Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 18-02-2017 01
Executado por hrodwulf (administrador) em DESKTOP-GEQV5OK (18-02-2017 21:46:38)
Executando a partir de X:\Download
Perfis Carregados: hrodwulf (Perfis Disponíveis: defaultuser0 & hrodwulf)
Platform: Windows 10 Pro Versão 1607 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCAvSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Monitor.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.109.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Spotify Ltd) C:\Users\hrodwulf\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2017-02-08] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Google Update] => C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-16] (Google Inc.)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Akamai NetSession Interface] => C:\Users\hrodwulf\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) <===== ATENÇÃO
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Spotify Web Helper] => C:\Users\hrodwulf\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-08] (Spotify Ltd)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [DAEMON Tools Lite Automount] => X:\Programas\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCTray.exe [3023136 2016-12-26] (IObit)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\RunOnce: [Uninstall C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\RunOnce: [Uninstall C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1947872 2016-06-07] (Banco do Brasil)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 189.7.72.38 189.7.72.33
Tcpip\..\Interfaces\{1fcdeedc-5f1a-4187-ad96-ea9fc0e34bb7}: [DhcpNameServer] 189.7.72.38 189.7.72.33
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
BHO-x32: IObit Ads Removal -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Surfing Protection\Adblock\Adblock.dll [2016-06-23] (IObit)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: l3punmnu.default
FF ProfilePath: C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default [2017-02-18]
FF user.js: detected! => C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\user.js [2016-11-24]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2016-10-18]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\features\{0d927733-89a7-4610-a7c1-cd9a387182cc}\disableSHA1rollout@mozilla.org.xpi [2017-02-17]
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3127857118-3604569070-1096382218-1001: @tools.google.com/Google Update;version=3 -> C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3127857118-3604569070-1096382218-1001: @tools.google.com/Google Update;version=9 -> C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - X:\Programas\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR StartupUrls: Profile 1 -> "hxxps://www.codecademy.com/learn/all","hxxps://br.udacity.com/","hxxps://www.arduino.cc/en/Reference/HomePage","hxxps://www.circuitar.com.br/tutoriais/programacao-para-arduino-primeiros-passos/","hxxp://www.gvensino.com.br/","hxxp://caveiratech.com/forum/index.php?PHPSESSID=vvb2nc0su1lol246d990f11n85","hxxp://www.clubedohardware.com.br/forums/","hxxps://br.udacity.com/course/linux-command-line-basics--ud595/","hxxps://br.udacity.com/course/android-development-for-beginners--ud837/","hxxps://br.udacity.com/course/programming-foundations-with-python--ud036/","hxxps://br.udacity.com/course/how-to-use-git-and-github--ud775/"
CHR DefaultSearchKeyword: Profile 1 -> ad
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Default [2017-02-18]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Guest Profile [2016-12-14]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-02-18]
CHR Extension: (Google Apresentações) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Google Docs) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Google Drive) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (YouTube) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Planilhas do Google) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Documentos Google off-line) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-09]
CHR Extension: (Android SDK Search) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hgcbffeicehlpmgmnhnkjbjoldkfhoin [2017-02-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (ImTranslator: Tradutor, Dicionário, Voz) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2017-02-12]
CHR Extension: (Gmail) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-02-18]
CHR Extension: (Google Apresentações) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Google Docs) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Google Drive) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (YouTube) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Planilhas do Google) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Documentos Google off-line) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-10]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-23]
CHR Extension: (Gmail) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\System Profile [2017-02-18]
CHR HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\hrodwulf\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-12-11]
CHR HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe [1013024 2017-01-09] (IObit)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ascavsvc.exe [1931552 2017-01-06] (IObit)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2017-01-13] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; X:\Programas\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-07] (GAS Tecnologia)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-09] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Arquivo não assinado]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 VSStandardCollectorService140; X:\Programas\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [925744 2016-06-22] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-10-01] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-10-01] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [543184 2016-11-08] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77416 2017-01-20] ()
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2017-02-18] (GAS Tecnologia)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg64.sys [29816 2017-02-18] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-05-09] (GAS Tecnologia)
R2 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [183576 2016-10-27] (BitDefender LLC)
R1 HWiNFO32; C:\Windows\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-11-01] (REALiX(tm))
R2 IntelHaxm; C:\Windows\system32\DRIVERS\IntelHaxm.sys [91256 2016-11-11] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [176584 2017-02-18] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [110536 2017-02-18] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-02-18] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251848 2017-02-18] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2017-02-18] (Malwarebytes)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0cc477a6fec64d8c\nvlddmkm.sys [14516664 2017-02-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SensorsSimulatorDriver; C:\Windows\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [520032 2016-11-02] (BitDefender S.R.L.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-05-09] (GAS Tecnologia LTDA)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2017-02-18] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S3 cpuz138; \??\C:\Users\hrodwulf\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATENÇÃO
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-18 21:46 - 2017-02-18 21:46 - 00000000 ____D C:\FRST
2017-02-18 21:44 - 2017-02-18 21:44 - 00003038 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (hrodwulf)
2017-02-18 21:41 - 2017-02-18 21:41 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-18 20:51 - 2017-02-18 21:41 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-18 20:51 - 2017-02-18 20:51 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-18 20:51 - 2017-02-18 20:51 - 00001920 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-18 20:51 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-18 19:21 - 2017-02-18 19:21 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\CrashRpt
2017-02-17 09:14 - 2017-02-17 09:14 - 00000000 ____D C:\Users\hrodwulf\Desktop\for winxp
2017-02-16 08:07 - 2017-02-16 08:07 - 24522694 _____ C:\Users\hrodwulf\Desktop\QuizBraceleteAkmos.zip
2017-02-16 08:07 - 2017-02-16 08:07 - 00000000 ____D C:\Users\hrodwulf\Desktop\QuizBraceleteAkmos
2017-02-15 21:57 - 2017-02-15 21:57 - 00000000 ____D C:\Users\hrodwulf\ansel
2017-02-15 20:00 - 2017-02-15 20:00 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-15 20:00 - 2017-02-09 19:57 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-15 20:00 - 2017-01-25 21:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-15 20:00 - 2017-01-25 21:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-15 20:00 - 2017-01-25 21:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
2017-02-15 20:00 - 2017-01-25 21:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-15 19:59 - 2017-02-09 23:33 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 34979384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 28242488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 19007016 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 11122728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 04078008 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 03597128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 03168192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 02717752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01052096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00991288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00959424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00946456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00944224 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00910784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00721952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00719856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00618416 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00605120 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00573448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00483384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00447984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00043556 _____ C:\Windows\system32\nvinfo.pb
2017-02-15 19:21 - 2017-02-15 19:21 - 00000374 _____ C:\Users\hrodwulf\Desktop\winXP.txt
2017-02-15 10:49 - 2017-02-15 10:49 - 00000000 ____D C:\Users\hrodwulf\Desktop\ud839_Miwok-Starter-code
2017-02-15 10:48 - 2017-02-15 10:48 - 00108471 _____ C:\Users\hrodwulf\Desktop\ud839_Miwok-Starter-code.zip
2017-02-14 22:13 - 2017-02-15 19:59 - 00000000 ____D C:\Windows\LastGood
2017-02-14 22:13 - 2017-02-14 22:13 - 00004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003884 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-14 22:13 - 2017-01-20 15:39 - 01872320 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 01464768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00156608 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00057792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-02-14 22:13 - 2017-01-20 15:39 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-02-10 10:59 - 2017-02-10 10:59 - 00000000 ____D C:\Users\hrodwulf\Desktop\android
2017-02-10 10:58 - 2017-02-10 10:58 - 00000000 ____D C:\Users\hrodwulf\Desktop\filtroCafe
2017-02-10 10:58 - 2017-02-10 10:58 - 00000000 ____D C:\Users\hrodwulf\Desktop\fezCobra2
2017-02-10 10:57 - 2017-02-10 10:57 - 00001452 _____ C:\Users\hrodwulf\Desktop\N31.lnk
2017-02-10 10:53 - 2017-02-10 10:53 - 00000800 _____ C:\Users\hrodwulf\Desktop\redes.lnk
2017-02-08 22:23 - 2017-02-08 22:29 - 04015056 _____ C:\Users\hrodwulf\Desktop\adwcleaner_6.043.exe
2017-02-08 22:22 - 2017-02-08 22:22 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2017-02-08 22:22 - 2017-02-08 22:22 - 23547544 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 23447352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 17398616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 15202032 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 14057248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 13122576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 12988336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 10532048 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 07704619 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-02-08 22:22 - 2017-02-08 22:22 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 06198136 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05793520 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05593608 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05523456 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-02-08 22:22 - 2017-02-08 22:22 - 05347000 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03503048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03295064 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03204096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03201376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03014144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-02-08 22:22 - 2017-02-08 22:22 - 02995000 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02993712 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02828432 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02706856 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02444688 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02291304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02201088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02190984 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02050168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01959592 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01921016 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2017-02-08 22:22 - 2017-02-08 22:22 - 01780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01615656 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01516896 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01422920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01363096 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01360512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01334376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01213656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01186816 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01166152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01133584 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01003856 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01003320 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00999848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00965016 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00931616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00923736 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00865912 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00859216 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00850400 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00785608 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00721800 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00689872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00678176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00618176 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00601144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00588032 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00571376 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00514520 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00500552 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00499152 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00438688 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00428224 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00426568 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00366120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00330560 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00258864 _____ (TODO:) C:\Windows\system32\slprp64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00112488 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00105304 _____ C:\Windows\system32\audioLibVc.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Windows\system32\DAX3
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Windows\LastGood.Tmp
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Users\Todos os Usuários\Audyssey Labs
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\ProgramData\Audyssey Labs
2017-02-08 17:42 - 2017-02-08 17:42 - 00094870 _____ C:\Users\hrodwulf\Desktop\baixaderegistro.pdf
2017-01-26 21:34 - 2017-01-26 21:34 - 00003296 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-26 21:34 - 2017-01-26 21:34 - 00002382 _____ C:\Users\hrodwulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-26 08:21 - 2017-02-15 19:35 - 00000000 ____D C:\Users\hrodwulf\Desktop\programas
2017-01-25 21:13 - 2017-01-25 21:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-25 21:12 - 2017-01-25 21:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-25 21:09 - 2017-01-25 21:09 - 00322560 _____ C:\Windows\system32\vulkan-1-1-0-39-1.dll
2017-01-25 21:09 - 2017-01-25 21:09 - 00118272 _____ C:\Windows\system32\vulkaninfo-1-1-0-39-1.exe
2017-01-24 20:53 - 2016-12-21 04:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-01-24 20:53 - 2016-12-21 01:44 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2017-01-24 17:59 - 2017-01-23 21:00 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-01-24 17:59 - 2017-01-23 21:00 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-01-24 17:59 - 2017-01-23 21:00 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 01985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437849.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 01591352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437849.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-01-24 17:59 - 2017-01-20 13:38 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-01-23 17:30 - 2016-11-02 19:11 - 00520032 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2017-01-22 19:04 - 2017-02-18 21:41 - 00000000 ____D C:\Temp
2017-01-22 19:04 - 2017-01-22 19:04 - 00003620 _____ C:\Windows\System32\Tasks\Motorola Device Manager Update
2017-01-22 19:04 - 2017-01-22 19:04 - 00003444 _____ C:\Windows\System32\Tasks\Motorola Device Manager Initial Update
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Motorola Mobility
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files\Motorola Mobility LLC
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\Motorola Mobility
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\Motorola
2017-01-22 18:56 - 2017-01-22 18:56 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Motorola
2017-01-22 11:49 - 2016-10-27 13:54 - 00183576 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2017-01-22 11:46 - 2017-02-15 21:44 - 00002353 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 10.lnk
2017-01-22 11:46 - 2017-01-22 11:46 - 00003146 _____ C:\Windows\System32\Tasks\ASCU10_PerformanceMonitor
2017-01-22 11:46 - 2017-01-22 11:46 - 00002514 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_hrodwulf
2017-01-22 11:46 - 2017-01-22 11:46 - 00002482 _____ C:\Windows\System32\Tasks\ASCU10_SkipUac_hrodwulf
2017-01-22 11:46 - 2017-01-22 11:46 - 00000316 _____ C:\Windows\Tasks\Uninstaller_SkipUac_hrodwulf.job
2017-01-22 11:46 - 2017-01-22 11:46 - 00000294 _____ C:\Windows\Tasks\ASCU10_SkipUac_hrodwulf.job
2017-01-19 18:36 - 2017-01-19 18:36 - 00000034 _____ C:\Users\hrodwulf\AppData\Roaming\AdobeWLCMCache.dat
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-18 21:42 - 2016-09-03 21:29 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-02-18 21:42 - 2016-09-03 21:29 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-18 21:41 - 2016-09-28 11:42 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00029816 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg64.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\ProgramData\GbPlugin
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2017-02-18 21:41 - 2016-08-21 15:26 - 00000000 __SHD C:\Users\hrodwulf\IntelGraphicsProfiles
2017-02-18 21:41 - 2016-08-20 15:03 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-18 21:41 - 2016-07-16 03:04 - 01048576 _____ C:\Windows\system32\config\BBI
2017-02-18 21:40 - 2016-12-22 11:21 - 00000000 ____D C:\AdwCleaner
2017-02-18 21:39 - 2016-08-25 00:18 - 00004190 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DAC1A905-6343-4AC6-90BB-81E821266E15}
2017-02-18 21:32 - 2016-11-16 23:47 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\Mozilla
2017-02-18 21:31 - 2016-08-20 15:03 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-02-18 21:04 - 2016-08-20 15:08 - 03130360 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-18 21:04 - 2016-07-16 20:10 - 00846368 _____ C:\Windows\system32\prfh0416.dat
2017-02-18 21:04 - 2016-07-16 20:10 - 00475680 _____ C:\Windows\system32\prfc0416.dat
2017-02-18 20:47 - 2016-08-20 15:31 - 00000000 ____D C:\Users\hrodwulf
2017-02-18 18:24 - 2016-10-01 22:26 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\DAEMON Tools Lite
2017-02-18 17:22 - 2016-12-09 21:24 - 00000000 ____D C:\Users\hrodwulf\.android
2017-02-18 16:20 - 2017-01-18 21:04 - 00000000 ____D C:\Users\hrodwulf\AndroidStudioProjects
2017-02-18 15:04 - 2016-07-16 08:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-18 15:04 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\AppReadiness
2017-02-18 15:00 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\LiveKernelReports
2017-02-17 22:12 - 2016-10-16 21:10 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2017-02-17 22:12 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\ProductData
2017-02-17 11:08 - 2016-07-16 08:45 - 00000000 ____D C:\Windows\INF
2017-02-16 07:10 - 2016-11-02 11:30 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\IIIQF
2017-02-15 21:56 - 2016-10-01 21:40 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\uTorrent
2017-02-15 19:56 - 2016-12-17 01:47 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\uTorrent
2017-02-15 19:35 - 2016-11-30 20:26 - 00000000 ____D C:\Users\hrodwulf\Desktop\rodolfoAlmeida_2769114976
2017-02-15 19:30 - 2016-12-23 14:51 - 00000000 ____D C:\Users\hrodwulf\Desktop\solarEnergy
2017-02-14 23:08 - 2016-08-20 16:47 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:46 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:40 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:40 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-13 18:18 - 2016-10-01 14:21 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2017-02-13 18:18 - 2016-10-01 14:21 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-02-12 23:01 - 2017-01-18 21:04 - 00000000 ____D C:\Users\hrodwulf\.gradle
2017-02-11 11:02 - 2016-08-21 01:51 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\Spotify
2017-02-11 09:46 - 2016-08-21 01:50 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Spotify
2017-02-10 10:50 - 2016-08-25 00:06 - 00000000 ___RD C:\Users\hrodwulf\Google Drive
2017-02-10 08:01 - 2016-08-20 17:04 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\CrashDumps
2017-02-09 20:13 - 2016-12-14 17:37 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-09 19:57 - 2016-12-14 17:38 - 07791217 _____ C:\Windows\system32\nvcoproc.bin
2017-02-09 19:57 - 2016-12-14 17:38 - 06403640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-02-08 22:22 - 2016-11-08 00:12 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-02-08 22:22 - 2016-11-08 00:12 - 00000000 ____D C:\Windows\system32\DAX2
2017-02-08 22:22 - 2016-11-01 22:57 - 00002237 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2017-02-08 22:22 - 2016-10-16 21:10 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\ProductData
2017-02-08 22:20 - 2016-08-20 15:32 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\Packages
2017-02-08 22:15 - 2016-10-15 01:14 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\MPC-HC
2017-02-07 09:24 - 2016-09-30 10:05 - 00001456 _____ C:\Users\hrodwulf\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-02-06 21:43 - 2016-08-21 18:39 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-06 14:18 - 2016-11-16 12:54 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\PhotoScape
2017-02-04 09:04 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\system32\NDF
2017-01-26 22:52 - 2016-08-20 15:33 - 00000000 ___RD C:\Users\hrodwulf\OneDrive
2017-01-25 01:21 - 2016-07-16 08:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-22 19:04 - 2017-01-13 22:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-01-22 19:04 - 2016-08-20 15:32 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\VirtualStore
2017-01-22 11:47 - 2016-10-16 21:10 - 00000000 ____D C:\Program Files (x86)\IObit
2017-01-22 11:46 - 2016-11-01 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate
2017-01-22 11:46 - 2016-10-16 21:10 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\IObit
2017-01-22 11:46 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-01-20 15:39 - 2016-09-11 23:16 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-01-20 15:39 - 2016-09-11 23:16 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-01-20 15:39 - 2016-09-11 23:16 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-01-20 13:38 - 2016-08-20 16:40 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-01-20 13:38 - 2016-07-16 20:16 - 00420408 _____ (Khronos Group) C:\Windows\SysWOW64\opencl.dll
2017-01-20 10:36 - 2017-01-10 22:34 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
==================== Arquivos na raiz de alguns diretórios =======
2017-01-19 18:36 - 2017-01-19 18:36 - 0000034 _____ () C:\Users\hrodwulf\AppData\Roaming\AdobeWLCMCache.dat
2016-09-30 10:05 - 2017-02-07 09:24 - 0001456 _____ () C:\Users\hrodwulf\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2016-11-08 00:12 - 2016-11-08 00:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Arquivos para serem movidos ou deletados:
====================
C:\Users\hrodwulf\AppData\Local\Akamai\netsession_win.exe
Alguns arquivos em TEMP:
====================
2017-02-18 19:03 - 2017-02-18 19:03 - 12481174 _____ ( ) C:\Users\hrodwulf\AppData\Local\Temp\jg3.6.0.exe
2017-02-18 19:03 - 2017-02-18 19:03 - 1236255 _____ (VideoBox ) C:\Users\hrodwulf\AppData\Local\Temp\videobox.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-02-15 22:21
==================== Fim de FRST.txt ============================
Executado por hrodwulf (administrador) em DESKTOP-GEQV5OK (18-02-2017 21:46:38)
Executando a partir de X:\Download
Perfis Carregados: hrodwulf (Perfis Disponíveis: defaultuser0 & hrodwulf)
