Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
Ran by Fernando (administrator) on FERNANDO-PC (29-11-2016 22:42:48)
Running from C:\Users\Fernando\Downloads
Loaded Profiles: Fernando (Available Profiles: Fernando)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Inglês (Estados Unidos)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-29] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387736 2014-07-04] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [562264 2014-04-10] (Waves Audio Ltd.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-29] (AVAST Software)
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\MountPoints2: {86cf8a79-b686-11e6-a89c-681401a60bd0} - G:\SETUP.EXE
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-29] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{ADBBCE78-5807-4561-AE07-5A6446C5CA13}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{D8C8C030-AF7A-48B4-B5A0-3EC50B4CF993}: [DhcpNameServer] 10.3.0.1
Internet Explorer:
==================
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-11-29] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-11-29] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-29]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-29]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default [2016-11-29]
CHR Extension: (Google Apresentações) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-29]
CHR Extension: (Google Docs) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-29]
CHR Extension: (Google Drive) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-29]
CHR Extension: (YouTube) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-29]
CHR Extension: (Adblock Plus) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-29]
CHR Extension: (Planilhas do Google) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-29]
CHR Extension: (AdBlock) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-29]
CHR Extension: (Avast Online Security) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29]
CHR Extension: (Gmail) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-29] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-11-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-11-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-11-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-11-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-11-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-11-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-11-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-29] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-11-29] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-11-29] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-29] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-11-29] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [190032 2016-11-28] (Intel Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three Months Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-29 22:34 - 2016-11-29 22:35 - 00020568 _____ C:\Users\Fernando\Downloads\Addition.txt
2016-11-29 22:33 - 2016-11-29 22:42 - 00013513 _____ C:\Users\Fernando\Downloads\FRST.txt
2016-11-29 22:33 - 2016-11-29 22:42 - 00000000 ____D C:\FRST
2016-11-29 22:33 - 2016-11-29 22:33 - 02411520 _____ (Farbar) C:\Users\Fernando\Downloads\FRST64.exe
2016-11-29 22:26 - 2016-11-29 22:26 - 00000000 ____D C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits
2016-11-29 22:20 - 2016-11-29 22:22 - 11313360 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\WindowsUpdateAgent-7.6-x64.exe
2016-11-29 22:15 - 2016-11-29 22:15 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-29 22:12 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-29 22:11 - 2016-11-29 22:11 - 00003630 _____ C:\Users\Fernando\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-11-29 22:11 - 2016-11-29 22:11 - 00000000 ____D C:\Users\Fernando\AppData\Local\Disc_Soft_Ltd
2016-11-29 22:09 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-11-29 22:05 - 2016-11-29 22:05 - 14749120 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\vc_redist.x64.exe
2016-11-29 22:02 - 2016-11-29 22:35 - 00705268 _____ C:\Windows\system32\prfh0416.dat
2016-11-29 22:02 - 2016-11-29 22:35 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2016-11-29 22:02 - 2016-11-29 22:02 - 00000000 ____D C:\1dbc8e872eee24f226936868b4e3
2016-11-29 22:02 - 2016-11-29 22:00 - 00323154 _____ C:\Windows\system32\prfi0416.dat
2016-11-29 22:02 - 2016-11-29 22:00 - 00038536 _____ C:\Windows\system32\prfd0416.dat
2016-11-29 22:01 - 2016-11-29 22:01 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-11-29 21:45 - 2016-11-29 22:26 - 1597205932 ____R C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits.rar
2016-11-29 21:40 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\uTorrent
2016-11-29 21:39 - 2016-11-29 21:39 - 00002657 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-11-29 21:38 - 2016-11-29 22:28 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\uTorrent
2016-11-29 21:33 - 2016-11-29 21:38 - 00002187 _____ C:\Users\Fernando\Desktop\WhatsApp.lnk
2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:33 - 00001100 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist.lnk
2016-11-29 21:33 - 2016-11-29 21:33 - 00001092 _____ C:\Users\Fernando\Desktop\Wunderlist.lnk
2016-11-29 21:33 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist
2016-11-29 21:32 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\SquirrelTemp
2016-11-29 21:32 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Local\Wunderlist
2016-11-29 21:32 - 2016-10-19 09:17 - 06422702 _____ C:\Users\Fernando\Desktop\SCRUMstudy-SBOK-Guide-2016-Portuguese.pdf
2016-11-29 21:30 - 2016-11-29 21:30 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2016-11-29 21:27 - 2016-11-29 21:27 - 00002841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WinRAR
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Windows\PCHEALTH
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-11-29 21:25 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Users\Fernando\AppData\Local\Microsoft Help
2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-29 21:22 - 2016-11-29 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\system32\SRSLabs
2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Program Files\Realtek
2016-11-29 21:20 - 2014-07-08 22:16 - 04007512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-11-29 21:20 - 2014-07-08 18:54 - 01262807 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-11-29 21:20 - 2014-07-08 16:02 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2016-11-29 21:20 - 2014-07-08 16:02 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2016-11-29 21:20 - 2014-07-07 20:05 - 67255296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2016-11-29 21:20 - 2014-07-07 17:07 - 02860760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-11-29 21:20 - 2014-07-04 14:07 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-11-29 21:20 - 2014-07-02 20:20 - 02805464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-11-29 21:20 - 2014-06-20 20:45 - 00949976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-11-29 21:20 - 2014-06-17 16:32 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-11-29 21:20 - 2014-05-09 14:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-11-29 21:20 - 2014-04-10 15:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-11-29 21:20 - 2014-04-10 15:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2016-11-29 21:20 - 2014-04-10 15:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-11-29 21:20 - 2014-03-19 22:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-11-29 21:20 - 2014-03-06 19:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-11-29 21:20 - 2014-02-06 14:28 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-11-29 21:20 - 2014-01-08 18:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-11-29 21:20 - 2013-08-14 18:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-11-29 21:20 - 2013-07-22 18:36 - 00194816 _____ (Waves Audio) C:\Windows\system32\MaxxAudioVienna264.dll
2016-11-29 21:20 - 2013-04-23 17:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkXInterface64.dll
2016-11-29 21:20 - 2013-01-11 19:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2016-11-29 21:20 - 2013-01-11 19:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2016-11-29 21:20 - 2012-11-14 14:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2016-11-29 21:20 - 2012-08-31 22:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-11-29 21:20 - 2012-06-08 19:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-11-29 21:20 - 2012-06-08 19:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-11-29 21:20 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-11-29 21:20 - 2011-12-16 17:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-11-29 21:20 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-11-29 21:20 - 2010-11-03 21:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-11-29 21:20 - 2009-11-18 10:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-11-29 21:19 - 2016-11-29 21:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-29 21:19 - 2014-06-09 13:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-11-29 21:19 - 2014-05-19 13:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-11-29 21:19 - 2014-04-10 15:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 01763416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek364.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-11-29 21:19 - 2014-02-18 20:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-11-29 21:19 - 2013-10-11 15:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-11-29 21:19 - 2013-08-14 18:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-11-29 21:19 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-11-29 21:19 - 2010-09-27 12:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-11-29 21:16 - 2016-11-29 21:16 - 00002916 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Fernando
2016-11-29 21:16 - 2016-11-29 21:16 - 00001370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files\Synaptics
2016-11-29 21:16 - 2015-05-29 17:46 - 00246440 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo29.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00755880 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00410792 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00048296 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys
2016-11-29 21:16 - 2014-01-30 18:17 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-11-29 21:15 - 2016-11-29 21:15 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-29 21:15 - 2015-05-29 17:45 - 00604840 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2016-11-29 21:15 - 2015-05-29 17:45 - 00259240 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2016-11-29 21:14 - 2016-11-29 21:22 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-29 21:14 - 2016-11-29 21:14 - 00001536 _____ C:\Windows\SysWOW64\RtkMsgs.dll
2016-11-29 21:13 - 2016-11-29 21:13 - 00000000 ____D C:\ProgramData\Dell
2016-11-29 21:07 - 2016-11-29 21:07 - 00000000 ____D C:\Users\Fernando\AppData\Local\CEF
2016-11-29 21:06 - 2016-11-29 21:26 - 00003896 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1480460797
2016-11-29 21:06 - 2016-11-29 21:06 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-29 21:06 - 2016-11-29 21:05 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\OpenVPN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-11-29 21:04 - 2016-11-29 21:04 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Program Files\Common Files\AV
2016-11-29 21:04 - 2016-11-29 21:03 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-11-29 21:04 - 2016-11-29 21:03 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-29 21:04 - 2016-11-29 21:03 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-11-29 21:04 - 2016-11-29 21:03 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-11-29 21:03 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-29 21:03 - 2016-11-29 21:03 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-11-29 21:02 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-29 20:57 - 2016-11-29 20:57 - 00000000 ____D C:\9a9b0c7fe6102cd1e0c5ce
2016-11-29 20:47 - 2016-11-29 20:47 - 01469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-11-29 20:47 - 2016-11-29 20:47 - 00031712 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00481768 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-11-29 20:44 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\DAEMON Tools Lite
2016-11-29 20:44 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-11-29 20:44 - 2016-11-29 20:44 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-11-29 20:44 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-11-29 20:43 - 2016-11-29 21:22 - 00003132 _____ C:\Windows\System32\Tasks\RtHDVBg_PushButton
2016-11-29 20:43 - 2016-11-29 21:21 - 00977191 _____ C:\Windows\system32\Drivers\rtwavesskdy.dat
2016-11-29 20:43 - 2016-11-29 21:21 - 00455741 _____ C:\Windows\system32\Drivers\rtwavesmapro.dat
2016-11-29 20:43 - 2016-11-29 21:21 - 00020691 _____ C:\Windows\system32\Drivers\rtwavesmaprocap.dat
2016-11-29 20:43 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-11-29 20:42 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-11-29 20:42 - 2016-11-29 21:15 - 00000000 ____D C:\Windows\system32\DAX2
2016-11-29 20:42 - 2016-11-29 20:42 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-29 20:36 - 2016-11-29 20:36 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-11-29 20:33 - 2016-11-29 20:33 - 00609992 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2016-11-29 20:33 - 2016-11-29 20:33 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBT.bin
2016-11-29 20:33 - 2016-11-29 20:33 - 00208992 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll
2016-11-29 20:33 - 2016-11-29 20:33 - 00207960 _____ (Qualcomm Atheros Communications Inc.) C:\Windows\system32\btcoinst.dll
2016-11-29 20:33 - 2016-11-29 20:33 - 00046972 _____ C:\Windows\system32\Drivers\AthrBT_0x11020000.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00046868 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00046852 _____ C:\Windows\system32\Drivers\AthrBT_0x11020100.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00045868 _____ C:\Windows\system32\Drivers\AthrBT_0x01020201.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00044028 _____ C:\Windows\system32\Drivers\AthrBT_0x01020200.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00040684 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000_ss01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00040036 _____ C:\Windows\system32\Drivers\AthrBT_0x31010100.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00037464 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll.muien-US
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf0.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x21.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x11.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001922 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_SS01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_nf01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001796 _____ C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_SS01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_LV01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf1.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x22.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x12.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001512 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001242 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001228 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x04.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001214 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001198 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001192 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000296 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000278 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x04.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x03.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x02.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26.dfu
2016-11-29 20:30 - 2016-11-29 20:30 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-11-29 20:28 - 2016-11-29 20:28 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-29 20:28 - 2016-11-29 20:28 - 00002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-29 20:28 - 2012-07-26 02:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-29 20:28 - 2012-07-26 02:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-11-29 20:28 - 2012-07-26 00:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-11-29 20:28 - 2012-06-02 12:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-11-29 20:27 - 2016-11-29 22:32 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-29 20:27 - 2016-11-29 22:30 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Users\Fernando\AppData\Local\Google
2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-29 20:27 - 2016-11-29 20:27 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-29 20:27 - 2016-11-29 20:27 - 00003816 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Deployment
2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Apps\2.0
2016-11-29 20:27 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-29 20:27 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-29 20:27 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-29 20:27 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-29 20:27 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-29 20:27 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-29 20:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-29 20:27 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-29 20:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-29 20:26 - 2016-06-29 16:36 - 06364728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 02455608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 01352760 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-11-29 20:26 - 2016-06-29 16:36 - 00532416 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-29 20:26 - 2016-06-23 06:04 - 07208075 _____ C:\Windows\system32\nvcoproc.bin
2016-11-29 20:25 - 2016-11-29 20:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-29 20:21 - 2016-11-29 21:40 - 00061896 _____ C:\Users\Fernando\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-29 20:20 - 2016-11-29 20:20 - 00773536 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-29 07:15 - 2016-11-29 01:32 - 00000000 ____D C:\Windows\Panther
2016-11-29 07:14 - 2016-11-29 07:14 - 00262144 _____ C:\Windows\system32\config\userdiff
2016-11-29 07:09 - 2016-11-29 07:09 - 00000000 ___HD C:\$INPLACE.~TR
2016-11-29 07:09 - 2016-11-29 01:27 - 00000000 ___HD C:\$WINDOWS.~Q
2016-11-29 06:04 - 2016-11-29 06:04 - 00000000 ____D C:\Windows.old
2016-11-29 01:32 - 2016-11-29 01:32 - 00001447 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-29 01:32 - 2016-11-29 01:32 - 00001413 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-11-29 01:32 - 2016-11-29 01:32 - 00000020 ___SH C:\Users\Fernando\ntuser.ini
2016-11-29 01:27 - 2016-11-29 01:27 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2016-11-29 01:19 - 2016-11-29 01:32 - 00000000 ____D C:\Users\Fernando
2016-11-29 01:19 - 2016-11-29 01:19 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-11-29 01:19 - 2016-11-29 01:19 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\My Documents
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Videos
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Pictures
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Music
2016-11-29 01:19 - 2010-11-21 05:16 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Media Center Programs
2016-11-29 01:17 - 2016-11-29 01:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagwrn.xml
2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagerr.xml
2016-11-29 00:44 - 2016-11-29 22:06 - 00000000 ____D C:\ProgramData\Betternet
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files\TAP-Windows
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\OpenVPN
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\Betternet
2016-11-29 00:42 - 2016-11-29 00:42 - 00001957 _____ C:\Users\Public\Desktop\Betternet.lnk
2016-11-29 00:36 - 2016-11-29 00:41 - 00000000 ____D C:\3f957e2320794f24809526cf84cb2f8c
2016-11-29 00:33 - 2016-11-29 01:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\Downloaded Installations
2016-11-29 00:27 - 2016-11-29 22:34 - 00002898 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Fernando)
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\IObit
