Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:05-03-2016 01
Executado por Erik Lima (administrador) em ERIKLIMA (22-03-2016 10:30:37)
Executando a partir de C:\Users\Erik Lima\Downloads
Perfis Carregados: Erik Lima (Perfis Disponíveis: Erik Lima)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SmartRecovery2_x64\RPMDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(LG Electronics) C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Smart Solution\bin\Dual Smart Solution.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TODO:) C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Smart Solution\bin\SmartHookTestApp.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Gorenie) C:\Users\Erik Lima\AppData\Local\Temp\dxdiag.exe
() C:\ProgramData\WindowsMsg\trz2439.tmp
() C:\Users\Erik Lima\AppData\Local\Temp\nsd1CAE.tmp
() C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF\knsd28CF.tmpfs
() C:\Windows\Temp\_avast_\unp55221299.tmp
() C:\Windows\Temp\_avast_\unp211231278.tmp
() C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF\snse89AB.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [3D BubbleSound] => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2015-06-07] (Power Software Ltd)
HKLM-x32\...\Run: [mbot_br_014010227] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-18] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SmartRecovery2_x64\RPMKickstart.exe [2422272 2012-09-06] (Gigabyte Technology CO., LTD.)
HKU\S-1-5-21-910248228-3671913007-3294267795-1000\...\MountPoints2: E - E:\Setup.exe
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-07] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => Nenhum Arquivo
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dual Smart Solution.lnk [2016-02-04]
ShortcutTarget: Dual Smart Solution.lnk -> C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Smart Solution\bin\Dual Smart Solution.exe (LG Electronics)
BootExecute: autocheck autochk * aswBoot.exe /M:597a7255c /wow /dir:"C:\Program Files\AVAST Software\Avast"
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51618;https=127.0.0.1:51618
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 179.233.128.19 179.233.128.14
Tcpip\..\Interfaces\{F1417BF6-85E0-4CAB-AD25-BFBC2AFE7EFA}: [DhcpNameServer] 179.233.128.19 179.233.128.14
ManualProxies:
Internet Explorer:
==================
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-07] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-28] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-07] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-04] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-28] (Oracle Corporation)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-04] (Google Inc.)
Toolbar: HKU\S-1-5-21-910248228-3671913007-3294267795-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-03-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR HomePage: Default -> hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=69E9E0AFE074818B10E6F91DDEF8187D&v=20160315&ts=AHEpC3MpAHYpBE..
CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=69E9E0AFE074818B10E6F91DDEF8187D&v=20160315&ts=AHEpC3MpAHYpBE.."
CHR DefaultSearchURL: Default -> hxxp://www.yessearches.com/chrome.php?q={searchTerms}&ts=AHEpC3MpAHYpBE..&v=20160315&uid=69E9E0AFE074818B10E6F91DDEF8187D&ptid=wak&mode=nnnb
CHR DefaultSearchKeyword: Default -> yessearches
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\pdf.dll => Nenhum Arquivo
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Profile: C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-04]
CHR Extension: (Google Search) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-04]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-04]
CHR Extension: (Gmail) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-07]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-07] (AVAST Software)
S2 fab956e801b2fa8f3a448b62f5482e73; C:\Program Files\57c4661f8cd3776e26e958b5d932be27\43bc1e45e765423ab26a45cb9968ad05.exe [3090432 2016-03-21] () [Arquivo não assinado]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
S2 ggbugreport; C:\Program Files (x86)\SearchesToYesbnd\bugreport.exe [1592888 2016-03-15] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-04] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-02-04] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-05-28] ()
R2 rowugoqo; C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF\snse89AB.tmp [225792 2016-03-22] () [Arquivo não assinado]
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-06-05] (Razer Inc.)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
S2 Winsere; C:\Program Files (x86)\Winsere\Winsere\Winsere.exe [306736 2016-03-15] ()
R2 juxycytizbt; C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF\knsd28CF.tmpfs [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-03-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-03-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-10] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 esihdrv; C:\Users\Erik Lima\AppData\Local\Temp\esihdrv.sys [150616 2016-03-22] (ESET)
S3 LGDDCDevice; C:\Windows\SysWOW64\LGI2CDriver.sys [16384 2012-10-17] (LG Soft India) [Arquivo não assinado]
S3 LGII2CDevice; C:\Windows\SysWOW64\LGPII2CDriver.sys [10752 2012-11-23] (LG Soft India) [Arquivo não assinado]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2015-12-09] ()
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-11-06] (Razer, Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [225792 2013-08-12] (VIA Technologies, Inc.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [295424 2013-08-12] (VIA Technologies, Inc.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-03-22 10:30 - 2016-03-22 10:30 - 02374144 _____ (Farbar) C:\Users\Erik Lima\Downloads\FRST64.exe
2016-03-22 10:30 - 2016-03-22 10:30 - 00019013 _____ C:\Users\Erik Lima\Downloads\FRST.txt
2016-03-22 10:30 - 2016-03-22 10:30 - 00000000 ____D C:\FRST
2016-03-22 10:19 - 2016-03-22 10:20 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NFS Underground 2
2016-03-22 10:18 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-22 10:14 - 2016-03-22 10:14 - 00002204 _____ C:\Users\Public\Desktop\Need for Speed Underground 2.lnk
2016-03-22 10:14 - 2016-03-22 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2016-03-22 10:13 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF
2016-03-22 10:12 - 2016-03-22 10:28 - 00000000 ____D C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF
2016-03-22 10:12 - 2016-03-22 10:12 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\YSPackage
2016-03-22 10:12 - 2016-03-22 10:10 - 00000967 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-03-22 10:10 - 2016-03-22 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ttwifi
2016-03-22 10:10 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-03-22 10:10 - 2016-03-22 10:18 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-03-22 10:07 - 2016-03-22 10:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaNetEn
2016-03-22 10:07 - 2016-03-22 10:07 - 00000000 ____D C:\Program Files\57c4661f8cd3776e26e958b5d932be27
2016-03-22 10:06 - 2016-03-22 10:30 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-22 10:06 - 2016-03-22 10:06 - 00015160 _____ C:\Windows\System32\Tasks\WinTaske
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\WinTaske
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\Winsere
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\SearchesToYesbnd
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\EA GAMES
2016-03-22 10:05 - 2016-03-22 10:06 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-22 10:05 - 2016-03-22 10:05 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-03-22 10:03 - 2016-03-22 10:03 - 00003270 _____ C:\Windows\System32\Tasks\{041C1D05-34F4-401C-828F-2415E4A6C7C1}
2016-03-21 15:02 - 2016-03-21 15:02 - 00137728 _____ C:\Windows\44334eb34b84d07d867dd99b95b52509.exe
2016-03-19 21:33 - 2016-03-22 10:03 - 00000000 ____D C:\Users\Erik Lima\Desktop\Need For Speed Underground 2
2016-03-16 20:53 - 2016-03-16 20:53 - 00016151 _____ C:\Users\Erik Lima\Downloads\Ricardo de Souza Lima_2015 (1).pdf
2016-03-16 20:51 - 2016-03-16 20:51 - 00016151 _____ C:\Users\Erik Lima\Downloads\Ricardo de Souza Lima_2015.pdf
2016-03-16 09:13 - 2016-03-16 09:13 - 00291591 _____ C:\Users\Erik Lima\Desktop\dourados-gmd2016-edital-001.pdf
2016-03-16 09:12 - 2016-03-16 09:12 - 00000153 _____ C:\Users\Erik Lima\Desktop\MS - Guarda Municipal.url
2016-03-12 22:51 - 2015-07-30 14:53 - 03034896 _____ () C:\Users\Erik Lima\Desktop\Shiginima Launcher SE v2.000.exe
2016-03-12 22:33 - 2016-03-21 22:17 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\.minecraft
2016-03-12 22:32 - 2016-03-12 22:32 - 02602958 _____ C:\Users\Erik Lima\Downloads\Shiginima Launcher SE v2.000.rar
2016-03-06 01:54 - 2016-03-06 01:54 - 00000000 ____D C:\Users\Todos os Usuários\Riot Games
2016-03-06 01:54 - 2016-03-06 01:54 - 00000000 ____D C:\ProgramData\Riot Games
2016-03-06 01:21 - 2016-03-06 01:21 - 00000000 ____D C:\Users\Erik Lima\Documents\Razer
2016-03-06 01:21 - 2016-03-06 01:21 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Razer_Inc
2016-03-06 01:18 - 2016-03-06 01:18 - 00002125 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-03-06 01:17 - 2016-03-06 01:18 - 41954352 _____ (Razer Inc. ) C:\Users\Erik Lima\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2016-03-06 01:16 - 2016-03-06 01:19 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\ProgramData\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\Program Files (x86)\Razer
2016-03-06 01:12 - 2016-03-06 01:12 - 00001252 _____ C:\Users\Public\Desktop\Razer Cortex.lnk
2016-03-06 01:12 - 2014-11-06 22:17 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-03-06 01:11 - 2016-03-06 01:11 - 22967464 _____ (Razer Inc. ) C:\Users\Erik Lima\Downloads\RazerCortexSetup_5.5.31.0.exe
2016-03-05 19:30 - 2016-03-20 13:28 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Warframe
2016-03-05 19:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-03-05 19:30 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-03-05 16:05 - 2016-03-05 16:05 - 00000222 _____ C:\Users\Erik Lima\Desktop\Warframe.url
2016-03-05 15:49 - 2016-03-05 15:49 - 01199856 _____ ( ) C:\Users\Erik Lima\Downloads\hwmonitor_1.28.exe
2016-03-05 15:49 - 2016-03-05 15:49 - 00000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2016-03-05 15:49 - 2016-03-05 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-03-05 15:49 - 2016-03-05 15:49 - 00000000 ____D C:\Program Files\CPUID
2016-03-04 08:21 - 2016-02-23 17:39 - 00111672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-03-04 08:19 - 2016-02-23 20:58 - 42983992 _____ C:\Windows\system32\nvcompiler.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 37616184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 24914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 16328088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 12381632 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-03-04 08:19 - 2016-02-23 20:58 - 03143616 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436200.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436200.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00689600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00468960 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-03-04 07:56 - 2016-03-04 07:56 - 00003300 _____ C:\Windows\System32\Tasks\{81991E2C-AE42-4F12-A1DF-6FD169A1A6FF}
2016-03-04 07:54 - 2016-02-07 13:02 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-02-29 16:20 - 2016-02-29 16:20 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\PunkBuster
2016-02-29 16:17 - 2016-02-29 16:17 - 00000000 ____D C:\Users\Erik Lima\Documents\Battlefield 4
2016-02-29 14:19 - 2016-02-29 14:20 - 1427932913 _____ C:\Users\Erik Lima\Downloads\narutoPROJECT_-_Shippuuden_Movie08-previa_HD.mp4
2016-02-29 12:22 - 2016-03-05 19:34 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\NVIDIA
2016-02-29 12:22 - 2016-03-04 07:50 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Tibia
2016-02-29 12:20 - 2016-02-29 12:22 - 23111186 _____ C:\Users\Erik Lima\Downloads\UnderWar8.60.zip
2016-02-29 09:10 - 2016-02-23 20:58 - 16995384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-28 09:18 - 2016-02-29 09:58 - 00585924 _____ C:\Windows\ntbtlog.txt
2016-02-28 09:02 - 2016-02-23 17:45 - 06367168 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 02992064 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 01263040 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-28 09:02 - 2016-02-23 17:45 - 00532024 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-28 09:02 - 2016-02-23 17:28 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-28 09:02 - 2016-01-23 00:42 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-28 09:02 - 2016-01-23 00:42 - 00203320 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 14016768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 03259872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-28 08:57 - 2016-01-23 00:42 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436175.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436175.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-02-28 08:57 - 2016-01-23 00:42 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-02-28 08:27 - 2016-02-28 08:29 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00001059 _____ C:\Users\Erik Lima\Desktop\Notepad++.lnk
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-02-28 08:26 - 2016-02-28 08:26 - 05264801 _____ C:\Users\Erik Lima\Downloads\npp.6.8.2.Installer.exe
2016-02-28 08:17 - 2016-02-28 08:35 - 00000000 ____D C:\Users\Erik Lima\Documents\Visual Studio 2012
2016-02-28 08:16 - 2016-02-28 08:16 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-02-28 08:10 - 2016-02-28 08:10 - 00000000 ____D C:\Windows\symbols
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012 Express
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-02-28 08:07 - 2016-02-28 08:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2016-02-28 08:07 - 2016-02-28 08:07 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-28 08:07 - 2016-02-28 08:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-02-28 08:06 - 2016-02-28 08:06 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-28 08:06 - 2016-02-28 08:06 - 00000000 ____D C:\Windows\system32\1033
2016-02-28 08:05 - 2016-02-28 08:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-02-28 08:05 - 2016-02-28 08:06 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-02-28 08:05 - 2016-02-28 08:05 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-02-28 08:03 - 2016-02-28 08:03 - 00934728 _____ (Microsoft Corporation) C:\Users\Erik Lima\Downloads\wdexpress_full.exe
2016-02-28 08:01 - 2016-02-28 08:02 - 00000000 ____D C:\Users\Erik Lima\Desktop\Ragnarok
2016-02-28 07:59 - 2016-02-28 08:00 - 14934911 _____ C:\Users\Erik Lima\Downloads\Cronus-master.zip
2016-02-28 07:49 - 2016-02-28 07:49 - 00000848 _____ C:\Users\Erik Lima\Desktop\VertrigoServ.lnk
2016-02-28 07:49 - 2016-02-28 07:49 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VertrigoServ
2016-02-28 07:49 - 2016-02-28 07:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VertrigoServ
2016-02-28 07:48 - 2016-02-28 07:49 - 00000000 ____D C:\Program Files\VertrigoServ
2016-02-27 18:59 - 2016-02-09 05:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-27 18:59 - 2016-02-09 05:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-27 15:20 - 2016-02-28 06:54 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NVIDIA Corporation
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-03-22 10:20 - 2016-02-06 21:03 - 00005016 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for ErikLima-Erik Lima ErikLima
2016-03-22 10:11 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-03-22 10:06 - 2016-02-03 23:39 - 00002115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-22 09:54 - 2016-02-03 23:38 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-22 09:15 - 2009-07-14 01:45 - 00028976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-22 09:15 - 2009-07-14 01:45 - 00028976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-22 09:09 - 2016-02-07 13:03 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-22 09:09 - 2016-02-03 23:38 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-22 09:08 - 2016-02-04 00:01 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-03-22 09:08 - 2016-02-04 00:01 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-22 09:08 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-21 23:04 - 2016-02-15 20:06 - 00003030 _____ C:\Windows\System32\Tasks\MSIAfterburner
2016-03-20 14:36 - 2016-02-04 00:41 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\uTorrent
2016-03-20 09:47 - 2016-02-04 10:24 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-20 08:32 - 2016-02-04 01:13 - 00000000 ___SD C:\Users\Erik Lima\AppData\LocalLow\Temp
2016-03-19 21:32 - 2016-02-09 14:53 - 00000000 ____D C:\Users\Erik Lima\AppData\LocalLow\uTorrent
2016-03-18 09:33 - 2016-02-04 08:15 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-03-18 09:33 - 2016-02-04 08:15 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-03-13 19:01 - 2010-11-21 06:37 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-03-13 19:01 - 2010-11-21 06:37 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-03-13 19:01 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-11 13:56 - 2016-02-03 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-03-11 13:41 - 2016-02-07 13:03 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-11 13:41 - 2016-02-07 13:03 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-08 18:58 - 2016-02-04 07:18 - 00000000 ____D C:\Windows\Minidump
2016-03-06 01:57 - 2016-02-04 10:28 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-03-06 01:57 - 2016-02-04 10:28 - 00000000 ____D C:\ProgramData\Origin
2016-03-04 09:15 - 2016-02-04 20:56 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-03-04 08:22 - 2016-02-04 07:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-04 08:22 - 2016-02-04 00:11 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-03-04 08:22 - 2016-02-04 00:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-04 07:57 - 2016-02-04 08:30 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-03-04 07:56 - 2016-02-12 20:31 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\CrashDumps
2016-03-04 07:55 - 2016-02-07 13:03 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-03-04 07:51 - 2016-02-03 23:27 - 00000000 ____D C:\Users\Erik Lima
2016-03-04 07:50 - 2016-02-07 13:03 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-03-04 07:50 - 2016-02-05 19:04 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-03-04 07:50 - 2016-02-04 21:14 - 00000000 ____D C:\Users\Erik Lima\Documents\Assassin's Creed III
2016-03-04 07:50 - 2016-02-03 23:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-04 07:50 - 2014-11-22 08:14 - 00000000 ____D C:\Users\Erik Lima\Desktop\UnderWar8.60
2016-03-04 07:50 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-04 07:50 - 2009-07-14 02:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-03-04 07:50 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\registration
2016-03-04 07:50 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\AppCompat
2016-02-29 16:17 - 2016-02-04 10:36 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Origin
2016-02-29 16:17 - 2016-02-04 10:28 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-02-29 16:17 - 2016-02-04 10:28 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-28 09:02 - 2016-02-04 00:09 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-02-28 09:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\Help
2016-02-28 09:01 - 2016-02-04 00:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\ProgramData\Oracle
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-28 08:53 - 2016-02-04 00:32 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-28 08:53 - 2016-02-03 23:56 - 00000000 ____D C:\Users\Erik Lima\.oracle_jre_usage
2016-02-28 08:16 - 2016-02-04 00:10 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-02-28 08:16 - 2016-02-04 00:10 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-28 08:15 - 2016-02-05 19:04 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-28 08:15 - 2016-02-05 19:03 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-02-28 08:15 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-02-28 08:07 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-28 08:04 - 2016-02-05 19:03 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-02-28 08:04 - 2016-02-05 19:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-27 15:20 - 2016-02-04 07:15 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-02-27 15:20 - 2016-02-04 00:12 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NVIDIA
2016-02-27 06:16 - 2016-02-07 13:03 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
==================== Arquivos na raiz de alguns diretórios =======
2016-02-04 08:00 - 2016-02-04 08:00 - 0000024 ___SH () C:\Users\Erik Lima\AppData\Roaming\rfgid
2016-02-04 08:00 - 2016-02-04 08:00 - 0393216 _____ () C:\Users\Erik Lima\AppData\Roaming\Microsoft\syshost.exe
2016-02-03 23:43 - 2016-02-03 23:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Alguns arquivos em TEMP:
====================
C:\Users\Erik Lima\AppData\Local\Temp\2117.tmp.exe
C:\Users\Erik Lima\AppData\Local\Temp\AutoRun.exe
C:\Users\Erik Lima\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Erik Lima\AppData\Local\Temp\CodecFixDivx.exe
C:\Users\Erik Lima\AppData\Local\Temp\dxdiag.exe
C:\Users\Erik Lima\AppData\Local\Temp\game.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-03-19 22:02
==================== Fim de FRST.txt ============================
Executado por Erik Lima (administrador) em ERIKLIMA (22-03-2016 10:30:37)
Executando a partir de C:\Users\Erik Lima\Downloads
Perfis Carregados: Erik Lima (Perfis Disponíveis: Erik Lima)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SmartRecovery2_x64\RPMDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(LG Electronics) C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Smart Solution\bin\Dual Smart Solution.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TODO:
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Gorenie) C:\Users\Erik Lima\AppData\Local\Temp\dxdiag.exe
() C:\ProgramData\WindowsMsg\trz2439.tmp
() C:\Users\Erik Lima\AppData\Local\Temp\nsd1CAE.tmp
() C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF\knsd28CF.tmpfs
() C:\Windows\Temp\_avast_\unp55221299.tmp
() C:\Windows\Temp\_avast_\unp211231278.tmp
() C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF\snse89AB.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [3D BubbleSound] => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2015-06-07] (Power Software Ltd)
HKLM-x32\...\Run: [mbot_br_014010227] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-18] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SmartRecovery2_x64\RPMKickstart.exe [2422272 2012-09-06] (Gigabyte Technology CO., LTD.)
HKU\S-1-5-21-910248228-3671913007-3294267795-1000\...\MountPoints2: E - E:\Setup.exe
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-07] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => Nenhum Arquivo
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dual Smart Solution.lnk [2016-02-04]
ShortcutTarget: Dual Smart Solution.lnk -> C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Smart Solution\bin\Dual Smart Solution.exe (LG Electronics)
BootExecute: autocheck autochk * aswBoot.exe /M:597a7255c /wow /dir:"C:\Program Files\AVAST Software\Avast"
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51618;https=127.0.0.1:51618
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 179.233.128.19 179.233.128.14
Tcpip\..\Interfaces\{F1417BF6-85E0-4CAB-AD25-BFBC2AFE7EFA}: [DhcpNameServer] 179.233.128.19 179.233.128.14
ManualProxies:
Internet Explorer:
==================
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-07] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-28] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-07] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-04] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-28] (Oracle Corporation)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-04] (Google Inc.)
Toolbar: HKU\S-1-5-21-910248228-3671913007-3294267795-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-04] (Google Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-03-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR HomePage: Default -> hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=69E9E0AFE074818B10E6F91DDEF8187D&v=20160315&ts=AHEpC3MpAHYpBE..
CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=69E9E0AFE074818B10E6F91DDEF8187D&v=20160315&ts=AHEpC3MpAHYpBE.."
CHR DefaultSearchURL: Default -> hxxp://www.yessearches.com/chrome.php?q={searchTerms}&ts=AHEpC3MpAHYpBE..&v=20160315&uid=69E9E0AFE074818B10E6F91DDEF8187D&ptid=wak&mode=nnnb
CHR DefaultSearchKeyword: Default -> yessearches
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\pdf.dll => Nenhum Arquivo
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Profile: C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-04]
CHR Extension: (Google Search) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-04]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-04]
CHR Extension: (Gmail) - C:\Users\Erik Lima\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-07]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-07] (AVAST Software)
S2 fab956e801b2fa8f3a448b62f5482e73; C:\Program Files\57c4661f8cd3776e26e958b5d932be27\43bc1e45e765423ab26a45cb9968ad05.exe [3090432 2016-03-21] () [Arquivo não assinado]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
S2 ggbugreport; C:\Program Files (x86)\SearchesToYesbnd\bugreport.exe [1592888 2016-03-15] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-04] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-02-04] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-05-28] ()
R2 rowugoqo; C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF\snse89AB.tmp [225792 2016-03-22] () [Arquivo não assinado]
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-06-05] (Razer Inc.)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
S2 Winsere; C:\Program Files (x86)\Winsere\Winsere\Winsere.exe [306736 2016-03-15] ()
R2 juxycytizbt; C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF\knsd28CF.tmpfs [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-03-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-03-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-10] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 esihdrv; C:\Users\Erik Lima\AppData\Local\Temp\esihdrv.sys [150616 2016-03-22] (ESET)
S3 LGDDCDevice; C:\Windows\SysWOW64\LGI2CDriver.sys [16384 2012-10-17] (LG Soft India) [Arquivo não assinado]
S3 LGII2CDevice; C:\Windows\SysWOW64\LGPII2CDriver.sys [10752 2012-11-23] (LG Soft India) [Arquivo não assinado]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2015-12-09] ()
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-11-06] (Razer, Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [225792 2013-08-12] (VIA Technologies, Inc.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [295424 2013-08-12] (VIA Technologies, Inc.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-03-22 10:30 - 2016-03-22 10:30 - 02374144 _____ (Farbar) C:\Users\Erik Lima\Downloads\FRST64.exe
2016-03-22 10:30 - 2016-03-22 10:30 - 00019013 _____ C:\Users\Erik Lima\Downloads\FRST.txt
2016-03-22 10:30 - 2016-03-22 10:30 - 00000000 ____D C:\FRST
2016-03-22 10:19 - 2016-03-22 10:20 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NFS Underground 2
2016-03-22 10:18 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-22 10:14 - 2016-03-22 10:14 - 00002204 _____ C:\Users\Public\Desktop\Need for Speed Underground 2.lnk
2016-03-22 10:14 - 2016-03-22 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2016-03-22 10:13 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\41414346-1458641620-3442-3538-3033FFFFFFFF
2016-03-22 10:12 - 2016-03-22 10:28 - 00000000 ____D C:\Program Files (x86)\41414346-1458652324-3442-3538-3033FFFFFFFF
2016-03-22 10:12 - 2016-03-22 10:12 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\YSPackage
2016-03-22 10:12 - 2016-03-22 10:10 - 00000967 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-03-22 10:10 - 2016-03-22 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ttwifi
2016-03-22 10:10 - 2016-03-22 10:18 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-03-22 10:10 - 2016-03-22 10:18 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-03-22 10:07 - 2016-03-22 10:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaNetEn
2016-03-22 10:07 - 2016-03-22 10:07 - 00000000 ____D C:\Program Files\57c4661f8cd3776e26e958b5d932be27
2016-03-22 10:06 - 2016-03-22 10:30 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-22 10:06 - 2016-03-22 10:06 - 00015160 _____ C:\Windows\System32\Tasks\WinTaske
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\WinTaske
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\Winsere
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\SearchesToYesbnd
2016-03-22 10:06 - 2016-03-22 10:06 - 00000000 ____D C:\Program Files (x86)\EA GAMES
2016-03-22 10:05 - 2016-03-22 10:06 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-22 10:05 - 2016-03-22 10:05 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-03-22 10:03 - 2016-03-22 10:03 - 00003270 _____ C:\Windows\System32\Tasks\{041C1D05-34F4-401C-828F-2415E4A6C7C1}
2016-03-21 15:02 - 2016-03-21 15:02 - 00137728 _____ C:\Windows\44334eb34b84d07d867dd99b95b52509.exe
2016-03-19 21:33 - 2016-03-22 10:03 - 00000000 ____D C:\Users\Erik Lima\Desktop\Need For Speed Underground 2
2016-03-16 20:53 - 2016-03-16 20:53 - 00016151 _____ C:\Users\Erik Lima\Downloads\Ricardo de Souza Lima_2015 (1).pdf
2016-03-16 20:51 - 2016-03-16 20:51 - 00016151 _____ C:\Users\Erik Lima\Downloads\Ricardo de Souza Lima_2015.pdf
2016-03-16 09:13 - 2016-03-16 09:13 - 00291591 _____ C:\Users\Erik Lima\Desktop\dourados-gmd2016-edital-001.pdf
2016-03-16 09:12 - 2016-03-16 09:12 - 00000153 _____ C:\Users\Erik Lima\Desktop\MS - Guarda Municipal.url
2016-03-12 22:51 - 2015-07-30 14:53 - 03034896 _____ () C:\Users\Erik Lima\Desktop\Shiginima Launcher SE v2.000.exe
2016-03-12 22:33 - 2016-03-21 22:17 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\.minecraft
2016-03-12 22:32 - 2016-03-12 22:32 - 02602958 _____ C:\Users\Erik Lima\Downloads\Shiginima Launcher SE v2.000.rar
2016-03-06 01:54 - 2016-03-06 01:54 - 00000000 ____D C:\Users\Todos os Usuários\Riot Games
2016-03-06 01:54 - 2016-03-06 01:54 - 00000000 ____D C:\ProgramData\Riot Games
2016-03-06 01:21 - 2016-03-06 01:21 - 00000000 ____D C:\Users\Erik Lima\Documents\Razer
2016-03-06 01:21 - 2016-03-06 01:21 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Razer_Inc
2016-03-06 01:18 - 2016-03-06 01:18 - 00002125 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-03-06 01:17 - 2016-03-06 01:18 - 41954352 _____ (Razer Inc. ) C:\Users\Erik Lima\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2016-03-06 01:16 - 2016-03-06 01:19 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\ProgramData\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-03-06 01:12 - 2016-03-06 01:18 - 00000000 ____D C:\Program Files (x86)\Razer
2016-03-06 01:12 - 2016-03-06 01:12 - 00001252 _____ C:\Users\Public\Desktop\Razer Cortex.lnk
2016-03-06 01:12 - 2014-11-06 22:17 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-03-06 01:11 - 2016-03-06 01:11 - 22967464 _____ (Razer Inc. ) C:\Users\Erik Lima\Downloads\RazerCortexSetup_5.5.31.0.exe
2016-03-05 19:30 - 2016-03-20 13:28 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Warframe
2016-03-05 19:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-03-05 19:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-03-05 19:30 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-03-05 16:05 - 2016-03-05 16:05 - 00000222 _____ C:\Users\Erik Lima\Desktop\Warframe.url
2016-03-05 15:49 - 2016-03-05 15:49 - 01199856 _____ ( ) C:\Users\Erik Lima\Downloads\hwmonitor_1.28.exe
2016-03-05 15:49 - 2016-03-05 15:49 - 00000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2016-03-05 15:49 - 2016-03-05 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-03-05 15:49 - 2016-03-05 15:49 - 00000000 ____D C:\Program Files\CPUID
2016-03-04 08:21 - 2016-02-23 17:39 - 00111672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-03-04 08:19 - 2016-02-23 20:58 - 42983992 _____ C:\Windows\system32\nvcompiler.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 37616184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 24914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 16328088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 12381632 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-03-04 08:19 - 2016-02-23 20:58 - 03143616 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436200.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436200.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00689600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00468960 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-03-04 08:19 - 2016-02-23 20:58 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-03-04 07:56 - 2016-03-04 07:56 - 00003300 _____ C:\Windows\System32\Tasks\{81991E2C-AE42-4F12-A1DF-6FD169A1A6FF}
2016-03-04 07:54 - 2016-02-07 13:02 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-02-29 16:20 - 2016-02-29 16:20 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\PunkBuster
2016-02-29 16:17 - 2016-02-29 16:17 - 00000000 ____D C:\Users\Erik Lima\Documents\Battlefield 4
2016-02-29 14:19 - 2016-02-29 14:20 - 1427932913 _____ C:\Users\Erik Lima\Downloads\narutoPROJECT_-_Shippuuden_Movie08-previa_HD.mp4
2016-02-29 12:22 - 2016-03-05 19:34 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\NVIDIA
2016-02-29 12:22 - 2016-03-04 07:50 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Tibia
2016-02-29 12:20 - 2016-02-29 12:22 - 23111186 _____ C:\Users\Erik Lima\Downloads\UnderWar8.60.zip
2016-02-29 09:10 - 2016-02-23 20:58 - 16995384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-28 09:18 - 2016-02-29 09:58 - 00585924 _____ C:\Windows\ntbtlog.txt
2016-02-28 09:02 - 2016-02-23 17:45 - 06367168 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 02992064 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 01263040 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-28 09:02 - 2016-02-23 17:45 - 00532024 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-28 09:02 - 2016-02-23 17:45 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-28 09:02 - 2016-02-23 17:28 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-28 09:02 - 2016-01-23 00:42 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-28 09:02 - 2016-01-23 00:42 - 00203320 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 14016768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 03259872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-28 08:57 - 2016-02-23 20:58 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-28 08:57 - 2016-01-23 00:42 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436175.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436175.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-02-28 08:57 - 2016-01-23 00:42 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-02-28 08:57 - 2016-01-23 00:42 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-02-28 08:27 - 2016-02-28 08:29 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00001059 _____ C:\Users\Erik Lima\Desktop\Notepad++.lnk
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-02-28 08:27 - 2016-02-28 08:27 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-02-28 08:26 - 2016-02-28 08:26 - 05264801 _____ C:\Users\Erik Lima\Downloads\npp.6.8.2.Installer.exe
2016-02-28 08:17 - 2016-02-28 08:35 - 00000000 ____D C:\Users\Erik Lima\Documents\Visual Studio 2012
2016-02-28 08:16 - 2016-02-28 08:16 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-02-28 08:10 - 2016-02-28 08:10 - 00000000 ____D C:\Windows\symbols
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012 Express
2016-02-28 08:08 - 2016-02-28 08:08 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-02-28 08:07 - 2016-02-28 08:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2016-02-28 08:07 - 2016-02-28 08:07 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-28 08:07 - 2016-02-28 08:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-02-28 08:06 - 2016-02-28 08:06 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-28 08:06 - 2016-02-28 08:06 - 00000000 ____D C:\Windows\system32\1033
2016-02-28 08:05 - 2016-02-28 08:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-02-28 08:05 - 2016-02-28 08:06 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-02-28 08:05 - 2016-02-28 08:05 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-02-28 08:03 - 2016-02-28 08:03 - 00934728 _____ (Microsoft Corporation) C:\Users\Erik Lima\Downloads\wdexpress_full.exe
2016-02-28 08:01 - 2016-02-28 08:02 - 00000000 ____D C:\Users\Erik Lima\Desktop\Ragnarok
2016-02-28 07:59 - 2016-02-28 08:00 - 14934911 _____ C:\Users\Erik Lima\Downloads\Cronus-master.zip
2016-02-28 07:49 - 2016-02-28 07:49 - 00000848 _____ C:\Users\Erik Lima\Desktop\VertrigoServ.lnk
2016-02-28 07:49 - 2016-02-28 07:49 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VertrigoServ
2016-02-28 07:49 - 2016-02-28 07:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VertrigoServ
2016-02-28 07:48 - 2016-02-28 07:49 - 00000000 ____D C:\Program Files\VertrigoServ
2016-02-27 18:59 - 2016-02-09 05:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-27 18:59 - 2016-02-09 05:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-27 15:20 - 2016-02-28 06:54 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NVIDIA Corporation
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-03-22 10:20 - 2016-02-06 21:03 - 00005016 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for ErikLima-Erik Lima ErikLima
2016-03-22 10:11 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-03-22 10:06 - 2016-02-03 23:39 - 00002115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-22 09:54 - 2016-02-03 23:38 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-22 09:15 - 2009-07-14 01:45 - 00028976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-22 09:15 - 2009-07-14 01:45 - 00028976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-22 09:09 - 2016-02-07 13:03 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-22 09:09 - 2016-02-03 23:38 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-22 09:08 - 2016-02-04 00:01 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-03-22 09:08 - 2016-02-04 00:01 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-22 09:08 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-21 23:04 - 2016-02-15 20:06 - 00003030 _____ C:\Windows\System32\Tasks\MSIAfterburner
2016-03-20 14:36 - 2016-02-04 00:41 - 00000000 ____D C:\Users\Erik Lima\AppData\Roaming\uTorrent
2016-03-20 09:47 - 2016-02-04 10:24 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-20 08:32 - 2016-02-04 01:13 - 00000000 ___SD C:\Users\Erik Lima\AppData\LocalLow\Temp
2016-03-19 21:32 - 2016-02-09 14:53 - 00000000 ____D C:\Users\Erik Lima\AppData\LocalLow\uTorrent
2016-03-18 09:33 - 2016-02-04 08:15 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-03-18 09:33 - 2016-02-04 08:15 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-03-13 19:01 - 2010-11-21 06:37 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-03-13 19:01 - 2010-11-21 06:37 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-03-13 19:01 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-11 13:56 - 2016-02-03 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-03-11 13:41 - 2016-02-07 13:03 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-11 13:41 - 2016-02-07 13:03 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-08 18:58 - 2016-02-04 07:18 - 00000000 ____D C:\Windows\Minidump
2016-03-06 01:57 - 2016-02-04 10:28 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-03-06 01:57 - 2016-02-04 10:28 - 00000000 ____D C:\ProgramData\Origin
2016-03-04 09:15 - 2016-02-04 20:56 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-03-04 08:22 - 2016-02-04 07:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-04 08:22 - 2016-02-04 00:11 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-03-04 08:22 - 2016-02-04 00:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-04 07:57 - 2016-02-04 08:30 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-03-04 07:56 - 2016-02-12 20:31 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\CrashDumps
2016-03-04 07:55 - 2016-02-07 13:03 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-03-04 07:51 - 2016-02-03 23:27 - 00000000 ____D C:\Users\Erik Lima
2016-03-04 07:50 - 2016-02-07 13:03 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-03-04 07:50 - 2016-02-05 19:04 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-03-04 07:50 - 2016-02-04 21:14 - 00000000 ____D C:\Users\Erik Lima\Documents\Assassin's Creed III
2016-03-04 07:50 - 2016-02-03 23:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-04 07:50 - 2014-11-22 08:14 - 00000000 ____D C:\Users\Erik Lima\Desktop\UnderWar8.60
2016-03-04 07:50 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-04 07:50 - 2009-07-14 02:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-03-04 07:50 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\registration
2016-03-04 07:50 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\AppCompat
2016-02-29 16:17 - 2016-02-04 10:36 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\Origin
2016-02-29 16:17 - 2016-02-04 10:28 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-02-29 16:17 - 2016-02-04 10:28 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-28 09:02 - 2016-02-04 00:09 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-02-28 09:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\Help
2016-02-28 09:01 - 2016-02-04 00:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\ProgramData\Oracle
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-28 08:54 - 2016-02-03 23:56 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-28 08:53 - 2016-02-04 00:32 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-28 08:53 - 2016-02-03 23:56 - 00000000 ____D C:\Users\Erik Lima\.oracle_jre_usage
2016-02-28 08:16 - 2016-02-04 00:10 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-02-28 08:16 - 2016-02-04 00:10 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-28 08:15 - 2016-02-05 19:04 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-28 08:15 - 2016-02-05 19:03 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-02-28 08:15 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-02-28 08:07 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-28 08:04 - 2016-02-05 19:03 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-02-28 08:04 - 2016-02-05 19:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-27 15:20 - 2016-02-04 07:15 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-02-27 15:20 - 2016-02-04 00:12 - 00000000 ____D C:\Users\Erik Lima\AppData\Local\NVIDIA
2016-02-27 06:16 - 2016-02-07 13:03 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
==================== Arquivos na raiz de alguns diretórios =======
2016-02-04 08:00 - 2016-02-04 08:00 - 0000024 ___SH () C:\Users\Erik Lima\AppData\Roaming\rfgid
2016-02-04 08:00 - 2016-02-04 08:00 - 0393216 _____ () C:\Users\Erik Lima\AppData\Roaming\Microsoft\syshost.exe
2016-02-03 23:43 - 2016-02-03 23:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Alguns arquivos em TEMP:
====================
C:\Users\Erik Lima\AppData\Local\Temp\2117.tmp.exe
C:\Users\Erik Lima\AppData\Local\Temp\AutoRun.exe
C:\Users\Erik Lima\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Erik Lima\AppData\Local\Temp\CodecFixDivx.exe
C:\Users\Erik Lima\AppData\Local\Temp\dxdiag.exe
C:\Users\Erik Lima\AppData\Local\Temp\game.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-03-19 22:02
==================== Fim de FRST.txt ============================