Platform: Windows 10 Pro Versão 1607 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCAvSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Monitor.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.109.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Spotify Ltd) C:\Users\hrodwulf\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2017-02-08] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Google Update] => C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-16] (Google Inc.)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Akamai NetSession Interface] => C:\Users\hrodwulf\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) <===== ATENÇÃO
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Spotify Web Helper] => C:\Users\hrodwulf\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-08] (Spotify Ltd)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [DAEMON Tools Lite Automount] => X:\Programas\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCTray.exe [3023136 2016-12-26] (IObit)
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\RunOnce: [Uninstall C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\RunOnce: [Uninstall C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hrodwulf\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1947872 2016-06-07] (Banco do Brasil)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 189.7.72.38 189.7.72.33
Tcpip\..\Interfaces\{1fcdeedc-5f1a-4187-ad96-ea9fc0e34bb7}: [DhcpNameServer] 189.7.72.38 189.7.72.33
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
BHO-x32: IObit Ads Removal -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Surfing Protection\Adblock\Adblock.dll [2016-06-23] (IObit)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: l3punmnu.default
FF ProfilePath: C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default [2017-02-18]
FF user.js: detected! => C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\user.js [2016-11-24]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2016-10-18]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\hrodwulf\AppData\Roaming\Mozilla\Firefox\Profiles\l3punmnu.default\features\{0d927733-89a7-4610-a7c1-cd9a387182cc}\disableSHA1rollout@mozilla.org.xpi [2017-02-17]
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3127857118-3604569070-1096382218-1001: @tools.google.com/Google Update;version=3 -> C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3127857118-3604569070-1096382218-1001: @tools.google.com/Google Update;version=9 -> C:\Users\hrodwulf\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - X:\Programas\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR StartupUrls: Profile 1 -> "hxxps://www.codecademy.com/learn/all","hxxps://br.udacity.com/","hxxps://www.arduino.cc/en/Reference/HomePage","hxxps://www.circuitar.com.br/tutoriais/programacao-para-arduino-primeiros-passos/","hxxp://www.gvensino.com.br/","hxxp://caveiratech.com/forum/index.php?PHPSESSID=vvb2nc0su1lol246d990f11n85","hxxp://www.clubedohardware.com.br/forums/","hxxps://br.udacity.com/course/linux-command-line-basics--ud595/","hxxps://br.udacity.com/course/android-development-for-beginners--ud837/","hxxps://br.udacity.com/course/programming-foundations-with-python--ud036/","hxxps://br.udacity.com/course/how-to-use-git-and-github--ud775/"
CHR DefaultSearchKeyword: Profile 1 -> ad
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Default [2017-02-18]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Guest Profile [2016-12-14]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-02-18]
CHR Extension: (Google Apresentações) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Google Docs) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Google Drive) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (YouTube) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Planilhas do Google) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Documentos Google off-line) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-09]
CHR Extension: (Android SDK Search) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hgcbffeicehlpmgmnhnkjbjoldkfhoin [2017-02-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (ImTranslator: Tradutor, Dicionário, Voz) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2017-02-12]
CHR Extension: (Gmail) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-02-18]
CHR Extension: (Google Apresentações) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Google Docs) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Google Drive) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (YouTube) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Planilhas do Google) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Documentos Google off-line) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-10]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-23]
CHR Extension: (Gmail) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\hrodwulf\AppData\Local\Google\Chrome\User Data\System Profile [2017-02-18]
CHR HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\hrodwulf\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-12-11]
CHR HKU\S-1-5-21-3127857118-3604569070-1096382218-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe [1013024 2017-01-09] (IObit)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ascavsvc.exe [1931552 2017-01-06] (IObit)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2017-01-13] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; X:\Programas\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-07] (GAS Tecnologia)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-09] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Arquivo não assinado]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 VSStandardCollectorService140; X:\Programas\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [925744 2016-06-22] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-10-01] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-10-01] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [543184 2016-11-08] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77416 2017-01-20] ()
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2017-02-18] (GAS Tecnologia)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg64.sys [29816 2017-02-18] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-05-09] (GAS Tecnologia)
R2 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [183576 2016-10-27] (BitDefender LLC)
R1 HWiNFO32; C:\Windows\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-11-01] (REALiX(tm))
R2 IntelHaxm; C:\Windows\system32\DRIVERS\IntelHaxm.sys [91256 2016-11-11] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [176584 2017-02-18] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [110536 2017-02-18] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-02-18] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251848 2017-02-18] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2017-02-18] (Malwarebytes)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0cc477a6fec64d8c\nvlddmkm.sys [14516664 2017-02-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SensorsSimulatorDriver; C:\Windows\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [520032 2016-11-02] (BitDefender S.R.L.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-05-09] (GAS Tecnologia LTDA)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2017-02-18] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S3 cpuz138; \??\C:\Users\hrodwulf\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATENÇÃO
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-18 21:46 - 2017-02-18 21:46 - 00000000 ____D C:\FRST
2017-02-18 21:44 - 2017-02-18 21:44 - 00003038 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (hrodwulf)
2017-02-18 21:41 - 2017-02-18 21:41 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-18 20:51 - 2017-02-18 21:41 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-18 20:51 - 2017-02-18 21:41 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-18 20:51 - 2017-02-18 20:51 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-18 20:51 - 2017-02-18 20:51 - 00001920 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-18 20:51 - 2017-02-18 20:51 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-18 20:51 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-18 19:21 - 2017-02-18 19:21 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\CrashRpt
2017-02-17 09:14 - 2017-02-17 09:14 - 00000000 ____D C:\Users\hrodwulf\Desktop\for winxp
2017-02-16 08:07 - 2017-02-16 08:07 - 24522694 _____ C:\Users\hrodwulf\Desktop\QuizBraceleteAkmos.zip
2017-02-16 08:07 - 2017-02-16 08:07 - 00000000 ____D C:\Users\hrodwulf\Desktop\QuizBraceleteAkmos
2017-02-15 21:57 - 2017-02-15 21:57 - 00000000 ____D C:\Users\hrodwulf\ansel
2017-02-15 20:00 - 2017-02-15 20:00 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-15 20:00 - 2017-02-09 19:57 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-15 20:00 - 2017-01-25 21:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-15 20:00 - 2017-01-25 21:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-15 20:00 - 2017-01-25 21:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
2017-02-15 20:00 - 2017-01-25 21:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-15 19:59 - 2017-02-09 23:33 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 34979384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 28242488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 19007016 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 11122728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 04078008 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 03597128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 03168192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 02717752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 01052096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00991288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00959424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00946456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00944224 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00910784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00721952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00719856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00618416 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00605120 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00573448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00483384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00447984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-02-15 19:59 - 2017-02-09 23:33 - 00043556 _____ C:\Windows\system32\nvinfo.pb
2017-02-15 19:21 - 2017-02-15 19:21 - 00000374 _____ C:\Users\hrodwulf\Desktop\winXP.txt
2017-02-15 10:49 - 2017-02-15 10:49 - 00000000 ____D C:\Users\hrodwulf\Desktop\ud839_Miwok-Starter-code
2017-02-15 10:48 - 2017-02-15 10:48 - 00108471 _____ C:\Users\hrodwulf\Desktop\ud839_Miwok-Starter-code.zip
2017-02-14 22:13 - 2017-02-15 19:59 - 00000000 ____D C:\Windows\LastGood
2017-02-14 22:13 - 2017-02-14 22:13 - 00004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003884 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 22:13 - 2017-02-14 22:13 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-14 22:13 - 2017-01-20 15:39 - 01872320 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 01464768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00156608 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-02-14 22:13 - 2017-01-20 15:39 - 00057792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-02-14 22:13 - 2017-01-20 15:39 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-02-10 10:59 - 2017-02-10 10:59 - 00000000 ____D C:\Users\hrodwulf\Desktop\android
2017-02-10 10:58 - 2017-02-10 10:58 - 00000000 ____D C:\Users\hrodwulf\Desktop\filtroCafe
2017-02-10 10:58 - 2017-02-10 10:58 - 00000000 ____D C:\Users\hrodwulf\Desktop\fezCobra2
2017-02-10 10:57 - 2017-02-10 10:57 - 00001452 _____ C:\Users\hrodwulf\Desktop\N31.lnk
2017-02-10 10:53 - 2017-02-10 10:53 - 00000800 _____ C:\Users\hrodwulf\Desktop\redes.lnk
2017-02-08 22:23 - 2017-02-08 22:29 - 04015056 _____ C:\Users\hrodwulf\Desktop\adwcleaner_6.043.exe
2017-02-08 22:22 - 2017-02-08 22:22 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2017-02-08 22:22 - 2017-02-08 22:22 - 23547544 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 23447352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 17398616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 15202032 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 14057248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 13122576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 12988336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 10532048 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 07704619 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-02-08 22:22 - 2017-02-08 22:22 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 06198136 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05793520 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05593608 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 05523456 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-02-08 22:22 - 2017-02-08 22:22 - 05347000 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03503048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03295064 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03204096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03201376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 03014144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-02-08 22:22 - 2017-02-08 22:22 - 02995000 