Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016 Ran by Fernando (administrator) on FERNANDO-PC (29-11-2016 22:42:48) Running from C:\Users\Fernando\Downloads Loaded Profiles: Fernando (Available Profiles: Fernando) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Inglês (Estados Unidos) Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Waves Audio Ltd.) C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-29] (Synaptics Incorporated) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-08] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387736 2014-07-04] (Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [562264 2014-04-10] (Waves Audio Ltd.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-29] (AVAST Software) HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd) HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\...\MountPoints2: {86cf8a79-b686-11e6-a89c-681401a60bd0} - G:\SETUP.EXE ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-29] (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{ADBBCE78-5807-4561-AE07-5A6446C5CA13}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{D8C8C030-AF7A-48B4-B5A0-3EC50B4CF993}: [DhcpNameServer] 10.3.0.1 Internet Explorer: ================== HKU\S-1-5-21-4208793898-2488982273-1502786281-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-11-29] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-11-29] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-29] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-29] FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-29] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) Chrome: ======= CHR Profile: C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default [2016-11-29] CHR Extension: (Google Apresentações) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-29] CHR Extension: (Google Docs) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-29] CHR Extension: (Google Drive) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-29] CHR Extension: (YouTube) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-29] CHR Extension: (Adblock Plus) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-29] CHR Extension: (Planilhas do Google) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-29] CHR Extension: (Documentos Google off-line) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-29] CHR Extension: (AdBlock) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-29] CHR Extension: (Avast Online Security) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29] CHR Extension: (Gmail) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-29] CHR Extension: (Chrome Media Router) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-29] (AVAST Software) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit) S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed] S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed] S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed] S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed] S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-11-29] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-11-29] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-11-29] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-11-29] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-29] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-11-29] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-11-29] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-11-29] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-29] (AVAST Software) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-11-29] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-11-29] (Disc Soft Ltd) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-29] (REALiX(tm)) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-11-29] (Intel Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [190032 2016-11-28] (Intel Corporation) R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Three Months Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-11-29 22:34 - 2016-11-29 22:35 - 00020568 _____ C:\Users\Fernando\Downloads\Addition.txt 2016-11-29 22:33 - 2016-11-29 22:42 - 00013513 _____ C:\Users\Fernando\Downloads\FRST.txt 2016-11-29 22:33 - 2016-11-29 22:42 - 00000000 ____D C:\FRST 2016-11-29 22:33 - 2016-11-29 22:33 - 02411520 _____ (Farbar) C:\Users\Fernando\Downloads\FRST64.exe 2016-11-29 22:26 - 2016-11-29 22:26 - 00000000 ____D C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits 2016-11-29 22:20 - 2016-11-29 22:22 - 11313360 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\WindowsUpdateAgent-7.6-x64.exe 2016-11-29 22:15 - 2016-11-29 22:15 - 00000000 ____D C:\ProgramData\Package Cache 2016-11-29 22:12 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-11-29 22:11 - 2016-11-29 22:11 - 00003630 _____ C:\Users\Fernando\Downloads\api-ms-win-crt-runtime-l1-1-0.zip 2016-11-29 22:11 - 2016-11-29 22:11 - 00000000 ____D C:\Users\Fernando\AppData\Local\Disc_Soft_Ltd 2016-11-29 22:09 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2016-11-29 22:05 - 2016-11-29 22:05 - 14749120 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\vc_redist.x64.exe 2016-11-29 22:02 - 2016-11-29 22:35 - 00705268 _____ C:\Windows\system32\prfh0416.dat 2016-11-29 22:02 - 2016-11-29 22:35 - 00147108 _____ C:\Windows\system32\prfc0416.dat 2016-11-29 22:02 - 2016-11-29 22:02 - 00000000 ____D C:\1dbc8e872eee24f226936868b4e3 2016-11-29 22:02 - 2016-11-29 22:00 - 00323154 _____ C:\Windows\system32\prfi0416.dat 2016-11-29 22:02 - 2016-11-29 22:00 - 00038536 _____ C:\Windows\system32\prfd0416.dat 2016-11-29 22:01 - 2016-11-29 22:01 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2016-11-29 21:45 - 2016-11-29 22:26 - 1597205932 ____R C:\Users\Fernando\Downloads\OFFICE 2016 32 e 64 Bits.rar 2016-11-29 21:40 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\uTorrent 2016-11-29 21:39 - 2016-11-29 21:39 - 00002657 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-11-29 21:38 - 2016-11-29 22:28 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\uTorrent 2016-11-29 21:33 - 2016-11-29 21:38 - 00002187 _____ C:\Users\Fernando\Desktop\WhatsApp.lnk 2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WhatsApp 2016-11-29 21:33 - 2016-11-29 21:38 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2016-11-29 21:33 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\WhatsApp 2016-11-29 21:33 - 2016-11-29 21:33 - 00001100 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist.lnk 2016-11-29 21:33 - 2016-11-29 21:33 - 00001092 _____ C:\Users\Fernando\Desktop\Wunderlist.lnk 2016-11-29 21:33 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wunderlist 2016-11-29 21:32 - 2016-11-29 21:37 - 00000000 ____D C:\Users\Fernando\AppData\Local\SquirrelTemp 2016-11-29 21:32 - 2016-11-29 21:33 - 00000000 ____D C:\Users\Fernando\AppData\Local\Wunderlist 2016-11-29 21:32 - 2016-10-19 09:17 - 06422702 _____ C:\Users\Fernando\Desktop\SCRUMstudy-SBOK-Guide-2016-Portuguese.pdf 2016-11-29 21:30 - 2016-11-29 21:30 - 00000000 _____ C:\Windows\SysWOW64\last.dump 2016-11-29 21:27 - 2016-11-29 21:27 - 00002841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk 2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016 2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WinRAR 2016-11-29 21:27 - 2016-11-29 21:27 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Windows\PCHEALTH 2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-11-29 21:26 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2016-11-29 21:25 - 2016-11-29 21:26 - 00000000 ____D C:\Program Files\Microsoft Office 2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Users\Fernando\AppData\Local\Microsoft Help 2016-11-29 21:25 - 2016-11-29 21:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-11-29 21:22 - 2016-11-29 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio 2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\system32\SRSLabs 2016-11-29 21:21 - 2016-11-29 21:21 - 00000000 ____D C:\Program Files\Realtek 2016-11-29 21:20 - 2014-07-08 22:16 - 04007512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2016-11-29 21:20 - 2014-07-08 18:54 - 01262807 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2016-11-29 21:20 - 2014-07-08 16:02 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll 2016-11-29 21:20 - 2014-07-08 16:02 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll 2016-11-29 21:20 - 2014-07-07 20:05 - 67255296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat 2016-11-29 21:20 - 2014-07-07 17:07 - 02860760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2016-11-29 21:20 - 2014-07-04 14:07 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2016-11-29 21:20 - 2014-07-02 20:20 - 02805464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2016-11-29 21:20 - 2014-06-20 20:45 - 00949976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2016-11-29 21:20 - 2014-06-17 16:32 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2016-11-29 21:20 - 2014-05-09 14:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2016-11-29 21:20 - 2014-04-10 15:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2016-11-29 21:20 - 2014-04-10 15:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2016-11-29 21:20 - 2014-04-10 15:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2016-11-29 21:20 - 2014-03-19 22:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2016-11-29 21:20 - 2014-03-06 19:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2016-11-29 21:20 - 2014-02-06 14:28 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat 2016-11-29 21:20 - 2014-01-08 18:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2016-11-29 21:20 - 2013-08-14 18:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2016-11-29 21:20 - 2013-07-22 18:36 - 00194816 _____ (Waves Audio) C:\Windows\system32\MaxxAudioVienna264.dll 2016-11-29 21:20 - 2013-04-23 17:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkXInterface64.dll 2016-11-29 21:20 - 2013-01-11 19:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2016-11-29 21:20 - 2013-01-11 19:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2016-11-29 21:20 - 2012-11-14 14:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll 2016-11-29 21:20 - 2012-08-31 22:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2016-11-29 21:20 - 2012-08-31 22:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2016-11-29 21:20 - 2012-08-31 22:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2016-11-29 21:20 - 2012-08-31 22:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2016-11-29 21:20 - 2012-08-31 22:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2016-11-29 21:20 - 2012-06-08 19:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2016-11-29 21:20 - 2012-06-08 19:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2016-11-29 21:20 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2016-11-29 21:20 - 2011-12-16 17:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll 2016-11-29 21:20 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2016-11-29 21:20 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2016-11-29 21:20 - 2010-11-03 21:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2016-11-29 21:20 - 2009-11-24 12:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2016-11-29 21:20 - 2009-11-24 12:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2016-11-29 21:20 - 2009-11-24 12:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2016-11-29 21:20 - 2009-11-24 12:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2016-11-29 21:20 - 2009-11-18 10:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll 2016-11-29 21:19 - 2016-11-29 21:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-11-29 21:19 - 2014-06-09 13:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2016-11-29 21:19 - 2014-05-19 13:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2016-11-29 21:19 - 2014-04-17 20:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2016-11-29 21:19 - 2014-04-17 20:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2016-11-29 21:19 - 2014-04-17 20:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2016-11-29 21:19 - 2014-04-10 15:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2016-11-29 21:19 - 2014-04-10 15:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2016-11-29 21:19 - 2014-04-10 15:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2016-11-29 21:19 - 2014-04-10 15:19 - 01763416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek364.dll 2016-11-29 21:19 - 2014-04-10 15:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2016-11-29 21:19 - 2014-04-10 15:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2016-11-29 21:19 - 2014-04-07 19:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2016-11-29 21:19 - 2014-04-07 19:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2016-11-29 21:19 - 2014-04-07 19:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2016-11-29 21:19 - 2014-04-07 19:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2016-11-29 21:19 - 2014-02-18 20:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2016-11-29 21:19 - 2013-10-11 15:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2016-11-29 21:19 - 2013-08-14 18:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2016-11-29 21:19 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2016-11-29 21:19 - 2011-05-31 12:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2016-11-29 21:19 - 2010-09-27 12:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2016-11-29 21:16 - 2016-11-29 21:16 - 00002916 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Fernando 2016-11-29 21:16 - 2016-11-29 21:16 - 00001370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk 2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2016-11-29 21:16 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files\Synaptics 2016-11-29 21:16 - 2015-05-29 17:46 - 00246440 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo29.dll 2016-11-29 21:16 - 2015-05-29 17:45 - 00755880 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2016-11-29 21:16 - 2015-05-29 17:45 - 00410792 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll 2016-11-29 21:16 - 2015-05-29 17:45 - 00048296 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys 2016-11-29 21:16 - 2014-01-30 18:17 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2016-11-29 21:15 - 2016-11-29 21:15 - 00000000 ____D C:\Program Files (x86)\Realtek 2016-11-29 21:15 - 2015-05-29 17:45 - 00604840 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2016-11-29 21:15 - 2015-05-29 17:45 - 00259240 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2016-11-29 21:14 - 2016-11-29 21:22 - 00000000 ___HD C:\Program Files (x86)\Temp 2016-11-29 21:14 - 2016-11-29 21:14 - 00001536 _____ C:\Windows\SysWOW64\RtkMsgs.dll 2016-11-29 21:13 - 2016-11-29 21:13 - 00000000 ____D C:\ProgramData\Dell 2016-11-29 21:07 - 2016-11-29 21:07 - 00000000 ____D C:\Users\Fernando\AppData\Local\CEF 2016-11-29 21:06 - 2016-11-29 21:26 - 00003896 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1480460797 2016-11-29 21:06 - 2016-11-29 21:06 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2016-11-29 21:06 - 2016-11-29 21:05 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows 2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN 2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\OpenVPN 2016-11-29 21:05 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2016-11-29 21:04 - 2016-11-29 21:04 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2016-11-29 21:04 - 2016-11-29 21:04 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2016-11-29 21:04 - 2016-11-29 21:04 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys 2016-11-29 21:04 - 2016-11-29 21:04 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software 2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\AVAST Software 2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2016-11-29 21:04 - 2016-11-29 21:04 - 00000000 ____D C:\Program Files\Common Files\AV 2016-11-29 21:04 - 2016-11-29 21:03 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-11-29 21:04 - 2016-11-29 21:03 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-11-29 21:04 - 2016-11-29 21:03 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2016-11-29 21:04 - 2016-11-29 21:03 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2016-11-29 21:04 - 2016-11-29 21:03 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2016-11-29 21:04 - 2016-11-29 21:03 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2016-11-29 21:04 - 2016-11-29 21:03 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2016-11-29 21:04 - 2016-11-29 21:03 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2016-11-29 21:03 - 2016-11-29 21:05 - 00000000 ____D C:\Program Files\AVAST Software 2016-11-29 21:03 - 2016-11-29 21:03 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr 2016-11-29 21:02 - 2016-11-29 21:05 - 00000000 ____D C:\ProgramData\AVAST Software 2016-11-29 20:57 - 2016-11-29 20:57 - 00000000 ____D C:\9a9b0c7fe6102cd1e0c5ce 2016-11-29 20:47 - 2016-11-29 20:47 - 01469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2016-11-29 20:47 - 2016-11-29 20:47 - 00031712 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys 2016-11-29 20:45 - 2016-11-29 20:45 - 00481768 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2016-11-29 20:45 - 2016-11-29 20:45 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-11-29 20:45 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files (x86)\WinRAR 2016-11-29 20:44 - 2016-11-29 22:09 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\DAEMON Tools Lite 2016-11-29 20:44 - 2016-11-29 20:45 - 00000000 ____D C:\Program Files\DAEMON Tools Lite 2016-11-29 20:44 - 2016-11-29 20:44 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2016-11-29 20:44 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2016-11-29 20:43 - 2016-11-29 21:22 - 00003132 _____ C:\Windows\System32\Tasks\RtHDVBg_PushButton 2016-11-29 20:43 - 2016-11-29 21:21 - 00977191 _____ C:\Windows\system32\Drivers\rtwavesskdy.dat 2016-11-29 20:43 - 2016-11-29 21:21 - 00455741 _____ C:\Windows\system32\Drivers\rtwavesmapro.dat 2016-11-29 20:43 - 2016-11-29 21:21 - 00020691 _____ C:\Windows\system32\Drivers\rtwavesmaprocap.dat 2016-11-29 20:43 - 2016-11-29 20:44 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2016-11-29 20:42 - 2016-11-29 21:21 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2016-11-29 20:42 - 2016-11-29 21:15 - 00000000 ____D C:\Windows\system32\DAX2 2016-11-29 20:42 - 2016-11-29 20:42 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-11-29 20:36 - 2016-11-29 20:36 - 00000000 ____D C:\Program Files\Common Files\Atheros 2016-11-29 20:33 - 2016-11-29 20:33 - 00609992 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2016-11-29 20:33 - 2016-11-29 20:33 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBT.bin 2016-11-29 20:33 - 2016-11-29 20:33 - 00208992 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll 2016-11-29 20:33 - 2016-11-29 20:33 - 00207960 _____ (Qualcomm Atheros Communications Inc.) C:\Windows\system32\btcoinst.dll 2016-11-29 20:33 - 2016-11-29 20:33 - 00046972 _____ C:\Windows\system32\Drivers\AthrBT_0x11020000.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00046868 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00046852 _____ C:\Windows\system32\Drivers\AthrBT_0x11020100.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00045868 _____ C:\Windows\system32\Drivers\AthrBT_0x01020201.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00044028 _____ C:\Windows\system32\Drivers\AthrBT_0x01020200.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00040684 _____ C:\Windows\system32\Drivers\AthrBT_0x31010000_ss01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00040036 _____ C:\Windows\system32\Drivers\AthrBT_0x31010100.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00037464 _____ (Qualcomm®Atheros®) C:\Windows\system32\BtContextMenu.dll.muien-US 2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf0.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x21.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x11.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001926 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001922 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_SS01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40_nf01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001802 _____ C:\Windows\system32\Drivers\ramps_0x11020100_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001796 _____ C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_SS01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_LV01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0xf1.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x22.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x12.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001516 _____ C:\Windows\system32\Drivers\ramps_0x31010000_40_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001512 _____ C:\Windows\system32\Drivers\ramps_0x31010100_40_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001242 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001228 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x04.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001214 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001198 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00001192 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000296 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000278 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x04.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x03.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40_0x02.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_40.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26_0x01.dfu 2016-11-29 20:33 - 2016-11-29 20:33 - 00000264 _____ C:\Windows\system32\Drivers\ramps_0x01020201_26.dfu 2016-11-29 20:30 - 2016-11-29 20:30 - 00000000 ____D C:\Windows\SysWOW64\sda 2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf 2016-11-29 20:29 - 2016-11-29 20:29 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-11-29 20:28 - 2016-11-29 20:28 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-11-29 20:28 - 2016-11-29 20:28 - 00002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-11-29 20:28 - 2012-07-26 02:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2016-11-29 20:28 - 2012-07-26 02:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2016-11-29 20:28 - 2012-07-26 00:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2016-11-29 20:28 - 2012-06-02 12:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2016-11-29 20:27 - 2016-11-29 22:32 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-11-29 20:27 - 2016-11-29 22:30 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Users\Fernando\AppData\Local\Google 2016-11-29 20:27 - 2016-11-29 20:28 - 00000000 ____D C:\Program Files (x86)\Google 2016-11-29 20:27 - 2016-11-29 20:27 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-11-29 20:27 - 2016-11-29 20:27 - 00003816 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Deployment 2016-11-29 20:27 - 2016-11-29 20:27 - 00000000 ____D C:\Users\Fernando\AppData\Local\Apps\2.0 2016-11-29 20:27 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-11-29 20:27 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-11-29 20:27 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-11-29 20:27 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-11-29 20:27 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-11-29 20:27 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-11-29 20:27 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-11-29 20:27 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-11-29 20:27 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-11-29 20:27 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-11-29 20:27 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-11-29 20:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-11-29 20:27 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-11-29 20:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-11-29 20:26 - 2016-06-29 16:36 - 06364728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 02455608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 01352760 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-11-29 20:26 - 2016-06-29 16:36 - 00532416 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-11-29 20:26 - 2016-06-29 16:36 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-11-29 20:26 - 2016-06-23 06:04 - 07208075 _____ C:\Windows\system32\nvcoproc.bin 2016-11-29 20:25 - 2016-11-29 20:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-11-29 20:25 - 2016-11-29 20:25 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-11-29 20:21 - 2016-11-29 21:40 - 00061896 _____ C:\Users\Fernando\AppData\Local\GDIPFONTCACHEV1.DAT 2016-11-29 20:20 - 2016-11-29 20:20 - 00773536 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-11-29 07:15 - 2016-11-29 01:32 - 00000000 ____D C:\Windows\Panther 2016-11-29 07:14 - 2016-11-29 07:14 - 00262144 _____ C:\Windows\system32\config\userdiff 2016-11-29 07:09 - 2016-11-29 07:09 - 00000000 ___HD C:\$INPLACE.~TR 2016-11-29 07:09 - 2016-11-29 01:27 - 00000000 ___HD C:\$WINDOWS.~Q 2016-11-29 06:04 - 2016-11-29 06:04 - 00000000 ____D C:\Windows.old 2016-11-29 01:32 - 2016-11-29 01:32 - 00001447 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-11-29 01:32 - 2016-11-29 01:32 - 00001413 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2016-11-29 01:32 - 2016-11-29 01:32 - 00000020 ___SH C:\Users\Fernando\ntuser.ini 2016-11-29 01:27 - 2016-11-29 01:27 - 00022744 _____ C:\Windows\system32\emptyregdb.dat 2016-11-29 01:19 - 2016-11-29 01:32 - 00000000 ____D C:\Users\Fernando 2016-11-29 01:19 - 2016-11-29 01:19 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2016-11-29 01:19 - 2016-11-29 01:19 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\My Documents 2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Videos 2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Pictures 2016-11-29 01:19 - 2016-11-29 01:19 - 00000000 _SHDL C:\Users\Fernando\Documents\My Music 2016-11-29 01:19 - 2010-11-21 05:16 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Media Center Programs 2016-11-29 01:17 - 2016-11-29 01:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagwrn.xml 2016-11-29 00:50 - 2016-11-29 00:58 - 00001890 _____ C:\Windows\diagerr.xml 2016-11-29 00:44 - 2016-11-29 22:06 - 00000000 ____D C:\ProgramData\Betternet 2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc 2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files\TAP-Windows 2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\OpenVPN 2016-11-29 00:42 - 2016-11-29 01:22 - 00000000 ____D C:\Program Files (x86)\Betternet 2016-11-29 00:42 - 2016-11-29 00:42 - 00001957 _____ C:\Users\Public\Desktop\Betternet.lnk 2016-11-29 00:36 - 2016-11-29 00:41 - 00000000 ____D C:\3f957e2320794f24809526cf84cb2f8c 2016-11-29 00:33 - 2016-11-29 01:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\Downloaded Installations 2016-11-29 00:27 - 2016-11-29 22:34 - 00002898 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Fernando) 2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\IObit 2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\ProductData 2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\ProgramData\IObit 2016-11-29 00:27 - 2016-11-29 21:16 - 00000000 ____D C:\Program Files (x86)\IObit 2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\Windows\IObit 2016-11-29 00:27 - 2016-11-29 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4 2016-11-29 00:27 - 2016-11-29 00:27 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS 2016-11-29 00:27 - 2016-11-29 00:27 - 00003266 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler 2016-11-29 00:26 - 2016-11-29 21:17 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\IObit 2016-11-29 00:25 - 2016-11-29 01:26 - 00000000 ____D C:\Windows\System32\Tasks\Games 2016-11-29 00:23 - 2016-11-29 00:23 - 00000000 ____D C:\Users\Fernando\AppData\Local\VirtualStore 2016-11-28 22:44 - 2016-11-28 22:45 - 00000000 ____D C:\511bf2d5d7d8e5d6f91d 2016-11-28 22:17 - 2016-11-28 22:17 - 01035272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2016-11-28 22:17 - 2016-11-28 22:17 - 00190032 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys 2016-11-28 22:17 - 2016-11-28 22:17 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2016-11-28 22:17 - 2016-11-28 22:17 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2016-11-28 22:16 - 2016-11-28 22:16 - 09891328 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll 2016-11-28 22:16 - 2016-11-28 22:16 - 04332032 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCRU64.exe 2016-11-28 22:16 - 2016-11-28 22:16 - 04156928 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2016-11-28 22:16 - 2016-11-28 22:16 - 00418784 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys 2016-11-28 22:16 - 2016-11-28 22:16 - 00084480 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll 2016-11-28 21:55 - 2016-11-28 21:55 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys 2016-11-28 21:49 - 2016-11-28 21:51 - 00000000 ____D C:\791a230c1b44e9d5783f 2016-11-19 23:21 - 2016-11-19 23:22 - 00000000 ____D C:\dab04c57cb929be571bac9 2016-11-19 23:21 - 2016-06-29 20:44 - 39979576 _____ C:\Windows\system32\nvcompiler.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 31626808 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 25402424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 19199216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 17302264 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 16774904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 14356952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 13523392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-11-19 23:21 - 2016-06-29 20:44 - 10672752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 10656296 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 10214760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 09006760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 08742032 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 08600904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 03828968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 03513400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 03387080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 03067448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436869.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436869.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00984000 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00909248 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00771640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-11-19 23:21 - 2016-06-29 20:44 - 00039124 _____ C:\Windows\system32\nvinfo.pb 2016-11-19 23:21 - 2016-06-29 20:44 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-11-19 23:21 - 2016-06-29 20:44 - 00000594 _____ C:\Windows\system32\nv-vk64.json 2016-11-19 22:52 - 2016-11-19 22:52 - 00000000 ____D C:\Dell 2016-11-17 00:39 - 2016-11-17 00:41 - 00000000 ____D C:\0460bffc044008cb44106ceb02 2016-11-16 23:31 - 2016-11-16 23:46 - 00000000 __SHD C:\KRECYCLE 2016-11-16 22:51 - 2016-11-16 22:51 - 00000000 _____ C:\TOSTACK 2016-11-16 22:49 - 2016-11-17 00:15 - 00000002 _____ C:\END 2016-11-16 22:49 - 2016-11-16 22:50 - 00000000 ____D C:\uninst 2016-11-14 17:53 - 2016-11-16 22:48 - 00000000 ____D C:\Intel 2016-11-14 17:32 - 2016-11-14 17:32 - 00000000 __RHD C:\MSOCache 2016-11-14 15:46 - 2016-11-14 15:46 - 00000000 _SHDL C:\Arquivos de Programas ==================== Three Months Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-11-29 22:41 - 2009-07-14 02:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-11-29 22:35 - 2009-07-14 03:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI 2016-11-29 22:35 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf 2016-11-29 22:29 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-11-29 22:08 - 2009-07-14 02:45 - 00303912 _____ C:\Windows\system32\FNTCACHE.DAT 2016-11-29 22:03 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\rescache 2016-11-29 22:01 - 2010-11-21 05:16 - 00000000 ____D C:\Program Files\Windows Journal 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\winrm 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\WCN 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\winrm 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\WCN 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\slmgr 2016-11-29 22:01 - 2010-11-21 05:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\Windows Defender 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files\DVD Maker 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2016-11-29 22:01 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\com 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\sysprep 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\oobe 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\MUI 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\migwiz 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\Dism 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\com 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\servicing 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\IME 2016-11-29 22:01 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\System 2016-11-29 21:26 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\ShellNew 2016-11-29 21:26 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2016-11-29 20:32 - 2009-07-14 01:20 - 00000000 __RHD C:\Users\Public\Libraries 2016-11-29 20:26 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Help 2016-11-29 07:15 - 2009-07-14 03:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2016-11-29 01:27 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Registration 2016-11-29 01:24 - 2009-07-14 02:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-11-29 01:22 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\NDF 2016-11-29 01:19 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-11-29 01:17 - 2010-11-21 05:16 - 00000000 ____D C:\Windows\CSC ==================== Files in the root of some directories ======= 2016-11-29 20:42 - 2016-11-29 20:42 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Fernando\AppData\Local\Temp\DAEMON Tools Lite.exe C:\Users\Fernando\AppData\Local\Temp\ose00000.exe C:\Users\Fernando\AppData\Local\Temp\setup.dll ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-11-29 01:16 ==================== End of FRST.txt ============================