Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 18-09-2016 Executado por leo (administrador) em LEO-PC (20-09-2016 01:00:15) Executando a partir de C:\Users\leo\Downloads Perfis Carregados: leo (Perfis Disponíveis: leo) Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil) Internet Explorer Versão 8 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvscpapisvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe () C:\Riot Games\LolScreenSaver\service\service.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe (Razer Inc.) C:\Program Files\Razer\Razer Cortex\RzKLService.exe () C:\Program Files\Softprovide\SoftProvide.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (BitTorrent Inc.) C:\Users\leo\AppData\Roaming\uTorrent\uTorrent.exe (Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Update\GoogleUpdate.exe () C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (BitTorrent Inc.) C:\Users\leo\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe (BitTorrent Inc.) C:\Users\leo\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe (LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe (Dll-FIles.Com) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (Google Inc.) C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2016-05-05] (Realtek Semiconductor) HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-08-25] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap.dll [1377800 2016-08-25] (NVIDIA Corporation) HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-09-13] (LogMeIn Inc.) HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd) HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\Run: [uTorrent] => C:\Users\leo\AppData\Roaming\uTorrent\uTorrent.exe [2139840 2016-09-09] (BitTorrent Inc.) HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony) HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\Run: [Google Update] => C:\Users\leo\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc.) HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\Run: [NetLimiter] => "C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe" /minimized HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\MountPoints2: {574c72bf-a82b-11e5-a5e8-001c254b49fc} - E:\Startme.exe HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\MountPoints2: {a8b52395-9942-11db-afc8-806e6f6e6963} - E:\ZToolBar.exe HKU\S-1-5-21-4064301934-1667722265-811204613-1000\...\MountPoints2: {b1c4e1a6-9946-11db-a325-806e6f6e6963} - E:\setup.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Updater.lnk [2015-10-11] ShortcutTarget: Windows Updater.lnk -> C:\Program Files\Windows Updater\Win_Updater.exe (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) ProxyServer: [S-1-5-21-4064301934-1667722265-811204613-1000] => 127.0.0.1:8118 AutoConfigURL: [S-1-5-21-4064301934-1667722265-811204613-1000] => 127.0.0.1:8118 Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D8C22EAA-DA88-4610-B42E-0859C61D0AEA}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-4064301934-1667722265-811204613-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.protectedio.com/?u=de8021c26304a546fb7fd53d62a46003&c=p1&src=hp&inst=1467537512 SearchScopes: HKLM -> DefaultScope {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=de8021c26304a546fb7fd53d62a46003&c=p1&src=srch&inst=1467537512 SearchScopes: HKLM -> {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=de8021c26304a546fb7fd53d62a46003&c=p1&src=srch&inst=1467537512 SearchScopes: HKU\S-1-5-21-4064301934-1667722265-811204613-1000 -> DefaultScope {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=de8021c26304a546fb7fd53d62a46003&c=p1&src=srch&inst=1467537512 SearchScopes: HKU\S-1-5-21-4064301934-1667722265-811204613-1000 -> {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=de8021c26304a546fb7fd53d62a46003&c=p1&src=srch&inst=1467537512 SearchScopes: HKU\S-1-5-21-4064301934-1667722265-811204613-1000 -> {6D21F267-11CD-4BCD-B926-EE870E264F25} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-21] (Oracle Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-21] (Oracle Corporation) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\leo\AppData\Roaming\Mozilla\Firefox\Profiles\j8rj16wo.default FF Homepage: hxxps://search.protectedio.com/?u=de8021c26304a546fb7fd53d62a46003&c=p1&src=hp&inst=1467537512 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-21] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-21] (Oracle Corporation) FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-25] (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-25] (NVIDIA Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4064301934-1667722265-811204613-1000: @tools.google.com/Google Update;version=3 -> C:\Users\leo\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-09] (Google Inc.) FF Plugin HKU\S-1-5-21-4064301934-1667722265-811204613-1000: @tools.google.com/Google Update;version=9 -> C:\Users\leo\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-09] (Google Inc.) FF SearchPlugin: C:\Users\leo\AppData\Roaming\Mozilla\Firefox\Profiles\j8rj16wo.default\searchplugins\search.xml [2016-07-03] FF Extension: (Firefox Helper2) - C:\Users\leo\AppData\Roaming\Mozilla\Firefox\Profiles\j8rj16wo.default\extensions\firefox@helper2 [2016-05-13] [não assinado] FF Extension: (Firefox Hotfix) - C:\Users\leo\AppData\Roaming\Mozilla\Firefox\Profiles\j8rj16wo.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-19] Chrome: ======= CHR StartupUrls: Default -> "hxxps://www.google.com.br/" CHR Profile: C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default [2016-09-20] CHR Extension: (Google Apresentações) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-15] CHR Extension: (Google Docs) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-15] CHR Extension: (Google Drive) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-15] CHR Extension: (YouTube) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-15] CHR Extension: (Yahoo Web) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedgghdcpmmmilkmfpnklknlenbiolec [2016-04-15] CHR Extension: (Planilhas do Google) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-15] CHR Extension: (Documentos Google off-line) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-15] CHR Extension: (Ad Block - Chega de Publicidade) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjdkfeeffbfcoanbnkeedjccphcmpehm [2016-05-06] CHR Extension: (Skype) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-09-09] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-15] CHR Extension: (Gmail) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-15] CHR Extension: (Chrome Media Router) - C:\Users\leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-18] CHR HKLM\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25] StartMenuInternet: Google Chrome.22KWPVOE7BECF4NOBSFEYHIXJI - C:\Users\leo\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [930240 2016-08-25] (NVIDIA Corporation) R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1958408 2016-09-13] (LogMeIn Inc.) R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2016-08-31] (LogMeIn, Inc.) R2 LolScreenSaverService; C:\Riot Games\LolScreenSaver\service\service.exe [707072 2016-03-30] () [Arquivo não assinado] R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-08-25] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2904000 2016-08-25] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-08-25] (NVIDIA Corporation) R2 Razer Game Scanner Service; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-09-23] () R2 RzKLService; C:\Program Files\Razer\Razer Cortex\RzKLService.exe [129168 2015-11-13] (Razer Inc.) R2 SoftProvide; C:\Program Files\Softprovide\SoftProvide.exe [502784 2016-07-03] () [Arquivo não assinado] <==== ATENÇÃO S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2015-11-02] (DT Soft Ltd) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-12-27] () R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) S3 hid7906; C:\Windows\System32\drivers\hid7906.sys [41272 2008-08-08] (Your Corporation) S3 hid8101; C:\Windows\System32\drivers\hid8101.sys [43192 2008-08-08] (Your Corporation) S3 hid8103; C:\Windows\System32\drivers\hid8103.sys [40856 2008-08-08] (Your Corporation) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-01-18] (REALiX(tm)) S3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation) S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2012-05-12] (MotioninJoy) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26048 2016-08-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [50744 2016-08-25] (NVIDIA Corporation) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [20288 2015-09-22] (Razer, Inc.) S3 usbcamcl; C:\Windows\System32\DRIVERS\usbcamcl.sys [38784 2016-01-18] (usb camera) S3 h647906; system32\drivers\h647906.sys [X] S3 h648101; system32\drivers\h648101.sys [X] S3 h648103; system32\drivers\h648103.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-09-20 01:00 - 2016-09-20 01:00 - 00017072 _____ C:\Users\leo\Downloads\FRST.txt 2016-09-20 00:59 - 2016-09-20 00:59 - 01750528 _____ (Farbar) C:\Users\leo\Downloads\FRST.exe 2016-09-20 00:58 - 2016-09-20 00:58 - 13969576 _____ (Microsoft Corporation) C:\Users\leo\Downloads\vc_redist.x86 (2).exe 2016-09-20 00:45 - 2016-09-20 00:45 - 00001046 _____ C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2016-09-20 00:45 - 2016-09-20 00:45 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job 2016-09-20 00:45 - 2016-09-20 00:45 - 00000000 ____D C:\Users\Todos os Usuários\TEMP 2016-09-20 00:45 - 2016-09-20 00:45 - 00000000 ____D C:\Users\leo\AppData\Roaming\dll-files.com 2016-09-20 00:45 - 2016-09-20 00:45 - 00000000 ____D C:\ProgramData\TEMP 2016-09-20 00:45 - 2016-09-20 00:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer 2016-09-20 00:45 - 2016-09-20 00:45 - 00000000 ____D C:\Program Files\Dll-Files.com Fixer 2016-09-20 00:43 - 2016-09-20 00:43 - 05047346 _____ C:\Users\leo\Downloads\Dll Files Fixes + Crack - ByLacerdaTutors.rar 2016-09-20 00:43 - 2016-09-02 22:17 - 00000000 ____D C:\Users\leo\Downloads\Dll Files Fixes + Crack - ByLacerdaTutors 2016-09-20 00:39 - 2016-09-20 00:40 - 03785560 _____ (DLL-Files.com Client ) C:\Users\leo\Downloads\clientsetup_d-0.exe 2016-09-20 00:35 - 2016-09-20 00:35 - 00000000 ____D C:\Users\Todos os Usuários\TweakBit 2016-09-20 00:35 - 2016-09-20 00:35 - 00000000 ____D C:\ProgramData\TweakBit 2016-09-20 00:14 - 2016-09-20 00:15 - 13969576 _____ (Microsoft Corporation) C:\Users\leo\Downloads\vc_redist.x86 (1).exe 2016-09-20 00:13 - 2016-09-20 00:14 - 00035554 _____ C:\Users\leo\Downloads\Addition.txt 2016-09-20 00:12 - 2016-09-20 00:12 - 00629006 _____ C:\Users\leo\Downloads\Windows6.1-KB2999226-x86.msu 2016-09-20 00:11 - 2016-09-20 01:00 - 00000000 ____D C:\FRST 2016-09-19 23:30 - 2016-09-19 23:31 - 15206472 _____ (IObit ) C:\Users\leo\Downloads\driver_booster_setup.exe 2016-09-19 23:20 - 2016-09-19 23:20 - 00001133 _____ C:\Users\leo\Desktop\AIDA64 Extreme.lnk 2016-09-19 23:07 - 2016-09-19 23:07 - 00368144 __RSH C:\JFEDB 2016-09-19 22:49 - 2015-05-04 09:21 - 00000000 ___RD C:\Users\leo\Downloads\AtvdR W7 By PH Downs 2016-09-19 22:48 - 2016-09-19 22:49 - 02539067 _____ C:\Users\leo\Downloads\AtvdR W7 By PH Downs.rar 2016-09-19 09:39 - 2016-09-19 09:39 - 13969576 _____ (Microsoft Corporation) C:\Users\leo\Downloads\vc_redist.x86.exe 2016-09-19 09:31 - 2016-09-19 23:10 - 00001885 _____ C:\Users\Public\Desktop\PCSX2 1.4.0.lnk 2016-09-19 09:31 - 2016-09-19 23:10 - 00000000 ____D C:\Program Files\PCSX2 1.4.0 2016-09-19 09:31 - 2016-09-19 09:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2 2016-09-19 09:30 - 2016-09-19 09:30 - 00000000 ____D C:\Users\leo\Downloads\PCSX2 VICTOR KRATOS 2016-09-19 09:29 - 2016-09-19 09:30 - 00000000 ____D C:\Users\leo\Downloads\Nova pasta 2016-09-19 00:50 - 2016-09-19 04:07 - 1347123343 _____ C:\Users\leo\Downloads\DragonBall Z - Budokai Tenkaichi 3 (USA) (En,Ja).7z 2016-09-19 00:50 - 2016-09-19 00:50 - 55797876 _____ C:\Users\leo\Downloads\PCSX2 VICTOR KRATOS.zip 2016-09-19 00:40 - 2016-09-19 00:53 - 00000000 ____D C:\Users\leo\Downloads\PS2 DragonBall Z Budokai 3 CE[torrents.ru] 2016-09-18 23:49 - 2016-09-19 02:32 - 3199631360 ____R C:\Users\leo\Downloads\[PS2] DBZ Budokai Tenkaichi 3.ISO 2016-09-18 23:32 - 2016-09-19 00:38 - 00000000 ____D C:\Users\leo\Downloads\DragonBall-Z-Budokai-3-CE 2016-09-18 23:31 - 2009-07-17 00:05 - 00000000 ____D C:\Users\leo\AppData\LocalLow\uTorrent 2016-09-13 15:55 - 2016-09-13 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2016-09-13 15:55 - 2016-09-13 15:55 - 00000000 ____D C:\Program Files\LogMeIn Hamachi 2016-09-13 03:56 - 2016-09-13 03:56 - 00000000 ____D C:\Users\leo\AppData\Local\CrashDumps 2016-09-13 02:38 - 2016-09-13 02:38 - 00000000 ____D C:\Users\leo\AppData\Local\Razer_Inc 2016-09-13 02:37 - 2016-09-13 02:37 - 00000000 ____D C:\Users\leo\Documents\Razer 2016-09-13 02:34 - 2016-09-13 02:34 - 00001992 _____ C:\Users\Public\Desktop\Razer Cortex.lnk 2016-09-13 02:34 - 2016-09-13 02:34 - 00000000 ____D C:\Users\leo\AppData\Local\Razer 2016-09-13 02:34 - 2016-09-13 02:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2016-09-13 02:33 - 2016-09-13 02:33 - 00000000 ____D C:\Users\Todos os Usuários\Razer 2016-09-13 02:33 - 2016-09-13 02:33 - 00000000 ____D C:\ProgramData\Razer 2016-09-13 02:33 - 2016-09-13 02:33 - 00000000 ____D C:\Program Files\Razer 2016-09-13 02:33 - 2015-09-22 19:36 - 00020288 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys 2016-09-13 02:15 - 2016-09-13 02:16 - 54337808 _____ (Razer Inc. ) C:\Users\leo\Downloads\RazerCortexSetup_6.4.6.10930.exe 2016-09-09 09:07 - 2016-09-13 17:45 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\LogMeIn Hamachi 2016-09-09 09:07 - 2016-09-13 17:45 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi 2016-09-09 09:07 - 2016-09-13 17:45 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi 2016-09-09 02:07 - 2016-09-09 00:22 - 00000000 ____D C:\Users\leo\AppData\Local\NVIDIA Corporation 2016-09-09 02:06 - 2009-07-17 00:18 - 00000000 ____D C:\Users\leo\AppData\Local\NVIDIA 2016-09-09 01:58 - 2016-08-25 20:29 - 35180992 _____ C:\Windows\system32\nvcompiler.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 28206016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 12182072 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-09-09 01:58 - 2016-08-25 20:29 - 09086856 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 08875408 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 08680512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 03457072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 03162168 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 01068088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3237270.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00958008 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00942664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00927168 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3237270.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00894520 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00576168 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00408600 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshim.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00187856 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys 2016-09-09 01:58 - 2016-08-25 20:29 - 00159352 _____ (NVIDIA Corporation) C:\Windows\system32\nvinit.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00131720 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim32.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00102968 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00053320 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll 2016-09-09 01:58 - 2016-08-25 20:29 - 00050744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys 2016-09-09 01:58 - 2016-08-25 20:29 - 00000669 _____ C:\Windows\system32\nv-vk32.json 2016-09-09 01:50 - 2016-09-09 01:50 - 00000000 ____D C:\NVIDIA 2016-09-09 01:30 - 2016-09-09 01:38 - 292917904 _____ (NVIDIA Corporation) C:\Users\leo\Downloads\372.70-desktop-win8-win7-32bit-international-whql.exe 2016-09-09 01:25 - 2016-09-09 01:25 - 01066432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3236839.dll 2016-09-09 01:25 - 2016-09-09 01:25 - 00925752 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3236839.dll 2016-09-09 01:24 - 2016-08-25 20:29 - 17263608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll 2016-09-09 01:24 - 2016-08-25 20:29 - 14353000 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll 2016-09-09 01:23 - 2016-09-09 01:23 - 00771328 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2016-09-09 01:23 - 2016-09-09 01:23 - 00109648 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2016-09-09 01:23 - 2016-09-09 01:23 - 00085616 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2016-09-09 01:09 - 2016-09-09 01:10 - 16374624 _____ (FinalWire Ltd. ) C:\Users\leo\Downloads\aida64extreme575.exe 2016-09-09 01:03 - 2009-07-17 00:03 - 00000000 ____D C:\Users\leo\Desktop\driver nova placa ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-09-20 00:59 - 2015-12-12 17:42 - 00000000 ____D C:\Users\leo\AppData\Roaming\uTorrent 2016-09-20 00:48 - 2015-12-28 15:00 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4064301934-1667722265-811204613-1000UA.job 2016-09-20 00:16 - 2015-12-13 20:42 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache 2016-09-20 00:16 - 2015-12-13 20:42 - 00000000 ____D C:\ProgramData\Package Cache 2016-09-20 00:15 - 2016-05-12 19:14 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-09-20 00:10 - 2015-11-29 03:52 - 00000000 ____D C:\Users\leo\AppData\Local\LogMeIn Hamachi 2016-09-20 00:10 - 2009-07-14 01:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-09-20 00:10 - 2009-07-14 01:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-09-19 23:10 - 2015-12-13 20:42 - 00000000 ____D C:\Windows\system32\directx 2016-09-19 22:54 - 2016-06-25 22:33 - 00000000 ____D C:\Users\leo\Downloads\TowerFall.Ascension.Cracked-3DM 2016-09-19 22:47 - 2009-07-29 15:46 - 00705070 _____ C:\Windows\system32\prfh0416.dat 2016-09-19 22:47 - 2009-07-29 15:46 - 00146910 _____ C:\Windows\system32\prfc0416.dat 2016-09-19 22:47 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf 2016-09-19 22:47 - 2007-01-01 00:05 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI 2016-09-19 01:48 - 2015-12-28 15:00 - 00001018 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4064301934-1667722265-811204613-1000Core.job 2016-09-18 23:31 - 2015-11-02 19:13 - 00000000 ____D C:\Users\leo\AppData\LocalLow\Temp 2016-09-16 23:54 - 2015-12-28 15:01 - 00002540 _____ C:\Users\leo\Desktop\Google Chrome.lnk 2016-09-16 23:54 - 2015-10-10 21:02 - 00002358 _____ C:\Users\leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-09-13 22:16 - 2016-05-12 19:14 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2016-09-13 22:16 - 2016-05-12 19:14 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2016-09-13 22:16 - 2016-05-12 19:14 - 00000000 ____D C:\Windows\system32\Macromed 2016-09-13 18:53 - 2015-11-29 03:52 - 00027040 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys 2016-09-13 02:34 - 2016-07-05 10:22 - 00007598 _____ C:\Users\leo\AppData\Local\Resmon.ResmonCfg 2016-09-13 02:04 - 2016-01-18 21:10 - 00000000 ____D C:\Users\Todos os Usuários\ProductData 2016-09-13 02:04 - 2016-01-18 21:10 - 00000000 ____D C:\ProgramData\ProductData 2016-09-09 12:05 - 2015-10-12 17:35 - 00000000 ____D C:\Users\leo\AppData\Local\ElevatedDiagnostics 2016-09-09 03:00 - 2015-10-11 02:12 - 00000000 ___RD C:\Program Files\Skype 2016-09-09 03:00 - 2015-10-11 02:05 - 00000000 ____D C:\Users\Todos os Usuários\Skype 2016-09-09 03:00 - 2015-10-11 02:05 - 00000000 ____D C:\ProgramData\Skype 2016-09-09 02:59 - 2016-07-07 09:48 - 00000000 ____D C:\Program Files\WTFast 2016-09-09 02:58 - 2016-04-10 19:15 - 00000000 ____D C:\temp 2016-09-09 02:33 - 2015-11-10 11:36 - 00000000 ____D C:\Users\leo\AppData\Local\Microsoft Help 2016-09-09 01:27 - 2016-01-18 21:09 - 00002096 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk 2016-08-25 20:29 - 2009-07-17 00:17 - 01377800 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll 2016-08-25 20:29 - 2009-07-17 00:17 - 01316184 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll 2016-08-25 20:29 - 2009-07-17 00:17 - 00091568 _____ C:\Windows\system32\NvRtmpStreamer32.dll 2016-08-25 20:29 - 2007-01-01 00:04 - 00203320 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2016-08-25 20:29 - 2007-01-01 00:03 - 00034126 _____ C:\Windows\system32\nvinfo.pb 2016-08-25 18:02 - 2016-03-22 17:54 - 00461368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-08-25 18:02 - 2016-03-22 17:54 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-08-25 18:02 - 2007-01-01 00:04 - 03973056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-08-25 18:02 - 2007-01-01 00:04 - 02097208 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll 2016-08-25 18:02 - 2007-01-01 00:04 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-08-25 18:02 - 2007-01-01 00:04 - 01065408 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-08-25 18:02 - 2007-01-01 00:04 - 00381888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-08-25 18:02 - 2007-01-01 00:04 - 00070200 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-08-25 17:54 - 2009-07-17 00:17 - 00134712 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe 2016-08-22 19:46 - 2007-01-01 00:04 - 07320235 _____ C:\Windows\system32\nvcoproc.bin ==================== Arquivos na raiz de alguns diretórios ======= 2016-07-01 16:15 - 2016-07-01 16:15 - 0291328 _____ () C:\Users\leo\AppData\Roaming\abracadabra_2093.exe 2016-06-09 12:43 - 2016-06-09 12:43 - 2042704 _____ () C:\Users\leo\AppData\Roaming\NetBar.exe 2016-07-05 10:22 - 2016-09-13 02:34 - 0007598 _____ () C:\Users\leo\AppData\Local\Resmon.ResmonCfg 2016-05-22 20:06 - 2016-05-22 20:06 - 0088189 _____ () C:\Users\leo\AppData\Local\Tempbg.jpg 2015-12-19 19:54 - 2016-05-22 20:06 - 1145382 ____N () C:\Users\leo\AppData\Local\Tempmusic.ogg 2016-01-18 21:52 - 2016-01-18 21:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Alguns arquivos em TEMP: ==================== C:\Users\leo\AppData\Local\Temp\2BE3.exe C:\Users\leo\AppData\Local\Temp\7082.tmp.exe C:\Users\leo\AppData\Local\Temp\7083.tmp.exe C:\Users\leo\AppData\Local\Temp\BingBarSetup-Partner.exe C:\Users\leo\AppData\Local\Temp\ceqf5cyw.dll C:\Users\leo\AppData\Local\Temp\drm_dialogs.dll C:\Users\leo\AppData\Local\Temp\EC93.tmp.exe C:\Users\leo\AppData\Local\Temp\fgffb5d1.dll C:\Users\leo\AppData\Local\Temp\GPUpd56BBBC680.exe C:\Users\leo\AppData\Local\Temp\GPUpd570875A70.exe C:\Users\leo\AppData\Local\Temp\GPUpd570C68A30.exe C:\Users\leo\AppData\Local\Temp\GPUpd570C68B30.exe C:\Users\leo\AppData\Local\Temp\GPUpd57103CA40.exe C:\Users\leo\AppData\Local\Temp\GPUpd57103CB20.exe C:\Users\leo\AppData\Local\Temp\GPUpd571404240.exe C:\Users\leo\AppData\Local\Temp\GPUpd571567160.exe C:\Users\leo\AppData\Local\Temp\GPUpd57194A1E0.exe C:\Users\leo\AppData\Local\Temp\GURD1EE.exe C:\Users\leo\AppData\Local\Temp\gvsgtgtb.dll C:\Users\leo\AppData\Local\Temp\hp_u2_1312.exe C:\Users\leo\AppData\Local\Temp\ICReinstall_Baixar Game Crash Of The Titans (pc-2010).exe C:\Users\leo\AppData\Local\Temp\is4cnepu.dll C:\Users\leo\AppData\Local\Temp\jre-8u101-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u65-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u66-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u71-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u73-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u77-windows-au.exe C:\Users\leo\AppData\Local\Temp\jre-8u91-windows-au.exe C:\Users\leo\AppData\Local\Temp\jwwnl1cz.dll C:\Users\leo\AppData\Local\Temp\libeay32.dll C:\Users\leo\AppData\Local\Temp\msvcr120.dll C:\Users\leo\AppData\Local\Temp\mzizkxxm.dll C:\Users\leo\AppData\Local\Temp\namebench.exe C:\Users\leo\AppData\Local\Temp\nsyA1DC.tmp.exe C:\Users\leo\AppData\Local\Temp\nvStInst.exe C:\Users\leo\AppData\Local\Temp\onphqydp.dll C:\Users\leo\AppData\Local\Temp\ordp1fcp.dll C:\Users\leo\AppData\Local\Temp\p5o5jamu.dll C:\Users\leo\AppData\Local\Temp\python27.dll C:\Users\leo\AppData\Local\Temp\safeguard.exe C:\Users\leo\AppData\Local\Temp\SkypeSetup.exe C:\Users\leo\AppData\Local\Temp\sqlite3.dll C:\Users\leo\AppData\Local\Temp\tcl85.dll C:\Users\leo\AppData\Local\Temp\tk85.dll C:\Users\leo\AppData\Local\Temp\vcredist9_x86.exe C:\Users\leo\AppData\Local\Temp\vcredist_2013_x86.exe C:\Users\leo\AppData\Local\Temp\vcredist_2015_Update_1_x86.exe C:\Users\leo\AppData\Local\Temp\ytb.exe ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-09-15 21:09 ==================== Fim de FRST.txt ============================