cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17.03.2019
Executado por Administrador (administrador) em SERVIDOR (20-03-2019 09:52:13)
Executando a partir de C:\Users\Administrador\Downloads
Perfis Carregados: Administrador (Perfis Disponíveis: Administrador)
Platform: Windows Server 2008 R2 Datacenter (X64) Idioma: Português (Brasil)
Navegador padrão: FF
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Solarwinds Worldwide, LLC -> SolarWinds Take Control) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvcUpdater.exe
(Solarwinds Worldwide, LLC -> SolarWinds Take Control) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvc.exe
(Firebird Project) [Arquivo não assinado] C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe
(Firebird Project) [Arquivo não assinado] C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(@ByELDI -> @ByELDI) [Arquivo não assinado] C:\Program Files\KMSpico\Service_KMS.exe
() [Arquivo não assinado] C:\Program Files (x86)\OpenSLP\slpd.exe
(LSI) [Arquivo não assinado] C:\Program Files (x86)\LSI\LSIStorageAuthority\bin\LSA.exe
() [Arquivo não assinado] C:\Program Files (x86)\MegaRAID Storage Manager\Framework\VivaldiFramework.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
() [Arquivo não assinado] C:\Program Files (x86)\LSI\LSIStorageAuthority\server\NginxService.exe
(Solarwinds Worldwide, LLC -> SolarWinds Take Control) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSysInf.exe
() [Arquivo não assinado] C:\Program Files (x86)\LSI\LSIStorageAuthority\server\nginx.exe
(Oracle America, Inc. -> N/A) C:\Program Files (x86)\MegaRAID Storage Manager\JRE\bin\javaw.exe
() [Arquivo não assinado] C:\Program Files (x86)\LSI\LSIStorageAuthority\server\nginx.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rdpclip.exe
(Oracle America, Inc. -> N/A) C:\Program Files (x86)\MegaRAID Storage Manager\JRE\bin\java.exe
(Solarwinds Worldwide, LLC -> SolarWinds Take Control) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvcCnfg.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Administrador\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [Popup] => C:\Program Files (x86)\MegaRAID Storage Manager\MegaPopup\Popup.exe [61440 2015-06-01] (LSI) [Arquivo não assinado]
HKLM-x32\...\Run: [BASupSrvcCnfg] => C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvcCnfg.exe [5225976 2019-01-09] (Solarwinds Worldwide, LLC -> SolarWinds Take Control)
HKLM\...\Policies\Explorer: [ShowSuperHidden] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\System32\iesetup.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\System32\iesetup.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\SysWOW64\iesetup.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\SysWOW64\iesetup.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{D1402D4A-5D7B-4B67-B6B6-6B35BE5791D8}] -> C:\Windows\system32\MSPACredentialProvider_7.00.00.201901091416.dll [2019-01-09] (Solarwinds Worldwide, LLC -> SolarWinds Take Control)
Lsa: [Notification Packages] scecli rassfm

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\..\Interfaces\{3983C3A9-56B0-4AE7-9D1F-A071C13FAAF3}: [NameServer] 186.232.16.18,8.8.8.8
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.40.1,-1]

Internet Explorer:
==================
HKU\S-1-5-21-293890414-2807868440-1371566063-500\Software\Microsoft\Internet Explorer\Main,Start Page = res://iesetup.dll/HardAdmin.htm
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: q510uza0.default
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q510uza0.default [2019-03-20]

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 BASupportExpressSrvcUpdater; C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvcUpdater.exe [1162216 2019-01-09] (Solarwinds Worldwide, LLC -> SolarWinds Take Control)
R2 BASupportExpressStandaloneService; C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvc.exe [4165608 2019-01-09] (Solarwinds Worldwide, LLC -> SolarWinds Take Control)
S3 FCRegSvc; C:\Windows\system32\FCRegSvc.dll [25600 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe [81920 2012-05-18] (Firebird Project) [Arquivo não assinado]
R2 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe [2785280 2012-05-18] (Firebird Project) [Arquivo não assinado]
R2 LSAService; C:\Program Files (x86)\LSI\LSIStorageAuthority\bin\LSA.exe [47104 2017-02-06] (LSI) [Arquivo não assinado]
R2 MSMFramework; C:\Program Files (x86)\MegaRAID Storage Manager\Framework\VivaldiFramework.exe [69632 2015-06-01] () [Arquivo não assinado]
R2 NginxService; C:\Program Files (x86)\LSI\LSIStorageAuthority\server\NginxService.exe [14336 2015-10-01] () [Arquivo não assinado]
S3 RSoPProv; C:\Windows\system32\RSoPProv.exe [91648 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 sacsvr; C:\Windows\system32\sacsvr.dll [14848 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [743616 2015-12-01] (@ByELDI -> @ByELDI) [Arquivo não assinado]
R2 slpd; C:\Program Files (x86)\OpenSLP\slpd.exe [144896 2013-06-07] () [Arquivo não assinado]

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [501216 2015-06-18] (Intel(R) Intel Network Drivers -> Intel Corporation)
S3 ioatdma; C:\Windows\System32\Drivers\qd260x64.sys [35328 2009-06-10] (Microsoft Windows -> Intel Corporation)
S0 sacdrv; C:\Windows\System32\DRIVERS\sacdrv.sys [96320 2009-07-13] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

NETSVC: sacsvr -> C:\Windows\system32\sacsvr.dll (Microsoft Corporation)

==================== Um mês (criados) ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2019-03-20 09:52 - 2019-03-20 09:52 - 000009872 _____ C:\Users\Administrador\Downloads\FRST.txt
2019-03-20 09:52 - 2019-03-20 09:52 - 000000000 ____D C:\FRST
2019-03-20 09:51 - 2019-03-20 09:52 - 002434048 _____ (Farbar) C:\Users\Administrador\Downloads\FRST64.exe
2019-03-20 09:44 - 2019-03-20 09:52 - 000000000 ____D C:\Users\Administrador\AppData\Local\Temp\2
2019-03-20 09:33 - 2019-03-20 09:35 - 000000000 ____D C:\Windows\system32\MRT
2019-03-20 09:33 - 2019-03-20 09:33 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-03-20 09:31 - 2012-03-01 03:54 - 000022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2019-03-20 09:31 - 2012-03-01 03:45 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-03-20 09:31 - 2012-03-01 03:40 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2019-03-20 09:31 - 2012-03-01 03:35 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2019-03-20 09:31 - 2012-03-01 02:49 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-03-20 09:31 - 2012-03-01 02:45 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2019-03-20 09:31 - 2012-03-01 02:40 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2019-03-20 09:27 - 2009-09-10 03:28 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-03-20 09:27 - 2009-09-10 02:52 - 000257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-03-20 09:26 - 2013-02-12 12:42 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2019-03-20 09:26 - 2013-02-12 12:37 - 003138048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-03-20 09:26 - 2013-02-12 12:31 - 000158208 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2019-03-20 09:26 - 2013-02-12 12:13 - 002691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-03-20 09:26 - 2013-02-12 12:07 - 000131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2019-03-20 09:26 - 2013-02-12 10:59 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2019-03-20 09:26 - 2012-10-04 14:38 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-03-20 09:26 - 2012-10-04 14:38 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-03-20 09:26 - 2012-10-04 14:38 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-03-20 09:26 - 2012-10-04 14:38 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-03-20 09:26 - 2012-10-04 14:35 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-03-20 09:26 - 2012-10-04 14:32 - 001161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-03-20 09:26 - 2012-10-04 14:32 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 14:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:54 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-03-20 09:26 - 2012-10-04 13:54 - 000274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-03-20 09:26 - 2012-10-04 13:54 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 13:45 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 12:19 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-03-20 09:26 - 2012-10-04 11:49 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-03-20 09:26 - 2012-10-04 11:49 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-03-20 09:26 - 2012-10-04 11:49 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-03-20 09:26 - 2012-10-04 11:49 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-03-20 09:26 - 2012-10-04 11:44 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 11:44 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 11:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-20 09:26 - 2012-10-04 11:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-20 09:25 - 2013-04-12 11:36 - 001653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-03-20 09:25 - 2011-12-16 05:42 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2019-03-20 09:25 - 2011-12-16 04:59 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2019-03-20 09:25 - 2011-02-05 09:41 - 000640896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-03-20 09:25 - 2011-02-05 09:41 - 000556928 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-03-20 09:25 - 2011-02-05 09:41 - 000020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2019-03-20 09:25 - 2011-02-05 09:41 - 000019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2019-03-20 09:25 - 2011-02-05 09:41 - 000017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2019-03-20 09:25 - 2011-02-05 09:39 - 000603976 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-03-20 09:25 - 2011-02-05 09:39 - 000518160 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-03-20 09:25 - 2010-10-16 02:17 - 000720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2019-03-20 09:25 - 2010-10-16 01:34 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2019-03-20 09:25 - 2009-12-19 06:50 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2019-03-20 09:25 - 2009-12-19 06:47 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2019-03-20 09:25 - 2009-12-19 06:47 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2019-03-20 09:25 - 2009-12-19 06:47 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2019-03-20 09:25 - 2009-12-19 06:46 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll
2019-03-20 09:25 - 2009-12-19 06:02 - 000012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2019-03-20 09:25 - 2009-10-31 03:34 - 002870272 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-03-20 09:25 - 2009-10-31 02:45 - 002614272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-03-20 09:25 - 2009-10-28 03:24 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-03-20 09:25 - 2009-10-19 11:46 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-03-20 09:25 - 2009-10-19 11:10 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-03-20 09:25 - 2009-10-02 01:32 - 000982600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-03-20 09:25 - 2009-09-03 04:36 - 001975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2019-03-20 09:25 - 2009-09-03 04:04 - 001320960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2019-03-20 09:25 - 2009-07-30 02:07 - 000366080 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-03-20 09:25 - 2009-07-30 01:44 - 000293888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-03-20 09:24 - 2013-02-12 11:02 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2019-03-20 09:24 - 2012-11-02 02:27 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2019-03-20 09:24 - 2012-11-02 01:48 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2019-03-20 09:24 - 2012-09-06 14:38 - 000295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2019-03-20 09:24 - 2012-07-04 19:04 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2019-03-20 09:24 - 2012-07-04 19:01 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2019-03-20 09:24 - 2012-07-04 19:01 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2019-03-20 09:24 - 2012-07-04 18:26 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2019-03-20 09:24 - 2012-07-04 18:23 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2019-03-20 09:24 - 2012-04-28 00:50 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2019-03-20 09:24 - 2012-04-26 02:34 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2019-03-20 09:24 - 2012-04-26 02:34 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2019-03-20 09:24 - 2012-04-26 02:28 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2019-03-20 09:24 - 2012-03-17 04:55 - 000075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2019-03-20 09:24 - 2011-12-17 03:26 - 000625152 _____ (Microsoft Corporation) C:\Windows\system32\colorui.dll
2019-03-20 09:24 - 2011-12-17 02:42 - 000606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorui.dll
2019-03-20 09:24 - 2011-06-15 06:58 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2019-03-20 09:24 - 2011-06-15 06:58 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2019-03-20 09:24 - 2011-06-15 06:58 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2019-03-20 09:24 - 2011-06-15 06:58 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2019-03-20 09:24 - 2011-06-15 06:04 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2019-03-20 09:24 - 2011-06-15 06:04 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2019-03-20 09:24 - 2011-06-15 06:04 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2019-03-20 09:24 - 2011-06-15 06:04 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2019-03-20 09:24 - 2011-06-15 06:04 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2019-03-20 09:24 - 2011-05-03 02:21 - 000976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-03-20 09:24 - 2011-05-03 01:50 - 000740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2019-03-20 09:24 - 2011-04-26 23:57 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2019-03-20 09:24 - 2011-02-23 02:15 - 000286720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-03-20 09:24 - 2011-02-23 02:15 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-03-20 09:24 - 2011-02-23 02:15 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-03-20 09:24 - 2011-02-23 02:15 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2019-03-20 09:24 - 2010-12-18 03:11 - 000714752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-03-20 09:24 - 2010-12-18 02:29 - 000541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-03-20 09:24 - 2010-10-27 02:16 - 001739176 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-03-20 09:24 - 2010-10-27 01:40 - 001293120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-03-20 09:24 - 2010-10-16 02:23 - 000112000 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-03-20 09:24 - 2010-08-31 01:32 - 000954752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll
2019-03-20 09:24 - 2010-08-31 01:32 - 000954288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll
2019-03-20 09:24 - 2010-08-27 03:14 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-03-20 09:24 - 2010-08-27 02:46 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-03-20 09:24 - 2010-08-27 00:38 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-03-20 09:24 - 2010-08-27 00:37 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-03-20 09:24 - 2010-08-27 00:37 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-03-20 09:24 - 2010-08-21 03:31 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2019-03-20 09:24 - 2010-08-21 03:29 - 000558592 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2019-03-20 09:24 - 2010-08-21 02:33 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2019-03-20 09:24 - 2010-06-29 02:39 - 002085376 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-03-20 09:24 - 2010-06-29 02:02 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-03-20 09:24 - 2010-05-19 16:48 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-03-20 09:24 - 2010-03-05 04:52 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2019-03-20 09:24 - 2010-03-05 04:42 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2019-03-20 09:24 - 2010-01-09 04:19 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2019-03-20 09:24 - 2010-01-09 03:52 - 000132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll
2019-03-20 09:24 - 2009-08-29 04:50 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2019-03-20 09:24 - 2009-08-29 03:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2019-03-20 09:22 - 2010-02-18 05:07 - 014163456 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-03-20 09:22 - 2010-02-18 04:34 - 012867072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-03-20 09:18 - 2012-04-02 02:34 - 005504880 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-03-20 09:18 - 2012-04-02 01:46 - 003958128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-03-20 09:18 - 2012-04-02 01:46 - 003902320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-03-20 09:18 - 2012-04-02 00:01 - 003143680 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-03-20 09:17 - 2012-11-02 02:29 - 000565248 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-03-20 09:17 - 2012-05-14 02:20 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-03-20 09:17 - 2011-11-17 04:17 - 000152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-03-20 09:17 - 2011-11-17 04:17 - 000095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-03-20 09:17 - 2011-11-17 04:15 - 000460296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2019-03-20 09:17 - 2011-11-17 04:12 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2019-03-20 09:17 - 2011-11-17 04:11 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-03-20 09:17 - 2011-11-17 04:11 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-03-20 09:17 - 2011-11-17 04:11 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-03-20 09:17 - 2011-11-17 04:10 - 000340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-03-20 09:17 - 2011-11-17 04:08 - 001446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-03-20 09:17 - 2011-11-17 04:05 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-03-20 09:17 - 2011-11-17 02:39 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2019-03-20 09:17 - 2011-11-17 02:39 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-03-20 09:17 - 2011-11-17 02:39 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-03-20 09:17 - 2011-11-17 02:35 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-03-20 09:17 - 2011-10-26 02:22 - 001572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-03-20 09:17 - 2011-10-26 02:22 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-03-20 09:17 - 2011-10-26 01:28 - 001328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-03-20 09:17 - 2011-10-26 01:28 - 000514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-03-20 09:17 - 2011-08-27 02:40 - 000861184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-03-20 09:17 - 2011-08-27 02:40 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2019-03-20 09:17 - 2011-08-27 01:43 - 000571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-03-20 09:17 - 2011-08-27 01:43 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2019-03-20 09:17 - 2011-05-24 08:21 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2019-03-20 09:17 - 2011-05-24 07:34 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2019-03-20 09:17 - 2011-05-24 07:34 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2019-03-20 09:17 - 2011-05-24 07:34 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2019-03-20 09:17 - 2011-05-24 07:32 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2019-03-20 09:17 - 2011-03-11 03:19 - 001395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2019-03-20 09:17 - 2011-03-11 03:19 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2019-03-20 09:17 - 2011-03-11 02:40 - 001164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2019-03-20 09:17 - 2011-03-11 02:40 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2019-03-20 09:17 - 2011-03-03 03:17 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-03-20 09:17 - 2011-03-03 03:17 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-03-20 09:17 - 2011-03-03 03:14 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2019-03-20 09:17 - 2011-03-03 02:29 - 000269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-03-20 09:17 - 2011-03-03 02:27 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2019-03-20 09:17 - 2010-12-18 03:08 - 001097216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2019-03-20 09:17 - 2010-12-18 02:26 - 001034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2019-03-20 09:17 - 2010-11-02 02:18 - 000524288 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2019-03-20 09:17 - 2010-11-02 02:17 - 001169408 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2019-03-20 09:17 - 2010-11-02 02:17 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2019-03-20 09:17 - 2010-11-02 02:16 - 001114624 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-03-20 09:17 - 2010-11-02 02:10 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2019-03-20 09:17 - 2010-11-02 02:10 - 000285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2019-03-20 09:17 - 2010-11-02 01:40 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2019-03-20 09:17 - 2010-11-02 01:40 - 000305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2019-03-20 09:17 - 2010-11-02 01:34 - 000192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2019-03-20 09:17 - 2010-11-02 01:34 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2019-03-20 09:17 - 2010-08-26 02:27 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-03-20 09:17 - 2010-08-26 01:39 - 000109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-03-20 09:17 - 2010-06-19 03:53 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2019-03-20 09:17 - 2010-06-19 03:23 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2019-03-20 09:17 - 2010-05-05 04:37 - 000483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-03-20 09:17 - 2010-05-05 03:46 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-03-20 09:13 - 2012-02-15 03:27 - 001031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-03-20 09:13 - 2012-02-15 02:44 - 000826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-03-20 09:13 - 2012-02-15 01:46 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2019-03-20 09:02 - 2019-03-20 09:17 - 000000000 ____D C:\Users\Administrador\Downloads\nhm_windows_1.9.0.19
2019-03-20 09:02 - 2016-10-12 09:09 - 000001983 _____ C:\Users\Administrador\Downloads\README.txt
2019-03-20 09:02 - 2016-08-10 12:01 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2019-03-20 08:48 - 2019-03-20 08:55 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\DLL Helper
2019-03-20 08:48 - 2019-03-20 08:50 - 000001090 _____ C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\DLL Helper.lnk
2019-03-20 08:48 - 2019-03-20 08:48 - 000002748 _____ C:\Windows\System32\Tasks\DLLHelperUACDisablingTask
2019-03-20 08:48 - 2019-03-20 08:48 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\ROSTPAY LTD
2019-03-20 08:48 - 2019-03-20 08:48 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DLL Helper
2019-03-20 08:48 - 2019-03-20 08:48 - 000000000 ____D C:\Program Files (x86)\DLL Helper
2019-03-20 08:46 - 2019-03-20 08:47 - 000964608 _____ (ROSTPAY LTD.) C:\Users\Administrador\Downloads\dll-helper-install.exe
2019-03-20 08:46 - 2012-06-02 19:19 - 002428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-03-20 08:46 - 2012-06-02 19:19 - 000057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2019-03-20 08:46 - 2012-06-02 19:19 - 000044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-03-20 08:46 - 2012-06-02 19:15 - 002622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2019-03-20 08:45 - 2012-06-02 19:19 - 000701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-03-20 08:45 - 2012-06-02 19:19 - 000038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2019-03-20 08:45 - 2012-06-02 19:15 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2019-03-20 08:45 - 2012-06-02 15:19 - 000186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2019-03-20 08:45 - 2012-06-02 15:15 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2019-03-20 08:41 - 2019-03-20 08:41 - 000131072 _____ C:\Windows\ocsetup_install_NetFx3.etl
