cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:18-01-2016
Executado por ANDREY (administrador) em ANDREY-PC (22-01-2016 17:48:09)
Executando a partir de C:\Users\ANDREY\Downloads
Perfis Carregados: ANDREY (Perfis Disponíveis: ANDREY)
Platform: Windows 10 Pro (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(Pixart Imaging Inc) C:\WINDOWS\System32\TiltWheelMouse.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Microsoft Corporation) C:\WINDOWS\System32\InstallAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
(Microsoft Corporation) C:\WINDOWS\System32\DataExchangeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [uni mouse driver] => C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe [1634296 2015-04-13] ()
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [4990808 2015-09-15] (Disc Soft Ltd)
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\Run: [Spotify Web Helper] => C:\Users\ANDREY\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-27] (Spotify Ltd)
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\Run: [Spotify] => C:\Users\ANDREY\AppData\Roaming\Spotify\Spotify.exe [7736128 2015-10-27] (Spotify Ltd)
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-01-16] (Electronic Arts)
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\...\MountPoints2: {f1b0bd88-bae2-11e5-8da2-a0f3c104f555} - "D:\OriginInstaller.exe"
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\ANDREY\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll Nenhum Arquivo
GroupPolicyScripts: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\WTFastDrv.dll [72296 2015-04-08] (Initex)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\WTFastDrv.dll [72296 2015-04-08] (Initex)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\WTFastDrv.dll [72296 2015-04-08] (Initex)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\WTFastDrv.dll [72296 2015-04-08] (Initex)
Winsock: Catalog9 16 C:\WINDOWS\SysWOW64\WTFastDrv.dll [72296 2015-04-08] (Initex)
Winsock: Catalog9-x64 01 C:\Windows\system32\WTFastDrv.dll [79464 2015-04-08] (Initex)
Winsock: Catalog9-x64 02 C:\Windows\system32\WTFastDrv.dll [79464 2015-04-08] (Initex)
Winsock: Catalog9-x64 03 C:\Windows\system32\WTFastDrv.dll [79464 2015-04-08] (Initex)
Winsock: Catalog9-x64 04 C:\Windows\system32\WTFastDrv.dll [79464 2015-04-08] (Initex)
Winsock: Catalog9-x64 16 C:\Windows\system32\WTFastDrv.dll [79464 2015-04-08] (Initex)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{53bd6cd8-2223-4507-be91-7e8b34a5e456}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{684be950-acfe-4de9-bcf3-956a0b79fe98}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fa784419-1ad4-441e-b0d4-52c16569e263}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4144327251-3147343308-339786413-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com.br/
SearchScopes: HKU\S-1-5-21-4144327251-3147343308-339786413-1001 -> {273DC082-FC2B-4394-A890-5DC82CF8C117} URL = hxxps://br.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=435371&p={searchTerms}

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-12-16] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-12-16] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.hotmail.com/"
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?fr=chr-yo_gc&ei=utf-8&ilc=12&type=435371&p={searchTerms}
CHR DefaultSearchKeyword: Default -> yahoo.com search
CHR DefaultSuggestURL: Default -> hxxps://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
CHR Profile: C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-20]
CHR Extension: (YouTube) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-17]
CHR Extension: (Google Search) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Documentos Google off-line) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (AdBlock) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-20]
CHR Extension: (agar.io server browser) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-10-17]
CHR Extension: (Webcam Toy) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2015-10-17]
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-10-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-17]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-10-17]
CHR Extension: (Gmail) - C:\Users\ANDREY\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-17]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1290784 2016-01-08] ()
