Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 23-05-2022 Executado por Paulo (administrador) em DESKTOP-1HFGG9A (Dell Inc. Inspiron 5457) (24-05-2022 02:03:46) Executando a partir de C:\Users\Paulo\Desktop Perfis Carregados: Paulo Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1706 (X64) Idioma: Inglês (Estados Unidos) -> Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <2> (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18> (C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRAgent.exe (C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe (C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe (C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe (C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\nvapiw.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4> (C:\Windows\SysWOW64\cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\plugins_nms.exe (C:\Windows\SysWOW64\cmd.exe ->) (Kaspersky Lab JSC -> Kaspersky Lab AO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\plugin-nm-server-v2.exe (DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_6b4dd6d3daac464f\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe (services.exe ->) (philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe (services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe (services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2> (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (svchost.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Paulo\AppData\Local\Microsoft\OneDrive\22.089.0426.0003_1\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1704_none_7de951067ca990f6\TiWorker.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9226752 2017-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [CertificateRegistration] => C:\Windows\system32\aetcrss1.exe [25088 2017-05-09] (A.E.T. Europe B.V.) [Arquivo não assinado] HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [CentraStage] => C:\Program Files (x86)\CentraStage\Gui.exe (Nenhum Arquivo) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [pje-office] => C:\Program Files (x86)\pje-office\PJeOffice.exe [59392 2021-07-12] (Conselho Nacional de Justica - CNJ) [Arquivo não assinado] HKU\S-1-5-21-1900339767-290322625-421212182-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1900339767-290322625-421212182-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Paulo\AppData\Local\WebEx\WebexHost.exe [6009680 2021-11-05] (Cisco WebEx LLC -> Cisco Webex LLC) HKU\S-1-5-21-1900339767-290322625-421212182-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Paulo\AppData\Local\Microsoft\Teams\Update.exe [2508480 2022-05-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [184320 2021-10-13] (Microsoft Corporation) [Arquivo não assinado] HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [51032 2008-04-07] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel HKLM\Software\Microsoft\Active Setup\Installed Components: [{b1a2e791-aa02-4b5d-abe2-5c9e31b05bca}] -> "C:\ProgramData\CentraStage\AEMAgent\RMM.WebRemote\10.5.0.58\RMM.WebRemote.exe" --init-for-user "C:\ProgramData\CentraStage\AEMAgent" HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\101.0.4951.67\Installer\chrmstp.exe [2022-05-15] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{28FDFE90-3711-4696-8E48-A8CCC3C06571}] -> MSPACredentialProvider_7.00.20.202011061047_LOGICnow.dll HKLM\Software\...\Authentication\Credential Providers: [{2B1BEA0D-77FE-4230-8971-50BC34781AC2}] -> MSPACredentialProvider_7.00.21.202012161402_LOGICnow.dll HKLM\Software\...\Authentication\Credential Providers: [{97E1814E-5601-41c8-9971-10C319EF61CC}] -> C:\Windows\system32\SRCredentialProvider.dll [2019-10-04] (Splashtop Inc. -> Splashtop Inc.) HKLM\Software\...\Authentication\Credential Providers: [{9FBE63BA-9553-41C6-B261-1D40038CF418}] -> C:\Windows\system32\MSPACredentialProvider_7.00.25.202103181759_LOGICnow.dll [2021-03-18] (Solarwinds Worldwide, LLC -> N-able Take Control) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-07-12] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\pje-office.lnk [2021-08-25] ShortcutTarget: pje-office.lnk -> C:\Program Files (x86)\pje-office\PJeOffice.exe (Conselho Nacional de Justica - CNJ) [Arquivo não assinado] ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {07C72D74-D752-4EF9-B137-B7396BD4C4CA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {0E998866-5079-4452-B582-705E358D9C0C} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [934760 2020-02-10] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {22D1B024-24E7-4657-9493-00DCA3214B7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {5DC501F3-6062-4DBF-B1CD-3EF0E6E3DF3B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894016 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) Task: {6E667539-0D15-429E-9EC4-D60263CAF2C3} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [623800 2021-11-23] (Kaspersky Lab JSC -> AO Kaspersky Lab) Task: {6EA58D8B-F8E2-4BE8-9A60-E8DA04DC43D8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144784 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) Task: {77805B4E-5C09-40C8-9262-D4A35B39160E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {7894D925-28FE-4D84-9044-244EC067B58E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894016 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) Task: {83DF237B-191D-4F1C-A7A8-84C6DA086D2B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) Task: {8B099C99-52E7-4582-92E6-3456AA9A39F7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144784 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) Task: {928D04F3-1FAA-4485-94FB-994F9919B641} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC) Task: {9732A8FB-B5DB-4A7B-80BF-7F486897AE0D} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-O6FA6.tmp\corefixer.exe /norerun (Nenhum Arquivo) <==== ATENÇÃO Task: {9DCE85A4-9D3F-4DF8-A845-382C484EA5D7} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-04-27] (Kaspersky Lab JSC -> AO Kaspersky Lab) Task: {A072F21F-B3EB-4E6D-A25B-2E590942A380} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Disable (Nenhum Arquivo) Task: {A169662F-39DA-46EB-8720-690165FC9861} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A3EA9608-727A-44A7-BC51-B66E229978AD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A7056D14-A3A2-40D7-A204-BF4F74715D29} - System32\Tasks\update-S-1-5-21-1900339767-290322625-421212182-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {AE9DDD30-5355-46C2-895B-7107C2645DB2} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {B1C1E200-C48F-4C5D-B29B-D64796D6B99E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC) Task: {B8A29D58-379D-4B7C-8BF1-3A2F473C8462} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [71168 2019-12-06] (Microsoft Corporation) [Arquivo não assinado] Task: {BAEB8762-68E5-400B-B0F5-0C4A00F18093} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Task: {BFCF59B9-9B1F-4CF9-B345-75133AB39CB7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {C1F19765-809B-47D6-A211-9E8356978A3D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C5611742-C7AB-42D7-AF19-4F1F98ABE75C} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Warning (Nenhum Arquivo) Task: {CC4F585B-EBBB-4AA6-9BDF-B28C489A9125} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [135168 2021-08-23] (Microsoft Corporation) [Arquivo não assinado] Task: {D2A0B012-7555-48BE-9345-641EAF585E9F} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Task: {D78CDA23-F39E-425D-8001-E86374FB942D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [979408 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) Task: {DD683F21-0FEE-4B72-A678-E3E2CD3EE082} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {DF1C972B-1128-49CB-97C1-F6A21B24CCAE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {F27798A1-DDC7-43ED-8BCA-9B8D0967F0EB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-1900339767-290322625-421212182-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 181.213.132.5 181.213.132.4 Tcpip\..\Interfaces\{02dd49b6-aab6-4cc1-838a-243f87940f24}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{4517ca9d-f82f-4ee0-a39e-e8daf2f6bbc5}: [DhcpNameServer] 181.213.132.5 181.213.132.4 Tcpip\..\Interfaces\{49b94cf6-9bdd-427c-98f7-3428807a32af}: [DhcpNameServer] 181.213.132.5 181.213.132.4 Tcpip\..\Interfaces\{52ab2036-3b53-4c51-b099-479b2e687d93}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)] Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)] Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)] Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)] Edge Profile: C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-24] Edge Extension: (Kaspersky Protection) - C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-05-23] Edge Extension: (Outlook) - C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-02-10] Edge Extension: (Word) - C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-02-10] Edge Extension: (Excel) - C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-02-10] Edge Extension: (PowerPoint) - C:\Users\Paulo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-02-10] Edge HKU\S-1-5-21-1900339767-290322625-421212182-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-10] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default [2022-05-24] CHR Notifications: Default -> hxxps://camicado.soclminer.com.br; hxxps://meet.google.com; hxxps://placar.uol.com.br; hxxps://www.facebook.com; hxxps://www.iplace.com.br; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com.br/" CHR Extension: (Certisign WebSigner) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfifjfajpekbmhmjppnmmjgmhjkildl [2022-04-11] CHR Extension: (Kaspersky Protection) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-05-19] CHR Extension: (Free Download Manager) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2021-10-20] CHR Extension: (Web Signer) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbafmabaelnnkondpfpjmdklbmfnbmol [2020-07-11] CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-05-18] CHR Extension: (Web PKI) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcngeagmmhegagicpcmpinaoklddcgon [2020-09-22] CHR Extension: (Kaspersky Password Manager) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2022-04-11] CHR Extension: (Favoritos do iCloud) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-05-19] CHR Extension: (Documentos Google off-line) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-26] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-05-19] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-10] CHR Extension: (Unblock Clipboard Interaction in Forms) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojbadajhjbjecoojjkoddhnbobjgleib [2020-07-11] CHR Extension: (Simple EPUB Reader) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2020-07-11] CHR Extension: (ICPBravo Access) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmndhfiofdlcgahoinehedbincopilm [2020-08-04] CHR Extension: (Assinador Portal de Assinatura Digital) - C:\Users\Paulo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poblibmmnfmadobfpijkgojaipcdffjj [2020-08-23] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743984 2021-10-05] (philandro Software GmbH -> philandro Software GmbH) S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [207360 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] S3 AppMgmt; C:\WINDOWS\SysWOW64\appmgmts.dll [160768 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11762616 2022-05-20] (Microsoft Corporation -> Microsoft Corporation) S3 cloudidsvc; C:\WINDOWS\system32\cloudidsvc.dll [107520 2021-11-09] (Microsoft Corporation) [Arquivo não assinado] R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> ) S3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [205824 2021-08-23] (Microsoft Corporation) [Arquivo não assinado] S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2020-08-25] (Macrovision Corporation -> Macrovision Europe Ltd.) [Arquivo não assinado] S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375480 2021-11-23] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-05-24] (Malwarebytes Inc. -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-18] (Microsoft Windows Publisher -> Microsoft Corporation) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [382976 2021-08-23] () [Arquivo não assinado] R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.) S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [396800 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [975472 2021-06-30] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-05-19] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-05-19] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [955904 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_6b4dd6d3daac464f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_6b4dd6d3daac464f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2022-05-24] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [22824 2017-06-06] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [694056 2022-04-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1571680 2022-04-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [290600 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [309272 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [319176 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [116008 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [227664 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-05-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-05-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [28672 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [169984 2021-05-06] (Microsoft Corporation) [Arquivo não assinado] S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [172544 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-05-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-05-19] (Microsoft Windows -> Microsoft Corporation) R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [47800 2022-05-24] (Gas Informatica Ltda -> GAS Tecnologia) R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [51160 2021-06-30] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-06-30] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [33728 2021-06-30] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-05-24 02:03 - 2022-05-24 02:04 - 000038328 _____ C:\Users\Paulo\Desktop\FRST.txt 2022-05-24 02:02 - 2022-05-24 02:04 - 000000000 ____D C:\FRST 2022-05-24 01:41 - 2022-05-24 01:41 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys 2022-05-24 01:40 - 2022-05-24 01:43 - 000000000 ____D C:\AdwCleaner 2022-05-24 01:38 - 2022-05-24 01:38 - 002367488 _____ (Farbar) C:\Users\Paulo\Desktop\FRST64.exe 2022-05-24 01:32 - 2022-05-24 01:39 - 000000000 ____D C:\Users\Paulo\AppData\LocalLow\IGDump 2022-05-24 01:31 - 2022-05-24 01:31 - 000000000 ____D C:\Users\Paulo\AppData\Local\mbam 2022-05-24 01:30 - 2022-05-24 01:30 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-05-24 01:30 - 2022-05-24 01:30 - 000103888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-05-24 01:30 - 2022-05-24 01:30 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-05-24 01:30 - 2022-05-24 01:30 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-05-24 01:29 - 2022-05-24 01:29 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-05-24 01:29 - 2022-05-24 01:29 - 000000000 ____D C:\Program Files\Malwarebytes 2022-05-24 01:28 - 2022-05-24 01:28 - 008551608 _____ (Malwarebytes) C:\Users\Paulo\Downloads\adwcleaner_8.3.2.exe 2022-05-24 01:27 - 2022-05-24 01:27 - 002546400 _____ (Malwarebytes) C:\Users\Paulo\Downloads\MBSetup.exe 2022-05-23 23:24 - 2022-05-23 23:24 - 000216041 _____ C:\Users\Paulo\Downloads\Amil One Linha Selecionada - Sao Paulo.pdf 2022-05-23 19:15 - 2022-05-23 19:15 - 000124326 _____ C:\Users\Paulo\Downloads\CONSULTA DE CONTRIBUINTE Nº 089_2017.pdf 2022-05-23 17:21 - 2022-05-23 17:21 - 000002695 _____ C:\Users\Paulo\Desktop\YouTube Music.lnk 2022-05-23 16:40 - 2022-05-23 16:40 - 000259194 _____ C:\Users\Paulo\Downloads\download_crcsp_20220523163812_Assinado.pdf 2022-05-23 16:38 - 2022-05-23 16:38 - 000015033 _____ C:\Users\Paulo\Downloads\download_crcsp_20220523163812.pdf 2022-05-23 11:12 - 2022-05-23 11:12 - 000002368 _____ C:\Users\Paulo\Downloads\Cálculo - TJSP - Pedro Henrique.pdf 2022-05-23 11:09 - 2022-05-23 11:09 - 000039379 _____ C:\Users\Paulo\Downloads\cITAÇÃO DA rÉ doc_206562122.pdf 2022-05-23 10:49 - 2022-05-23 10:49 - 000027815 _____ C:\Users\Paulo\Downloads\DESPACHO 18 DE MAIO EMENDAR INICIALdoc_218443610.pdf 2022-05-23 10:47 - 2022-05-23 10:47 - 000047261 _____ C:\Users\Paulo\Downloads\SENTENÇA doc_208609425 (1).pdf 2022-05-23 10:22 - 2022-05-24 01:49 - 000000000 ___RD C:\Users\Paulo\Sobral Advogados 2022-05-22 23:46 - 2022-05-22 23:46 - 004774969 _____ C:\Users\Paulo\Downloads\Guia Prático EFD - Versão 3.0.9.pdf 2022-05-22 21:30 - 2022-05-22 21:30 - 000079420 _____ C:\Users\Paulo\Downloads\STJ_1ª Turma_RESP 1.402.138- não incidência do IPI na transferência.pdf 2022-05-22 20:12 - 2022-05-22 20:13 - 004194903 _____ C:\Users\Paulo\Downloads\FUCAPE - Aula IPI (Otto Sobral)v2.pptx 2022-05-22 19:06 - 2022-05-22 19:06 - 000056889 _____ C:\Users\Paulo\Downloads\RESPOSTA_PEDIDO_16853006340201708.pdf 2022-05-22 17:27 - 2022-05-24 01:49 - 000000000 ___RD C:\Users\Paulo\OneDrive - Sobral Advogados 2022-05-20 00:53 - 2022-05-20 00:53 - 000089380 _____ C:\Users\Paulo\Downloads\SC_Cosit_n_179-2019.pdf 2022-05-19 23:41 - 2022-05-20 01:14 - 000036895 _____ C:\Users\Paulo\Downloads\Parecer Normativo CST nº 214 de 15_08_1972.pdf 2022-05-19 22:18 - 2022-05-19 22:18 - 000575358 _____ C:\Users\Paulo\Downloads\RFB_Parecer Normativo nº 214_1974.pdf 2022-05-19 22:18 - 2022-05-19 22:18 - 000418450 _____ C:\Users\Paulo\Downloads\RFB_Parecer Normativo nº 214_1973.pdf 2022-05-19 21:45 - 2022-05-19 21:45 - 002486939 _____ C:\Users\Paulo\Downloads\16853006107201717 - Anexo.pdf 2022-05-19 21:45 - 2022-05-19 21:45 - 002283585 _____ C:\Users\Paulo\Downloads\16853006107201717.pdf 2022-05-19 21:43 - 2022-05-19 21:43 - 000658467 _____ C:\Users\Paulo\Downloads\16853006127201798.pdf 2022-05-19 21:42 - 2022-05-19 21:42 - 000017313 _____ C:\Users\Paulo\Downloads\16853008664201772.pdf 2022-05-19 21:41 - 2022-05-19 21:41 - 001014805 _____ C:\Users\Paulo\Downloads\SCI 3.pdf 2022-05-19 21:40 - 2022-05-19 21:40 - 000765731 _____ C:\Users\Paulo\Downloads\16853002735201995.PDF 2022-05-19 21:39 - 2022-05-19 21:39 - 004034164 _____ C:\Users\Paulo\Downloads\Parecer_Normativo_CST_nA_1121978.pdf 2022-05-19 21:36 - 2022-05-19 21:36 - 001061255 _____ C:\Users\Paulo\Downloads\Parecer_Normativo_CST_ANAA143_1973.pdf 2022-05-19 21:23 - 2022-05-19 21:23 - 000147896 _____ C:\Users\Paulo\Downloads\SC_Cosit_n_56-2021.pdf 2022-05-19 20:42 - 2022-05-20 01:11 - 000173051 _____ C:\Users\Paulo\Downloads\SC_Cosit_n_294-2018.pdf 2022-05-19 20:30 - 2022-05-19 20:30 - 001186629 _____ C:\Users\Paulo\Downloads\Parecer Normativo n. 398_1971.PDF 2022-05-18 22:50 - 2022-05-18 22:50 - 000188928 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2022-05-18 22:48 - 2022-05-18 22:48 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2022-05-18 22:48 - 2022-05-18 22:48 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-05-18 22:47 - 2022-05-18 22:47 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-05-18 22:27 - 2022-05-18 22:27 - 000000000 ___HD C:\$WinREAgent 2022-04-28 17:42 - 2022-04-28 17:42 - 000199013 _____ C:\Users\Paulo\Downloads\NF 2369 PAULO OCTTAVIO NUTROLOGO.pdf 2022-04-28 17:42 - 2022-04-28 17:42 - 000198801 _____ C:\Users\Paulo\Downloads\NF 2367 PAULO OCTTAVIO DERMATOLOGIA.pdf 2022-04-28 17:42 - 2022-04-28 17:42 - 000198392 _____ C:\Users\Paulo\Downloads\NF 2368 PAULO OCTTAVIO CONSULTA MEDICA.pdf 2022-04-26 18:37 - 2022-04-26 18:37 - 000037369 _____ C:\Users\Paulo\Downloads\SFPCER202202128 Sotreq.pdf 2022-04-26 17:34 - 2022-04-26 17:34 - 000289103 _____ C:\Users\Paulo\Downloads\set-rn-comunicado-cofis-07-2021.pdf 2022-04-26 17:20 - 2022-04-26 17:20 - 000036316 _____ C:\Users\Paulo\Downloads\4Sk46G-FULL.pdf 2022-04-26 02:34 - 2022-02-07 12:49 - 000499136 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2022-04-26 02:34 - 2022-02-07 12:49 - 000431936 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2022-04-26 02:34 - 2022-02-07 12:48 - 000943472 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2022-04-26 02:34 - 2022-02-07 12:48 - 000703224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2022-04-26 02:34 - 2022-02-07 12:48 - 000588128 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2022-04-26 02:34 - 2022-02-07 12:48 - 000448392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 027889576 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 020629912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 001887392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-04-26 02:34 - 2022-02-07 12:47 - 001887392 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-04-26 02:34 - 2022-02-07 12:47 - 001464992 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-04-26 02:34 - 2022-02-07 12:47 - 001464992 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-04-26 02:34 - 2022-02-07 12:47 - 001323760 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 001323760 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 001043176 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 001043176 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 000453032 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 000375720 _____ C:\WINDOWS\system32\ze_loader.dll 2022-04-26 02:34 - 2022-02-07 12:47 - 000142240 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2022-04-26 02:34 - 2022-02-07 12:46 - 000209944 _____ C:\WINDOWS\system32\ControlLib.dll 2022-04-26 02:34 - 2022-02-07 12:46 - 000166024 _____ C:\WINDOWS\system32\ControlLib32.dll 2022-04-26 02:33 - 2022-04-26 02:33 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-04-26 00:21 - 2022-04-26 00:21 - 005701889 _____ C:\Users\Paulo\Downloads\RICCA CYRELA IBIRAPUERA BAY YOU.pdf ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-05-24 01:51 - 2020-07-11 22:51 - 000000000 ____D C:\Program Files (x86)\Google 2022-05-24 01:51 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-05-24 01:50 - 2020-07-12 00:10 - 000000000 ____D C:\ProgramData\NVIDIA 2022-05-24 01:49 - 2020-07-11 20:37 - 000000000 ___RD C:\Users\Paulo\OneDrive 2022-05-24 01:48 - 2020-07-11 23:06 - 000000000 __SHD C:\Users\Paulo\IntelGraphicsProfiles 2022-05-24 01:47 - 2021-05-05 20:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-05-24 01:47 - 2021-05-05 20:25 - 000008192 ___SH C:\DumpStack.log.tmp 2022-05-24 01:47 - 2020-09-09 14:16 - 000047800 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys 2022-05-24 01:47 - 2020-07-11 23:06 - 000000000 ____D C:\Intel 2022-05-24 01:44 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-05-24 01:43 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF 2022-05-24 01:30 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-05-24 01:11 - 2021-05-05 20:35 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2021-05-05 20:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:11 - 2020-07-12 00:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-05-24 01:10 - 2020-07-12 00:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-05-24 01:10 - 2020-07-12 00:09 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-05-24 01:09 - 2021-05-05 20:35 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:09 - 2021-05-05 20:35 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-05-24 01:04 - 2020-07-12 00:44 - 000000000 ____D C:\Users\Paulo\AppData\Local\NVIDIA Corporation 2022-05-24 00:55 - 2020-07-11 23:28 - 000000000 ____D C:\Users\Paulo\AppData\Roaming\WhatsApp 2022-05-23 22:39 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-05-23 17:21 - 2020-07-11 22:55 - 000000000 ____D C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome 2022-05-23 17:11 - 2021-05-06 01:07 - 000764084 _____ C:\WINDOWS\system32\prfh0416.dat 2022-05-23 17:11 - 2021-05-06 01:07 - 000149224 _____ C:\WINDOWS\system32\prfc0416.dat 2022-05-23 17:11 - 2021-05-05 20:31 - 001743636 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-05-23 16:24 - 2020-07-11 20:35 - 000000000 ____D C:\Users\Paulo\AppData\Local\Packages 2022-05-23 14:06 - 2021-05-05 20:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-05-23 11:58 - 2020-07-12 00:29 - 000000000 ____D C:\Users\Paulo\AppData\Local\D3DSCache 2022-05-23 10:25 - 2021-12-15 00:34 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1900339767-290322625-421212182-1001 2022-05-23 10:25 - 2021-07-15 12:25 - 000000000 ___RD C:\Users\Paulo\OLB Advogados 2022-05-23 10:25 - 2021-05-05 20:35 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1900339767-290322625-421212182-1001 2022-05-23 10:25 - 2021-05-05 20:28 - 000002369 _____ C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-05-23 10:22 - 2021-05-05 20:28 - 000000000 ____D C:\Users\Paulo 2022-05-23 08:33 - 2020-07-11 20:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-05-22 21:18 - 2021-05-07 13:54 - 000000000 ____D C:\Users\Paulo\AppData\Local\Deployment 2022-05-21 11:50 - 2020-07-11 20:36 - 000000000 ____D C:\ProgramData\Package Cache 2022-05-21 11:49 - 2022-04-11 08:43 - 000000000 ____D C:\Program Files\dotnet 2022-05-21 09:15 - 2020-07-11 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2022-05-21 09:15 - 2020-07-11 23:05 - 000000000 ____D C:\Program Files (x86)\Dell 2022-05-21 08:32 - 2021-02-05 19:06 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-05-21 08:32 - 2021-02-05 19:06 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-05-21 08:32 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-05-20 02:44 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-05-20 01:45 - 2020-07-11 23:11 - 000000000 ____D C:\Program Files\Microsoft Office 2022-05-19 20:31 - 2020-07-12 00:27 - 000002364 _____ C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2022-05-19 17:36 - 2020-07-11 20:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-05-19 17:22 - 2021-05-05 20:26 - 000445544 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-05-19 01:41 - 2019-12-07 06:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-05-19 01:41 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-18 23:01 - 2020-07-12 01:54 - 000000000 ____D C:\Users\Paulo\AppData\Local\CrashDumps 2022-05-18 23:00 - 2020-07-11 20:35 - 000000000 ____D C:\Users\Paulo\AppData\Local\ConnectedDevicesPlatform 2022-05-18 22:04 - 2020-07-11 20:54 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-05-18 21:58 - 2020-07-11 20:54 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-05-18 21:55 - 2021-10-26 09:12 - 000000000 ____D C:\Users\Paulo\AppData\Local\WhatsApp 2022-05-15 21:56 - 2020-07-11 22:54 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-15 21:56 - 2020-07-11 22:54 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-05-13 23:56 - 2019-12-07 06:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-05-13 23:43 - 2021-07-01 20:02 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d742069268281f 2022-05-13 23:43 - 2021-05-05 20:35 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-05-04 12:12 - 2020-12-03 11:29 - 000082552 _____ C:\WINDOWS\system32\FvSDK_x64.dll 2022-05-04 12:12 - 2020-12-03 11:29 - 000071288 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll 2022-04-28 09:59 - 2020-07-11 23:06 - 000000000 ____D C:\ProgramData\Intel 2022-04-26 02:33 - 2021-10-29 12:02 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-04-26 00:17 - 2020-07-11 23:27 - 000000000 ____D C:\Users\Paulo\AppData\Local\SquirrelTemp 2022-04-25 23:15 - 2020-07-11 20:37 - 000000000 ____D C:\Users\Paulo\AppData\Local\PlaceholderTileLogoFolder 2022-04-25 23:12 - 2021-05-05 20:35 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-04-25 23:12 - 2021-05-05 20:35 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore ==================== Arquivos na raiz de alguns diretórios ======== 2020-07-12 01:47 - 2020-07-12 01:47 - 000000003 _____ () C:\Users\Paulo\AppData\Local\updater.log 2020-07-12 01:47 - 2022-03-10 21:57 - 000000424 _____ () C:\Users\Paulo\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================