Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
(CyberLink) -- C:\Program F
(CyberLink Corp.) -- C:\Pro
(EasyBits Software AS) -- C
(EasyBits Software AS) -- C
(x86
(x86
(x86
(x86
(x86
(x86
(x86
(x86
(x86
(X86
.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2012/07/25 23:27:29 | 000,019,968 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpF
ltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2012/07/25 23:27:16 | 000,010,240 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipa
gr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2012/07/25 23:27:01 | 000,011,776 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperk
bd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2012/07/25 23:26:46 | 000,062,976 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.
sys -- (SerCx)
DRV:[b]64bit:[/b] - [2012/07/25 23:26:43 | 000,059,392 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.
sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2012/07/25 23:26:34 | 000,030,208 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbG
D.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2012/07/25 23:26:13 | 000,051,200 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfe
num.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2012/07/25 23:25:57 | 000,033,280 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.
sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2012/07/25 23:25:56 | 000,057,344 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbF
lt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012/07/25 23:25:13 | 000,045,056 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcflt
r.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2012/07/25 23:25:01 | 000,126,464 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisIm
Platform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2012/07/25 23:23:53 | 000,068,608 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp
.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2012/07/25 23:23:42 | 000,097,792 | ---- | M] (Microsoft Co
rporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -(Ndu)
DRV:[b]64bit:[/b] - [2012/07/24 08:44:02 | 003,618,304 | ---- | M] (Qualcomm Ath
eros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNativ
e\Drivers\athw8x.sys -- (athr)
DRV:[b]64bit:[/b] - [2012/07/03 11:16:02 | 000,062,784 | ---- | M] (Intel Corpor
ation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sy
s -- (MEIx64)
DRV:[b]64bit:[/b] - [2012/06/25 10:24:50 | 000,092,536 | ---- | M] (CyberLink) [
Kernel | System | Running] -- C:\Windows\SysNative\Drivers\CLVirtualDrive.sys -(CLVirtualDrive)
DRV:[b]64bit:[/b] - [2012/06/20 18:27:30 | 000,023,448 | R--- | M] (Symantec Cor
poration) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\14040
00.028\symelam.sys -- (SymELAM)
DRV:[b]64bit:[/b] - [2012/06/20 03:40:52 | 000,342,528 | ---- | M] (Intel(R) Cor
poration) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAu
d.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2012/06/13 23:24:00 | 000,266,896 | ---- | M] (Realtek Semi
conductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\
RtsP2Stor.sys -- (RSP2STOR)
DRV:[b]64bit:[/b] - [2012/06/13 02:41:22 | 000,683,664 | ---- | M] (Realtek
) [Kernel | On_Demand | Running] -- C:\Wi
ndows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV - [2013/09/03 19:26:27 | 001,525,336 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85E
F591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130903.002\BHDrvx64.sys -- (BHD
rvx64)
DRV - [2013/08/28 20:21:48 | 002,099,288 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85E
F591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130917.025\ex64.sys -- (NAVEX1
5)
DRV - [2013/08/28 20:21:48 | 000,126,040 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85E
F591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130917.025\eng64.sys -- (NAVEN
G)
DRV - [2013/08/27 00:03:41 | 000,484,952 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Share
d\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2013/08/27 00:03:41 | 000,140,376 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Share
d\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/08/14 01:25:14 | 000,520,280 | ---- | M] (Symantec Corporation) [Ker
nel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85E
F591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130918.001\IDSviA64.sys -- (IDSV
ia64)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_U
RL = http://g.msn.com/HPCON13/3
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = h
ttp://g.msn.com/HPCON13/3
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FFE1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}:
"URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPN
TDFJS
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}:
"URL" = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}:
"URL" = http://br.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=
chr-hp-psg&type=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.
msn.com/HPCON13/3
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysW
OW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.co
m/HPCON13/3
IE - HKLM\..\URLSearchHook: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program
Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http:/
/www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http:/
/eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http:/
/br.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&typ
e=HPNTDF
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\SOFTWARE\Microsoft\Inter
net Explorer\Main,Default_Page_URL = http://g.msn.com/HPCON13/3
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\SOFTWARE\Microsoft\Inter
net Explorer\Main,First Home Page = http://g.msn.com/HPCON13/3
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\SOFTWARE\Microsoft\Inter
net Explorer\Main,Start Page = http://g.msn.com/HPCON13/3
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\URLSearchHook: {e0301
295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuT
or.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\SearchScopes,DefaultS
cope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\SearchScopes\{0633EE9
3-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerm
s}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\SearchScopes\{195A651
C-8CAB-4B12-A08E-92537758178B}: "URL" = http://search.conduit.com/ResultsExt.asp
x?q={searchTerms}&SearchSource=4&ctid=CT2851643&CUI=UN27181195544869174&UM=1
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\SearchScopes\{2fa2860
6-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searchterms}&l=
dis&o=HPNTDF
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\..\SearchScopes\{b7fca99
7-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://br.search.yahoo.com/search?p={sea
rchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKU\S-1-5-21-3639666196-3918223324-3243470231-1001\Software\Microsoft\Windo
ws\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,versi
on=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW6
4\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;versi
on=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IP
T\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater:
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWe
bAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:
\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporatio
n)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:
\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporatio
n)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\
Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\
Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Vers
ptBehaviorUser = 3
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663
EE0C6C49} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIE.dll (Mic
rosoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f
3c-8081-5663EE0C6C49} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBtt
nIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-984
9-EDE0DB0C95CA} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIELin
kedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6F
C4-46A1-9849-EDE0DB0C95CA} - C:\Arquivos de Programas\Microsoft Office\Office14\
ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\
Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B27
3-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Re
sources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support
Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A
38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support F
ramework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Ar
quivos de Programas\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86
)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FB12765-64FF-4A8E-8
AFE-8B14B6B8B004}: DhcpNameServer = 192.168.200.240 192.168.200.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8A3C2CB5-61AF-4C6D-A
7FD-717BDD087B1C}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec2
94} - C:\Arquivos de Programas\Common Files\microsoft shared\Help\hxds.dll (Micr
osoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PRO
GRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.
exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe)
- C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (
Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.ex
e (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Window
s\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - N
o CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value
found.