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [1259864 2015-09-15] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-16] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-12-03] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2015-12-18] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2015-12-18] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-14] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2016-01-14] (Disc Soft Ltd)
R3 dtproscsibus; C:\Windows\System32\drivers\dtproscsibus.sys [30352 2015-10-18] (Disc Soft Ltd)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-17] (Realtek )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-06-01] ()
S3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2015-06-17] (Realtek Semiconductor Corporation )
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; não ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-22 17:48 - 2016-01-22 17:48 - 00015442 _____ C:\Users\ANDREY\Downloads\FRST.txt
2016-01-22 17:47 - 2016-01-22 17:48 - 00000000 ____D C:\FRST
2016-01-22 17:45 - 2016-01-22 17:47 - 02370560 _____ (Farbar) C:\Users\ANDREY\Downloads\FRST64.exe
2016-01-22 17:14 - 2016-01-22 17:14 - 00000000 ___HD C:\$Windows.~WS
2016-01-22 17:12 - 2016-01-22 17:13 - 07635472 _____ (Microsoft Corporation) C:\Users\ANDREY\Downloads\GetWindows10-sds_____________.exe
2016-01-22 17:05 - 2016-01-22 17:05 - 03202752 _____ (Microsoft Corporation) C:\Users\ANDREY\Downloads\Setup.X86.pt-BR_O365HomePremRetail_9a4234bc-c5c4-446e-89f3-a2d59bbf5bf8_TX_PR_.exe
2016-01-22 16:58 - 2016-01-22 16:58 - 00016148 _____ C:\WINDOWS\system32\ANDREY-PC_ANDREY_HistoryPrediction.bin
2016-01-22 15:30 - 2016-01-22 15:30 - 00000000 _____ C:\Recovery.txt
2016-01-22 15:28 - 2016-01-22 15:30 - 00000000 ___HD C:\$SysReset
2016-01-21 02:10 - 2016-01-21 02:10 - 00696320 _____ (Speed Guide Inc.) C:\Users\ANDREY\Desktop\TCPOptimizer.exe
2016-01-21 02:09 - 2016-01-21 02:09 - 00253132 _____ C:\Users\ANDREY\Downloads\REDUZIR PING.rar
2016-01-20 19:14 - 2016-01-20 19:15 - 03332168 _____ (CPUID) C:\Users\ANDREY\Desktop\cpuz_x64.exe
2016-01-20 19:14 - 2016-01-20 19:14 - 00223726 _____ C:\Users\ANDREY\Downloads\setfsb_2_2_134_98.zip
2016-01-20 19:13 - 2016-01-20 19:14 - 02420272 _____ C:\Users\ANDREY\Downloads\cpu-z_1.74-en.zip
2016-01-18 17:29 - 2016-01-18 17:29 - 00000000 ____D C:\Users\ANDREY\Documents\FreeReign
2016-01-18 17:29 - 2016-01-18 17:29 - 00000000 ____D C:\Users\ANDREY\AppData\Local\FreeReign
2016-01-18 04:49 - 2016-01-18 04:49 - 00000222 _____ C:\Users\ANDREY\Desktop\Burstfire.url
2016-01-16 19:06 - 2016-01-16 19:06 - 00000219 _____ C:\Users\ANDREY\Desktop\Left 4 Dead 2.url
2016-01-16 16:29 - 2016-01-22 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast
2016-01-16 16:29 - 2016-01-16 16:29 - 00000000 ____D C:\Users\ANDREY\AppData\Local\AAA_Internet_Publishing,_
2016-01-16 16:29 - 2016-01-16 16:29 - 00000000 ____D C:\Program Files (x86)\WTFast
2016-01-16 16:29 - 2015-04-08 15:15 - 00079464 _____ (Initex) C:\WINDOWS\system32\WTFastDrv.dll
2016-01-16 16:29 - 2015-04-08 15:15 - 00072296 _____ (Initex) C:\WINDOWS\SysWOW64\WTFastDrv.dll
2016-01-16 16:29 - 2015-04-08 15:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SPORDER.DLL
2016-01-16 16:27 - 2016-01-16 16:28 - 07016240 _____ (Initex & AAA Internet Publishing ) C:\Users\ANDREY\Downloads\WTFastSetup.3.5.9.511 (1).exe
2016-01-15 21:38 - 2014-07-21 18:15 - 01895360 _____ (cFos Software GmbH) C:\WINDOWS\system32\Drivers\cfosspeed6.sys
2016-01-15 14:49 - 2016-01-15 14:49 - 01287680 _____ C:\WINDOWS\Minidump\011516-14359-01.dmp
2016-01-14 19:40 - 2015-12-18 04:10 - 00099472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-01-14 19:40 - 2015-12-18 04:10 - 00090768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-01-14 19:04 - 2016-01-14 19:04 - 00000000 ____D C:\Users\ANDREY\AppData\Local\Disc_Soft_Ltd
2016-01-14 19:00 - 2016-01-14 19:00 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-01-14 18:58 - 2016-01-14 18:58 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-14 18:57 - 2016-01-22 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-01-14 18:57 - 2016-01-14 19:03 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\DAEMON Tools Lite
2016-01-14 18:57 - 2016-01-14 18:57 - 00046392 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2016-01-14 18:57 - 2016-01-14 18:57 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2016-01-14 18:57 - 2016-01-14 18:57 - 00001814 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-01-14 18:56 - 2016-01-14 18:59 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-01-14 18:56 - 2016-01-14 18:56 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-01-14 18:56 - 2016-01-14 18:56 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-01-14 18:39 - 2016-01-14 18:46 - 01709792 _____ (Disc Soft Ltd.) C:\Users\ANDREY\Downloads\DTLiteInstaller.exe
2016-01-14 17:55 - 2016-01-14 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
2016-01-14 17:55 - 2016-01-14 17:55 - 00000000 ____D C:\Program Files (x86)\Tribo Gamer
2016-01-14 17:54 - 2016-01-20 04:24 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{317CC785-4F98-4ECA-8A23-00E67582B0B8}
2016-01-14 17:53 - 2016-01-14 17:54 - 03635510 _____ (Tribo Gamer Brasil®) C:\Users\ANDREY\Downloads\battlefield-3-em-portugues.exe
2016-01-14 17:50 - 2016-01-14 17:52 - 09776199 _____ C:\Users\ANDREY\Downloads\CraftLandiaMG.zip
2016-01-14 14:51 - 2016-01-16 18:56 - 00000000 ____D C:\Users\ANDREY\AppData\Local\CrashDumps
2016-01-14 14:49 - 2016-01-12 02:41 - 01542600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-01-14 14:49 - 2016-01-12 02:41 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-01-14 14:49 - 2016-01-12 02:40 - 01860120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-01-14 14:49 - 2016-01-12 02:40 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-01-14 14:49 - 2016-01-12 02:40 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-01-14 14:46 - 2016-01-22 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-01-14 14:46 - 2015-12-16 12:19 - 00103216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-01-14 14:45 - 2015-12-16 12:54 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-01-14 14:45 - 2015-12-16 12:54 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-01-14 14:42 - 2015-12-18 06:48 - 12426896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-01-14 14:42 - 2015-12-16 14:59 - 42976888 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 37608568 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 31098488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 24923768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 21131424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 20672376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 19727624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 17568432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 17164160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 17123736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 17104016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 14103608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 03603368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 03184152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 02560816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 02214192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 01915512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436143.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 01564976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436143.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00938104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00872056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00786688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00735024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00681592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00601936 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00541000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00445728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00416560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00378784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00370992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00339760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00316960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00175368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00153208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00151184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-01-14 14:42 - 2015-12-16 14:59 - 00039240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2016-01-14 13:43 - 2016-01-22 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse driver
2016-01-14 13:43 - 2016-01-14 13:43 - 00000000 ____D C:\Program Files (x86)\Hama Mouse Assistant
2016-01-14 13:41 - 2016-01-14 13:44 - 09762243 _____ C:\Users\ANDREY\Downloads\0003-Install_Win10_10006_10132015.zip
2016-01-14 13:40 - 2016-01-14 13:43 - 01197717 _____ C:\Users\ANDREY\Downloads\00053879_vista_7_8_81_10_v1_1.zip
2016-01-14 13:35 - 2016-01-22 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2016-01-14 13:35 - 2016-01-14 13:35 - 00000000 ____D C:\Users\Todos os Usuários\DriversCloud.com
2016-01-14 13:35 - 2016-01-14 13:35 - 00000000 ____D C:\ProgramData\DriversCloud.com
2016-01-14 13:35 - 2016-01-14 13:35 - 00000000 ____D C:\Program Files\DriversCloud.com
2016-01-14 13:32 - 2016-01-14 13:32 - 00255152 _____ C:\Users\ANDREY\Downloads\DriversCloud_Win.exe
2016-01-14 12:12 - 2016-01-14 14:24 - 338451304 _____ (NVIDIA Corporation) C:\Users\ANDREY\Downloads\361.43-desktop-win10-64bit-international-whql.exe
2016-01-14 11:39 - 2016-01-14 11:39 - 00286696 _____ C:\WINDOWS\Minidump\011416-19171-01.dmp

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-22 17:47 - 2015-07-10 07:47 - 00000000 ____D C:\WINDOWS
2016-01-22 17:40 - 2015-10-17 02:30 - 00001104 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-22 17:39 - 2015-10-20 00:39 - 00000390 _____ C:\WINDOWS\Tasks\update-S-1-5-21-4144327251-3147343308-339786413-1001.job
2016-01-22 17:34 - 2015-07-30 20:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-22 17:22 - 2015-10-20 00:39 - 00000390 _____ C:\WINDOWS\Tasks\update-sys.job
2016-01-22 17:21 - 2015-12-11 00:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-01-22 17:21 - 2015-10-28 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-22 17:21 - 2015-10-28 01:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2016-01-22 17:21 - 2015-10-27 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-01-22 17:21 - 2015-10-27 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2016-01-22 17:21 - 2015-10-20 14:35 - 00000000 ____D C:\Users\ANDREY
2016-01-22 17:21 - 2015-10-18 20:37 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2016-01-22 17:21 - 2015-10-18 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-22 17:21 - 2015-10-18 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2016-01-22 17:21 - 2015-10-18 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
2016-01-22 17:21 - 2015-10-18 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2016-01-22 17:21 - 2015-10-17 06:17 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-01-22 17:21 - 2015-10-17 06:16 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-01-22 17:21 - 2015-10-17 02:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-22 17:21 - 2015-10-17 02:13 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-01-22 17:21 - 2015-10-17 02:12 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-01-22 17:21 - 2015-10-17 02:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-01-22 17:21 - 2015-10-17 02:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-22 17:21 - 2015-09-10 03:48 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 __RSD C:\WINDOWS\Media
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\system32\IME
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\schemas
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\Users\Todos os Usuários\USOPrivate
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-22 17:21 - 2015-07-30 20:42 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-22 17:21 - 2015-07-30 20:40 - 00000000 ____D C:\WINDOWS\INF
2016-01-22 17:21 - 2009-07-14 05:45 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-01-22 17:21 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-22 17:20 - 2015-11-15 02:51 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-01-22 17:20 - 2015-11-15 02:47 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-01-22 17:20 - 2015-10-31 04:03 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Level Up
2016-01-22 17:20 - 2015-10-20 14:49 - 00000000 ____D C:\Users\ANDREY\AppData\Local\TileDataLayer
2016-01-22 17:20 - 2015-10-18 10:54 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-22 17:20 - 2009-07-14 01:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-01-22 17:15 - 2015-10-20 08:43 - 00021861 _____ C:\WINDOWS\diagerr.xml
2016-01-22 17:15 - 2015-10-20 08:43 - 00021270 _____ C:\WINDOWS\diagwrn.xml
2016-01-22 17:14 - 2015-10-20 15:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-22 17:02 - 2015-10-20 14:49 - 00000000 ____D C:\Users\ANDREY\AppData\Local\Packages
2016-01-22 17:02 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-22 16:52 - 2015-07-30 20:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-22 16:38 - 2015-10-30 17:34 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-22 16:38 - 2015-10-17 02:30 - 00001100 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-22 16:28 - 2015-11-12 16:34 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-01-22 16:28 - 2015-11-12 16:34 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-22 16:28 - 2015-07-30 19:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-22 14:57 - 2015-12-02 00:54 - 00000000 ____D C:\Users\ANDREY\Documents\BFBC2
2016-01-22 14:57 - 2015-10-28 00:02 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-01-22 14:50 - 2015-11-15 02:46 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-01-22 14:50 - 2015-10-17 01:22 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-21 03:34 - 2015-11-15 02:51 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-01-21 03:18 - 2015-11-20 21:36 - 00000080 _____ C:\Users\ANDREY\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-01-21 03:13 - 2015-10-17 01:33 - 00000000 ___RD C:\Users\ANDREY\Desktop\JOGOS &PROGRAMAS
2016-01-21 03:07 - 2015-10-24 08:32 - 283960066 _____ C:\WINDOWS\MEMORY.DMP
2016-01-20 22:42 - 2015-10-17 02:38 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-01-20 18:04 - 2015-10-20 14:52 - 00000000 ___RD C:\Users\ANDREY\OneDrive
2016-01-20 12:34 - 2015-10-20 14:52 - 00002411 _____ C:\Users\ANDREY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-20 04:29 - 2015-10-28 00:14 - 00000576 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-01-20 04:29 - 2015-10-28 00:14 - 00000576 __RSH C:\ProgramData\ntuser.pol
2016-01-20 04:26 - 2015-07-30 20:42 - 00000000 ____D C:\WINDOWS\Registration
2016-01-20 04:24 - 2015-11-21 02:35 - 00002432 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2016-01-20 04:24 - 2015-10-20 14:43 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-20 04:24 - 2015-10-20 00:39 - 00003022 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-4144327251-3147343308-339786413-1001
2016-01-20 04:24 - 2015-10-20 00:39 - 00002824 _____ C:\WINDOWS\System32\Tasks\update-sys
2016-01-20 04:24 - 2015-10-17 02:30 - 00003616 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-20 04:24 - 2015-10-17 02:30 - 00003392 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-20 04:20 - 2015-07-10 07:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-20 04:18 - 2015-10-17 02:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-01-20 04:07 - 2015-10-31 04:03 - 00000000 ____D C:\temp
2016-01-20 03:34 - 2015-07-10 07:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-18 15:17 - 2015-12-18 12:25 - 02083368 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-18 15:17 - 2015-09-10 03:04 - 00883810 _____ C:\WINDOWS\system32\prfh0416.dat
2016-01-18 15:17 - 2015-09-10 03:04 - 00191316 _____ C:\WINDOWS\system32\prfc0416.dat
2016-01-16 19:32 - 2015-12-11 00:49 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-01-16 19:32 - 2015-12-11 00:49 - 00000000 ____D C:\ProgramData\Origin
2016-01-16 19:32 - 2015-12-09 21:28 - 00000000 ____D C:\Program Files (x86)\Origin
2016-01-16 18:05 - 2015-10-27 22:25 - 00000000 ____D C:\Users\ANDREY\AppData\Local\ElevatedDiagnostics
2016-01-16 17:49 - 2015-10-27 23:35 - 00045890 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2016-01-15 20:16 - 2015-11-09 22:27 - 00000000 ____D C:\Users\ANDREY\AppData\Roaming\TS3Client
2016-01-15 16:48 - 2015-12-02 00:55 - 00282296 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2016-01-15 16:48 - 2015-12-02 00:54 - 00282296 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-01-15 16:37 - 2015-12-02 00:54 - 00215128 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-01-15 14:49 - 2015-10-24 08:32 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-14 19:41 - 2015-10-17 02:14 - 00000000 ____D C:\Users\ANDREY\AppData\Local\NVIDIA
2016-01-14 19:03 - 2015-11-20 21:35 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-01-14 18:50 - 2015-11-20 21:35 - 00000000 ____D C:\Program Files\Rockstar Games
2016-01-14 15:34 - 2015-12-09 20:48 - 00000991 _____ C:\Users\ANDREY\Desktop\Legue of legends.lnk
2016-01-14 14:38 - 2015-10-17 02:14 - 00000000 ____D C:\Users\ANDREY\AppData\Local\NVIDIA Corporation
2016-01-02 23:40 - 2015-07-30 20:43 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-02 23:40 - 2015-07-30 20:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Arquivos na raiz de alguns diretórios =======

2015-10-20 00:39 - 2015-10-20 00:39 - 0000003 _____ () C:\Users\ANDREY\AppData\Local\updater.log
2015-10-20 00:39 - 2015-10-28 01:14 - 0000424 _____ () C:\Users\ANDREY\AppData\Local\UserProducts.xml

Alguns arquivos em TEMP:
====================
C:\Users\ANDREY\AppData\Local\Temp\bdfilters.dll
C:\Users\ANDREY\AppData\Local\Temp\bitool.dll
C:\Users\ANDREY\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\ANDREY\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\ANDREY\AppData\Local\Temp\nvStInst.exe
C:\Users\ANDREY\AppData\Local\Temp\offer-67A4D2CE-8783-4C0B-86CE-1BE2625A968B.exe
C:\Users\ANDREY\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-19 03:51

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité