisamos primeiro avaliar os itens encontrados.

     

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Tópico Arquivado

     

    Como o autor não respondeu ao tópico por mais de 10 dias, o mesmo foi arquivado. Caso você seja o autor do tópico e quer que o mesmo seja reaberto, entre em contato com um Analista de Segurança ou Coordenador solicitando o desbloqueio.

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×