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6C
D} - C:\Arquivos de Programas\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft
Corporation)
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Window
s\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O30 - LSA: Security Packages - (livessp) - File not found
C] -- C:\Users\wendellrosa\AppData\L
C] -- C:\Users\wendellrosa\Documents
C] (Adobe Systems Incorporated) -- C
C] (Adobe Systems Incorporated) -- C
C] (Microsoft Corporation) -- C:\Win
C] -- C:\Users\wendellrosa\AppData\L
C] -- C:\Config.Msi
C] (Microsoft Corporation) -- C:\Win
C] (Microsoft Corporation) -- C:\Win
C] (Microsoft Corporation) -- C:\Win
C] (Microsoft Corporation) -- C:\Win
C] (Microsoft Corporation) -- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
-- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
rs\wendellrosa\Documents\OriginThinSetup.exe
[2013/08/22 23:30:50 | 000,000,000 | ---D | C]
EOS INSS
[2013/08/21 00:29:48 | 011,459,584 | ---- | C]
dows\SysNative\glcndFilter.dll
[2013/08/21 00:29:31 | 008,552,448 | ---- | C]
dows\SysWow64\glcndFilter.dll
[2013/08/21 00:29:29 | 001,566,432 | ---- | C]
dows\SysNative\ole32.dll
[2013/08/21 00:29:29 | 000,976,384 | ---- | C]
dows\SysNative\KernelBase.dll
[2013/08/21 00:29:21 | 000,883,712 | ---- | C]
dows\HelpPane.exe
[2013/08/21 00:29:16 | 000,273,408 | ---- | C]
dows\SysNative\wlanapi.dll
[2013/08/21 00:29:16 | 000,110,080 | ---- | C]
dows\SysNative\dafWCN.dll
[2013/08/21 00:29:15 | 000,470,016 | ---- | C]
dows\SysNative\wlanmsm.dll
[2013/08/21 00:29:14 | 000,386,560 | ---- | C]
dows\SysWow64\wlanmsm.dll
[2013/08/21 00:29:14 | 000,212,992 | ---- | C]
dows\SysNative\bthprops.cpl
[2013/08/21 00:29:13 | 000,189,440 | ---- | C]
dows\SysWow64\bthprops.cpl
[2013/08/21 00:29:13 | 000,172,032 | ---- | C]
dows\SysNative\MFCaptureEngine.dll
[2013/08/21 00:29:12 | 000,314,880 | ---- | C]
dows\SysNative\rdpclip.exe
[2013/08/21 00:29:11 | 000,126,464 | ---- | C]
dows\SysWow64\MFCaptureEngine.dll
[2013/08/21 00:29:10 | 000,202,240 | ---- | C]
dows\SysWow64\wlanapi.dll
[2013/08/21 00:29:09 | 000,126,976 | ---- | C]
dows\SysNative\WcnApi.dll
[2013/08/21 00:29:08 | 000,446,464 | ---- | C]
dows\SysNative\wlansec.dll
[2013/08/21 00:29:08 | 000,375,296 | ---- | C]
dows\SysWow64\wlansec.dll
[2013/08/21 00:29:08 | 000,102,400 | ---- | C]
dows\SysNative\fdWCN.dll
[2013/08/21 00:29:08 | 000,093,696 | ---- | C]
dows\SysWow64\WcnApi.dll
[2013/08/21 00:29:07 | 000,027,136 | ---- | C]
dows\SysNative\WcnEapPeerProxy.dll
[2013/08/21 00:29:07 | 000,026,624 | ---- | C]
dows\SysNative\WcnEapAuthProxy.dll
[2013/08/21 00:29:06 | 000,030,720 | ---- | C]
dows\SysNative\wfdprov.dll
[2013/08/21 00:29:06 | 000,025,600 | ---- | C]
dows\SysWow64\wfdprov.dll
[2013/08/21 00:29:04 | 000,022,528 | ---- | C]
dows\SysNative\drivers\fxppm.sys
[2013/08/21 00:29:04 | 000,009,728 | ---- | C]
dows\SysWow64\wlanhlp.dll
[2013/08/21 00:29:04 | 000,009,728 | ---- | C]
dows\SysNative\wlanhlp.dll
[2013/08/21 00:29:03 | 000,016,384 | ---- | C]
dows\SysNative\iscsilog.dll
[2013/08/21 00:24:50 | 000,109,568 | ---- | C]
-- C:\Users\wendellrosa\Desktop\VD
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
dows\SysNative\dskquota.dll
[2013/08/21 00:24:41 | 000,082,944 | ---- | C]
dows\SysWow64\dskquota.dll
[2013/08/21 00:24:07 | 000,396,008 | ---- | C]
dows\SysNative\hal.dll
[2013/08/21 00:23:55 | 001,172,992 | ---- | C]
dows\SysNative\mfnetsrc.dll
[2013/08/21 00:23:53 | 000,929,792 | ---- | C]
dows\SysWow64\mfnetsrc.dll
[2013/08/21 00:23:53 | 000,677,888 | ---- | C]
dows\SysNative\mfnetcore.dll
[2013/08/21 00:23:53 | 000,673,280 | ---- | C]
dows\SysNative\mfmpeg2srcsnk.dll
[2013/08/21 00:23:53 | 000,568,832 | ---- | C]
dows\SysWow64\mfnetcore.dll
[2013/08/21 00:23:53 | 000,513,024 | ---- | C]
dows\SysWow64\mfmpeg2srcsnk.dll