2019-03-20 08:41 - 2019-03-20 08:41 - 000028718 _____ C:\Windows\ocsetup_cbs_install_NetFx3.txt
2019-03-20 08:41 - 2019-03-20 08:41 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2019-03-20 08:41 - 2019-03-20 08:41 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-03-20 08:41 - 2019-03-20 08:41 - 000000000 ____D C:\Program Files\MSBuild
2019-03-20 08:41 - 2019-03-20 08:41 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-03-20 08:41 - 2019-03-20 08:41 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-03-20 08:40 - 2019-03-20 08:40 - 002824168 _____ (DLL-Files.com Client ) C:\Users\Administrador\Downloads\clientsetup_d-0.exe
2019-03-20 08:35 - 2019-03-20 08:35 - 005617736 _____ C:\Users\Administrador\Downloads\nhm_windows_1.9.0.19.zip
2019-02-28 07:17 - 2019-02-28 07:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 2.1 (Win32)
2019-02-28 07:17 - 2012-05-18 11:26 - 000462848 _____ (IBPhoenix) C:\Windows\SysWOW64\Firebird2Control.cpl
2019-02-28 07:17 - 2012-05-18 10:24 - 000450560 _____ (Firebird Project) C:\Windows\SysWOW64\GDS32.DLL
2019-02-27 07:07 - 2019-03-20 07:43 - 000000000 ____D C:\Users\Administrador\Desktop\BKP Banco
2019-02-25 08:46 - 2019-02-25 08:46 - 000032768 _____ C:\Users\Administrador\AppData\Local\Temp\~DF8898012BBCD7D368.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000032768 _____ C:\Users\Administrador\AppData\Local\Temp\~DF16D524A91CD8DCC0.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000016384 _____ C:\Users\Administrador\AppData\Local\Temp\~DF9F28E773353A3D9B.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000000512 ____T C:\Users\Administrador\AppData\Local\Temp\~DFBE1DF1F765B9BF57.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000000512 ____T C:\Users\Administrador\AppData\Local\Temp\~DF633FA0D725D600AC.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000000512 ____T C:\Users\Administrador\AppData\Local\Temp\~DF3E54F8B8033D46EC.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000000000 ____T C:\Users\Administrador\AppData\Local\Temp\~DFBF16754FFB3875E4.TMP
2019-02-25 08:46 - 2019-02-25 08:46 - 000000000 ____T C:\Users\Administrador\AppData\Local\Temp\~DF6FBEB836B799E9B4.TMP
2019-02-25 08:36 - 2019-02-25 08:37 - 233773385 _____ C:\Users\Administrador\Desktop\bk.rar
2019-02-25 08:35 - 2019-02-25 08:35 - 000000000 ____D C:\Users\Administrador\Desktop\bk

==================== Um mês (modificados) ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2019-03-20 09:52 - 2019-02-06 23:30 - 000680360 _____ C:\Windows\system32\prfh0416.dat
2019-03-20 09:52 - 2019-02-06 23:30 - 000137452 _____ C:\Windows\system32\prfc0416.dat
2019-03-20 09:52 - 2009-07-14 02:10 - 001567014 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-20 09:52 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-03-20 09:51 - 2019-02-07 14:28 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2019-03-20 09:49 - 2009-07-14 01:49 - 000012080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-20 09:49 - 2009-07-14 01:49 - 000012080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-20 09:43 - 2019-02-07 13:53 - 000000000 ____D C:\Users\Todos os Usuários\GetSupportService
2019-03-20 09:43 - 2019-02-07 13:53 - 000000000 ____D C:\ProgramData\GetSupportService
2019-03-20 09:43 - 2009-07-14 02:06 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-20 09:43 - 2009-07-14 01:49 - 000271456 _____ C:\Windows\system32\FNTCACHE.DAT
2019-03-20 09:41 - 2009-07-14 00:20 - 000000000 ____D C:\Program Files\Common Files\System
2019-03-20 09:08 - 2019-02-07 14:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-20 08:56 - 2019-02-07 14:28 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-03-20 08:48 - 2019-02-07 13:40 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2019-03-20 08:48 - 2019-02-07 13:40 - 000000000 ____D C:\ProgramData\Package Cache
2019-03-13 10:00 - 2019-02-07 14:53 - 000000000 ____D C:\Users\Todos os Usuários\KMSAutoS
2019-03-13 10:00 - 2019-02-07 14:53 - 000000000 ____D C:\ProgramData\KMSAutoS
2019-03-11 15:33 - 2019-02-07 14:39 - 000000000 ____D C:\Program Files (x86)\Siap
2019-03-11 15:31 - 2019-02-07 14:02 - 000013030 _____ C:\PDOXUSRS.NET
2019-02-28 07:34 - 2019-02-07 13:40 - 000000000 ____D C:\Users\Administrador\AppData\Local\Temp\hsperfdata_Administrador

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dllhost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dllhost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2019-03-14 00:49

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité