Publicité
Publicité
Commentaire : http://www.cjoint.com/c/FJxxHxTVYBr
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-10-2016
Executado por BrUnO (administrador) em BRUNO-PC (23-10-2016 21:31:05)
Executando a partir de C:\Users\BrUnO\Downloads
Perfis Carregados: BrUnO (Perfis Disponíveis: BrUnO)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(FTweak) C:\Program Files (x86)\RAMRush\RAMRush.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-13] (AVAST Software)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-22] (Razer Inc.)
HKLM-x32\...\Run: [Turbo Key] => C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.)
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\Run: [ftweak_RAMRush] => C:\Program Files (x86)\RAMRush\RAMRush.exe [670720 2009-09-17] (FTweak)
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\Run: [Chromium] => "c:\users\bruno\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {aeb6adde-8ccb-11e6-a64f-c860005f30d9} - I:\Startme.exe
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {be501904-1326-11e6-a1f6-c860005f30d9} - H:\setup.exe
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {c4ebcebe-0b38-11e6-8cc8-c860005f30d9} - I:\Startme.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2002-01-01] (AVAST Software)
GroupPolicy: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BE7AC758-5066-40BA-BF82-20739D41DF99}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CA89B5A0-0784-436A-B06F-F987979B141D}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={66E67B4D-0AFA-4740-B6C1-12FBC15C0888}&mid=d24ff0ba3c7f47cc9ccc192946bbd92a-eb024a95e4cbbeaa3737a9ed6b34400422d1e385&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2016-04-25 10:18:20&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2002-01-01] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2002-01-01] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2002-01-01]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2002-01-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default [2016-10-23]
CHR Extension: (Google Drive) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-24]
CHR Extension: (YouTube) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-24]
CHR Extension: (Documentos Google off-line) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24]
CHR Extension: (AdBlock) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-22]
CHR Extension: (Avast Online Security) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-24]
CHR Extension: (Gmail) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-22]
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-17]
CHR Extension: (Google Apresentações) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-26]
CHR Extension: (Google Docs) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-26]
CHR Extension: (Google Drive) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-26]
CHR Extension: (YouTube) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-26]
CHR Extension: (Planilhas do Google) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-26]
CHR Extension: (Documentos Google off-line) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-26]
CHR Extension: (Avast Online Security) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-21]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-26]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2016-04-26]
CHR Extension: (Gmail) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-26]
CHR Extension: (Chrome Media Router) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-01]
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-17]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.) [Arquivo não assinado]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2002-01-01] (AVAST Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-10-18] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-10-05] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-10-05] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-10-04] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-10-05] ()
S3 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
S3 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-08-29] (Razer Inc)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2002-01-01] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2002-01-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2002-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2002-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2002-01-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2002-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
S3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-03-09] (Windows (R) Win 7 DDK provider)
S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 21:30 - 2016-10-23 21:30 - 00044999 _____ C:\Users\BrUnO\Downloads\Addition.txt
2016-10-23 21:29 - 2016-10-23 21:31 - 00025200 _____ C:\Users\BrUnO\Downloads\FRST.txt
2016-10-23 21:29 - 2016-10-23 21:31 - 00000000 ____D C:\FRST
2016-10-23 21:28 - 2016-10-23 21:29 - 02407424 _____ (Farbar) C:\Users\BrUnO\Downloads\FRST64.exe
2016-10-23 21:28 - 2016-10-23 21:28 - 01756672 _____ (Farbar) C:\Users\BrUnO\Downloads\FRST.exe
2016-10-23 21:25 - 2016-10-23 21:25 - 00000796 _____ C:\Users\Public\Desktop\Dolphin.lnk
2016-10-23 21:25 - 2016-10-23 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2016-10-23 21:19 - 2016-10-23 21:23 - 14572000 _____ (Microsoft Corporation) C:\Users\BrUnO\Downloads\vc_redist.x64.exe
2016-10-23 21:17 - 2016-10-23 21:21 - 19327064 _____ C:\Users\BrUnO\Downloads\dolphin-x64-5.0.exe
2016-10-23 01:31 - 2016-10-18 17:31 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-23 01:31 - 2016-09-09 16:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-23 01:31 - 2016-09-09 16:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-23 01:31 - 2016-09-09 16:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-23 01:31 - 2016-09-09 16:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-23 01:28 - 2016-10-19 20:48 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-23 01:28 - 2016-10-19 20:48 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 35222464 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 34699712 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 28167616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 17426520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 17338792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 14018496 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-23 01:28 - 2016-10-18 19:23 - 10910184 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 10754624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 10295048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 09099400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 08912488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 08692872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 03629624 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 03191744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437557.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437557.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01035712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00973760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00520912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-23 01:28 - 2016-10-18 19:23 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-22 23:33 - 2016-10-22 23:34 - 01194722 _____ C:\Users\BrUnO\Downloads\ScriptHookV_1.0.877.1.zip
2016-10-22 23:28 - 2016-10-22 23:29 - 00662311 _____ C:\Users\BrUnO\Downloads\Script Hook V 1.0.505.2.zip
2016-10-22 23:11 - 2016-10-22 23:11 - 00001274 _____ C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2016-10-22 23:02 - 2016-10-22 23:02 - 01217821 _____ C:\Users\BrUnO\Downloads\OpenIV 2.6.4.rar
2016-10-22 23:01 - 2016-10-22 23:01 - 02382718 _____ C:\Users\BrUnO\Downloads\525adc-GTAV Mod Manager.zip
2016-10-22 22:54 - 2016-10-22 22:57 - 38525065 _____ C:\Users\BrUnO\Downloads\db9f16-Lamborghini Centenario 1.3a [by Gta5KoRn].7z
2016-10-22 07:10 - 2016-10-22 21:13 - 00000000 ____D C:\Users\BrUnO\AppData\LocalLow\BitTorrent
2016-10-20 20:36 - 2013-03-01 17:52 - 00000000 ____D C:\Users\BrUnO\Desktop\Sonic 3Derations
2016-10-20 20:29 - 2016-10-18 21:42 - 08463251 ____N C:\Users\BrUnO\Desktop\Sonic_3Derations_FULL.rar
2016-10-20 06:54 - 2016-10-20 06:54 - 00000000 ____D C:\Users\BrUnO\AppData\Local\EMU
2016-10-20 06:20 - 2016-10-20 06:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst
2016-10-19 12:46 - 2016-10-19 12:46 - 179209261 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_476_SD.mp4
2016-10-19 12:06 - 2016-10-19 12:23 - 88637215 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_475_MQ.mp4
2016-10-19 08:45 - 2016-10-19 08:45 - 02115830 _____ C:\Users\BrUnO\Downloads\cemu_1.6.1.zip
2016-10-18 17:54 - 2016-10-18 17:54 - 178878876 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_474_SD.mp4
2016-10-17 16:50 - 2016-10-17 16:51 - 07528768 _____ C:\Users\BrUnO\Downloads\TWRP_M2_LB_Installer.zip
2016-10-17 16:39 - 2016-10-17 16:41 - 12308426 _____ C:\Users\BrUnO\Downloads\XperiaM2-PhilZ-TWRP-CWM-0.8.zip
2016-10-14 13:25 - 2016-10-14 13:39 - 83900097 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_466.mp4
2016-10-14 10:46 - 2016-07-31 21:49 - 00010083 _____ C:\Users\BrUnO\Desktop\CLIENTE.xlsx
2016-10-14 09:10 - 2016-10-14 09:10 - 83870991 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_465.mp4
2016-10-14 08:20 - 2016-09-16 22:12 - 00044144 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-10-13 07:47 - 2016-10-13 07:47 - 00074479 _____ C:\Users\BrUnO\Downloads\conta sky.pdf
2016-10-11 09:28 - 2016-10-11 09:28 - 00000000 ____D C:\Users\Todos os Usuários\ASUS OC Profiles
2016-10-11 09:28 - 2016-10-11 09:28 - 00000000 ____D C:\ProgramData\ASUS OC Profiles
2016-10-11 09:22 - 2016-10-11 09:22 - 00083116 _____ C:\Users\BrUnO\Downloads\WindowsHotfixDownloader1.2.zip
2016-10-11 09:11 - 2016-10-11 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-10-11 09:11 - 2009-09-30 12:33 - 00024576 _____ () C:\Windows\SysWOW64\AsIO.dll
2016-10-11 09:11 - 2009-08-04 11:28 - 00013440 _____ C:\Windows\SysWOW64\Drivers\AsIO.sys
2016-10-11 09:10 - 2009-07-16 12:38 - 00015416 _____ () C:\Windows\system32\Drivers\ASACPI.sys
2016-10-11 09:10 - 2008-01-04 14:34 - 00011832 _____ C:\Windows\SysWOW64\Drivers\AsInsHelp64.sys
2016-10-11 09:10 - 2008-01-04 14:34 - 00010216 _____ C:\Windows\SysWOW64\Drivers\AsInsHelp32.sys
2016-10-11 09:06 - 2016-10-11 09:06 - 03738808 _____ C:\Users\BrUnO\Downloads\TurboKey_V10103_XPVistaWin7.zip
2016-10-10 10:16 - 2016-10-10 10:16 - 00000959 _____ C:\Users\BrUnO\Desktop\NFS14 - Atalho.lnk
2016-10-10 10:16 - 2016-10-10 10:16 - 00000740 _____ C:\Users\BrUnO\Desktop\MKKE - Atalho.lnk
2016-10-10 08:01 - 2016-10-10 08:01 - 516132352 _____ C:\Windows\MEMORY.DMP
2016-10-10 08:01 - 2016-10-10 08:01 - 00388728 _____ C:\Windows\Minidump\101016-25022-01.dmp
2016-10-09 00:44 - 2016-10-09 00:54 - 00000000 ____D C:\Users\BrUnO\Downloads\Need.for.Speed.Rivals.Sub.Audio.PT.BR
2016-10-08 21:56 - 2016-10-08 21:56 - 00000000 ____D C:\Users\BrUnO\Documents\Ghost Games
2016-10-08 21:56 - 2016-10-08 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2016-10-07 23:26 - 2016-09-07 18:27 - 00137840 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2016-10-07 23:25 - 2016-10-19 17:11 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 ____D C:\Users\Todos os Usuários\RzSurroundVAD_1.1.62.0
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 _____ C:\Windows\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2016-10-07 23:24 - 2016-10-07 23:26 - 00000000 ____D C:\Program Files (x86)\Razer
2016-10-07 23:24 - 2016-10-07 23:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-10-07 23:12 - 2016-10-07 23:26 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-10-07 23:12 - 2016-10-07 23:26 - 00000000 ____D C:\ProgramData\Razer
2016-10-07 23:12 - 2016-10-07 23:12 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Razer
2016-10-07 23:11 - 2016-10-07 23:11 - 02119872 _____ (Razer Inc.) C:\Users\BrUnO\Downloads\RazerSurroundInstaller_v2.0.29.2.exe
2016-10-07 19:51 - 2016-10-07 19:51 - 00001296 _____ C:\Users\BrUnO\Downloads\downloadinf_v1.01.zip
2016-10-07 19:23 - 2016-10-07 19:24 - 00638388 _____ C:\Users\BrUnO\Downloads\HERRAMIENTA-DE-FLASHEO.zip
2016-10-07 19:04 - 2016-10-07 19:05 - 08672929 _____ C:\Users\BrUnO\Downloads\Sony Xperia M2 Aqua Mobile Usb Driver.rar
2016-10-07 14:14 - 2016-10-07 14:25 - 152685325 _____ C:\Users\BrUnO\Downloads\ME1Controller-60-1-0-1.rar
2016-10-07 13:36 - 2016-10-07 13:36 - 00000000 ____D C:\Users\BrUnO\Documents\BioWare
2016-10-07 13:02 - 2016-10-07 13:02 - 11350716 _____ (Tribo Gamer Brasil®) C:\Users\BrUnO\Downloads\mass_effect_br-v1 [1].exe
2016-10-07 12:02 - 2016-10-07 12:32 - 00000000 ____D C:\Users\BrUnO\AppData\Local\The Witcher
2016-10-07 12:00 - 2016-10-07 12:00 - 00000000 ____D C:\Users\Public\Documents\The Witcher
2016-10-06 18:27 - 2016-10-06 18:29 - 24788672 _____ (TunnelBear) C:\Users\BrUnO\Downloads\TunnelBear-Installer.exe
2016-10-06 14:21 - 2016-10-23 21:25 - 00000000 ____D C:\Program Files\Dolphin
2016-10-06 11:52 - 2016-10-06 11:52 - 00000871 _____ C:\Users\BrUnO\Desktop\BitTorrent.lnk
2016-10-06 11:51 - 2016-10-23 01:37 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\BitTorrent
2016-10-06 09:03 - 2016-10-06 09:03 - 00000017 _____ C:\Windows\PrecisionX_x64.INI
2016-10-06 08:56 - 2015-05-27 15:51 - 00156160 _____ C:\Windows\system32\FW1FontWrapper_x64.dll
2016-10-06 08:43 - 2016-10-06 08:43 - 00002109 _____ C:\Users\Public\Desktop\EVGA Precision XOC.lnk
2016-10-06 08:43 - 2016-10-06 08:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EVGA
2016-10-06 08:43 - 2016-10-06 08:43 - 00000000 ____D C:\Program Files (x86)\EVGA
2016-10-05 21:03 - 2016-10-23 01:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-05 21:03 - 2016-10-18 17:45 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-05 21:03 - 2016-10-05 21:03 - 00003832 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003832 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003782 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003770 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003594 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003534 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-09-30 02:25 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-05 21:02 - 2016-10-22 23:46 - 00000000 ____D C:\Users\BrUnO\AppData\Local\CrashDumps
2016-10-05 21:02 - 2016-09-30 02:25 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-10-05 21:02 - 2016-09-30 02:25 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-10-05 21:02 - 2016-09-30 02:25 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-10-05 19:09 - 2009-12-16 23:19 - 00000000 ____D C:\Users\BrUnO\Downloads\Aplicar
2016-10-05 19:09 - 2009-12-16 22:39 - 00618887 _____ C:\Users\BrUnO\Downloads\lucjedi-zldtwo-ptbr-ntsc-v1.0.ppf
2016-10-05 18:51 - 2016-10-06 11:18 - 00000000 ____D C:\Users\BrUnO\AppData\LocalLow\uTorrent
2016-10-05 13:59 - 2016-10-05 14:21 - 04932741 _____ C:\Users\BrUnO\Desktop\Apresentação Pão de Açucar Borba Gato.pptx
2016-10-05 10:01 - 2016-10-11 09:11 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-10-05 10:01 - 2012-03-22 17:10 - 00014848 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\Drivers\AiCharger.sys
2016-10-05 08:36 - 2016-10-05 08:36 - 00000000 ____D C:\Users\R2D2\Documents\Dolphin Emulator
2016-10-05 08:36 - 2016-10-05 08:36 - 00000000 ____D C:\Users\R2D2
2016-10-05 00:26 - 2016-10-05 00:26 - 00000000 ____D C:\Users\BrUnO\.QtWebEngineProcess
2016-10-05 00:26 - 2016-10-05 00:26 - 00000000 ____D C:\Users\BrUnO\.Origin
2016-10-04 23:57 - 2016-10-04 23:57 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\NVIDIA
2016-10-04 23:53 - 2016-10-23 01:30 - 00000000 ____D C:\Users\BrUnO\AppData\Local\NVIDIA Corporation
2016-10-04 23:52 - 2016-10-23 20:58 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-10-04 23:52 - 2016-10-23 20:58 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-04 23:51 - 2016-10-05 21:03 - 00000000 ____D C:\Users\BrUnO\AppData\Local\NVIDIA
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-18 17:52 - 07471705 _____ C:\Windows\system32\nvcoproc.bin
2016-10-04 23:50 - 2016-10-18 17:52 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-04 23:50 - 2016-10-04 23:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-04 23:50 - 2016-09-16 22:46 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-10-04 23:50 - 2016-09-16 22:46 - 00203320 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-10-04 23:49 - 2016-10-19 20:48 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 19917400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 14394528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 03930688 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 03469408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-04 23:49 - 2016-09-16 22:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-10-04 23:49 - 2016-09-16 22:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-10-04 23:26 - 2016-10-04 23:24 - 00189112 _____ (Power Admin LLC) C:\Windows\PAExec.exe
2016-10-04 22:14 - 2016-10-04 22:47 - 351102072 _____ (NVIDIA Corporation) C:\Users\BrUnO\Downloads\372.90-desktop-win8-win7-64bit-international-whql.exe
2016-10-03 23:19 - 2016-10-03 23:19 - 02609724 _____ C:\Users\BrUnO\Documents\Apresentação PA BOrba.pptx
2016-10-03 21:27 - 2016-10-23 20:58 - 00000200 _____ C:\Windows\Tasks\AutoKMS.job
2016-10-03 21:27 - 2016-10-03 21:27 - 00614400 _____ C:\Windows\AutoKMS.exe
2016-10-03 21:27 - 2016-10-03 21:27 - 00002432 _____ C:\Windows\System32\Tasks\AutoKMS
2016-10-03 21:27 - 2016-10-03 21:27 - 00000135 _____ C:\Windows\AutoKMS.ini
2016-10-03 21:22 - 2016-10-03 21:22 - 02502029 _____ C:\Users\BrUnO\Downloads\office.rar.rar
2016-10-03 20:50 - 2016-10-03 20:50 - 00000000 ____D C:\Users\BrUnO\AppData\Local\FLT
2016-10-03 20:49 - 2016-10-03 20:50 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\MKKE
2016-10-03 17:00 - 2016-10-03 17:00 - 00315379 _____ C:\Users\BrUnO\Downloads\Pedidos - Petit Mambo Panamby.xlsx
2016-10-03 17:00 - 2016-10-03 17:00 - 00132096 _____ C:\Users\BrUnO\Downloads\DRE Gerencial 072016 - MGB - Previa Petit Panamby.xlsx
2016-10-03 16:58 - 2016-10-03 16:58 - 00035135 _____ C:\Users\BrUnO\Downloads\Controle da Tesouraria.xlsx
2016-10-03 16:51 - 2016-10-03 16:51 - 00133034 _____ C:\Users\BrUnO\Downloads\Novo Documento 2.pdf
2016-10-03 16:38 - 2016-10-03 16:38 - 00071091 _____ C:\Users\BrUnO\Downloads\Novo Documento.pdf
2016-10-02 21:14 - 2016-10-02 21:15 - 00000000 ____D C:\Users\BrUnO\Desktop\DCIM
2016-10-02 11:12 - 2016-10-02 11:13 - 05221313 _____ C:\Users\BrUnO\Downloads\Extra Morumbi.pptx
2016-10-02 00:38 - 2016-10-02 00:38 - 00000000 ____D C:\Users\Todos os Usuários\RELOADED
2016-10-02 00:38 - 2016-10-02 00:38 - 00000000 ____D C:\ProgramData\RELOADED
2016-09-26 19:52 - 2016-09-26 19:52 - 00000219 _____ C:\Windows\system.ini
2016-09-25 22:49 - 2016-09-25 22:52 - 00000000 ____D C:\Users\BrUnO\Documents\Prototype
2016-09-25 21:59 - 2016-09-25 21:59 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\Program Files\WinRAR
2016-09-25 21:54 - 2016-09-25 21:54 - 04109160 _____ C:\Users\BrUnO\Downloads\ratondownload.com.br-winrar-x64-520br.exe
2016-09-24 18:50 - 2016-09-24 18:50 - 00288725 _____ C:\Users\BrUnO\Downloads\nvidiaInspector.zip
2016-09-18 22:08 - 2016-09-18 22:08 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Mupen64Plus
2016-09-17 15:22 - 2016-10-05 19:55 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-09-16 21:42 - 2016-09-16 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project64 2.3
2016-09-16 21:42 - 2016-09-16 21:42 - 00000000 ____D C:\Program Files (x86)\Project64 2.3
2016-09-16 21:15 - 2016-09-16 21:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2016-09-16 21:15 - 2016-09-16 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-09-16 21:14 - 2016-09-16 21:14 - 00000000 ____D C:\Users\Todos os Usuários\X360CE
2016-09-16 21:14 - 2016-09-16 21:14 - 00000000 ____D C:\ProgramData\X360CE
2016-09-12 21:52 - 2016-10-06 08:56 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-09-12 21:52 - 2016-09-12 21:53 - 00000000 ____D C:\Program Files (x86)\PCSX2 1.2.1
2016-09-12 21:52 - 2016-09-12 21:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2016-09-12 19:25 - 2016-09-12 19:25 - 00251441 _____ C:\Users\BrUnO\Downloads\Formulário Locomoção Urbana 30..08.2016.xlsx
2016-09-09 21:41 - 2016-09-09 21:41 - 00119126 _____ C:\Users\BrUnO\Downloads\Vmuexplorer.rar
2016-09-09 16:25 - 2016-09-09 16:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1-1-0-26-0.dll
2016-09-09 16:25 - 2016-09-09 16:25 - 00261920 _____ C:\Windows\system32\vulkan-1-1-0-26-0.dll
2016-09-09 16:25 - 2016-09-09 16:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-26-0.exe
2016-09-09 16:24 - 2016-09-09 16:24 - 00125216 _____ C:\Windows\system32\vulkaninfo-1-1-0-26-0.exe
2016-08-29 07:22 - 2016-08-29 07:22 - 00251872 _____ (Razer inc) C:\Windows\system32\DriverInstallCACMD.exe
2016-08-29 07:22 - 2016-08-29 07:22 - 00075744 _____ (Razer Inc) C:\Windows\system32\DriverInstallCA.dll
2016-08-24 23:40 - 2016-08-24 23:40 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Milestone
2016-08-24 23:39 - 2016-10-04 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RIDE Digital Deluxe Edition (4 DLCs + Extras)
2016-08-21 23:40 - 2016-08-21 23:40 - 01423594 _____ C:\Users\BrUnO\Downloads\ti07_ignition_coils_pt_2013.pdf
2016-08-20 19:07 - 2016-08-20 19:15 - 40915137 _____ C:\Users\BrUnO\Downloads\mame0176b_64bit.exe
2016-08-19 21:00 - 2016-08-19 22:35 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2016-08-19 06:12 - 2016-08-19 06:12 - 00015816 _____ (Razer Inc.) C:\Windows\SysWOW64\RzStats.IPC.dll
2016-08-17 11:40 - 2016-08-17 11:40 - 00039424 _____ C:\Users\BrUnO\Downloads\FolhadePontoIndividualdeTabalho.xls
2016-08-06 20:55 - 2016-08-06 20:56 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Ubisoft Game Launcher
2016-08-06 20:55 - 2016-08-06 20:55 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Ubisoft
2016-08-06 20:26 - 2016-08-06 20:26 - 00002261 _____ C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2016-07-30 18:43 - 2016-07-30 18:43 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Criterion Games
2016-07-30 18:40 - 2016-07-30 18:40 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Downloaded Installations
2016-07-27 22:24 - 2016-07-27 23:07 - 00265524 _____ C:\Users\BrUnO\Downloads\Formulario Locomocao Urbana 05.07.2016.xlsx
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 21:05 - 2009-07-14 02:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-23 21:05 - 2009-07-14 02:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-23 21:04 - 2009-07-29 14:08 - 00706524 _____ C:\Windows\system32\prfh0416.dat
2016-10-23 21:04 - 2009-07-29 14:08 - 00147250 _____ C:\Windows\system32\prfc0416.dat
2016-10-23 21:04 - 2009-07-14 03:13 - 01638604 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-23 21:04 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-10-23 20:57 - 2016-04-24 20:19 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-23 20:57 - 2016-04-24 20:19 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-23 20:57 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-23 01:30 - 2016-04-24 19:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-23 01:05 - 2016-05-24 19:21 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-10-23 00:49 - 2016-06-25 22:09 - 00000978 _____ C:\Windows\Tasks\Yahoo! Powered tasid.job
2016-10-22 23:11 - 2016-05-29 17:36 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\New Technology Studio
2016-10-22 07:49 - 2016-06-25 22:09 - 00000000 ____D C:\Users\Todos os Usuários\{63B6A6D5-E9F4-2C13-6F32-B251F570399F}
2016-10-22 07:49 - 2016-06-25 22:09 - 00000000 ____D C:\ProgramData\{63B6A6D5-E9F4-2C13-6F32-B251F570399F}
2016-10-21 23:56 - 2016-04-24 20:23 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-21 07:32 - 2016-05-12 12:17 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-10-21 07:32 - 2016-05-12 12:17 - 00000000 ____D C:\ProgramData\Origin
2016-10-20 06:25 - 2016-04-24 19:53 - 01606356 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-10-19 19:10 - 2016-05-12 12:44 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Origin
2016-10-19 18:54 - 2016-07-17 20:26 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2016-10-19 18:54 - 2016-07-03 20:31 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-10-19 18:53 - 2016-07-03 20:31 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-10-19 06:27 - 2016-04-24 22:17 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-10-19 06:27 - 2016-04-24 22:17 - 00000000 ____D C:\ProgramData\Apple
2016-10-19 06:26 - 2016-04-24 22:17 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-19 06:21 - 2016-04-24 19:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-17 05:02 - 2009-07-14 03:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-10-14 08:44 - 2016-05-07 13:47 - 00000000 ___SD C:\Users\BrUnO\AppData\LocalLow\Temp
2016-10-13 19:27 - 2016-05-10 21:40 - 00007597 _____ C:\Users\BrUnO\AppData\Local\resmon.resmoncfg
2016-10-13 07:49 - 2016-05-24 19:21 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-10-11 00:53 - 2016-05-14 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
2016-10-10 15:14 - 2016-05-14 23:39 - 00000000 ____D C:\Program Files (x86)\Tribo Gamer
2016-10-10 12:43 - 2009-07-14 05:45 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-10-10 08:01 - 2016-05-09 20:34 - 00000000 ____D C:\Windows\Minidump
2016-10-08 21:56 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-07 12:32 - 2016-04-24 20:58 - 00000000 ____D C:\Users\BrUnO\Documents\The Witcher
2016-10-06 18:30 - 2016-04-26 21:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-10-06 18:30 - 2016-04-26 21:36 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-06 14:22 - 2016-04-24 20:58 - 00000000 ____D C:\Users\BrUnO\Documents\Dolphin Emulator
2016-10-06 09:32 - 2016-04-26 21:55 - 00000000 ____D C:\Program Files (x86)\EVGA Precision
2016-10-06 09:00 - 2016-04-24 19:36 - 00111536 _____ C:\Users\BrUnO\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-06 09:00 - 2016-04-24 19:18 - 00000000 ____D C:\Users\BrUnO
2016-10-06 09:00 - 2009-07-14 02:45 - 00419984 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-05 19:55 - 2016-04-26 21:36 - 00000000 ____D C:\Program Files\Rockstar Games
2016-10-05 00:32 - 2016-07-03 20:31 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-10-05 00:26 - 2016-05-12 12:17 - 00000000 ____D C:\Program Files (x86)\Origin
2016-10-04 23:50 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Help
2016-10-04 23:34 - 2016-06-25 22:09 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-10-04 23:34 - 2016-06-25 22:09 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-10-03 22:08 - 2016-05-05 23:11 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-09-26 20:22 - 2016-06-25 21:47 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio
2016-09-26 20:22 - 2016-06-25 21:47 - 00000000 ____D C:\Program Files (x86)\GameVicio
2016-09-25 22:49 - 2016-06-25 22:09 - 00004008 _____ C:\Windows\System32\Tasks\Yahoo! Powered tasid
2016-09-25 22:49 - 2016-06-25 22:09 - 00002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2016-09-25 22:49 - 2016-06-25 22:09 - 00000000 ____D C:\Users\BrUnO\AppData\Local\{0AF43CA8-2E5C-5010-43C4-75F867AC8960}
2016-09-25 22:03 - 2016-05-10 15:51 - 00000000 ____D C:\Program Files (x86)\IZArc
==================== Arquivos na raiz de alguns diretórios =======
2016-04-25 20:08 - 2016-06-03 19:52 - 0000600 _____ () C:\Users\BrUnO\AppData\Roaming\winscp.rnd
2016-05-10 21:40 - 2016-10-13 19:27 - 0007597 _____ () C:\Users\BrUnO\AppData\Local\resmon.resmoncfg
Alguns arquivos em TEMP:
====================
C:\Users\BrUnO\AppData\Local\Temp\oivsetup-22102016230937.exe
C:\Users\BrUnO\AppData\Local\Temp\ovi-uninstall.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-10-17 08:17
==================== Fim de FRST.txt ============================
Executado por BrUnO (administrador) em BRUNO-PC (23-10-2016 21:31:05)
Executando a partir de C:\Users\BrUnO\Downloads
Perfis Carregados: BrUnO (Perfis Disponíveis: BrUnO)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(FTweak) C:\Program Files (x86)\RAMRush\RAMRush.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-13] (AVAST Software)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-22] (Razer Inc.)
HKLM-x32\...\Run: [Turbo Key] => C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.)
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\Run: [ftweak_RAMRush] => C:\Program Files (x86)\RAMRush\RAMRush.exe [670720 2009-09-17] (FTweak)
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\Run: [Chromium] => "c:\users\bruno\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {aeb6adde-8ccb-11e6-a64f-c860005f30d9} - I:\Startme.exe
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {be501904-1326-11e6-a1f6-c860005f30d9} - H:\setup.exe
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\...\MountPoints2: {c4ebcebe-0b38-11e6-8cc8-c860005f30d9} - I:\Startme.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2002-01-01] (AVAST Software)
GroupPolicy: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BE7AC758-5066-40BA-BF82-20739D41DF99}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CA89B5A0-0784-436A-B06F-F987979B141D}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDyD0FtAtD0DzyyDyEyD0EtN0D0Tzu0StCyBtBzytN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtCtDyB0EyE0FzytGtDyCyD0CtGyBtB0FyEtGtBzytD0AtGtAyCyBtByDzz0D0AtC0AtA0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0A0FtC0D0CyE0AtGyE0D0FzztGyEyEtByEtGzzyBtDzytGtCtDtByCyB0CtBzzzztBzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDtAzzyE%26cr%3D1110470266%26a%3Dwbf_ir_16_39%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4027033599-2586687101-1821483936-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={66E67B4D-0AFA-4740-B6C1-12FBC15C0888}&mid=d24ff0ba3c7f47cc9ccc192946bbd92a-eb024a95e4cbbeaa3737a9ed6b34400422d1e385&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2016-04-25 10:18:20&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2002-01-01] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2002-01-01] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2002-01-01]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2002-01-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default [2016-10-23]
CHR Extension: (Google Drive) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-24]
CHR Extension: (YouTube) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-24]
CHR Extension: (Documentos Google off-line) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24]
CHR Extension: (AdBlock) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-22]
CHR Extension: (Avast Online Security) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-24]
CHR Extension: (Gmail) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-22]
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-17]
CHR Extension: (Google Apresentações) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-26]
CHR Extension: (Google Docs) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-26]
CHR Extension: (Google Drive) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-26]
CHR Extension: (YouTube) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-26]
CHR Extension: (Planilhas do Google) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-26]
CHR Extension: (Documentos Google off-line) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-26]
CHR Extension: (Avast Online Security) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-21]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-26]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2016-04-26]
CHR Extension: (Gmail) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-26]
CHR Extension: (Chrome Media Router) - C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-01]
CHR Profile: C:\Users\BrUnO\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-17]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4027033599-2586687101-1821483936-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.) [Arquivo não assinado]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2002-01-01] (AVAST Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-10-18] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-10-05] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-10-05] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-10-04] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-10-05] ()
S3 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
S3 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-08-29] (Razer Inc)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2002-01-01] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2002-01-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2002-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2002-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2002-01-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2002-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
S3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-03-09] (Windows (R) Win 7 DDK provider)
S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 21:30 - 2016-10-23 21:30 - 00044999 _____ C:\Users\BrUnO\Downloads\Addition.txt
2016-10-23 21:29 - 2016-10-23 21:31 - 00025200 _____ C:\Users\BrUnO\Downloads\FRST.txt
2016-10-23 21:29 - 2016-10-23 21:31 - 00000000 ____D C:\FRST
2016-10-23 21:28 - 2016-10-23 21:29 - 02407424 _____ (Farbar) C:\Users\BrUnO\Downloads\FRST64.exe
2016-10-23 21:28 - 2016-10-23 21:28 - 01756672 _____ (Farbar) C:\Users\BrUnO\Downloads\FRST.exe
2016-10-23 21:25 - 2016-10-23 21:25 - 00000796 _____ C:\Users\Public\Desktop\Dolphin.lnk
2016-10-23 21:25 - 2016-10-23 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2016-10-23 21:19 - 2016-10-23 21:23 - 14572000 _____ (Microsoft Corporation) C:\Users\BrUnO\Downloads\vc_redist.x64.exe
2016-10-23 21:17 - 2016-10-23 21:21 - 19327064 _____ C:\Users\BrUnO\Downloads\dolphin-x64-5.0.exe
2016-10-23 01:31 - 2016-10-18 17:31 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-23 01:31 - 2016-09-09 16:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-23 01:31 - 2016-09-09 16:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-23 01:31 - 2016-09-09 16:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-23 01:31 - 2016-09-09 16:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-23 01:28 - 2016-10-19 20:48 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-23 01:28 - 2016-10-19 20:48 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 35222464 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 34699712 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 28167616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 17426520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 17338792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 14018496 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-23 01:28 - 2016-10-18 19:23 - 10910184 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 10754624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 10295048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 09099400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 08912488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 08692872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 03629624 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 03191744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437557.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437557.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 01035712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00973760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00520912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-23 01:28 - 2016-10-18 19:23 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-23 01:28 - 2016-10-18 19:23 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-22 23:33 - 2016-10-22 23:34 - 01194722 _____ C:\Users\BrUnO\Downloads\ScriptHookV_1.0.877.1.zip
2016-10-22 23:28 - 2016-10-22 23:29 - 00662311 _____ C:\Users\BrUnO\Downloads\Script Hook V 1.0.505.2.zip
2016-10-22 23:11 - 2016-10-22 23:11 - 00001274 _____ C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2016-10-22 23:02 - 2016-10-22 23:02 - 01217821 _____ C:\Users\BrUnO\Downloads\OpenIV 2.6.4.rar
2016-10-22 23:01 - 2016-10-22 23:01 - 02382718 _____ C:\Users\BrUnO\Downloads\525adc-GTAV Mod Manager.zip
2016-10-22 22:54 - 2016-10-22 22:57 - 38525065 _____ C:\Users\BrUnO\Downloads\db9f16-Lamborghini Centenario 1.3a [by Gta5KoRn].7z
2016-10-22 07:10 - 2016-10-22 21:13 - 00000000 ____D C:\Users\BrUnO\AppData\LocalLow\BitTorrent
2016-10-20 20:36 - 2013-03-01 17:52 - 00000000 ____D C:\Users\BrUnO\Desktop\Sonic 3Derations
2016-10-20 20:29 - 2016-10-18 21:42 - 08463251 ____N C:\Users\BrUnO\Desktop\Sonic_3Derations_FULL.rar
2016-10-20 06:54 - 2016-10-20 06:54 - 00000000 ____D C:\Users\BrUnO\AppData\Local\EMU
2016-10-20 06:20 - 2016-10-20 06:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst
2016-10-19 12:46 - 2016-10-19 12:46 - 179209261 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_476_SD.mp4
2016-10-19 12:06 - 2016-10-19 12:23 - 88637215 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_475_MQ.mp4
2016-10-19 08:45 - 2016-10-19 08:45 - 02115830 _____ C:\Users\BrUnO\Downloads\cemu_1.6.1.zip
2016-10-18 17:54 - 2016-10-18 17:54 - 178878876 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_474_SD.mp4
2016-10-17 16:50 - 2016-10-17 16:51 - 07528768 _____ C:\Users\BrUnO\Downloads\TWRP_M2_LB_Installer.zip
2016-10-17 16:39 - 2016-10-17 16:41 - 12308426 _____ C:\Users\BrUnO\Downloads\XperiaM2-PhilZ-TWRP-CWM-0.8.zip
2016-10-14 13:25 - 2016-10-14 13:39 - 83900097 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_466.mp4
2016-10-14 10:46 - 2016-07-31 21:49 - 00010083 _____ C:\Users\BrUnO\Desktop\CLIENTE.xlsx
2016-10-14 09:10 - 2016-10-14 09:10 - 83870991 _____ C:\Users\BrUnO\Downloads\narutoPROJECT_-_Shippuuden_465.mp4
2016-10-14 08:20 - 2016-09-16 22:12 - 00044144 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-10-13 07:47 - 2016-10-13 07:47 - 00074479 _____ C:\Users\BrUnO\Downloads\conta sky.pdf
2016-10-11 09:28 - 2016-10-11 09:28 - 00000000 ____D C:\Users\Todos os Usuários\ASUS OC Profiles
2016-10-11 09:28 - 2016-10-11 09:28 - 00000000 ____D C:\ProgramData\ASUS OC Profiles
2016-10-11 09:22 - 2016-10-11 09:22 - 00083116 _____ C:\Users\BrUnO\Downloads\WindowsHotfixDownloader1.2.zip
2016-10-11 09:11 - 2016-10-11 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-10-11 09:11 - 2009-09-30 12:33 - 00024576 _____ () C:\Windows\SysWOW64\AsIO.dll
2016-10-11 09:11 - 2009-08-04 11:28 - 00013440 _____ C:\Windows\SysWOW64\Drivers\AsIO.sys
2016-10-11 09:10 - 2009-07-16 12:38 - 00015416 _____ () C:\Windows\system32\Drivers\ASACPI.sys
2016-10-11 09:10 - 2008-01-04 14:34 - 00011832 _____ C:\Windows\SysWOW64\Drivers\AsInsHelp64.sys
2016-10-11 09:10 - 2008-01-04 14:34 - 00010216 _____ C:\Windows\SysWOW64\Drivers\AsInsHelp32.sys
2016-10-11 09:06 - 2016-10-11 09:06 - 03738808 _____ C:\Users\BrUnO\Downloads\TurboKey_V10103_XPVistaWin7.zip
2016-10-10 10:16 - 2016-10-10 10:16 - 00000959 _____ C:\Users\BrUnO\Desktop\NFS14 - Atalho.lnk
2016-10-10 10:16 - 2016-10-10 10:16 - 00000740 _____ C:\Users\BrUnO\Desktop\MKKE - Atalho.lnk
2016-10-10 08:01 - 2016-10-10 08:01 - 516132352 _____ C:\Windows\MEMORY.DMP
2016-10-10 08:01 - 2016-10-10 08:01 - 00388728 _____ C:\Windows\Minidump\101016-25022-01.dmp
2016-10-09 00:44 - 2016-10-09 00:54 - 00000000 ____D C:\Users\BrUnO\Downloads\Need.for.Speed.Rivals.Sub.Audio.PT.BR
2016-10-08 21:56 - 2016-10-08 21:56 - 00000000 ____D C:\Users\BrUnO\Documents\Ghost Games
2016-10-08 21:56 - 2016-10-08 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2016-10-07 23:26 - 2016-09-07 18:27 - 00137840 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2016-10-07 23:25 - 2016-10-19 17:11 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 ____D C:\Users\Todos os Usuários\RzSurroundVAD_1.1.62.0
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-10-07 23:25 - 2016-10-07 23:25 - 00000000 _____ C:\Windows\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2016-10-07 23:24 - 2016-10-07 23:26 - 00000000 ____D C:\Program Files (x86)\Razer
2016-10-07 23:24 - 2016-10-07 23:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-10-07 23:12 - 2016-10-07 23:26 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-10-07 23:12 - 2016-10-07 23:26 - 00000000 ____D C:\ProgramData\Razer
2016-10-07 23:12 - 2016-10-07 23:12 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Razer
2016-10-07 23:11 - 2016-10-07 23:11 - 02119872 _____ (Razer Inc.) C:\Users\BrUnO\Downloads\RazerSurroundInstaller_v2.0.29.2.exe
2016-10-07 19:51 - 2016-10-07 19:51 - 00001296 _____ C:\Users\BrUnO\Downloads\downloadinf_v1.01.zip
2016-10-07 19:23 - 2016-10-07 19:24 - 00638388 _____ C:\Users\BrUnO\Downloads\HERRAMIENTA-DE-FLASHEO.zip
2016-10-07 19:04 - 2016-10-07 19:05 - 08672929 _____ C:\Users\BrUnO\Downloads\Sony Xperia M2 Aqua Mobile Usb Driver.rar
2016-10-07 14:14 - 2016-10-07 14:25 - 152685325 _____ C:\Users\BrUnO\Downloads\ME1Controller-60-1-0-1.rar
2016-10-07 13:36 - 2016-10-07 13:36 - 00000000 ____D C:\Users\BrUnO\Documents\BioWare
2016-10-07 13:02 - 2016-10-07 13:02 - 11350716 _____ (Tribo Gamer Brasil®) C:\Users\BrUnO\Downloads\mass_effect_br-v1 [1].exe
2016-10-07 12:02 - 2016-10-07 12:32 - 00000000 ____D C:\Users\BrUnO\AppData\Local\The Witcher
2016-10-07 12:00 - 2016-10-07 12:00 - 00000000 ____D C:\Users\Public\Documents\The Witcher
2016-10-06 18:27 - 2016-10-06 18:29 - 24788672 _____ (TunnelBear) C:\Users\BrUnO\Downloads\TunnelBear-Installer.exe
2016-10-06 14:21 - 2016-10-23 21:25 - 00000000 ____D C:\Program Files\Dolphin
2016-10-06 11:52 - 2016-10-06 11:52 - 00000871 _____ C:\Users\BrUnO\Desktop\BitTorrent.lnk
2016-10-06 11:51 - 2016-10-23 01:37 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\BitTorrent
2016-10-06 09:03 - 2016-10-06 09:03 - 00000017 _____ C:\Windows\PrecisionX_x64.INI
2016-10-06 08:56 - 2015-05-27 15:51 - 00156160 _____ C:\Windows\system32\FW1FontWrapper_x64.dll
2016-10-06 08:43 - 2016-10-06 08:43 - 00002109 _____ C:\Users\Public\Desktop\EVGA Precision XOC.lnk
2016-10-06 08:43 - 2016-10-06 08:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EVGA
2016-10-06 08:43 - 2016-10-06 08:43 - 00000000 ____D C:\Program Files (x86)\EVGA
2016-10-05 21:03 - 2016-10-23 01:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-05 21:03 - 2016-10-18 17:45 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-05 21:03 - 2016-10-05 21:03 - 00003832 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003832 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003782 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003770 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003594 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-10-05 21:03 - 00003534 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-05 21:03 - 2016-09-30 02:25 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-05 21:03 - 2016-09-30 02:25 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-05 21:02 - 2016-10-22 23:46 - 00000000 ____D C:\Users\BrUnO\AppData\Local\CrashDumps
2016-10-05 21:02 - 2016-09-30 02:25 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-10-05 21:02 - 2016-09-30 02:25 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-10-05 21:02 - 2016-09-30 02:25 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-10-05 19:09 - 2009-12-16 23:19 - 00000000 ____D C:\Users\BrUnO\Downloads\Aplicar
2016-10-05 19:09 - 2009-12-16 22:39 - 00618887 _____ C:\Users\BrUnO\Downloads\lucjedi-zldtwo-ptbr-ntsc-v1.0.ppf
2016-10-05 18:51 - 2016-10-06 11:18 - 00000000 ____D C:\Users\BrUnO\AppData\LocalLow\uTorrent
2016-10-05 13:59 - 2016-10-05 14:21 - 04932741 _____ C:\Users\BrUnO\Desktop\Apresentação Pão de Açucar Borba Gato.pptx
2016-10-05 10:01 - 2016-10-11 09:11 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-10-05 10:01 - 2012-03-22 17:10 - 00014848 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\Drivers\AiCharger.sys
2016-10-05 08:36 - 2016-10-05 08:36 - 00000000 ____D C:\Users\R2D2\Documents\Dolphin Emulator
2016-10-05 08:36 - 2016-10-05 08:36 - 00000000 ____D C:\Users\R2D2
2016-10-05 00:26 - 2016-10-05 00:26 - 00000000 ____D C:\Users\BrUnO\.QtWebEngineProcess
2016-10-05 00:26 - 2016-10-05 00:26 - 00000000 ____D C:\Users\BrUnO\.Origin
2016-10-04 23:57 - 2016-10-04 23:57 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\NVIDIA
2016-10-04 23:53 - 2016-10-23 01:30 - 00000000 ____D C:\Users\BrUnO\AppData\Local\NVIDIA Corporation
2016-10-04 23:52 - 2016-10-23 20:58 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-10-04 23:52 - 2016-10-23 20:58 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-04 23:51 - 2016-10-05 21:03 - 00000000 ____D C:\Users\BrUnO\AppData\Local\NVIDIA
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-23 01:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-04 23:50 - 2016-10-18 17:52 - 07471705 _____ C:\Windows\system32\nvcoproc.bin
2016-10-04 23:50 - 2016-10-18 17:52 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-04 23:50 - 2016-10-18 17:52 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-04 23:50 - 2016-10-04 23:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-04 23:50 - 2016-09-16 22:46 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-10-04 23:50 - 2016-09-16 22:46 - 00203320 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-10-04 23:49 - 2016-10-19 20:48 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 19917400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 14394528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 03930688 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 03469408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-04 23:49 - 2016-10-18 19:23 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-04 23:49 - 2016-09-16 22:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-10-04 23:49 - 2016-09-16 22:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-10-04 23:26 - 2016-10-04 23:24 - 00189112 _____ (Power Admin LLC) C:\Windows\PAExec.exe
2016-10-04 22:14 - 2016-10-04 22:47 - 351102072 _____ (NVIDIA Corporation) C:\Users\BrUnO\Downloads\372.90-desktop-win8-win7-64bit-international-whql.exe
2016-10-03 23:19 - 2016-10-03 23:19 - 02609724 _____ C:\Users\BrUnO\Documents\Apresentação PA BOrba.pptx
2016-10-03 21:27 - 2016-10-23 20:58 - 00000200 _____ C:\Windows\Tasks\AutoKMS.job
2016-10-03 21:27 - 2016-10-03 21:27 - 00614400 _____ C:\Windows\AutoKMS.exe
2016-10-03 21:27 - 2016-10-03 21:27 - 00002432 _____ C:\Windows\System32\Tasks\AutoKMS
2016-10-03 21:27 - 2016-10-03 21:27 - 00000135 _____ C:\Windows\AutoKMS.ini
2016-10-03 21:22 - 2016-10-03 21:22 - 02502029 _____ C:\Users\BrUnO\Downloads\office.rar.rar
2016-10-03 20:50 - 2016-10-03 20:50 - 00000000 ____D C:\Users\BrUnO\AppData\Local\FLT
2016-10-03 20:49 - 2016-10-03 20:50 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\MKKE
2016-10-03 17:00 - 2016-10-03 17:00 - 00315379 _____ C:\Users\BrUnO\Downloads\Pedidos - Petit Mambo Panamby.xlsx
2016-10-03 17:00 - 2016-10-03 17:00 - 00132096 _____ C:\Users\BrUnO\Downloads\DRE Gerencial 072016 - MGB - Previa Petit Panamby.xlsx
2016-10-03 16:58 - 2016-10-03 16:58 - 00035135 _____ C:\Users\BrUnO\Downloads\Controle da Tesouraria.xlsx
2016-10-03 16:51 - 2016-10-03 16:51 - 00133034 _____ C:\Users\BrUnO\Downloads\Novo Documento 2.pdf
2016-10-03 16:38 - 2016-10-03 16:38 - 00071091 _____ C:\Users\BrUnO\Downloads\Novo Documento.pdf
2016-10-02 21:14 - 2016-10-02 21:15 - 00000000 ____D C:\Users\BrUnO\Desktop\DCIM
2016-10-02 11:12 - 2016-10-02 11:13 - 05221313 _____ C:\Users\BrUnO\Downloads\Extra Morumbi.pptx
2016-10-02 00:38 - 2016-10-02 00:38 - 00000000 ____D C:\Users\Todos os Usuários\RELOADED
2016-10-02 00:38 - 2016-10-02 00:38 - 00000000 ____D C:\ProgramData\RELOADED
2016-09-26 19:52 - 2016-09-26 19:52 - 00000219 _____ C:\Windows\system.ini
2016-09-25 22:49 - 2016-09-25 22:52 - 00000000 ____D C:\Users\BrUnO\Documents\Prototype
2016-09-25 21:59 - 2016-09-25 21:59 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-25 21:58 - 2016-09-25 21:58 - 00000000 ____D C:\Program Files\WinRAR
2016-09-25 21:54 - 2016-09-25 21:54 - 04109160 _____ C:\Users\BrUnO\Downloads\ratondownload.com.br-winrar-x64-520br.exe
2016-09-24 18:50 - 2016-09-24 18:50 - 00288725 _____ C:\Users\BrUnO\Downloads\nvidiaInspector.zip
2016-09-18 22:08 - 2016-09-18 22:08 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Mupen64Plus
2016-09-17 15:22 - 2016-10-05 19:55 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-09-16 21:42 - 2016-09-16 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project64 2.3
2016-09-16 21:42 - 2016-09-16 21:42 - 00000000 ____D C:\Program Files (x86)\Project64 2.3
2016-09-16 21:15 - 2016-09-16 21:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2016-09-16 21:15 - 2016-09-16 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-09-16 21:14 - 2016-09-16 21:14 - 00000000 ____D C:\Users\Todos os Usuários\X360CE
2016-09-16 21:14 - 2016-09-16 21:14 - 00000000 ____D C:\ProgramData\X360CE
2016-09-12 21:52 - 2016-10-06 08:56 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-09-12 21:52 - 2016-09-12 21:53 - 00000000 ____D C:\Program Files (x86)\PCSX2 1.2.1
2016-09-12 21:52 - 2016-09-12 21:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2016-09-12 19:25 - 2016-09-12 19:25 - 00251441 _____ C:\Users\BrUnO\Downloads\Formulário Locomoção Urbana 30..08.2016.xlsx
2016-09-09 21:41 - 2016-09-09 21:41 - 00119126 _____ C:\Users\BrUnO\Downloads\Vmuexplorer.rar
2016-09-09 16:25 - 2016-09-09 16:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1-1-0-26-0.dll
2016-09-09 16:25 - 2016-09-09 16:25 - 00261920 _____ C:\Windows\system32\vulkan-1-1-0-26-0.dll
2016-09-09 16:25 - 2016-09-09 16:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-26-0.exe
2016-09-09 16:24 - 2016-09-09 16:24 - 00125216 _____ C:\Windows\system32\vulkaninfo-1-1-0-26-0.exe
2016-08-29 07:22 - 2016-08-29 07:22 - 00251872 _____ (Razer inc) C:\Windows\system32\DriverInstallCACMD.exe
2016-08-29 07:22 - 2016-08-29 07:22 - 00075744 _____ (Razer Inc) C:\Windows\system32\DriverInstallCA.dll
2016-08-24 23:40 - 2016-08-24 23:40 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Milestone
2016-08-24 23:39 - 2016-10-04 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RIDE Digital Deluxe Edition (4 DLCs + Extras)
2016-08-21 23:40 - 2016-08-21 23:40 - 01423594 _____ C:\Users\BrUnO\Downloads\ti07_ignition_coils_pt_2013.pdf
2016-08-20 19:07 - 2016-08-20 19:15 - 40915137 _____ C:\Users\BrUnO\Downloads\mame0176b_64bit.exe
2016-08-19 21:00 - 2016-08-19 22:35 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2016-08-19 06:12 - 2016-08-19 06:12 - 00015816 _____ (Razer Inc.) C:\Windows\SysWOW64\RzStats.IPC.dll
2016-08-17 11:40 - 2016-08-17 11:40 - 00039424 _____ C:\Users\BrUnO\Downloads\FolhadePontoIndividualdeTabalho.xls
2016-08-06 20:55 - 2016-08-06 20:56 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Ubisoft Game Launcher
2016-08-06 20:55 - 2016-08-06 20:55 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Ubisoft
2016-08-06 20:26 - 2016-08-06 20:26 - 00002261 _____ C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2016-07-30 18:43 - 2016-07-30 18:43 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Criterion Games
2016-07-30 18:40 - 2016-07-30 18:40 - 00000000 ____D C:\Users\BrUnO\AppData\Local\Downloaded Installations
2016-07-27 22:24 - 2016-07-27 23:07 - 00265524 _____ C:\Users\BrUnO\Downloads\Formulario Locomocao Urbana 05.07.2016.xlsx
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 21:05 - 2009-07-14 02:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-23 21:05 - 2009-07-14 02:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-23 21:04 - 2009-07-29 14:08 - 00706524 _____ C:\Windows\system32\prfh0416.dat
2016-10-23 21:04 - 2009-07-29 14:08 - 00147250 _____ C:\Windows\system32\prfc0416.dat
2016-10-23 21:04 - 2009-07-14 03:13 - 01638604 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-23 21:04 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-10-23 20:57 - 2016-04-24 20:19 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-23 20:57 - 2016-04-24 20:19 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-23 20:57 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-23 01:30 - 2016-04-24 19:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-23 01:05 - 2016-05-24 19:21 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-10-23 00:49 - 2016-06-25 22:09 - 00000978 _____ C:\Windows\Tasks\Yahoo! Powered tasid.job
2016-10-22 23:11 - 2016-05-29 17:36 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\New Technology Studio
2016-10-22 07:49 - 2016-06-25 22:09 - 00000000 ____D C:\Users\Todos os Usuários\{63B6A6D5-E9F4-2C13-6F32-B251F570399F}
2016-10-22 07:49 - 2016-06-25 22:09 - 00000000 ____D C:\ProgramData\{63B6A6D5-E9F4-2C13-6F32-B251F570399F}
2016-10-21 23:56 - 2016-04-24 20:23 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-21 07:32 - 2016-05-12 12:17 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-10-21 07:32 - 2016-05-12 12:17 - 00000000 ____D C:\ProgramData\Origin
2016-10-20 06:25 - 2016-04-24 19:53 - 01606356 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-10-19 19:10 - 2016-05-12 12:44 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Origin
2016-10-19 18:54 - 2016-07-17 20:26 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2016-10-19 18:54 - 2016-07-03 20:31 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-10-19 18:53 - 2016-07-03 20:31 - 00280600 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-10-19 06:27 - 2016-04-24 22:17 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-10-19 06:27 - 2016-04-24 22:17 - 00000000 ____D C:\ProgramData\Apple
2016-10-19 06:26 - 2016-04-24 22:17 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-19 06:21 - 2016-04-24 19:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-17 05:02 - 2009-07-14 03:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-10-14 08:44 - 2016-05-07 13:47 - 00000000 ___SD C:\Users\BrUnO\AppData\LocalLow\Temp
2016-10-13 19:27 - 2016-05-10 21:40 - 00007597 _____ C:\Users\BrUnO\AppData\Local\resmon.resmoncfg
2016-10-13 07:49 - 2016-05-24 19:21 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-10-11 00:53 - 2016-05-14 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
2016-10-10 15:14 - 2016-05-14 23:39 - 00000000 ____D C:\Program Files (x86)\Tribo Gamer
2016-10-10 12:43 - 2009-07-14 05:45 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-10-10 08:01 - 2016-05-09 20:34 - 00000000 ____D C:\Windows\Minidump
2016-10-08 21:56 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-07 12:32 - 2016-04-24 20:58 - 00000000 ____D C:\Users\BrUnO\Documents\The Witcher
2016-10-06 18:30 - 2016-04-26 21:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-10-06 18:30 - 2016-04-26 21:36 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-06 14:22 - 2016-04-24 20:58 - 00000000 ____D C:\Users\BrUnO\Documents\Dolphin Emulator
2016-10-06 09:32 - 2016-04-26 21:55 - 00000000 ____D C:\Program Files (x86)\EVGA Precision
2016-10-06 09:00 - 2016-04-24 19:36 - 00111536 _____ C:\Users\BrUnO\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-06 09:00 - 2016-04-24 19:18 - 00000000 ____D C:\Users\BrUnO
2016-10-06 09:00 - 2009-07-14 02:45 - 00419984 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-05 19:55 - 2016-04-26 21:36 - 00000000 ____D C:\Program Files\Rockstar Games
2016-10-05 00:32 - 2016-07-03 20:31 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-10-05 00:26 - 2016-05-12 12:17 - 00000000 ____D C:\Program Files (x86)\Origin
2016-10-04 23:50 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Help
2016-10-04 23:34 - 2016-06-25 22:09 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-10-04 23:34 - 2016-06-25 22:09 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-10-03 22:08 - 2016-05-05 23:11 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-09-26 20:22 - 2016-06-25 21:47 - 00000000 ____D C:\Users\BrUnO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio
2016-09-26 20:22 - 2016-06-25 21:47 - 00000000 ____D C:\Program Files (x86)\GameVicio
2016-09-25 22:49 - 2016-06-25 22:09 - 00004008 _____ C:\Windows\System32\Tasks\Yahoo! Powered tasid
2016-09-25 22:49 - 2016-06-25 22:09 - 00002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2016-09-25 22:49 - 2016-06-25 22:09 - 00000000 ____D C:\Users\BrUnO\AppData\Local\{0AF43CA8-2E5C-5010-43C4-75F867AC8960}
2016-09-25 22:03 - 2016-05-10 15:51 - 00000000 ____D C:\Program Files (x86)\IZArc
==================== Arquivos na raiz de alguns diretórios =======
2016-04-25 20:08 - 2016-06-03 19:52 - 0000600 _____ () C:\Users\BrUnO\AppData\Roaming\winscp.rnd
2016-05-10 21:40 - 2016-10-13 19:27 - 0007597 _____ () C:\Users\BrUnO\AppData\Local\resmon.resmoncfg
Alguns arquivos em TEMP:
====================
C:\Users\BrUnO\AppData\Local\Temp\oivsetup-22102016230937.exe
C:\Users\BrUnO\AppData\Local\Temp\ovi-uninstall.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-10-17 08:17
==================== Fim de FRST.txt ============================