[2013/08/21 00:22:12 | 001,395,712 | ---- | C]
dows\SysNative\Windows.UI.Immersive.dll
[2013/08/21 00:22:10 | 001,265,152 | ---- | C]
dows\SysNative\lsasrv.dll
[2013/08/21 00:22:10 | 000,579,584 | ---- | C]
dows\SysNative\StructuredQuery.dll
[2013/08/21 00:22:09 | 001,226,752 | ---- | C]
dows\SysWow64\Windows.UI.Immersive.dll
[2013/08/21 00:22:09 | 000,793,200 | ---- | C]
dows\SysNative\mfplat.dll
[2013/08/21 00:22:09 | 000,590,848 | ---- | C]
dows\SysNative\SHCore.dll
[2013/08/21 00:21:47 | 000,460,800 | ---- | C]
dows\SysWow64\SHCore.dll
[2013/08/21 00:21:46 | 000,612,416 | ---- | C]
dows\SysWow64\mfplat.dll
[2013/08/21 00:21:45 | 000,517,120 | ---- | C]
dows\SysNative\winlogon.exe
[2013/08/21 00:21:45 | 000,441,576 | ---- | C]
dows\SysNative\drivers\netio.sys
[2013/08/21 00:21:41 | 000,286,208 | ---- | C]
dows\SysNative\drivers\portcls.sys
[2013/08/21 00:21:40 | 001,045,504 | ---- | C]
dows\SysNative\usercpl.dll
[2013/08/21 00:21:36 | 000,154,112 | ---- | C]
dows\SysNative\Windows.Storage.Compression.dll
[2013/08/21 00:21:29 | 000,962,560 | ---- | C]
dows\SysWow64\usercpl.dll
[2013/08/21 00:21:29 | 000,244,224 | ---- | C]
dows\SysNative\dhcpcore6.dll
[2013/08/21 00:21:27 | 000,505,344 | ---- | C]
dows\SysNative\SpaceControl.dll
[2013/08/21 00:21:20 | 000,204,800 | ---- | C]
dows\SysWow64\dhcpcore6.dll
[2013/08/21 00:21:19 | 000,033,512 | ---- | C]
dows\SysNative\drivers\battc.sys
[2013/08/21 00:20:50 | 000,056,552 | ---- | C]
dows\SysNative\drivers\sdstor.sys
[2013/08/21 00:20:49 | 000,116,224 | ---- | C]
dows\SysWow64\Windows.Storage.Compression.dll
[2013/08/21 00:20:48 | 000,259,584 | ---- | C]
dows\SysNative\input.dll
[2013/08/21 00:20:48 | 000,219,648 | ---- | C]
dows\SysWow64\input.dll
[2013/08/21 00:20:48 | 000,062,976 | ---- |
dows\SysNative\dhcpcsvc6.dll
[2013/08/21 00:20:45 | 000,034,816 | ---- |
dows\SysNative\microsoft-windows-pdc.dll
[2013/08/21 00:20:42 | 000,047,616 | ---- |
dows\SysWow64\PCPKsp.dll
[2013/08/21 00:20:37 | 000,757,760 | ---- |
dows\SysNative\FirewallAPI.dll
[2013/08/21 00:20:37 | 000,099,840 | ---- |
dows\SysWow64\AppxSip.dll
[2013/08/21 00:20:36 | 000,118,784 | ---- |
dows\SysNative\AppxSip.dll
[2013/08/21 00:20:35 | 000,370,176 | ---- |
dows\SysNative\SysFxUI.dll
[2013/08/21 00:20:34 | 000,105,984 | ---- |
dows\SysNative\icfupgd.dll
[2013/08/21 00:20:34 | 000,049,664 | ---- |
dows\SysNative\BdeUISrv.exe
[2013/08/21 00:20:33 | 000,055,808 | ---- |
dows\SysNative\PCPKsp.dll
[2013/08/21 00:20:30 | 000,024,576 | ---- |
dows\SysNative\wfapigp.dll
[2013/08/21 00:20:30 | 000,019,968 | ---- |
dows\SysWow64\wfapigp.dll
[2013/08/21 00:20:28 | 000,111,616 | ---- |
dows\SysNative\drivers\drmk.sys
[2013/08/21 00:20:27 | 000,007,680 | ---- |
dows\SysNative\kbdhebl3.dll
[2013/08/21 00:20:26 | 000,007,168 | ---- |
dows\SysWow64\kbdhebl3.dll
[2013/08/21 00:17:39 | 003,245,568 | ---- |
dows\SysNative\rdpcorets.dll
[2013/08/21 00:17:37 | 001,122,768 | ---- |
dows\SysNative\Taskmgr.exe
[2013/08/21 00:17:36 | 001,027,152 | ---- |
dows\SysWow64\Taskmgr.exe
[2013/08/21 00:17:31 | 001,536,512 | ---- |
dows\SysNative\storagewmi.dll
[2013/08/21 00:17:28 | 000,955,904 | ---- |
dows\SysNative\WebcamUi.dll
[2013/08/21 00:17:23 | 000,798,208 | ---- |
dows\SysWow64\WebcamUi.dll
[2013/08/21 00:17:23 | 000,631,808 | ---- |
dows\SysNative\UserLanguagesCpl.dll
[2013/08/21 00:17:22 | 000,244,736 | ---- |
dows\SysNative\wpnapps.dll
[2013/08/21 00:17:20 | 000,560,128 | ---- |
dows\SysWow64\UserLanguagesCpl.dll
[2013/08/21 00:17:19 | 001,048,064 | ---- |
dows\SysWow64\mstsc.exe
[2013/08/21 00:17:19 | 000,179,200 | ---- |
dows\SysWow64\wpnapps.dll
[2013/08/21 00:17:19 | 000,027,880 | ---- |
dows\SysNative\drivers\rdpvideominiport.sys
[2013/08/21 00:17:18 | 001,217,536 | ---- |
dows\SysWow64\storagewmi.dll
[2013/08/21 00:17:18 | 001,123,840 | ---- |
dows\SysNative\mstsc.exe
[2013/08/21 00:17:16 | 000,235,520 | ---- |
dows\SysNative\rdpudd.dll
[2013/08/21 00:17:16 | 000,120,832 | ---dows\SysNative\vds_ps.dll
[2013/08/21 00:17:16 | 000,046,592 | ---dows\SysWow64\vds_ps.dll
[2013/08/21 00:17:16 | 000,036,352 | ---dows\SysNative\rfxvmt.dll
[2013/08/21 00:17:16 | 000,023,552 | ---dows\SysNative\vdsldr.exe
[2013/08/21 00:16:02 | 002,219,520 | ---dows\SysNative\dwmcore.dll
[2013/08/21 00:16:01 | 006,987,008 | ---dows\SysNative\ntoskrnl.exe
[2013/08/21 00:16:01 | 002,391,280 | ---dows\explorer.exe
[2013/08/21 00:16:01 | 002,106,176 | ---dows\SysWow64\explorer.exe
[2013/08/21 00:16:01 | 001,842,176 | ---dows\SysWow64\dwmcore.dll
[2013/08/21 00:15:50 | 001,527,808 | ---dows\SysNative\mfcore.dll
[2013/08/21 00:15:45 | 000,729,600 | ---dows\SysNative\samsrv.dll
[2013/08/21 00:15:43 | 001,453,568 | ---dows\SysWow64\mfcore.dll
[2013/08/21 00:15:42 | 001,403,296 | ---dows\SysNative\winload.efi
[2013/08/21 00:15:42 | 001,271,584 | ---dows\SysNative\winload.exe
[2013/08/21 00:15:41 | 000,523,264 | ---dows\SysNative\XpsGdiConverter.dll
[2013/08/21 00:15:40 | 001,217,352 | ---dows\SysNative\winresume.efi
[2013/08/21 00:15:39 | 001,093,904 | ---dows\SysNative\winresume.exe
[2013/08/21 00:15:38 | 001,048,576 | ---dows\SysNative\mfasfsrcsnk.dll
[2013/08/21 00:15:38 | 000,583,168 | ---dows\SysNative\mscms.dll
[2013/08/21 00:15:37 | 000,364,544 | ---dows\SysWow64\XpsGdiConverter.dll
[2013/08/21 00:15:37 | 000,213,248 | ---dows\SysNative\drivers\UCX01000.SYS
[2013/08/21 00:15:36 | 000,190,976 | ---dows\SysNative\vdsutil.dll
[2013/08/21 00:15:36 | 000,106,496 | ---dows\SysNative\samlib.dll
[2013/08/21 00:15:11 | 000,850,944 | ---dows\SysWow64\mfasfsrcsnk.dll
[2013/08/21 00:15:11 | 000,000,000 | ---D
\FIFA 13
[2013/08/21 00:15:10 | 000,337,152 | ---dows\SysNative\drivers\USBXHCI.SYS
[2013/08/21 00:15:10 | 000,207,872 | ---dows\SysNative\DeviceSetupManager.dll
[2013/08/21 00:15:10 | 000,080,896 | ---dows\SysNative\MbaeParserTask.exe
[2013/08/21 00:15:06 | 000,037,632 | ---dows\SysNative\drivers\BthAvrcpTg.sys
[2013/08/20 23:25:02 | 001,184,256 | ----
dows\SysNative\Display.dll
[2013/08/20 23:25:02 | 001,164,800 | ---- |
dows\SysWow64\Display.dll
[2013/08/20 23:24:56 | 000,007,168 | ---- |
dows\SysNative\KBDKURD.DLL
[2013/08/20 23:24:56 | 000,006,656 | ---- |
dows\SysWow64\KBDKURD.DLL
[2013/08/20 23:22:14 | 003,265,256 | ---- |
ows\SysNative\drivers\evbda.sys
[2013/08/20 23:21:48 | 002,397,184 | ---- |
dows\SysNative\WpcMon.exe
[2013/08/20 23:21:40 | 003,847,168 | ---- |
dows\SysNative\d2d1.dll
[2013/08/20 23:21:38 | 003,964,416 | ---- |
dows\SysNative\WinSAT.exe
[2013/08/20 23:21:28 | 000,533,224 | ---- |
ows\SysNative\drivers\bxvbda.sys
[2013/08/20 23:21:26 | 001,513,984 | ---- |
dows\SysNative\vssapi.dll
[2013/08/20 23:21:11 | 001,019,392 | ---- |
dows\SysNative\MsSpellCheckingFacility.dll
[2013/08/20 23:20:59 | 001,739,264 | ---- |
dows\SysNative\RacEngn.dll
[2013/08/20 23:20:57 | 002,219,008 | ---- |
dows\SysNative\d3d10warp.dll
[2013/08/20 23:20:57 | 001,304,064 | ---- |
dows\SysNative\Windows.Media.Streaming.dll
[2013/08/20 23:20:56 | 000,757,248 | ---- |
dows\SysNative\uDWM.dll
[2013/08/20 23:20:55 | 000,389,360 | ---- |
dows\SysNative\MMDevAPI.dll
[2013/08/20 23:20:53 | 000,762,368 | ---- |
dows\SysNative\provcore.dll
[2013/08/20 23:20:41 | 000,573,440 | ---- |
dows\SysNative\WinSATAPI.dll
[2013/08/20 23:20:35 | 000,995,328 | ---- |
dows\SysWow64\Windows.Media.Streaming.dll
[2013/08/20 23:20:33 | 000,634,880 | ---- |
dows\SysNative\apphelp.dll
[2013/08/20 23:20:29 | 000,155,136 | ---- |
dows\SysNative\IPHLPAPI.DLL
[2013/08/20 23:20:28 | 000,709,632 | ---- |
dows\SysWow64\MsSpellCheckingFacility.dll
[2013/08/20 23:20:25 | 001,743,872 | ---- |
dows\SysNative\combase.dll
[2013/08/20 23:20:25 | 000,236,544 | ---- |
dows\SysNative\MFPlay.dll
[2013/08/20 23:20:18 | 000,604,672 | ---- |
dows\SysNative\dnsapi.dll
[2013/08/20 23:20:18 | 000,420,352 | ---- |
dows\SysNative\WWAHost.exe
[2013/08/20 23:20:11 | 000,866,304 | ---- |
dows\SysNative\WinTypes.dll
[2013/08/20 23:20:09 | 000,755,200 | ---- |
dows\SysNative\fveapi.dll
[2013/08/20 23:20:08 | 000,545,280 | ---- |
dows\SysNative\taskeng.exe
[2013/08/20 23:20:08 | 000,355,328 | ---- |
dows\SysNative\mfsvr.dll
[2013/08/20 23:20:08 | 000,344,064 | ---- |
dows\SysNative\wlidcredprov.dll
[2013/08/20 23:20:07 | 000,617,984 | ---- | C] (Microsoft
dows\SysNative\mfsrcsnk.dll
[2013/08/20 23:20:05 | 000,180,736 | ---- | C] (Microsoft
dows\SysNative\bcdsrv.dll
[2013/08/20 23:20:01 | 000,249,344 | ---- | C] (Microsoft
dows\SysNative\wpnprv.dll
[2013/08/20 23:19:59 | 001,400,832 | ---- | C] (Microsoft
dows\SysNative\propsys.dll
[2013/08/20 23:19:56 | 000,541,184 | ---- | C] (Microsoft
dows\SysNative\VAN.dll
[2013/08/20 23:19:54 | 000,303,616 | ---- | C] (Microsoft
dows\SysWow64\WinSATAPI.dll
[2013/08/20 23:19:36 | 000,410,624 | ---- | C] (Microsoft
dows\SysNative\services.exe
[2013/08/20 23:19:33 | 000,240,640 | ---- | C] (Microsoft
dows\SysNative\fveapibase.dll
[2013/08/20 23:18:15 | 000,751,104 | ---- | C] (Microsoft
dows\SysNative\appwiz.cpl
[2013/08/20 23:17:36 | 000,670,208 | ---- | C] (Microsoft
dows\SysWow64\appwiz.cpl
[2013/08/20 23:17:36 | 000,333,824 | ---- | C] (Microsoft
dows\SysWow64\WWAHost.exe
[2013/08/20 23:17:36 | 000,180,224 | ---- | C] (Microsoft
dows\SysWow64\MFPlay.dll
[2013/08/20 23:17:36 | 000,112,128 | ---- | C] (Microsoft
dows\SysNative\PackageStateRoaming.dll
[2013/08/20 23:17:35 | 001,369,600 | ---- | C] (Microsoft
dows\SysWow64\RacEngn.dll
[2013/08/20 23:17:34 | 000,228,352 | ---- | C] (Microsoft
dows\SysNative\ProximityService.dll
[2013/08/20 23:17:34 | 000,090,624 | ---- | C] (Microsoft
dows\SysNative\TpmTasks.dll
[2013/08/20 23:17:33 | 000,533,504 | ---- | C] (Microsoft
dows\SysWow64\provcore.dll
[2013/08/20 23:17:33 | 000,256,512 | ---- | C] (Microsoft
dows\SysNative\msvproc.dll
[2013/08/20 23:17:33 | 000,089,088 | ---- | C] (Microsoft
dows\SysWow64\PackageStateRoaming.dll
[2013/08/20 23:17:33 | 000,065,536 | ---- | C] (Microsoft
dows\SysNative\setbcdlocale.dll
[2013/08/20 23:17:31 | 000,509,952 | ---- | C] (Microsoft
dows\SysWow64\twinapi.dll
[2013/08/20 23:17:31 | 000,027,280 | ---- | C] (Microsoft
dows\SysNative\avrt.dll
[2013/08/20 23:17:30 | 000,480,768 | ---- | C] (Microsoft
dows\SysWow64\VAN.dll
[2013/08/20 23:17:28 | 001,247,232 | ---- | C] (Microsoft
dows\SysWow64\combase.dll
[2013/08/20 23:17:23 | 000,103,936 | ---- | C] (Microsoft
dows\SysNative\microsoft-windows-kernel-power-events.dll
[2013/08/20 23:17:22 | 000,449,024 | ---- | C] (Microsoft
dows\SysWow64\mfsrcsnk.dll
[2013/08/20 23:17:22 | 000,062,488 | ---- | C] (Microsoft
dows\SysNative\drivers\dumpfve.sys
[2013/08/20 23:17:21 | 002,016,256 | ---- | C] (Microsoft
dows\SysNative\batmeter.dll
[2013/08/20 23:17:21 | 002,007,040 | ---- | C] (Microsoft
dows\SysWow64\batmeter.dll
[2013/08/20 23:17:21 | 000,101,888 | ---- | C] (Microsoft
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
Corporation) -- C:\Win
dows\SysNative\SettingSyncHost.exe
[2013/08/20 23:17:21 | 000,034,816
dows\SysNative\perfdisk.dll
[2013/08/20 23:17:20 | 000,465,920
dows\SysWow64\WinTypes.dll
[2013/08/20 23:17:17 | 000,270,336
dows\SysWow64\mfsvr.dll
[2013/08/20 23:17:17 | 000,031,232
dows\SysWow64\perfdisk.dll
[2013/08/20 23:17:17 | 000,029,696
dows\SysNative\svchost.exe
[2013/08/20 23:17:16 | 000,263,168
dows\SysWow64\wlidcredprov.dll
[2013/08/20 23:17:15 | 001,342,464
dows\SysNative\user32.dll
[2013/08/20 23:17:14 | 000,194,048
dows\SysNative\winsrv.dll
[2013/08/20 23:17:13 | 000,437,760
dows\SysNative\mfh264enc.dll
[2013/08/20 23:17:13 | 000,214,528
dows\SysWow64\msvproc.dll
[2013/08/20 23:17:13 | 000,023,552
dows\SysNative\perfnet.dll
[2013/08/20 23:17:12 | 000,413,184
dows\SysWow64\mfh264enc.dll
[2013/08/20 23:17:12 | 000,080,896
dows\SysWow64\SettingSyncHost.exe
[2013/08/20 23:17:11 | 000,627,712
dows\SysNative\lpksetup.exe
[2013/08/20 23:17:10 | 000,699,392
dows\SysNative\twinapi.dll
[2013/08/20 23:17:10 | 000,118,272
dows\SysNative\DevPropMgr.dll
[2013/08/20 23:17:10 | 000,117,760
dows\SysNative\dwm.exe
[2013/08/20 23:17:09 | 000,080,384
dows\SysWow64\drvinst.exe
[2013/08/20 23:17:08 | 000,092,672
dows\SysNative\drvinst.exe
[2013/08/20 23:17:07 | 000,459,776
dows\SysNative\dxgi.dll
[2013/08/20 23:17:06 | 002,066,432
dows\SysNative\d3d11.dll
[2013/08/20 23:17:06 | 000,156,672
dows\SysNative\DAFWSD.dll
[2013/08/20 23:17:05 | 000,021,504
dows\SysWow64\perfnet.dll
[2013/08/20 23:17:03 | 001,701,376
dows\SysWow64\d3d11.dll
[2013/08/20 23:17:03 | 000,588,800
dows\SysNative\webio.dll
[2013/08/20 23:17:03 | 000,189,952
dows\SysNative\perfos.dll
[2013/08/20 23:17:02 | 000,417,280
dows\SysWow64\webio.dll
[2013/08/20 23:16:57 | 000,163,328
dows\SysNative\sspicli.dll
[2013/08/20 23:16:57 | 000,092,160
dows\SysNative\lpremove.exe
[2013/08/20 23:16:55 | 000,069,632
dows\SysNative\vsstrace.dll
[2013/08/20 23:16:55 | 000,025,088 | ---- |
dows\SysNative\sdbinst.exe
[2013/08/20 23:16:55 | 000,021,504 | ---- |
dows\SysWow64\sdbinst.exe
[2013/08/20 23:16:41 | 000,044,544 | ---- |
dows\SysNative\perfctrs.dll
[2013/08/20 23:16:41 | 000,039,424 | ---- |
dows\SysWow64\perfctrs.dll
[2013/08/20 23:16:40 | 000,037,888 | ---- |
dows\SysNative\perfproc.dll
[2013/08/20 23:16:40 | 000,034,816 | ---- |
dows\SysWow64\perfproc.dll
[2013/08/20 23:16:40 | 000,033,792 | ---- |
dows\SysWow64\perfos.dll
[2013/08/20 23:16:38 | 000,027,648 | ---- |
dows\SysNative\sspisrv.dll
[2013/08/20 23:16:38 | 000,017,408 | ---- |
dows\SysNative\eventcls.dll
[2013/08/20 23:16:38 | 000,015,360 | ---- |
dows\SysWow64\eventcls.dll
[2013/08/20 23:16:37 | 000,037,888 | ---- |
dows\SysNative\LangCleanupSysprepAction.dll
[2013/08/20 23:16:37 | 000,013,824 | ---- |
dows\SysNative\MUILanguageCleanup.dll
[2013/08/20 23:16:35 | 000,008,704 | ---- |
dows\SysNative\lpksetupproxyserv.dll
[2013/08/20 23:16:35 | 000,006,656 | ---- |
dows\SysNative\shimeng.dll
[2013/08/20 00:34:46 | 000,000,000 | ---D |
ws\Start Menu\Programs\SharePoint
[2013/08/20 00:29:50 | 000,000,000 | ---D |
ws\Start Menu\Programs\Microsoft Office
[2013/08/20 00:27:38 | 000,000,000 | ---D |
DESIGNER
[2013/08/20 00:21:34 | 000,000,000 | ---D |
chronization Services
[2013/08/20 00:18:50 | 000,000,000 | ---D |
c Framework
[2013/08/20 00:18:50 | 000,000,000 | ---D |
Server Compact Edition
[2013/08/20 00:15:44 | 000,000,000 | ---D |
ft Visual Studio 8
[2013/08/20 00:12:31 | 000,068,608 | ---- |
dows\SysNative\wwanprotdim.dll
[2013/08/20 00:12:04 | 000,301,568 | ---- |
dows\SysNative\newdev.dll
[2013/08/20 00:12:03 | 000,275,968 | ---- |
dows\SysWow64\newdev.dll
[2013/08/20 00:12:01 | 000,076,288 | ---- |
dows\SysNative\newdev.exe
[2013/08/20 00:12:01 | 000,075,264 | ---- |
dows\SysNative\ndadmin.exe
[2013/08/20 00:12:01 | 000,074,240 | ---- |
dows\SysWow64\newdev.exe
[2013/08/20 00:11:59 | 000,073,728 | ---- |
dows\SysWow64\ndadmin.exe
[2013/08/20 00:11:42 | 000,000,000 | ---D |
lysis Services
[2013/08/20 00:11:42 | 000,000,000 | ---D |
ft Analysis Services
[2013/08/20 00:06:49 | 000,000,000 | ---D | C] -- C:\Users\wendellrosa\AppData\L
ocal\Microsoft Help
[2013/08/20 00:05:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Off
ice
[2013/08/20 00:05:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tm
p -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2013/09/18 16:47:46 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/18 16:22:00 | 000,001,090 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
teTaskMachineUA.job
[2013/09/18 15:22:00 | 000,001,086 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
teTaskMachineCore.job
[2013/09/16 23:12:46 | 000,421,152 | ---- | M] () -- C:\Windows\SysNative\FNTCAC
HE.DAT
[2013/09/16 23:12:30 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/09/16 23:12:27 | 3341,410,304 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/15 23:14:11 | 000,092,042 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\antecedentes criminais.pdf
[2013/09/15 21:21:44 | 000,014,882 | ---- | M] () -- C:\Users\wendellrosa\Docume
nts\Mary.and.Max.2009.DVDRip.XviD.TheWretched..torrent
[2013/09/13 21:42:37 | 001,900,858 | ---- | M] () -- C:\Windows\SysNative\PerfSt
ringBackup.INI
[2013/09/13 21:42:37 | 000,792,452 | ---- | M] () -- C:\Windows\SysNative\prfh04
16.dat
[2013/09/13 21:42:37 | 000,774,720 | ---- | M] () -- C:\Windows\SysNative\perfh0
09.dat
[2013/09/13 21:42:37 | 000,166,504 | ---- | M] () -- C:\Windows\SysNative\prfc04
16.dat
[2013/09/13 21:42:37 | 000,158,234 | ---- | M] () -- C:\Windows\SysNative\perfc0
09.dat
[2013/09/13 10:33:18 | 002,527,991 | ---- | M] () -- C:\Windows\SysNative\driver
s\NISx64\1404000.028\Cat.DB
[2013/09/11 22:31:59 | 000,085,544 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\GABI MUITO BONITA.wlmp
[2013/09/05 17:09:17 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C
:\Windows\SysWow64\FlashPlayerApp.exe
[2013/09/05 17:09:17 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C
:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/09/03 23:25:14 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Goo
gle Chrome.lnk
[2013/08/28 21:37:18 | 000,042,193 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\BOLETO_0_280813105358287196924674.pdf
[2013/08/28 12:30:43 | 000,096,959 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\boleto_1270444040153001.pdf
[2013/08/27 00:25:59 | 000,033,652 | ---- | M] () -- C:\Users\wendellrosa\Docume
nts\Comprovante-Voto CRP.pdf
[2013/08/25 03:26:52 | 000,000,056 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\Setup.url
[2013/08/24 19:54:36 | 016,949,128 | ---- | M] (Electronic Arts, Inc.) -- C:\Use
rs\wendellrosa\Documents\OriginThinSetup.exe
[2013/08/24 12:54:40 | 000,271,523 | ---- | M] () -- C:\Users\wendellrosa\Docume
nts\Curriculo Wendell Rosa (1).pdf
[2013/08/21 01:12:21 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\ie4uinit.exe
[2013/08/21 01:11:59 | 000,915,968 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\uxtheme.dll
[2013/08/21 01:11:59 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\UXInit.dll
[2013/08/21 01:11:22 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\msfeeds.dll
[2013/08/21 01:11:07 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\jscript9.dll
[2013/08/21 01:11:07 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\jscript.dll
[2013/08/21 01:11:04 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\iesysprep.dll
[2013/08/21 01:11:04 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\iesetup.dll
[2013/08/21 01:11:04 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysNative\iernonce.dll
[2013/08/21 00:13:22 | 000,002,389 | ---- | M] () -- C:\Users\wendellrosa\Deskto
p\Play FIFA 13 nosTEAM.lnk
[2013/08/20 23:51:48 | 000,002,501 | ---- | M] () -- C:\Users\Public\Desktop\Nor
ton Internet Security.lnk
[2013/08/20 23:06:06 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\UXInit.dll
[2013/08/20 23:05:28 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\jscript.dll
[2013/08/20 23:05:25 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\iesysprep.dll
[2013/08/20 23:05:25 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\iesetup.dll
[2013/08/20 23:05:25 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\iernonce.dll
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tm
p -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2013/09/16 23:11:07 | 000,421,152 | ---- | C] () -- C:\Windows\SysNative\FNTCAC
HE.DAT
[2013/09/15 23:14:11 | 000,092,042 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\antecedentes criminais.pdf
[2013/09/15 21:21:43 | 000,014,882 | ---- | C] () -- C:\Users\wendellrosa\Docume
nts\Mary.and.Max.2009.DVDRip.XviD.TheWretched..torrent
[2013/09/11 15:42:28 | 000,085,544 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\GABI MUITO BONITA.wlmp
[2013/09/11 12:49:54 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLice
nse.dll
[2013/09/11 12:44:16 | 000,387,583 | ---- | C] () -- C:\Windows\SysNative\ApnDat
abase.xml
[2013/08/28 21:37:17 | 000,042,193 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\BOLETO_0_280813105358287196924674.pdf
[2013/08/28 12:30:42 | 000,096,959 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\boleto_1270444040153001.pdf
[2013/08/27 00:25:59 | 000,033,652 | ---- | C] () -- C:\Users\wendellrosa\Docume
nts\Comprovante-Voto CRP.pdf
[2013/08/25 03:26:52 | 000,000,056 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\Setup.url
[2013/08/24 12:54:39 | 000,271,523 | ---- | C] () -- C:\Users\wendellrosa\Docume
nts\Curriculo Wendell Rosa (1).pdf
[2013/08/21 00:13:22 | 000,002,389 | ---- | C] () -- C:\Users\wendellrosa\Deskto
p\Play FIFA 13 nosTEAM.lnk
[2013/08/20 23:16:55 | 000,110,592 | ---- | C] () -- C:\Windows\SysNative\OEMLic
ense.dll
[2013/08/17 14:56:28
.dat
[2012/08/08 17:18:04
g600.bin
[2012/08/08 17:17:54
.dll
[2012/08/08 17:17:52
krng600.bin
[2012/08/03 19:40:09
ingBackup.INI
[2012/07/26 05:13:10
at
[2012/07/26 05:13:09
AT
[2012/07/26 04:21:26
[2012/07/25 22:17:42
xtHandler.dll
[2012/07/25 17:37:29
[2012/07/25 17:28:31
edb40.dll
[2012/07/25 17:22:54
00.bin
[2012/07/25 17:22:54
rng500.bin
[2012/07/25 17:22:54
0m.bin
[2012/06/02 11:31:19
at
[2012/04/20 13:59:44
tLog.dll
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F
}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 00:05:38 | 001,004,54
4 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDAD6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 00:18:27 | 000,784,8
96 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1
}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 00:07:41 | 000,455,680
| ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB3285FFC23AF9C1}\InProcServer32]
[color=#E56717]========== LOP Check ==========[/color]
[2013/08/18 17:45:51 | 000,000,000
oaming\Baidu Security
[2013/08/18 17:46:50 | 000,000,000
oaming\DAEMON Tools Lite
[2013/08/26 23:46:06 | 000,000,000
oaming\Origin
[2013/08/17 14:45:13 | 000,000,000
oaming\Synaptics
[2013/09/18 22:44:16 | 000,000,000
oaming\uTorrent
[2013/08/17 20:10:55 | 000,000,000
oaming\WildTangent
| ---D | M] -- C:\Users\wendellrosa\AppData\R
| ---D | M] -- C:\Users\wendellrosa\AppData\R
| ---D | M] -- C:\Users\wendellrosa\AppData\R
| ---D | M] -- C:\Users\wendellrosa\AppData\R
| ---D | M] -- C:\Users\wendellrosa\AppData\R
| ---D | M] -- C:\Users\wendellrosa\AppData\R
opes >[/color]
"DefaultScope" = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
"KnownProvidersUpgradeTime" = F9 08 D2 48 74 9B CE 01 [binary data]
"Version" = 3
"UpgradeTime" = 44 4C A6 49 74 9B CE 01 [binary data]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D
776-472f-A0FF-E1416B8B2E3A}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{195A651C-8
CAB-4B12-A08E-92537758178B}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-d
e77-4029-af96-b231e3b8f827}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{b7fca997-d
0fb-4fe0-8afd-255e89cf9671}]
[color=#A23BEC]< HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\In
ternet Settings\Connections >[/color]
< End of report >