Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-08-2016 Ran by JoséLuiz (administrator) on JUCA_NOTE (04-08-2016 00:27:40) Running from C:\Users\JoséLuiz\Desktop Loaded Profiles: JoséLuiz (Available Profiles: JoséLuiz) Platform: Windows 8.1 Pro (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfwsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\WinStore\WSHost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-07-20] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6723856 2016-07-22] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2162760 2016-08-03] () HKU\S-1-5-21-1188714405-2481327366-3570683455-1001\...\Run: [uTorrent] => C:\Users\JoséLuiz\AppData\Roaming\uTorrent\uTorrent.exe [1972224 2016-08-03] (BitTorrent Inc.) HKU\S-1-5-21-1188714405-2481327366-3570683455-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.) HKU\S-1-5-21-1188714405-2481327366-3570683455-1001\...\Policies\Explorer: [] AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177952 2016-07-10] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [155768 2016-07-10] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.25.1 Tcpip\..\Interfaces\{0927DBC4-979E-4E09-9579-EA2CA5E97009}: [DhcpNameServer] 192.168.25.1 Internet Explorer: ================== HKU\S-1-5-21-1188714405-2481327366-3570683455-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={3519741E-D15A-4588-9EB7-D8982567DB9C}&mid=eb4371714fff47cca1f5314fa039de2f-7c1d43165e3eeae8710777ddddd642f2e968e8d8&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-08-03 22:49:25&v=4.3.2.18&pid=wtu&sg=&sap=hp SearchScopes: HKU\S-1-5-21-1188714405-2481327366-3570683455-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={3519741E-D15A-4588-9EB7-D8982567DB9C}&mid=eb4371714fff47cca1f5314fa039de2f-7c1d43165e3eeae8710777ddddd642f2e968e8d8&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-08-03 22:49:25&v=4.3.2.18&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-08-03] (AVG) BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-08-03] (AVG) FireFox: ======== FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.2\\npsitesafety.dll [No File] FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) Chrome: ======= CHR HomePage: Default -> mysearch.avg.com/?rvt=1 CHR StartupUrls: Default -> "hxxp://www.uol.com.br/" CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms} CHR DefaultSearchKeyword: Default -> https://mysearch.avg.com CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1 CHR Profile: C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Apresentações) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-03] CHR Extension: (Google Docs) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-03] CHR Extension: (Google Drive) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-03] CHR Extension: (YouTube) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-03] CHR Extension: (Adblock Plus) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-03] CHR Extension: (Planilhas do Google) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-03] CHR Extension: (Documentos Google off-line) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-03] CHR Extension: (Certisign) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjoehgfmpefldljiipnmgnfmcbfjkaad [2016-08-03] CHR Extension: (Black Wood) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlfigpljkonjldfhkfgbbmibfbcggnhj [2016-08-03] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-03] CHR Extension: (Gmail) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-03] CHR Extension: (Chrome Media Router) - C:\Users\JoséLuiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-03] CHR HKU\S-1-5-21-1188714405-2481327366-3570683455-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [637944 2016-07-22] (AVG Technologies CZ, s.r.o.) R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfwsa.exe [2007608 2016-07-22] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5251808 2016-07-22] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1097488 2016-07-20] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [712792 2016-07-22] (AVG Technologies CZ, s.r.o.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [File not signed] R2 vToolbarUpdater40.3.2; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe [1309768 2016-08-03] (AVG Secure Search) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [976456 2016-08-03] () ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.) R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [73480 2016-06-06] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [310016 2016-06-09] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [261376 2016-06-01] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-06-01] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [249088 2016-06-02] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.) R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [76544 2016-06-01] (AVG Technologies CZ, s.r.o.) R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [294664 2016-06-07] (AVG Technologies CZ, s.r.o.) R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) R3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Three Months Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-08-04 00:27 - 2016-08-04 00:27 - 00016415 _____ C:\Users\JoséLuiz\Desktop\FRST.txt 2016-08-04 00:24 - 2016-08-04 00:27 - 00000000 ____D C:\FRST 2016-08-04 00:24 - 2016-08-04 00:24 - 02393600 _____ (Farbar) C:\Users\JoséLuiz\Desktop\FRST64.exe 2016-08-04 00:20 - 2016-08-04 00:20 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-08-04 00:20 - 2016-08-04 00:20 - 00000000 ____D C:\Program Files\MSBuild 2016-08-04 00:20 - 2016-08-04 00:20 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-08-04 00:20 - 2016-08-04 00:20 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-08-04 00:19 - 2013-08-03 01:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll 2016-08-04 00:19 - 2013-08-03 01:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2016-08-04 00:19 - 2013-08-03 01:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2016-08-04 00:19 - 2013-08-03 01:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll 2016-08-04 00:19 - 2013-08-03 01:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-08-04 00:19 - 2013-08-03 01:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2016-08-04 00:18 - 2016-08-04 00:18 - 03785560 _____ (DLL-Files.com Client ) C:\Users\JoséLuiz\Downloads\clientsetup_d-0.exe 2016-08-04 00:01 - 2016-08-04 00:01 - 00000000 ____D C:\Program Files\Common Files\Atheros 2016-08-03 23:59 - 2014-04-15 20:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2016-08-03 23:59 - 2014-04-15 20:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2016-08-03 23:54 - 2016-08-03 23:54 - 14749120 _____ (Microsoft Corporation) C:\Users\JoséLuiz\Downloads\vc_redist.x64.exe 2016-08-03 23:50 - 2016-08-03 23:50 - 00003284 _____ C:\Windows\System32\Tasks\{DED121BC-CBCD-42EA-98C3-94FFF38966C0} 2016-08-03 23:43 - 2016-08-03 23:47 - 00000000 ____D C:\Windows\system32\appmgmt 2016-08-03 23:39 - 2016-08-03 23:39 - 00002096 _____ C:\Users\Public\Desktop\Autodesk ReCap 360.lnk 2016-08-03 23:39 - 2016-08-03 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk ReCap 360 2016-08-03 23:36 - 2016-08-03 23:36 - 00003286 _____ C:\Windows\System32\Tasks\{2CEB8AF1-461C-45D1-A973-F1A279359DA8} 2016-08-03 23:36 - 2016-08-03 23:36 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\ElevatedDiagnostics 2016-08-03 23:32 - 2016-08-03 23:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2016-08-03 23:28 - 2016-08-03 23:46 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Autodesk 2016-08-03 23:28 - 2016-08-03 23:46 - 00000000 ____D C:\Program Files (x86)\Autodesk 2016-08-03 23:28 - 2016-08-03 23:42 - 00000000 ____D C:\Users\Public\Documents\Autodesk 2016-08-03 23:28 - 2016-08-03 23:28 - 00002119 _____ C:\Users\Public\Desktop\AutoCAD 2017 - English.lnk 2016-08-03 23:28 - 2016-08-03 23:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2017 - English 2016-08-03 23:27 - 2016-08-03 23:27 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared 2016-08-03 23:23 - 2016-08-03 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2016-08-03 23:23 - 2016-08-03 23:39 - 00000000 ____D C:\Program Files\Autodesk 2016-08-03 23:23 - 2016-08-03 23:27 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared 2016-08-03 23:23 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2016-08-03 23:23 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2016-08-03 23:23 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2016-08-03 23:23 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2016-08-03 23:23 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2016-08-03 23:23 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2016-08-03 23:22 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2016-08-03 23:22 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2016-08-03 23:22 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2016-08-03 23:22 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2016-08-03 23:22 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2016-08-03 23:22 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2016-08-03 23:22 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2016-08-03 23:22 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2016-08-03 23:22 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2016-08-03 23:22 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2016-08-03 23:22 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2016-08-03 23:22 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2016-08-03 23:18 - 2016-08-03 23:46 - 00000000 ____D C:\ProgramData\Autodesk 2016-08-03 23:18 - 2016-08-03 23:28 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Autodesk 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\AVG Web TuneUp 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\ProgramData\AVG Web TuneUp 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\Program Files\AVG Web TuneUp 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-08-03 22:49 - 2016-08-03 22:49 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp 2016-08-03 22:46 - 2016-08-03 22:46 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\AVG 2016-08-03 22:46 - 2016-08-03 22:46 - 00000000 ____D C:\Program Files\Common Files\AV 2016-08-03 22:45 - 2016-08-03 22:45 - 00000000 ___HD C:\$AVG 2016-08-03 22:45 - 2016-08-03 22:45 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\TuneUp Software 2016-08-03 22:45 - 2016-08-03 22:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-08-03 22:44 - 2016-08-04 00:06 - 00000000 ____D C:\ProgramData\MFAData 2016-08-03 22:44 - 2016-08-03 22:44 - 00001004 _____ C:\Users\Public\Desktop\AVG.lnk 2016-08-03 22:44 - 2016-08-03 22:44 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\MFAData 2016-08-03 22:44 - 2016-08-03 22:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen 2016-08-03 22:43 - 2016-08-03 22:45 - 00000000 ____D C:\Program Files (x86)\AVG 2016-08-03 22:42 - 2016-08-03 22:46 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Avg 2016-08-03 22:42 - 2016-08-03 22:45 - 00000000 ____D C:\ProgramData\Avg 2016-08-03 22:42 - 2016-08-03 22:44 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\AvgSetupLog 2016-08-03 22:31 - 2016-08-03 17:42 - 00000000 ____D C:\Windows\Panther 2016-08-03 22:27 - 2016-08-03 22:27 - 00000000 ____D C:\Windows.old 2016-08-03 21:58 - 2016-08-03 21:58 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-08-03 21:55 - 2016-08-03 21:55 - 00000000 ____D C:\Users\JoséLuiz\Tracing 2016-08-03 21:54 - 2016-08-03 23:27 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Skype 2016-08-03 21:54 - 2016-08-03 21:54 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-08-03 21:54 - 2016-08-03 21:54 - 00000000 ____D C:\ProgramData\Skype 2016-08-03 21:54 - 2016-08-03 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-08-03 21:53 - 2016-08-03 21:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2016-08-03 21:51 - 2016-08-03 22:00 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\uTorrent 2016-08-03 21:50 - 2016-08-03 21:53 - 42013312 _____ (Skype Technologies S.A.) C:\Users\JoséLuiz\Downloads\SkypeSetupFull.exe 2016-08-03 21:50 - 2016-08-03 21:50 - 00003160 _____ C:\Windows\System32\Tasks\{31F40443-D255-4BEA-99DA-AF15913461F9} 2016-08-03 19:15 - 2016-08-03 22:06 - 00000000 ____D C:\Users\JoséLuiz\Desktop\Processar Dados Rogério G 2016-08-03 19:15 - 2016-08-03 22:06 - 00000000 ____D C:\Users\JoséLuiz\Desktop\Fotos Marcos DER 2016-08-03 19:15 - 2016-08-03 22:06 - 00000000 ____D C:\Users\JoséLuiz\Desktop\FAZENDA GRACIOSA - SR CHICO (GEO) 2016-08-03 19:15 - 2016-08-03 22:06 - 00000000 ____D C:\Users\JoséLuiz\Desktop\ÁREA SR Vilmar Buckner 12-07-16 2016-08-03 19:15 - 2016-07-08 01:41 - 00000030 _____ C:\Users\JoséLuiz\Desktop\New Text Document.txt 2016-08-03 19:15 - 2016-07-01 18:18 - 00784185 _____ C:\Users\JoséLuiz\Desktop\Municipios_PR.kmz 2016-08-03 19:15 - 2016-07-01 18:17 - 02088025 _____ C:\Users\JoséLuiz\Desktop\Municipios_PR.kml 2016-08-03 19:02 - 2016-08-03 19:06 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\CrashDumps 2016-08-03 18:34 - 2016-08-03 21:58 - 00000000 ____D C:\Windows\SysWOW64\NV 2016-08-03 18:34 - 2016-08-03 21:58 - 00000000 ____D C:\Windows\system32\NV 2016-08-03 18:34 - 2016-08-03 18:34 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-08-03 18:32 - 2016-08-03 18:32 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-08-03 18:32 - 2016-07-10 23:13 - 01887800 _____ (NVIDIA Corporation) C:\Windows\system32\NvCamera64.dll 2016-08-03 18:32 - 2016-07-10 23:13 - 01595840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvCamera32.dll 2016-08-03 18:32 - 2016-05-03 23:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll 2016-08-03 18:32 - 2016-05-03 23:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll 2016-08-03 18:32 - 2016-05-03 23:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe 2016-08-03 18:32 - 2016-05-03 23:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2016-08-03 18:30 - 2016-07-10 23:13 - 39977920 _____ C:\Windows\system32\nvcompiler.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 31640512 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 25414080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 19220352 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 17321352 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 16790552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 14371384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 13581880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-08-03 18:30 - 2016-07-10 23:13 - 10691632 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 10656112 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 10234336 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 09020656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 08742360 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 08615336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 03542072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 03099072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 01939000 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436881.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436881.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 01001016 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00930360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00909880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00852024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00694672 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00583736 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00490744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00406064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00177952 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00131584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-08-03 18:30 - 2016-07-10 23:13 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2016-08-03 18:30 - 2016-07-10 23:13 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-08-03 18:30 - 2016-07-10 23:13 - 00000594 _____ C:\Windows\system32\nv-vk64.json 2016-08-03 18:26 - 2016-08-03 18:26 - 00002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2016-08-03 18:26 - 2016-08-03 18:26 - 00000000 ____D C:\Users\JoséLuiz\AppData\LocalLow\Google 2016-08-03 18:24 - 2016-08-04 00:06 - 00000000 __SHD C:\Users\JoséLuiz\IntelGraphicsProfiles 2016-08-03 18:24 - 2016-08-03 18:24 - 00987728 _____ (Google Inc.) C:\Users\JoséLuiz\Downloads\GoogleEarthSetup.exe 2016-08-03 18:22 - 2016-08-03 22:59 - 00002029 _____ C:\Users\Public\Desktop\DataGeosis Office.lnk 2016-08-03 18:22 - 2016-08-03 18:22 - 00000000 ____D C:\Users\Public\Documents\DataGeosis Office 2016-08-03 18:22 - 2016-08-03 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DataGeosis Office 2016-08-03 18:21 - 2016-08-03 22:59 - 00000000 ____D C:\Program Files (x86)\DataGeosis Office 2016-08-03 18:21 - 2016-08-03 18:21 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\WinRAR 2016-08-03 18:21 - 2016-08-03 18:21 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\NVIDIA Corporation 2016-08-03 18:21 - 2016-08-03 18:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-08-03 18:20 - 2016-08-04 00:12 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-03 18:20 - 2016-08-03 18:23 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\NVIDIA 2016-08-03 18:20 - 2016-08-03 18:20 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-08-03 18:20 - 2016-08-03 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-08-03 18:20 - 2016-08-03 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-08-03 18:20 - 2016-08-03 18:20 - 00000000 ____D C:\Program Files (x86)\WinRAR 2016-08-03 18:20 - 2016-08-03 18:20 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2016-08-03 18:20 - 2016-06-14 17:01 - 01767944 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2016-08-03 18:20 - 2016-06-14 17:01 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-08-03 18:20 - 2016-06-14 17:01 - 01377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-08-03 18:20 - 2016-06-14 17:01 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-08-03 18:20 - 2016-06-14 17:01 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2016-08-03 18:20 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2016-08-03 18:19 - 2016-04-14 02:38 - 00113216 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-08-03 18:19 - 2016-04-14 02:38 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-08-03 18:19 - 2016-04-14 02:38 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-08-03 18:18 - 2016-08-03 18:19 - 44984120 _____ (NVIDIA Corporation) C:\Users\JoséLuiz\Downloads\GeForce_Experience_v2.11.4.0.exe 2016-08-03 18:18 - 2016-08-03 18:18 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-08-03 18:18 - 2013-09-03 16:52 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2016-08-03 18:17 - 2016-08-03 18:18 - 00000000 ____D C:\ProgramData\Intel 2016-08-03 18:17 - 2016-08-03 18:17 - 00827646 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-08-03 18:17 - 2016-08-03 18:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-08-03 18:17 - 2016-08-03 18:17 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-08-03 18:17 - 2016-08-03 18:17 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Intel Corporation 2016-08-03 18:17 - 2016-08-03 18:17 - 00000000 ____D C:\ProgramData\dell 2016-08-03 18:17 - 2013-09-03 16:52 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2016-08-03 18:17 - 2013-09-03 16:52 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys 2016-08-03 18:05 - 2016-08-03 18:05 - 00000000 ____D C:\Users\JoséLuiz\Documents\Dell Downloads 2016-08-03 18:04 - 2016-08-03 18:04 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell 2016-08-03 18:03 - 2016-08-03 18:04 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Deployment 2016-08-03 18:03 - 2016-08-03 18:03 - 00013560 _____ C:\Users\JoséLuiz\Downloads\DellSystemDetectLauncher.Application 2016-08-03 18:03 - 2016-08-03 18:03 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Apps\2.0 2016-08-03 17:52 - 2016-08-03 18:34 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-03 17:51 - 2016-08-03 18:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-08-03 17:51 - 2016-08-03 18:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-08-03 17:51 - 2016-08-03 18:23 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-08-03 17:51 - 2016-07-10 20:17 - 06384064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 02465848 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 01364536 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-08-03 17:51 - 2016-07-10 20:17 - 00547896 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-08-03 17:51 - 2016-07-10 20:17 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-08-03 17:51 - 2016-07-07 14:03 - 07211925 _____ C:\Windows\system32\nvcoproc.bin 2016-08-03 17:48 - 2016-08-04 00:27 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1188714405-2481327366-3570683455-1001 2016-08-03 17:47 - 2016-08-04 00:13 - 00820548 _____ C:\Windows\system32\PerfStringBackup.INI 2016-08-03 17:47 - 2016-08-03 17:47 - 00002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-03 17:46 - 2016-08-04 00:06 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-08-03 17:46 - 2016-08-03 19:44 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Google 2016-08-03 17:46 - 2016-08-03 18:26 - 00000000 ____D C:\Program Files (x86)\Google 2016-08-03 17:46 - 2016-08-03 18:18 - 00000000 ____D C:\Program Files\Intel 2016-08-03 17:46 - 2016-08-03 18:18 - 00000000 ____D C:\Program Files (x86)\Intel 2016-08-03 17:46 - 2016-08-03 17:51 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-08-03 17:46 - 2016-08-03 17:51 - 00003832 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-08-03 17:46 - 2016-08-03 17:51 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-08-03 17:46 - 2016-08-03 17:46 - 00000000 ____D C:\Intel 2016-08-03 17:46 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2016-08-03 17:46 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2016-08-03 17:45 - 2016-08-03 23:51 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{ABF71B79-6B54-493B-9A0E-881C44E2E61E} 2016-08-03 17:44 - 2016-08-04 00:06 - 00000000 ___RD C:\Users\JoséLuiz\SkyDrive 2016-08-03 17:42 - 2016-08-03 17:43 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\PackageStaging 2016-08-03 17:42 - 2016-08-03 17:42 - 00001451 _____ C:\Users\JoséLuiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-08-03 17:42 - 2016-08-03 17:42 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-08-03 17:42 - 2016-08-03 17:42 - 00000000 ____D C:\Users\JoséLuiz\AppData\Roaming\Adobe 2016-08-03 17:42 - 2016-08-03 17:42 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\VirtualStore 2016-08-03 17:41 - 2016-08-03 17:43 - 00000000 ____D C:\Users\JoséLuiz\AppData\Local\Packages 2016-08-03 17:38 - 2016-08-03 21:55 - 00000000 ____D C:\Users\JoséLuiz 2016-08-03 17:38 - 2016-08-03 17:38 - 00003706 _____ C:\Windows\System32\Tasks\AutoPico Daily Restart 2016-08-03 17:38 - 2016-08-03 17:38 - 00000020 ___SH C:\Users\JoséLuiz\ntuser.ini 2016-08-03 17:38 - 2016-08-03 17:38 - 00000000 _SHDL C:\Users\JoséLuiz\My Documents 2016-08-03 17:38 - 2016-08-03 17:38 - 00000000 _SHDL C:\Users\JoséLuiz\Documents\My Videos 2016-08-03 17:38 - 2016-08-03 17:38 - 00000000 _SHDL C:\Users\JoséLuiz\Documents\My Pictures 2016-08-03 17:38 - 2016-08-03 17:38 - 00000000 _SHDL C:\Users\JoséLuiz\Documents\My Music 2016-08-03 17:38 - 2016-08-03 17:38 - 00000000 ____D C:\Program Files\KMSpico 2016-08-03 17:37 - 2016-08-03 17:37 - 00000000 ____D C:\Windows\CSC 2016-08-03 17:37 - 2013-08-22 02:17 - 02407936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2016-08-03 17:33 - 2016-08-03 17:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2016-07-22 05:51 - 2016-07-22 05:51 - 00164992 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys 2016-07-22 05:51 - 2016-07-22 05:51 - 00130688 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus.sys 2016-06-09 08:15 - 2016-06-09 08:15 - 00310016 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys 2016-06-07 05:44 - 2016-06-07 05:44 - 00294664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgwfpa.sys 2016-06-06 08:24 - 2016-06-06 08:24 - 00073480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgfwd6a.sys 2016-06-02 15:13 - 2016-06-02 15:13 - 00249088 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys 2016-06-01 13:28 - 2016-06-01 13:28 - 00260352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys 2016-06-01 13:25 - 2016-06-01 13:25 - 00261376 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsha.sys 2016-06-01 13:25 - 2016-06-01 13:25 - 00076544 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avguniva.sys 2016-06-01 13:16 - 2016-06-01 13:16 - 00052992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys 2016-05-13 07:52 - 2016-05-13 07:52 - 00163072 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys ==================== Three Months Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-08-04 00:21 - 2013-08-22 12:20 - 00000000 ____D C:\Windows\CbsTemp 2016-08-04 00:20 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf 2016-08-04 00:06 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-08-04 00:05 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-08-03 23:58 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-08-03 23:58 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness 2016-08-03 23:31 - 2013-08-22 11:44 - 00407520 _____ C:\Windows\system32\FNTCACHE.DAT 2016-08-03 23:27 - 2013-08-22 12:36 - 00000000 ___SD C:\Windows\Downloaded Program Files 2016-08-03 22:48 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\ELAM 2016-08-03 22:45 - 2013-08-22 12:36 - 00000000 ___HD C:\Windows\ELAMBKUP 2016-08-03 22:31 - 2013-08-22 12:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template 2016-08-03 18:18 - 2013-08-22 12:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-08-03 17:51 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\Help 2016-08-03 17:42 - 2013-08-22 12:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2016-08-03 17:42 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\WinStore 2016-08-03 17:42 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\FileManager 2016-08-03 17:42 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\Camera 2016-08-03 17:42 - 2013-08-22 11:45 - 00000000 ____D C:\Windows\Setup 2016-08-03 17:36 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\rescache 2016-07-10 23:13 - 2013-12-18 14:42 - 03840096 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-07-10 23:13 - 2013-12-18 14:42 - 03393576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-07-10 23:13 - 2013-12-18 14:42 - 00039124 _____ C:\Windows\system32\nvinfo.pb Some files in TEMP: ==================== C:\Users\JoséLuiz\AppData\Local\Temp\AcDeltree.exe C:\Users\JoséLuiz\AppData\Local\Temp\FNP_ACT_InstallerCA.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-08-03 17:32 ==================== End of FRST.txt ============================