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\ProductData
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\IObit
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\Windows\IObit
2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2016-11-29 00:27 - 2016-11-29 00:27 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-11-29 00:27 - 2016-11-29 00:27 - 00003266 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-11-29 00:26 - 2016-11-29 21:17 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\IObit
2016-11-29 00:25 - 2016-11-29 01:26 - 00000000 ____D C:\Windows\System32\Tasks\Games
2016-11-29 00:23 - 2016-11-29 00:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\VirtualStore
2016-11-28 22:44 - 2016-11-28 22:45 - 00000000 ____D C:\511bf2d5d7d8e5d6f91d
2016-11-28 22:17 - 2016-11-28 22:17 - 01035272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-11-28 22:17 - 2016-11-28 22:17 - 00190032 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-11-28 22:17 - 2016-11-28 22:17 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-11-28 22:17 - 2016-11-28 22:17 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-11-28 22:16 - 2016-11-28 22:16 - 09891328 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-11-28 22:16 - 2016-11-28 22:16 - 04332032 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCRU64.exe
2016-11-28 22:16 - 2016-11-28 22:16 - 04156928 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2016-11-28 22:16 - 2016-11-28 22:16 - 00418784 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2016-11-28 22:16 - 2016-11-28 22:16 - 00084480 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-11-28 21:55 - 2016-11-28 21:55 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-11-28 21:49 - 2016-11-28 21:51 - 00000000 ____D C:\791a230c1b44e9d5783f
2016-11-19 23:21 - 2016-11-19 23:22 - 00000000 ____D C:\dab04c57cb929be571bac9
2016-11-19 23:21 - 2016-06-29 20:44 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 31626808 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 25402424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 19199216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 17302264 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 16774904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 14356952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 13523392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-11-19 23:21 - 2016-06-29 20:44 - 10672752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 10656296 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 10214760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 09006760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 08742032 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 08600904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03828968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03513400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03387080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03067448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436869.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436869.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00984000 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00909248 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00771640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00039124 _____ C:\Windows\system32\nvinfo.pb
2016-11-19 23:21 - 2016-06-29 20:44 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-11-19 22:52 - 2016-11-19 22:52 - 00000000 ____D C:\Dell
2016-11-17 00:39 - 2016-11-17 00:41 - 00000000 ____D C:\0460bffc044008cb44106ceb02
2016-11-16 23:31 - 2016-11-16 23:46 - 00000000 __SHD C:\KRECYCLE
2016-11-16 22:51 - 2016-11-16 22:51 - 00000000 _____ C:\TOSTACK
2016-11-16 22:49 - 2016-11-17 00:15 - 00000002 _____ C:\END
2016-11-16 22:49 - 2016-11-16 22:50 - 00000000 ____D C:\uninst
2016-11-14 17:53 - 2016-11-16 22:48 - 00000000 ____D C:\Intel
2016-11-14 17:32 - 2016-11-14 17:32 - 00000000 __RHD C:\MSOCache
2016-11-14 15:46 - 2016-11-14 15:46 - 00000000 _SHDL C:\Arquivos de Programas
==================== Three Months Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-29 22:35 - 2009-07-14 03:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-29 22:35 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-11-29 22:29 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-29 22:08 - 2009-07-14 02:45 - 00303912 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-29 22:03 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\rescache
2016-11-29 22:01 - 2010-11-21 05:16 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\winrm
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\WCN
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\slmgr
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\DVD Maker
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\com
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\oobe
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\MUI
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\migwiz
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\com
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\servicing
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\IME
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-29 21:26 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\ShellNew
2016-11-29 21:26 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-29 20:32 - 2009-07-14 01:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-29 20:26 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Help
2016-11-29 07:15 - 2009-07-14 03:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-11-29 01:27 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Registration
2016-11-29 01:24 - 2009-07-14 02:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-29 01:22 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-29 01:19 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-29 01:17 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\CSC
==================== Files in the root of some directories =======
2016-11-29 20:42 - 2016-11-29 20:42 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Fernando\AppData\Local\Temp\DAEMON Tools Lite.exe
C:\Users\Fernando\AppData\Local\Temp\ose00000.exe
C:\Users\Fernando\AppData\Local\Temp\setup.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-29 01:16
==================== End of FRST.txt ============================
Ran by Fernando (administrator) on FERNANDO-PC (29-11-2016 22:42:48)
Running from C:\Users\Fernando\Downloads
Loaded Profiles: Fernando (Available Profiles: Fernando)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Inglês (Estados Unidos)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-29] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387736 2014-07-04] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [562264 2014-04-10] (Waves Audio Ltd.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-29] (AVAST Software)
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\MountPoints2: {86cf8a79-b686-11e6-a89c-681401a60bd0} - G:\SETUP.EXE
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-29] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{ADBBCE78-5807-4561-AE07-5A6446C5CA13}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{D8C8C030-AF7A-48B4-B5A0-3EC50B4CF993}: [DhcpNameServer] 10.3.0.1
Internet Explorer:
==================
HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-11-29] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-11-29] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-29]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-29]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default [2016-11-29]
CHR Extension: (Google Apresentações) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-29]
CHR Extension: (Google Docs) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-29]
CHR Extension: (Google Drive) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-29]
CHR Extension: (YouTube) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-29]
CHR Extension: (Adblock Plus) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-29]
CHR Extension: (Planilhas do Google) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-29]
CHR Extension: (AdBlock) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-29]
CHR Extension: (Avast Online Security) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29]
CHR Extension: (Gmail) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-29] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-11-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-11-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-11-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-11-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-11-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-11-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-11-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-29] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-11-29] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-11-29] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-29] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-11-29] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [190032 2016-11-28] (Intel Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three Months Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-29 22:34 - 2016-11-29 22:35 - 00020568 _____ C:\Users\Fernando\Downloads\Addition.txt
2016-11-29 22:33 - 2016-11-29 22:42 - 00013513 _____ C:\Users\Fernando\Downloads\FRST.txt
2016-11-29 22:33 - 2016-11-29 22:42 - 00000000 ____D C:\FRST
2016-11-29 22:33 - 2016-11-29 22:33 - 02411520 _____ (Farbar) C:\Users\Fernando\Downloads\FRST64.exe
2016-11-29 22:26 - 2016-11-29 22:26 - 00000000 ____D C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits
2016-11-29 22:20 - 2016-11-29 22:22 - 11313360 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\WindowsUpdateAgent-7.6-x64.exe
2016-11-29 22:15 - 2016-11-29 22:15 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-29 22:12 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-29 22:11 - 2016-11-29 22:11 - 00003630 _____ C:\Users\Fernando\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-11-29 22:11 - 2016-11-29 22:11 - 00000000 ____D C:\Users\Fernando\AppData\Local\Disc_Soft_Ltd
2016-11-29 22:09 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-11-29 22:05 - 2016-11-29 22:05 - 14749120 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\vc_redist.x64.exe
2016-11-29 22:02 - 2016-11-29 22:35 - 00705268 _____ C:\Windows\system32\prfh0416.dat
2016-11-29 22:02 - 2016-11-29 22:35 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2016-11-29 22:02 - 2016-11-29 22:02 - 00000000 ____D C:\1dbc8e872eee24f226936868b4e3
2016-11-29 22:02 - 2016-11-29 22:00 - 00323154 _____ C:\Windows\system32\prfi0416.dat
2016-11-29 22:02 - 2016-11-29 22:00 - 00038536 _____ C:\Windows\system32\prfd0416.dat
2016-11-29 22:01 - 2016-11-29 22:01 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-11-29 21:45 - 2016-11-29 22:26 - 1597205932 ____R C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits.rar
2016-11-29 21:40 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\uTorrent
2016-11-29 21:39 - 2016-11-29 21:39 - 00002657 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-11-29 21:38 - 2016-11-29 22:28 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\uTorrent
2016-11-29 21:33 - 2016-11-29 21:38 - 00002187 _____ C:\Users\Fernando\Desktop\WhatsApp.lnk
2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\WhatsApp
2016-11-29 21:33 - 2016-11-29 21:33 - 00001100 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist.lnk
2016-11-29 21:33 - 2016-11-29 21:33 - 00001092 _____ C:\Users\Fernando\Desktop\Wunderlist.lnk
2016-11-29 21:33 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist
2016-11-29 21:32 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\SquirrelTemp
2016-11-29 21:32 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Local\Wunderlist
2016-11-29 21:32 - 2016-10-19 09:17 - 06422702 _____ C:\Users\Fernando\Desktop\SCRUMstudy-SBOK-Guide-2016-Portuguese.pdf
2016-11-29 21:30 - 2016-11-29 21:30 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2016-11-29 21:27 - 2016-11-29 21:27 - 00002841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WinRAR
2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Windows\PCHEALTH
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-11-29 21:25 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Users\Fernando\AppData\Local\Microsoft Help
2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-29 21:22 - 2016-11-29 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\system32\SRSLabs
2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Program Files\Realtek
2016-11-29 21:20 - 2014-07-08 22:16 - 04007512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-11-29 21:20 - 2014-07-08 18:54 - 01262807 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-11-29 21:20 - 2014-07-08 16:02 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2016-11-29 21:20 - 2014-07-08 16:02 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2016-11-29 21:20 - 2014-07-07 20:05 - 67255296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2016-11-29 21:20 - 2014-07-07 17:07 - 02860760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-11-29 21:20 - 2014-07-04 14:07 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-11-29 21:20 - 2014-07-02 20:20 - 02805464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-11-29 21:20 - 2014-06-20 20:45 - 00949976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-11-29 21:20 - 2014-06-17 16:32 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-11-29 21:20 - 2014-05-09 14:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-11-29 21:20 - 2014-04-10 15:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-11-29 21:20 - 2014-04-10 15:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2016-11-29 21:20 - 2014-04-10 15:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-11-29 21:20 - 2014-03-19 22:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-11-29 21:20 - 2014-03-06 19:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-11-29 21:20 - 2014-02-06 14:28 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-11-29 21:20 - 2014-01-08 18:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-11-29 21:20 - 2013-08-14 18:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-11-29 21:20 - 2013-07-22 18:36 - 00194816 _____ (Waves Audio) C:\Windows\system32\MaxxAudioVienna264.dll
2016-11-29 21:20 - 2013-04-23 17:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkXInterface64.dll
2016-11-29 21:20 - 2013-01-11 19:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2016-11-29 21:20 - 2013-01-11 19:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2016-11-29 21:20 - 2012-11-14 14:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2016-11-29 21:20 - 2012-08-31 22:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-11-29 21:20 - 2012-08-31 22:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-11-29 21:20 - 2012-06-08 19:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-11-29 21:20 - 2012-06-08 19:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-11-29 21:20 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-11-29 21:20 - 2011-12-16 17:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-11-29 21:20 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-11-29 21:20 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-11-29 21:20 - 2010-11-03 21:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-11-29 21:20 - 2009-11-24 12:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-11-29 21:20 - 2009-11-18 10:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-11-29 21:19 - 2016-11-29 21:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-29 21:19 - 2014-06-09 13:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-11-29 21:19 - 2014-05-19 13:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-11-29 21:19 - 2014-04-17 20:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-11-29 21:19 - 2014-04-10 15:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 01763416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek364.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-11-29 21:19 - 2014-04-10 15:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-11-29 21:19 - 2014-04-07 19:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-11-29 21:19 - 2014-02-18 20:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-11-29 21:19 - 2013-10-11 15:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-11-29 21:19 - 2013-08-14 18:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-11-29 21:19 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-11-29 21:19 - 2011-05-31 12:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-11-29 21:19 - 2010-09-27 12:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-11-29 21:16 - 2016-11-29 21:16 - 00002916 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Fernando
2016-11-29 21:16 - 2016-11-29 21:16 - 00001370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files\Synaptics
2016-11-29 21:16 - 2015-05-29 17:46 - 00246440 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo29.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00755880 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00410792 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2016-11-29 21:16 - 2015-05-29 17:45 - 00048296 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys
2016-11-29 21:16 - 2014-01-30 18:17 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-11-29 21:15 - 2016-11-29 21:15 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-29 21:15 - 2015-05-29 17:45 - 00604840 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2016-11-29 21:15 - 2015-05-29 17:45 - 00259240 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2016-11-29 21:14 - 2016-11-29 21:22 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-29 21:14 - 2016-11-29 21:14 - 00001536 _____ C:\Windows\SysWOW64\RtkMsgs.dll
2016-11-29 21:13 - 2016-11-29 21:13 - 00000000 ____D C:\ProgramData\Dell
2016-11-29 21:07 - 2016-11-29 21:07 - 00000000 ____D C:\Users\Fernando\AppData\Local\CEF
2016-11-29 21:06 - 2016-11-29 21:26 - 00003896 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1480460797
2016-11-29 21:06 - 2016-11-29 21:06 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-29 21:06 - 2016-11-29 21:05 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\OpenVPN
2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-11-29 21:04 - 2016-11-29 21:04 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-11-29 21:04 - 2016-11-29 21:04 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Program Files\Common Files\AV
2016-11-29 21:04 - 2016-11-29 21:03 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-11-29 21:04 - 2016-11-29 21:03 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-29 21:04 - 2016-11-29 21:03 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-11-29 21:04 - 2016-11-29 21:03 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-11-29 21:04 - 2016-11-29 21:03 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-11-29 21:03 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-29 21:03 - 2016-11-29 21:03 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-11-29 21:02 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-29 20:57 - 2016-11-29 20:57 - 00000000 ____D C:\9a9b0c7fe6102cd1e0c5ce
2016-11-29 20:47 - 2016-11-29 20:47 - 01469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-11-29 20:47 - 2016-11-29 20:47 - 00031712 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00481768 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-11-29 20:44 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\DAEMON Tools Lite
2016-11-29 20:44 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-11-29 20:44 - 2016-11-29 20:44 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-11-29 20:44 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-11-29 20:43 - 2016-11-29 21:22 - 00003132 _____ C:\Windows\System32\Tasks\RtHDVBg_PushButton
2016-11-29 20:43 - 2016-11-29 21:21 - 00977191 _____ C:\Windows\system32\Drivers\rtwavesskdy.dat
2016-11-29 20:43 - 2016-11-29 21:21 - 00455741 _____ C:\Windows\system32\Drivers\rtwavesmapro.dat
2016-11-29 20:43 - 2016-11-29 21:21 - 00020691 _____ C:\Windows\system32\Drivers\rtwavesmaprocap.dat
2016-11-29 20:43 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-11-29 20:42 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-11-29 20:42 - 2016-11-29 21:15 - 00000000 ____D C:\Windows\system32\DAX2
2016-11-29 20:42 - 2016-11-29 20:42 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-29 20:36 - 2016-11-29 20:36 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-11-29 20:33 - 2016-11-29 20:33 - 00609992 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2016-11-29 20:33 - 2016-11-29 20:33 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBT.bin
2016-11-29 20:33 - 2016-11-29 20:33 - 00208992 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll
2016-11-29 20:33 - 2016-11-29 20:33 - 00207960 _____ (Qualcomm Atheros Communications Inc.) C:\Windows\system32\btcoinst.dll
2016-11-29 20:33 - 2016-11-29 20:33 - 00046972 _____ C:\Windows\system32\Drivers\AthrBT_0x11020000.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00046868 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00046852 _____ C:\Windows\system32\Drivers\AthrBT_0x11020100.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00045868 _____ C:\Windows\system32\Drivers\AthrBT_0x01020201.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00044028 _____ C:\Windows\system32\Drivers\AthrBT_0x01020200.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00040684 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000_ss01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00040036 _____ C:\Windows\system32\Drivers\AthrBT_0x31010100.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00037464 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll.muien-US
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf0.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x21.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x11.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001922 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_SS01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_nf01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001796 _____ C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_SS01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_LV01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf1.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x22.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x12.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001512 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001242 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001228 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x04.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001214 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001198 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00001192 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000296 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000278 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x04.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x03.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x02.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26_0x01.dfu
2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26.dfu
2016-11-29 20:30 - 2016-11-29 20:30 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-11-29 20:28 - 2016-11-29 20:28 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-29 20:28 - 2016-11-29 20:28 - 00002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-29 20:28 - 2012-07-26 02:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-29 20:28 - 2012-07-26 02:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-11-29 20:28 - 2012-07-26 00:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-11-29 20:28 - 2012-06-02 12:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-11-29 20:27 - 2016-11-29 22:32 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-29 20:27 - 2016-11-29 22:30 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Users\Fernando\AppData\Local\Google
2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-29 20:27 - 2016-11-29 20:27 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-29 20:27 - 2016-11-29 20:27 - 00003816 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Deployment
2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Apps\2.0
2016-11-29 20:27 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-29 20:27 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-29 20:27 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-29 20:27 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-29 20:27 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-29 20:27 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-29 20:27 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-29 20:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-29 20:27 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-29 20:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-29 20:26 - 2016-06-29 16:36 - 06364728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 02455608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 01352760 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-11-29 20:26 - 2016-06-29 16:36 - 00532416 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-11-29 20:26 - 2016-06-29 16:36 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-29 20:26 - 2016-06-23 06:04 - 07208075 _____ C:\Windows\system32\nvcoproc.bin
2016-11-29 20:25 - 2016-11-29 20:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-29 20:21 - 2016-11-29 21:40 - 00061896 _____ C:\Users\Fernando\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-29 20:20 - 2016-11-29 20:20 - 00773536 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-29 07:15 - 2016-11-29 01:32 - 00000000 ____D C:\Windows\Panther
2016-11-29 07:14 - 2016-11-29 07:14 - 00262144 _____ C:\Windows\system32\config\userdiff
2016-11-29 07:09 - 2016-11-29 07:09 - 00000000 ___HD C:\$INPLACE.~TR
2016-11-29 07:09 - 2016-11-29 01:27 - 00000000 ___HD C:\$WINDOWS.~Q
2016-11-29 06:04 - 2016-11-29 06:04 - 00000000 ____D C:\Windows.old
2016-11-29 01:32 - 2016-11-29 01:32 - 00001447 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-29 01:32 - 2016-11-29 01:32 - 00001413 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-11-29 01:32 - 2016-11-29 01:32 - 00000020 ___SH C:\Users\Fernando\ntuser.ini
2016-11-29 01:27 - 2016-11-29 01:27 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2016-11-29 01:19 - 2016-11-29 01:32 - 00000000 ____D C:\Users\Fernando
2016-11-29 01:19 - 2016-11-29 01:19 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-11-29 01:19 - 2016-11-29 01:19 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\My Documents
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Videos
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Pictures
2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Music
2016-11-29 01:19 - 2010-11-21 05:16 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Media Center Programs
2016-11-29 01:17 - 2016-11-29 01:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagwrn.xml
2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagerr.xml
2016-11-29 00:44 - 2016-11-29 22:06 - 00000000 ____D C:\ProgramData\Betternet
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files\TAP-Windows
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\OpenVPN
2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\Betternet
2016-11-29 00:42 - 2016-11-29 00:42 - 00001957 _____ C:\Users\Public\Desktop\Betternet.lnk
2016-11-29 00:36 - 2016-11-29 00:41 - 00000000 ____D C:\3f957e2320794f24809526cf84cb2f8c
2016-11-29 00:33 - 2016-11-29 01:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\Downloaded Installations
2016-11-29 00:27 - 2016-11-29 22:34 - 00002898 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Fernando)
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\IObit
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\ProductData
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\IObit
2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\Windows\IObit
2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2016-11-29 00:27 - 2016-11-29 00:27 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-11-29 00:27 - 2016-11-29 00:27 - 00003266 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-11-29 00:26 - 2016-11-29 21:17 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\IObit
2016-11-29 00:25 - 2016-11-29 01:26 - 00000000 ____D C:\Windows\System32\Tasks\Games
2016-11-29 00:23 - 2016-11-29 00:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\VirtualStore
2016-11-28 22:44 - 2016-11-28 22:45 - 00000000 ____D C:\511bf2d5d7d8e5d6f91d
2016-11-28 22:17 - 2016-11-28 22:17 - 01035272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-11-28 22:17 - 2016-11-28 22:17 - 00190032 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-11-28 22:17 - 2016-11-28 22:17 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-11-28 22:17 - 2016-11-28 22:17 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-11-28 22:16 - 2016-11-28 22:16 - 09891328 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-11-28 22:16 - 2016-11-28 22:16 - 04332032 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCRU64.exe
2016-11-28 22:16 - 2016-11-28 22:16 - 04156928 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2016-11-28 22:16 - 2016-11-28 22:16 - 00418784 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2016-11-28 22:16 - 2016-11-28 22:16 - 00084480 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-11-28 21:55 - 2016-11-28 21:55 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-11-28 21:49 - 2016-11-28 21:51 - 00000000 ____D C:\791a230c1b44e9d5783f
2016-11-19 23:21 - 2016-11-19 23:22 - 00000000 ____D C:\dab04c57cb929be571bac9
2016-11-19 23:21 - 2016-06-29 20:44 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 31626808 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 25402424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 19199216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 17302264 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 16774904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 14356952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 13523392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-11-19 23:21 - 2016-06-29 20:44 - 10672752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 10656296 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 10214760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 09006760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 08742032 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 08600904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03828968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03513400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03387080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 03067448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436869.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436869.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00984000 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00909248 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00771640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-11-19 23:21 - 2016-06-29 20:44 - 00039124 _____ C:\Windows\system32\nvinfo.pb
2016-11-19 23:21 - 2016-06-29 20:44 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-11-19 22:52 - 2016-11-19 22:52 - 00000000 ____D C:\Dell
2016-11-17 00:39 - 2016-11-17 00:41 - 00000000 ____D C:\0460bffc044008cb44106ceb02
2016-11-16 23:31 - 2016-11-16 23:46 - 00000000 __SHD C:\KRECYCLE
2016-11-16 22:51 - 2016-11-16 22:51 - 00000000 _____ C:\TOSTACK
2016-11-16 22:49 - 2016-11-17 00:15 - 00000002 _____ C:\END
2016-11-16 22:49 - 2016-11-16 22:50 - 00000000 ____D C:\uninst
2016-11-14 17:53 - 2016-11-16 22:48 - 00000000 ____D C:\Intel
2016-11-14 17:32 - 2016-11-14 17:32 - 00000000 __RHD C:\MSOCache
2016-11-14 15:46 - 2016-11-14 15:46 - 00000000 _SHDL C:\Arquivos de Programas
==================== Three Months Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-29 22:35 - 2009-07-14 03:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-29 22:35 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-11-29 22:29 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-29 22:08 - 2009-07-14 02:45 - 00303912 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-29 22:03 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\rescache
2016-11-29 22:01 - 2010-11-21 05:16 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\winrm
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\WCN
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\slmgr
2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\DVD Maker
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\com
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\oobe
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\MUI
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\migwiz
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\com
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\servicing
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\IME
2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-29 21:26 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\ShellNew
2016-11-29 21:26 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-29 20:32 - 2009-07-14 01:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-29 20:26 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Help
2016-11-29 07:15 - 2009-07-14 03:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-11-29 01:27 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Registration
2016-11-29 01:24 - 2009-07-14 02:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-29 01:22 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-29 01:19 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-29 01:17 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\CSC
==================== Files in the root of some directories =======
2016-11-29 20:42 - 2016-11-29 20:42 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Fernando\AppData\Local\Temp\DAEMON Tools Lite.exe
C:\Users\Fernando\AppData\Local\Temp\ose00000.exe
C:\Users\Fernando\AppData\Local\Temp\setup.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-29 01:16
==================== End of FRST.txt ============================