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02993712 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02828432 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02706856 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02444688 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02291304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02201088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02190984 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 02050168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01959592 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01921016 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2017-02-08 22:22 - 2017-02-08 22:22 - 01780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01615656 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01516896 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01422920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01363096 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01360512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01334376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01213656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01186816 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01166152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01133584 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01003856 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 01003320 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00999848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00965016 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00931616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00923736 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00865912 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00859216 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00850400 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00785608 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00721800 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00689872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00678176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00618176 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00601144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00588032 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00571376 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00514520 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00500552 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00499152 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00438688 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00428224 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00426568 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00366120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00330560 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00258864 _____ (TODO:
2017-02-08 22:22 - 2017-02-08 22:22 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00112488 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00105304 _____ C:\Windows\system32\audioLibVc.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Windows\system32\DAX3
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Windows\LastGood.Tmp
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\Users\Todos os Usuários\Audyssey Labs
2017-02-08 22:22 - 2017-02-08 22:22 - 00000000 ____D C:\ProgramData\Audyssey Labs
2017-02-08 17:42 - 2017-02-08 17:42 - 00094870 _____ C:\Users\hrodwulf\Desktop\baixaderegistro.pdf
2017-01-26 21:34 - 2017-01-26 21:34 - 00003296 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-26 21:34 - 2017-01-26 21:34 - 00002382 _____ C:\Users\hrodwulf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-26 08:21 - 2017-02-15 19:35 - 00000000 ____D C:\Users\hrodwulf\Desktop\programas
2017-01-25 21:13 - 2017-01-25 21:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-25 21:12 - 2017-01-25 21:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-25 21:09 - 2017-01-25 21:09 - 00322560 _____ C:\Windows\system32\vulkan-1-1-0-39-1.dll
2017-01-25 21:09 - 2017-01-25 21:09 - 00118272 _____ C:\Windows\system32\vulkaninfo-1-1-0-39-1.exe
2017-01-24 20:53 - 2016-12-21 04:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-01-24 20:53 - 2016-12-21 01:44 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2017-01-24 17:59 - 2017-01-23 21:00 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-01-24 17:59 - 2017-01-23 21:00 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-01-24 17:59 - 2017-01-23 21:00 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 01985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437849.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 01591352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437849.dll
2017-01-24 17:59 - 2017-01-20 13:38 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-01-24 17:59 - 2017-01-20 13:38 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-01-23 17:30 - 2016-11-02 19:11 - 00520032 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2017-01-22 19:04 - 2017-02-18 21:41 - 00000000 ____D C:\Temp
2017-01-22 19:04 - 2017-01-22 19:04 - 00003620 _____ C:\Windows\System32\Tasks\Motorola Device Manager Update
2017-01-22 19:04 - 2017-01-22 19:04 - 00003444 _____ C:\Windows\System32\Tasks\Motorola Device Manager Initial Update
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Motorola Mobility
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files\Motorola Mobility LLC
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\Motorola Mobility
2017-01-22 19:04 - 2017-01-22 19:04 - 00000000 ____D C:\Program Files (x86)\Motorola
2017-01-22 18:56 - 2017-01-22 18:56 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Motorola
2017-01-22 11:49 - 2016-10-27 13:54 - 00183576 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2017-01-22 11:46 - 2017-02-15 21:44 - 00002353 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 10.lnk
2017-01-22 11:46 - 2017-01-22 11:46 - 00003146 _____ C:\Windows\System32\Tasks\ASCU10_PerformanceMonitor
2017-01-22 11:46 - 2017-01-22 11:46 - 00002514 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_hrodwulf
2017-01-22 11:46 - 2017-01-22 11:46 - 00002482 _____ C:\Windows\System32\Tasks\ASCU10_SkipUac_hrodwulf
2017-01-22 11:46 - 2017-01-22 11:46 - 00000316 _____ C:\Windows\Tasks\Uninstaller_SkipUac_hrodwulf.job
2017-01-22 11:46 - 2017-01-22 11:46 - 00000294 _____ C:\Windows\Tasks\ASCU10_SkipUac_hrodwulf.job
2017-01-19 18:36 - 2017-01-19 18:36 - 00000034 _____ C:\Users\hrodwulf\AppData\Roaming\AdobeWLCMCache.dat
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-18 21:42 - 2016-09-03 21:29 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-02-18 21:42 - 2016-09-03 21:29 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-18 21:41 - 2016-09-28 11:42 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00029816 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg64.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\ProgramData\GbPlugin
2017-02-18 21:41 - 2016-09-28 11:41 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2017-02-18 21:41 - 2016-08-21 15:26 - 00000000 __SHD C:\Users\hrodwulf\IntelGraphicsProfiles
2017-02-18 21:41 - 2016-08-20 15:03 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-18 21:41 - 2016-07-16 03:04 - 01048576 _____ C:\Windows\system32\config\BBI
2017-02-18 21:40 - 2016-12-22 11:21 - 00000000 ____D C:\AdwCleaner
2017-02-18 21:39 - 2016-08-25 00:18 - 00004190 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DAC1A905-6343-4AC6-90BB-81E821266E15}
2017-02-18 21:32 - 2016-11-16 23:47 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\Mozilla
2017-02-18 21:31 - 2016-08-20 15:03 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-02-18 21:04 - 2016-08-20 15:08 - 03130360 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-18 21:04 - 2016-07-16 20:10 - 00846368 _____ C:\Windows\system32\prfh0416.dat
2017-02-18 21:04 - 2016-07-16 20:10 - 00475680 _____ C:\Windows\system32\prfc0416.dat
2017-02-18 20:47 - 2016-08-20 15:31 - 00000000 ____D C:\Users\hrodwulf
2017-02-18 18:24 - 2016-10-01 22:26 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\DAEMON Tools Lite
2017-02-18 17:22 - 2016-12-09 21:24 - 00000000 ____D C:\Users\hrodwulf\.android
2017-02-18 16:20 - 2017-01-18 21:04 - 00000000 ____D C:\Users\hrodwulf\AndroidStudioProjects
2017-02-18 15:04 - 2016-07-16 08:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-18 15:04 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\AppReadiness
2017-02-18 15:00 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\LiveKernelReports
2017-02-17 22:12 - 2016-10-16 21:10 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2017-02-17 22:12 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\ProductData
2017-02-17 11:08 - 2016-07-16 08:45 - 00000000 ____D C:\Windows\INF
2017-02-16 07:10 - 2016-11-02 11:30 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\IIIQF
2017-02-15 21:56 - 2016-10-01 21:40 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\uTorrent
2017-02-15 19:56 - 2016-12-17 01:47 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\uTorrent
2017-02-15 19:35 - 2016-11-30 20:26 - 00000000 ____D C:\Users\hrodwulf\Desktop\rodolfoAlmeida_2769114976
2017-02-15 19:30 - 2016-12-23 14:51 - 00000000 ____D C:\Users\hrodwulf\Desktop\solarEnergy
2017-02-14 23:08 - 2016-08-20 16:47 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:46 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:40 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-14 22:13 - 2016-08-20 16:40 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-13 18:18 - 2016-10-01 14:21 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2017-02-13 18:18 - 2016-10-01 14:21 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-02-12 23:01 - 2017-01-18 21:04 - 00000000 ____D C:\Users\hrodwulf\.gradle
2017-02-11 11:02 - 2016-08-21 01:51 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\Spotify
2017-02-11 09:46 - 2016-08-21 01:50 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\Spotify
2017-02-10 10:50 - 2016-08-25 00:06 - 00000000 ___RD C:\Users\hrodwulf\Google Drive
2017-02-10 08:01 - 2016-08-20 17:04 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\CrashDumps
2017-02-09 20:13 - 2016-12-14 17:37 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-09 19:57 - 2016-12-14 17:38 - 07791217 _____ C:\Windows\system32\nvcoproc.bin
2017-02-09 19:57 - 2016-12-14 17:38 - 06403640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-09 19:57 - 2016-12-14 17:38 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-02-08 22:22 - 2016-11-08 00:12 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-02-08 22:22 - 2016-11-08 00:12 - 00000000 ____D C:\Windows\system32\DAX2
2017-02-08 22:22 - 2016-11-01 22:57 - 00002237 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2017-02-08 22:22 - 2016-10-16 21:10 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\ProductData
2017-02-08 22:20 - 2016-08-20 15:32 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\Packages
2017-02-08 22:15 - 2016-10-15 01:14 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\MPC-HC
2017-02-07 09:24 - 2016-09-30 10:05 - 00001456 _____ C:\Users\hrodwulf\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-02-06 21:43 - 2016-08-21 18:39 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-06 14:18 - 2016-11-16 12:54 - 00000000 ____D C:\Users\hrodwulf\AppData\Roaming\PhotoScape
2017-02-04 09:04 - 2016-07-16 08:47 - 00000000 ____D C:\Windows\system32\NDF
2017-01-26 22:52 - 2016-08-20 15:33 - 00000000 ___RD C:\Users\hrodwulf\OneDrive
2017-01-25 01:21 - 2016-07-16 08:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-22 19:04 - 2017-01-13 22:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-01-22 19:04 - 2016-08-20 15:32 - 00000000 ____D C:\Users\hrodwulf\AppData\Local\VirtualStore
2017-01-22 11:47 - 2016-10-16 21:10 - 00000000 ____D C:\Program Files (x86)\IObit
2017-01-22 11:46 - 2016-11-01 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate
2017-01-22 11:46 - 2016-10-16 21:10 - 00000000 ____D C:\Users\hrodwulf\AppData\LocalLow\IObit
2017-01-22 11:46 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-01-20 15:39 - 2016-09-11 23:16 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-01-20 15:39 - 2016-09-11 23:16 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-01-20 15:39 - 2016-09-11 23:16 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-01-20 13:38 - 2016-08-20 16:40 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-01-20 13:38 - 2016-07-16 20:16 - 00420408 _____ (Khronos Group) C:\Windows\SysWOW64\opencl.dll
2017-01-20 10:36 - 2017-01-10 22:34 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
==================== Arquivos na raiz de alguns diretórios =======
2017-01-19 18:36 - 2017-01-19 18:36 - 0000034 _____ () C:\Users\hrodwulf\AppData\Roaming\AdobeWLCMCache.dat
2016-09-30 10:05 - 2017-02-07 09:24 - 0001456 _____ () C:\Users\hrodwulf\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2016-11-08 00:12 - 2016-11-08 00:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Arquivos para serem movidos ou deletados:
====================
C:\Users\hrodwulf\AppData\Local\Akamai\netsession_win.exe
Alguns arquivos em TEMP:
====================
2017-02-18 19:03 - 2017-02-18 19:03 - 12481174 _____ ( ) C:\Users\hrodwulf\AppData\Local\Temp\jg3.6.0.exe
2017-02-18 19:03 - 2017-02-18 19:03 - 1236255 _____ (VideoBox ) C:\Users\hrodwulf\AppData\Local\Temp\videobox.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-02-15 22:21
==================== Fim de FRST.txt ============================