Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 08-03-2017
Executado por CreatoJogos (administrador) em CREATOJOGOS-PC (10-03-2017 17:34:01)
Executando a partir de C:\Users\CreatoJogos\Downloads
Perfis Carregados: CreatoJogos (Perfis Disponíveis: CreatoJogos)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\CreatoJogos\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2183752 2017-02-22] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600320 2015-08-13] (Razer Inc)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-09] (Valve Corporation)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\Run: [GoogleChromeAutoLaunch_EA9DF7369BCD9C368FA9B6B2D7AC6C45] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504 2017-02-01] (Google Inc.)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\MountPoints2: {ba73ce4f-b425-11e6-bf68-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-11-30] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{659F9A4F-2E73-4909-82C6-01938A9B0256}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2836930976-4195469595-2766873392-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2836930976-4195469595-2766873392-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll [2017-02-22] (AVG)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [Nenhum Arquivo]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR Profile: C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default [2017-03-10]
CHR Extension: (Google Apresentações) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-29]
CHR Extension: (Google Docs) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-29]
CHR Extension: (Google Drive) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-29]
CHR Extension: (YouTube) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-29]
CHR Extension: (Steam Inventory Helper) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-03-10]
CHR Extension: (Planilhas do Google) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-29]
CHR Extension: (Documentos Google off-line) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-29]
CHR Extension: (Aston Martin DBC Concept - Full HD - Axlg) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipjmkadfmnholahnobfgeboogdneacm [2016-11-30]
CHR Extension: (SteamWizard) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kojolejmgolbhakghocbgjemjgbmcjig [2017-02-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2017-01-09] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2017-01-10] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2016-12-12] (EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-02-10] (Hi-Rez Studios) [Arquivo não assinado]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-05] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-05] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-01-05] (NVIDIA Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2016-11-29] (VIA Technologies, Inc.)
R2 vToolbarUpdater40.3.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe [1354312 2017-02-22] (AVG Secure Search)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-02-22] ()
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
U5 EMAC Secure; C:\Users\CreatoJogos\AppData\Local\Temp\GCSecure.sys [794248 2017-02-01] (Gamers Club)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-29] (REALiX(tm))
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-01-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-05] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [59448 2017-01-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [52248 2016-10-30] (Razer Inc)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-10 17:34 - 2017-03-10 17:34 - 00015975 _____ C:\Users\CreatoJogos\Downloads\FRST.txt
2017-03-10 17:33 - 2017-03-10 17:34 - 00000000 ____D C:\FRST
2017-03-10 17:33 - 2017-03-10 17:33 - 02423808 _____ (Farbar) C:\Users\CreatoJogos\Downloads\FRST64.exe
2017-03-10 17:20 - 2017-03-10 17:20 - 02729024 _____ (DLL-Files.com Client ) C:\Users\CreatoJogos\Downloads\clientsetup_fde-0.exe
2017-03-10 17:13 - 2017-03-10 17:13 - 00001142 _____ C:\Users\CreatoJogos\Desktop\TeamSpeak 3 Client.lnk
2017-03-10 17:13 - 2017-03-10 17:13 - 00001100 _____ C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-03-10 17:12 - 2017-03-10 17:13 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\TeamSpeak 3
2017-03-10 17:09 - 2017-03-10 17:11 - 77765040 _____ (TeamSpeak Systems GmbH) C:\Users\CreatoJogos\Downloads\TeamSpeak3-Client-win64-3.1.1.1 (1).exe
2017-03-10 16:56 - 2017-03-10 16:56 - 15261408 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vc_redist.x64 (2).exe
2017-03-10 16:30 - 2017-03-10 16:31 - 14749120 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vc_redist.x64 (1).exe
2017-03-10 16:27 - 2017-03-10 16:28 - 08932000 _____ (Solvusoft Corporation ) C:\Users\CreatoJogos\Downloads\Setup_WinThruster_2016 (1).exe
2017-03-10 16:27 - 2017-03-10 16:27 - 08932000 _____ (Solvusoft Corporation ) C:\Users\CreatoJogos\Downloads\Setup_WinThruster_2016.exe
2017-03-10 15:15 - 2017-03-10 15:15 - 00000000 ____D C:\e5773b2cb33477d54dde76b60043
2017-03-10 15:14 - 2017-03-10 15:15 - 01034556 _____ C:\Users\CreatoJogos\Downloads\Windows6.1-KB2999226-x64.msu
2017-03-10 15:06 - 2017-03-10 15:07 - 77765040 _____ (TeamSpeak Systems GmbH) C:\Users\CreatoJogos\Downloads\TeamSpeak3-Client-win64-3.1.1.1.exe
2017-03-07 11:53 - 2017-03-10 17:25 - 00002910 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (CreatoJogos)
2017-03-03 23:19 - 2017-03-04 15:37 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\discord
2017-03-03 23:19 - 2017-03-03 23:19 - 00002156 _____ C:\Users\CreatoJogos\Desktop\Discord.lnk
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\SquirrelTemp
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\Discord
2017-03-03 23:16 - 2017-03-03 23:18 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\CreatoJogos\Downloads\DiscordSetup.exe
2017-02-23 10:19 - 2017-02-23 10:26 - 00000000 ____D C:\Fraps
2017-02-23 10:19 - 2017-02-23 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-02-23 10:18 - 2017-02-23 10:18 - 02496800 _____ (Beepa Pty Ltd) C:\Users\CreatoJogos\Downloads\setup.exe
2017-02-20 12:35 - 2017-03-10 14:09 - 00000000 ____D C:\Users\CreatoJogos\Desktop\Pessoal
2017-02-20 09:10 - 2017-02-20 09:10 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários (2).odt
2017-02-20 09:09 - 2017-02-20 09:09 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários (1).odt
2017-02-20 09:07 - 2017-02-20 09:07 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (6).pdf
2017-02-20 08:55 - 2017-02-20 08:55 - 00461528 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf (1).html
2017-02-20 08:51 - 2017-02-20 08:51 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários.odt
2017-02-20 08:50 - 2017-02-20 08:50 - 00461528 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf.html
2017-02-20 08:50 - 2017-02-20 08:50 - 00395699 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (5).pdf
2017-02-20 08:48 - 2017-02-20 08:48 - 00032657 _____ C:\Users\CreatoJogos\Downloads\Monografia (Parte I).odt
2017-02-20 08:19 - 2017-02-20 08:19 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (4).pdf
2017-02-20 08:18 - 2017-02-20 08:18 - 00031796 _____ C:\Users\CreatoJogos\Downloads\Formatação de trabalhos acadêmicos no LibreOffice.odt
2017-02-19 16:20 - 2017-02-19 16:20 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (3).pdf
2017-02-19 16:13 - 2017-02-19 16:13 - 00241691 _____ C:\Users\CreatoJogos\Downloads\Monografia - Metodologia de Pesquisa.odt
2017-02-19 13:28 - 2017-02-19 13:28 - 02813794 _____ C:\Users\CreatoJogos\Downloads\a98c4a-ZombiesMod (1.0.2d).zip
2017-02-19 13:04 - 2017-02-19 13:04 - 07194312 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vcredist_x64 (1).exe
2017-02-19 13:04 - 2017-02-19 13:04 - 01286048 _____ C:\Users\CreatoJogos\Downloads\ScriptHookV_1.0.944.2.zip
2017-02-19 13:04 - 2017-02-19 13:04 - 00748517 _____ C:\Users\CreatoJogos\Downloads\ScriptHookVDotNet.zip
2017-02-19 13:04 - 2017-02-19 13:04 - 00032961 _____ C:\Users\CreatoJogos\Downloads\NativeUI.zip
2017-02-19 13:03 - 2017-02-19 13:05 - 69999448 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
2017-02-17 10:41 - 2017-02-17 10:41 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (2).pdf
2017-02-16 16:20 - 2017-02-16 16:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2017-02-16 16:17 - 2017-02-16 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2017-02-16 16:16 - 2017-02-16 16:17 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2017-02-16 16:01 - 2017-02-16 16:01 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (1).pdf
2017-02-16 15:54 - 2017-02-16 15:54 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf
2017-02-16 15:52 - 2017-02-16 15:52 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\LibreOffice
2017-02-16 15:28 - 2017-02-16 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.3
2017-02-16 15:27 - 2017-02-16 15:28 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2017-02-16 14:35 - 2017-02-16 14:39 - 221245440 _____ C:\Users\CreatoJogos\Downloads\LibreOffice_5.3.0_Win_x86.msi
2017-02-16 13:38 - 2017-02-16 13:38 - 00000040 ____H C:\D77FC8D2A458
2017-02-16 13:38 - 2017-02-16 13:38 - 00000000 ____D C:\Users\CreatoJogos\AppData\LocalLow\Adobe
2017-02-16 13:32 - 2017-02-16 13:32 - 126600319 _____ C:\Users\CreatoJogos\Downloads\Photoshop CS6 Portable.rar
2017-02-15 08:49 - 2017-02-15 08:49 - 00000000 ____D C:\Users\CreatoJogos\Documents\Rockstar Games
2017-02-15 08:49 - 2017-02-15 08:49 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\Rockstar Games
2017-02-15 08:47 - 2017-02-19 18:24 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2017-02-15 08:47 - 2017-02-19 18:23 - 00000000 ____D C:\Program Files\Rockstar Games
2017-02-14 10:35 - 2017-02-14 10:35 - 00000222 _____ C:\Users\CreatoJogos\Desktop\Grand Theft Auto V.url
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-10 17:25 - 2016-11-29 22:50 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2017-03-10 17:25 - 2016-11-29 22:50 - 00000000 ____D C:\ProgramData\ProductData
2017-03-10 17:23 - 2016-11-28 20:09 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-10 17:23 - 2016-11-28 20:09 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-10 16:56 - 2016-11-29 22:13 - 00000000 ____D C:\Program Files (x86)\Steam
2017-03-10 16:53 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-10 16:53 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-10 16:51 - 2016-11-28 20:11 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-03-10 16:51 - 2016-11-28 20:11 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-10 16:46 - 2017-01-09 21:28 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-03-10 16:46 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-10 16:42 - 2016-12-13 17:25 - 00000000 ____D C:\Windows\pss
2017-03-10 16:42 - 2016-11-29 21:47 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-03-10 16:41 - 2016-12-29 15:33 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Skype
2017-03-10 16:15 - 2016-12-01 13:14 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Curse Client
2017-03-10 13:15 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\LiveKernelReports
2017-03-10 10:24 - 2016-11-29 21:50 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2017-03-10 10:24 - 2016-11-29 21:50 - 00000000 ____D C:\ProgramData\MFAData
2017-03-02 16:02 - 2009-07-29 12:49 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2017-03-02 16:02 - 2009-07-29 12:49 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2017-03-02 16:02 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-02 16:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-02-22 12:58 - 2016-11-30 23:11 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\CrashDumps
2017-02-22 08:25 - 2016-11-29 21:58 - 00000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp
2017-02-22 08:25 - 2016-11-29 21:58 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2017-02-22 08:24 - 2016-11-29 21:58 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2017-02-19 13:10 - 2017-01-09 20:57 - 01598152 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-02-16 16:26 - 2016-11-28 20:15 - 00076720 _____ C:\Users\CreatoJogos\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-16 16:23 - 2009-07-14 01:45 - 00345784 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-14 10:35 - 2016-11-30 21:37 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 08:02 - 2016-12-29 15:32 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-02-14 08:02 - 2016-12-29 15:32 - 00000000 ____D C:\ProgramData\Skype
2017-02-14 08:01 - 2016-12-29 15:33 - 00000000 ___RD C:\Program Files (x86)\Skype
==================== Arquivos na raiz de alguns diretórios =======
2017-02-03 09:52 - 2017-02-03 09:52 - 0002415 _____ () C:\Users\CreatoJogos\AppData\Local\recently-used.xbel
2016-12-30 10:03 - 2017-01-11 12:49 - 0005943 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-30 10:03 - 2017-01-11 00:12 - 0007609 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Alguns arquivos em TEMP:
====================
2016-11-30 22:03 - 2017-03-10 16:49 - 0619840 _____ () C:\Users\CreatoJogos\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
2016-12-28 19:22 - 2017-02-01 20:41 - 2069504 _____ () C:\Users\CreatoJogos\AppData\Local\Temp\GCAC.dll
2017-02-15 15:15 - 2016-12-09 10:04 - 0037376 _____ (Microsoft) C:\Users\CreatoJogos\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
2017-02-15 15:15 - 2016-12-09 10:04 - 0020992 _____ (Microsoft) C:\Users\CreatoJogos\AppData\Local\Temp\HiRezLauncherControls.dll
2016-11-30 21:22 - 2016-11-24 16:22 - 0747648 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvSCPAPI.dll
2016-11-30 21:22 - 2016-11-24 16:22 - 0860960 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvSCPAPI64.dll
2016-11-30 21:16 - 2016-11-24 16:22 - 0353336 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvStInst.exe
2016-11-28 20:12 - 2016-11-17 10:45 - 1135552 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetry.dll
2016-11-28 20:12 - 2016-12-12 20:36 - 0253376 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-11-28 20:12 - 2016-12-12 20:36 - 0334272 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetryAPI64.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-11-26 19:15
==================== Fim de FRST.txt ============================
Executado por CreatoJogos (administrador) em CREATOJOGOS-PC (10-03-2017 17:34:01)
Executando a partir de C:\Users\CreatoJogos\Downloads
Perfis Carregados: CreatoJogos (Perfis Disponíveis: CreatoJogos)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\CreatoJogos\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2183752 2017-02-22] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600320 2015-08-13] (Razer Inc)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-09] (Valve Corporation)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\Run: [GoogleChromeAutoLaunch_EA9DF7369BCD9C368FA9B6B2D7AC6C45] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504 2017-02-01] (Google Inc.)
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\...\MountPoints2: {ba73ce4f-b425-11e6-bf68-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-11-30] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{659F9A4F-2E73-4909-82C6-01938A9B0256}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-2836930976-4195469595-2766873392-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2836930976-4195469595-2766873392-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2836930976-4195469595-2766873392-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={150BA013-C410-4001-9EDC-515DCB295F96}&mid=ce7f3582ebc347cfb66f915f3858f6fd-cec947b3912b60c6c39c9c81624253dbb428cac6&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2016-11-30 00:58:11&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll [2017-02-22] (AVG)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [Nenhum Arquivo]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR Profile: C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default [2017-03-10]
CHR Extension: (Google Apresentações) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-29]
CHR Extension: (Google Docs) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-29]
CHR Extension: (Google Drive) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-29]
CHR Extension: (YouTube) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-29]
CHR Extension: (Steam Inventory Helper) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-03-10]
CHR Extension: (Planilhas do Google) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-29]
CHR Extension: (Documentos Google off-line) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-29]
CHR Extension: (Aston Martin DBC Concept - Full HD - Axlg) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipjmkadfmnholahnobfgeboogdneacm [2016-11-30]
CHR Extension: (SteamWizard) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kojolejmgolbhakghocbgjemjgbmcjig [2017-02-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\CreatoJogos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2017-01-09] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2017-01-10] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2016-12-12] (EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-02-10] (Hi-Rez Studios) [Arquivo não assinado]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-05] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-05] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-01-05] (NVIDIA Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2016-11-29] (VIA Technologies, Inc.)
R2 vToolbarUpdater40.3.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe [1354312 2017-02-22] (AVG Secure Search)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-02-22] ()
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
U5 EMAC Secure; C:\Users\CreatoJogos\AppData\Local\Temp\GCSecure.sys [794248 2017-02-01] (Gamers Club)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-29] (REALiX(tm))
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-01-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-05] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [59448 2017-01-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [52248 2016-10-30] (Razer Inc)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-10 17:34 - 2017-03-10 17:34 - 00015975 _____ C:\Users\CreatoJogos\Downloads\FRST.txt
2017-03-10 17:33 - 2017-03-10 17:34 - 00000000 ____D C:\FRST
2017-03-10 17:33 - 2017-03-10 17:33 - 02423808 _____ (Farbar) C:\Users\CreatoJogos\Downloads\FRST64.exe
2017-03-10 17:20 - 2017-03-10 17:20 - 02729024 _____ (DLL-Files.com Client ) C:\Users\CreatoJogos\Downloads\clientsetup_fde-0.exe
2017-03-10 17:13 - 2017-03-10 17:13 - 00001142 _____ C:\Users\CreatoJogos\Desktop\TeamSpeak 3 Client.lnk
2017-03-10 17:13 - 2017-03-10 17:13 - 00001100 _____ C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-03-10 17:12 - 2017-03-10 17:13 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\TeamSpeak 3
2017-03-10 17:09 - 2017-03-10 17:11 - 77765040 _____ (TeamSpeak Systems GmbH) C:\Users\CreatoJogos\Downloads\TeamSpeak3-Client-win64-3.1.1.1 (1).exe
2017-03-10 16:56 - 2017-03-10 16:56 - 15261408 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vc_redist.x64 (2).exe
2017-03-10 16:30 - 2017-03-10 16:31 - 14749120 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vc_redist.x64 (1).exe
2017-03-10 16:27 - 2017-03-10 16:28 - 08932000 _____ (Solvusoft Corporation ) C:\Users\CreatoJogos\Downloads\Setup_WinThruster_2016 (1).exe
2017-03-10 16:27 - 2017-03-10 16:27 - 08932000 _____ (Solvusoft Corporation ) C:\Users\CreatoJogos\Downloads\Setup_WinThruster_2016.exe
2017-03-10 15:15 - 2017-03-10 15:15 - 00000000 ____D C:\e5773b2cb33477d54dde76b60043
2017-03-10 15:14 - 2017-03-10 15:15 - 01034556 _____ C:\Users\CreatoJogos\Downloads\Windows6.1-KB2999226-x64.msu
2017-03-10 15:06 - 2017-03-10 15:07 - 77765040 _____ (TeamSpeak Systems GmbH) C:\Users\CreatoJogos\Downloads\TeamSpeak3-Client-win64-3.1.1.1.exe
2017-03-07 11:53 - 2017-03-10 17:25 - 00002910 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (CreatoJogos)
2017-03-03 23:19 - 2017-03-04 15:37 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\discord
2017-03-03 23:19 - 2017-03-03 23:19 - 00002156 _____ C:\Users\CreatoJogos\Desktop\Discord.lnk
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\SquirrelTemp
2017-03-03 23:19 - 2017-03-03 23:19 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\Discord
2017-03-03 23:16 - 2017-03-03 23:18 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\CreatoJogos\Downloads\DiscordSetup.exe
2017-02-23 10:19 - 2017-02-23 10:26 - 00000000 ____D C:\Fraps
2017-02-23 10:19 - 2017-02-23 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-02-23 10:18 - 2017-02-23 10:18 - 02496800 _____ (Beepa Pty Ltd) C:\Users\CreatoJogos\Downloads\setup.exe
2017-02-20 12:35 - 2017-03-10 14:09 - 00000000 ____D C:\Users\CreatoJogos\Desktop\Pessoal
2017-02-20 09:10 - 2017-02-20 09:10 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários (2).odt
2017-02-20 09:09 - 2017-02-20 09:09 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários (1).odt
2017-02-20 09:07 - 2017-02-20 09:07 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (6).pdf
2017-02-20 08:55 - 2017-02-20 08:55 - 00461528 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf (1).html
2017-02-20 08:51 - 2017-02-20 08:51 - 00025060 _____ C:\Users\CreatoJogos\Downloads\Monografia - Parte 1 - Corrigida e revisada conforme comentários.odt
2017-02-20 08:50 - 2017-02-20 08:50 - 00461528 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf.html
2017-02-20 08:50 - 2017-02-20 08:50 - 00395699 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (5).pdf
2017-02-20 08:48 - 2017-02-20 08:48 - 00032657 _____ C:\Users\CreatoJogos\Downloads\Monografia (Parte I).odt
2017-02-20 08:19 - 2017-02-20 08:19 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (4).pdf
2017-02-20 08:18 - 2017-02-20 08:18 - 00031796 _____ C:\Users\CreatoJogos\Downloads\Formatação de trabalhos acadêmicos no LibreOffice.odt
2017-02-19 16:20 - 2017-02-19 16:20 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (3).pdf
2017-02-19 16:13 - 2017-02-19 16:13 - 00241691 _____ C:\Users\CreatoJogos\Downloads\Monografia - Metodologia de Pesquisa.odt
2017-02-19 13:28 - 2017-02-19 13:28 - 02813794 _____ C:\Users\CreatoJogos\Downloads\a98c4a-ZombiesMod (1.0.2d).zip
2017-02-19 13:04 - 2017-02-19 13:04 - 07194312 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\vcredist_x64 (1).exe
2017-02-19 13:04 - 2017-02-19 13:04 - 01286048 _____ C:\Users\CreatoJogos\Downloads\ScriptHookV_1.0.944.2.zip
2017-02-19 13:04 - 2017-02-19 13:04 - 00748517 _____ C:\Users\CreatoJogos\Downloads\ScriptHookVDotNet.zip
2017-02-19 13:04 - 2017-02-19 13:04 - 00032961 _____ C:\Users\CreatoJogos\Downloads\NativeUI.zip
2017-02-19 13:03 - 2017-02-19 13:05 - 69999448 _____ (Microsoft Corporation) C:\Users\CreatoJogos\Downloads\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
2017-02-17 10:41 - 2017-02-17 10:41 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (2).pdf
2017-02-16 16:20 - 2017-02-16 16:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2017-02-16 16:17 - 2017-02-16 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2017-02-16 16:16 - 2017-02-16 16:17 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2017-02-16 16:01 - 2017-02-16 16:01 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais (1).pdf
2017-02-16 15:54 - 2017-02-16 15:54 - 00393933 _____ C:\Users\CreatoJogos\Downloads\Monografia - Aplicações das metodologias de pesquisa para soluções administrativas e industriais.pdf
2017-02-16 15:52 - 2017-02-16 15:52 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\LibreOffice
2017-02-16 15:28 - 2017-02-16 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.3
2017-02-16 15:27 - 2017-02-16 15:28 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2017-02-16 14:35 - 2017-02-16 14:39 - 221245440 _____ C:\Users\CreatoJogos\Downloads\LibreOffice_5.3.0_Win_x86.msi
2017-02-16 13:38 - 2017-02-16 13:38 - 00000040 ____H C:\D77FC8D2A458
2017-02-16 13:38 - 2017-02-16 13:38 - 00000000 ____D C:\Users\CreatoJogos\AppData\LocalLow\Adobe
2017-02-16 13:32 - 2017-02-16 13:32 - 126600319 _____ C:\Users\CreatoJogos\Downloads\Photoshop CS6 Portable.rar
2017-02-15 08:49 - 2017-02-15 08:49 - 00000000 ____D C:\Users\CreatoJogos\Documents\Rockstar Games
2017-02-15 08:49 - 2017-02-15 08:49 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\Rockstar Games
2017-02-15 08:47 - 2017-02-19 18:24 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2017-02-15 08:47 - 2017-02-19 18:23 - 00000000 ____D C:\Program Files\Rockstar Games
2017-02-14 10:35 - 2017-02-14 10:35 - 00000222 _____ C:\Users\CreatoJogos\Desktop\Grand Theft Auto V.url
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-10 17:25 - 2016-11-29 22:50 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2017-03-10 17:25 - 2016-11-29 22:50 - 00000000 ____D C:\ProgramData\ProductData
2017-03-10 17:23 - 2016-11-28 20:09 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-10 17:23 - 2016-11-28 20:09 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-10 16:56 - 2016-11-29 22:13 - 00000000 ____D C:\Program Files (x86)\Steam
2017-03-10 16:53 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-10 16:53 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-10 16:51 - 2016-11-28 20:11 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-03-10 16:51 - 2016-11-28 20:11 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-10 16:46 - 2017-01-09 21:28 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-03-10 16:46 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-10 16:42 - 2016-12-13 17:25 - 00000000 ____D C:\Windows\pss
2017-03-10 16:42 - 2016-11-29 21:47 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-03-10 16:41 - 2016-12-29 15:33 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Skype
2017-03-10 16:15 - 2016-12-01 13:14 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Curse Client
2017-03-10 13:15 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\LiveKernelReports
2017-03-10 10:24 - 2016-11-29 21:50 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2017-03-10 10:24 - 2016-11-29 21:50 - 00000000 ____D C:\ProgramData\MFAData
2017-03-02 16:02 - 2009-07-29 12:49 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2017-03-02 16:02 - 2009-07-29 12:49 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2017-03-02 16:02 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-02 16:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-02-22 12:58 - 2016-11-30 23:11 - 00000000 ____D C:\Users\CreatoJogos\AppData\Local\CrashDumps
2017-02-22 08:25 - 2016-11-29 21:58 - 00000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp
2017-02-22 08:25 - 2016-11-29 21:58 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2017-02-22 08:24 - 2016-11-29 21:58 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2017-02-19 13:10 - 2017-01-09 20:57 - 01598152 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-02-16 16:26 - 2016-11-28 20:15 - 00076720 _____ C:\Users\CreatoJogos\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-16 16:23 - 2009-07-14 01:45 - 00345784 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-14 10:35 - 2016-11-30 21:37 - 00000000 ____D C:\Users\CreatoJogos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 08:02 - 2016-12-29 15:32 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-02-14 08:02 - 2016-12-29 15:32 - 00000000 ____D C:\ProgramData\Skype
2017-02-14 08:01 - 2016-12-29 15:33 - 00000000 ___RD C:\Program Files (x86)\Skype
==================== Arquivos na raiz de alguns diretórios =======
2017-02-03 09:52 - 2017-02-03 09:52 - 0002415 _____ () C:\Users\CreatoJogos\AppData\Local\recently-used.xbel
2016-12-30 10:03 - 2017-01-11 12:49 - 0005943 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-30 10:03 - 2017-01-11 00:12 - 0007609 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Alguns arquivos em TEMP:
====================
2016-11-30 22:03 - 2017-03-10 16:49 - 0619840 _____ () C:\Users\CreatoJogos\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
2016-12-28 19:22 - 2017-02-01 20:41 - 2069504 _____ () C:\Users\CreatoJogos\AppData\Local\Temp\GCAC.dll
2017-02-15 15:15 - 2016-12-09 10:04 - 0037376 _____ (Microsoft) C:\Users\CreatoJogos\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
2017-02-15 15:15 - 2016-12-09 10:04 - 0020992 _____ (Microsoft) C:\Users\CreatoJogos\AppData\Local\Temp\HiRezLauncherControls.dll
2016-11-30 21:22 - 2016-11-24 16:22 - 0747648 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvSCPAPI.dll
2016-11-30 21:22 - 2016-11-24 16:22 - 0860960 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvSCPAPI64.dll
2016-11-30 21:16 - 2016-11-24 16:22 - 0353336 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\nvStInst.exe
2016-11-28 20:12 - 2016-11-17 10:45 - 1135552 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetry.dll
2016-11-28 20:12 - 2016-12-12 20:36 - 0253376 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-11-28 20:12 - 2016-12-12 20:36 - 0334272 _____ (NVIDIA Corporation) C:\Users\CreatoJogos\AppData\Local\Temp\NvTelemetryAPI64.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-11-26 19:15
==================== Fim de FRST.txt ============================