Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 04-06-2022 01 Executado por Pichau (administrador) em BIEL-MITO (04-06-2022 16:00:16) Executando a partir de C:\Users\Pichau\Downloads Perfis Carregados: Pichau Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1706 (X64) Idioma: Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18> (explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe (services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\AgentService.exe (services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2020-09-14] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2109824 2021-12-20] (Famatech Corp. -> Famatech Corp.) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [Airy Memory Cleaner] => C:\Program Files (x86)\Airy Memory Cleaner\AiryMC.exe [237568 2014-01-20] (hxxp://www.airysoftware.com) [Arquivo não assinado] HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-05-27] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [432320 2021-10-05] (Parsec Cloud, Inc. -> Parsec) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2022-02-15] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Pichau\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [MicrosoftEdgeAutoLaunch_65E153DD33F59AC373DA09E8D899FD40] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595192 2022-05-31] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3532928 2022-05-07] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-4279104284-4029660985-1505193530-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3532928 2022-05-07] (Razer USA Ltd. -> Razer Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-30] (Google LLC -> Google LLC) GroupPolicy: Restrição ? <==== ATENÇÃO GroupPolicy\User: Restrição ? <==== ATENÇÃO Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {04BA4E4D-FDDE-4FD6-B309-329FA0E7B92F} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. -> ) Task: {09E5677E-0EE3-4E28-A5BD-9C17D9F8DEAB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {0B1A1634-3EC3-43D8-98A9-27C3F6C89DFF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {0BF5A9EC-BF5F-46DE-99C4-7953A859CC91} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {21B0EB4A-B0FC-4BEB-94F4-3FDA8A53F1BE} - System32\Tasks\update-S-1-5-21-4279104284-4029660985-1505193530-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {28470882-9879-495E-9CEA-EDFFB60D72B6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {3C6E315D-6D5C-4134-8715-7CCF1CAA9C57} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) Task: {54E46F90-D798-4A66-80FE-D67777452CBF} - System32\Tasks\googleupdatetaskmachinecore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2090-03-13] (Google Inc -> Google LLC) Task: {67223EE2-53C7-47C9-81E3-F0F6DB336075} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {6C5E1785-8C09-4E39-A4FF-797A86AA8882} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {76AA677B-C2F6-447B-8DA9-A5F752EC614A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {7A3A58B7-8425-4D53-AE1B-24C84B0F9554} - System32\Tasks\Opera GX scheduled Autoupdate 1623414239 => C:\Users\Pichau\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS -> Opera Software) Task: {83E69023-6E76-471E-970B-B289F35E1D31} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {90B41F83-8648-4FED-A218-DD9598861845} - System32\Tasks\googleupdatetaskmachineua => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2090-03-13] (Google Inc -> Google LLC) Task: {9277139A-43D2-4BE9-A83B-C94D7EDEFBC6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {AE8D3617-D087-4A53-90B9-DEF3D9B32F9F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {B15BF47E-5CDC-4224-ABB2-1729AB7D994C} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [837344 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {B5B8ED0B-4306-4540-871C-76F78D795631} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {BE061085-FA3A-445B-A605-DE3912EC64B4} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1624897694 => C:\Users\Pichau\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Pichau\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {FFD6EEFB-0CDB-48D7-8BA6-A2DAE11721ED} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4496488 2020-10-16] (Avast Software s.r.o. -> AVAST Software) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-4279104284-4029660985-1505193530-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{4547998f-2b40-4ba9-8349-7070e6b83737}: [DhcpNameServer] 192.168.0.8 Tcpip\..\Interfaces\{d2be274e-e706-47f6-963b-772bd588dd78}: [DhcpNameServer] 192.168.0.8 Tcpip\..\Interfaces\{f9ae3cb1-3de3-47a8-818d-c64b8549af24}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{f9ae3cb1-3de3-47a8-818d-c64b8549af24}: [DhcpNameServer] 192.168.15.1 Edge: ======= Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)] Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)] Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)] Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)] Edge Profile: C:\Users\Pichau\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-04] Edge Notifications: Default -> hxxps://centralheat.net Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Pichau\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-06-02] Edge Extension: (Save to Facebook) - C:\Users\Pichau\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2021-06-18] Edge Extension: (360 Internet Protection) - C:\Users\Pichau\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\okdacpiidbbphpjpfmecjjhicomjdeie [2022-04-28] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2019-08-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2019-08-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Arquivo não assinado] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default [2022-06-04] CHR Notifications: Default -> hxxps://annockers.info; hxxps://beastbuying.com; hxxps://ckk.ai; hxxps://cohal.mpanythat.com; hxxps://dlive.tv; hxxps://ensinthetertaning.info; hxxps://fitgirlrepacks.co; hxxps://hatsurewhim.info; hxxps://igg-games.com; hxxps://linkvertise.com; hxxps://livechat.intergrall.com.br; hxxps://mail.google.com; hxxps://medianewpage.com; hxxps://meet.google.com; hxxps://n19.biz; hxxps://serch22.biz; hxxps://shopee.com.br; hxxps://tribogamer.com; hxxps://web.whatsapp.com; hxxps://www.facebook.com; hxxps://www.tecmundo.com.br; hxxps://www1.bethanyharrell.pro; hxxps://www1.ecleneue.com; hxxps://www1.lucienmann.pro; hxxps://www118.zippyshare.com; hxxps://www1a.moshemartin.pro; hxxps://www1a.rudyvalencia.pro; hxxps://www1a.samcunningham.pro; hxxps://www1a.sherwoodsutton.pro; hxxps://www1p.delmarmora.pro; hxxps://www1p.sherwoodsutton.pro; hxxps://www1p.tabathaherman.pro; hxxps://www3.darenjarvis.pro; hxxps://www32.darenjarvis.pro; hxxps://www37.nathanaeldan.pro; hxxps://www54.nathanaeldan.pro; hxxps://www66.darenjarvis.pro; hxxps://www7.elbaestes.pro; hxxps://www8.elbaestes.pro; hxxps://www87.christianivory.pro; hxxps://wwws.portoseguro.com.br CHR NewTab: Default -> Not-active:"chrome-extension://liiajppdkgnbpjbpehejidbfjicnfioh/newtabproduct.html" CHR Extension: (Apresentações) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-25] CHR Extension: (Documentos) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-25] CHR Extension: (Google Drive) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20] CHR Extension: (YouTube) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-25] CHR Extension: (Redirecionamento Cálculo Seguradora) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\egbbninofojfeabmcanakgkkimghnjhc [2022-06-02] CHR Extension: (WA Web Plus for WhatsApp™) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekcgkejcjdcmonfpmnljobemcbpnkamh [2022-05-29] CHR Extension: (Planilhas) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-25] CHR Extension: (Documentos Google off-line) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-18] CHR Extension: (360 Internet Protection) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2022-04-19] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-06-02] CHR Extension: (Save to Facebook) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2021-06-12] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Profile: C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-18] CHR Profile: C:\Users\Pichau\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-18] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-4279104284-4029660985-1505193530-1001) Opera GXStable - "C:\Users\Pichau\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8450976 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [360408 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2748520 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-06-01] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-04-03] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-07] (Epic Games Inc. -> Epic Games, Inc.) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-02-15] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-12-01] (GOG Sp. z o.o. -> GOG.com) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [14288 2020-12-02] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-06-02] (Malwarebytes Inc. -> Malwarebytes) R2 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [783728 2021-12-20] (MiniTool Software Limited -> ) R2 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [228208 2021-12-20] (MiniTool Software Limited -> ) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575064 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts) R2 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-05] (Parsec Cloud, Inc. -> Parsec) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2022-04-09] (Even Balance, Inc. -> ) R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2022-04-09] (Even Balance, Inc. -> ) R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-04-02] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2021-05-16] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 QMEmulatorService; D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [298232 2019-05-05] (Tencent Technology(Shenzhen) Company Limited -> Tencent) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [299136 2022-05-06] (Razer USA Ltd. -> Razer Inc.) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2133968 2022-05-18] (Rockstar Games, Inc. -> Rockstar Games) R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1058688 2021-12-20] (Famatech Corp. -> Famatech Corp.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2022-02-18] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-11] (Microsoft Windows Publisher -> Microsoft Corporation) S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13341480 2021-11-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [334208 2020-11-05] (Twitch Interactive, Inc. -> ) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-06-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-05-27] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9132336 2022-06-01] (PUBG CORPORATION -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199888 2021-08-23] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [95232 2020-09-14] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [95232 2020-09-14] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [346864 2021-10-27] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2020-12-14] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360CondrvFix; C:\WINDOWS\system32\DRIVERS\360CondrvFix.sys [39752 2021-01-19] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [17192 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn) R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [494080 2021-05-06] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S4 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [334336 2021-05-06] (Beijing Qihu Technology Co., Ltd. -> 360安全中心) R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2019-12-13] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R2 aow_drv; D:\Program Files\TxGameAssistant\UI\2.0.9651.123\aow_drv_x64_ev.sys [859920 2019-04-29] (Tencent Technology(Shenzhen) Company Limited -> Tencent) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-16] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) S3 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-16] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518104 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-16] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-16] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-16] (Avast Software s.r.o. -> AVAST Software) S3 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-16] (Avast Software s.r.o. -> AVAST Software) R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [232688 2021-06-27] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-04-27] (Bluestack Systems, Inc. -> Bluestack System Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [103888 2022-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194512 2022-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [74688 2022-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-06-04] (Malwarebytes Inc. -> Malwarebytes) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [69048 2020-05-27] (Famatech Corp. -> Famatech Corp.) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) S3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc. -> Razer Inc) R3 RzDev_0098; C:\WINDOWS\System32\drivers\RzDev_0098.sys [55624 2021-01-28] (Razer USA Ltd. -> Razer Inc) S3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc. -> Razer Inc) R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [1431256 2022-06-02] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S2 AMDRyzenMasterDriver; \??\C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AMDRyzenMasterDriver.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2090-03-13 01:25 - 2021-12-30 22:48 - 000002386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2090-03-13 01:25 - 2021-12-30 22:48 - 000002345 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2090-03-13 01:24 - 2021-12-30 23:53 - 000000000 ____D C:\Program Files (x86)\Google 2090-03-13 01:24 - 2019-04-25 17:48 - 000000000 ____D C:\Users\Pichau\AppData\Local\Google 2090-03-13 01:13 - 2022-05-11 14:42 - 000000000 ____D C:\ProgramData\Razer 2090-03-13 01:13 - 2022-05-11 14:39 - 000000000 ____D C:\Users\Pichau\AppData\Local\Razer 2090-03-13 01:09 - 2021-06-27 16:07 - 000000000 ____D C:\Users\Pichau\AppData\Local\NVIDIA Corporation 2090-03-10 19:01 - 2090-03-10 19:01 - 000000000 ____D C:\Users\Pichau\AppData\Local\PeerDistRepub 2090-03-10 18:54 - 2021-04-21 00:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2090-03-10 18:53 - 2021-05-01 19:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2090-03-10 18:51 - 2019-03-18 13:50 - 001734536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441967.dll 2090-03-10 18:51 - 2019-03-18 13:50 - 001467648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441967.dll 2090-03-06 03:45 - 2021-04-21 00:52 - 000000000 ____D C:\WINDOWS\system32\DAX3 2090-03-06 03:45 - 2021-04-21 00:52 - 000000000 ____D C:\WINDOWS\system32\DAX2 2090-02-02 18:46 - 2022-06-02 11:08 - 000000454 __RSH C:\ProgramData\ntuser.pol 2090-02-02 18:36 - 2022-06-02 10:44 - 000000000 ____D C:\ProgramData\Packages 2090-02-02 18:36 - 2020-02-04 16:24 - 000000000 ____D C:\Users\Pichau\AppData\Local\Comms 2090-02-02 18:21 - 2021-08-09 01:30 - 000000000 ___RD C:\Users\Pichau\OneDrive 2090-02-02 18:21 - 2019-01-17 07:33 - 000000000 ____D C:\Users\Pichau\AppData\Local\MicrosoftEdge 2090-02-02 18:20 - 2090-02-02 18:20 - 000000000 ____D C:\Users\Pichau\AppData\Local\Publishers 2090-02-02 18:19 - 2090-02-02 18:19 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Adobe 2090-02-02 18:19 - 2022-01-28 20:30 - 000000000 ____D C:\Users\Pichau\AppData\Local\Packages 2090-02-02 18:19 - 2021-05-29 20:32 - 000000000 ___RD C:\Users\Pichau\3D Objects 2090-02-02 18:19 - 2021-04-21 01:02 - 000000000 __RHD C:\Users\Public\AccountPictures 2090-02-02 18:19 - 2020-07-05 02:05 - 000000000 ____D C:\Users\Pichau\AppData\Local\VirtualStore 2090-02-02 18:19 - 2019-04-25 21:03 - 000000000 ____D C:\Users\Pichau\AppData\Local\ConnectedDevicesPlatform 2090-02-02 18:07 - 2090-02-02 18:07 - 000000000 ____D C:\WINDOWS\CSC 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Usuário Padrão 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Todos os Usuários 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Músicas 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Imagens 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Public\Documents\Meus Vídeos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Modelos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Meus Documentos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Menu Iniciar 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Músicas 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Imagens 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Documents\Meus Vídeos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Configurações Locais 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\ProgramData\Modelos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\ProgramData\Menu Iniciar 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\ProgramData\Documentos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Program Files\Common Files\Sistema 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Program Files\Arquivos Comuns 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Documents and Settings 2090-02-02 18:05 - 2090-02-02 18:05 - 000000000 _SHDL C:\Arquivos de Programas 2090-02-02 18:02 - 2090-02-02 18:02 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2090-02-02 18:02 - 2019-12-08 21:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-06-04 16:00 - 2022-06-04 16:01 - 000033059 _____ C:\Users\Pichau\Downloads\FRST.txt 2022-06-04 15:59 - 2022-06-04 16:00 - 000000000 ____D C:\FRST 2022-06-04 15:59 - 2022-06-04 15:59 - 002368000 _____ (Farbar) C:\Users\Pichau\Downloads\FRST64.exe 2022-06-04 15:58 - 2022-06-04 15:58 - 000001620 _____ C:\Users\Pichau\Desktop\relatório.txt 2022-06-04 15:45 - 2022-06-04 15:45 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-06-04 15:45 - 2022-06-04 15:45 - 000194512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-06-04 15:45 - 2022-06-04 15:45 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-06-04 15:45 - 2022-06-04 15:45 - 000074688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-06-04 15:37 - 2022-06-04 15:37 - 000138520 _____ C:\Users\Pichau\Downloads\Boleto_1654367864866.pdf 2022-06-04 11:26 - 2022-06-04 11:26 - 000000000 ____D C:\WINDOWS\LastGood 2022-06-03 21:13 - 2022-06-03 21:13 - 000407699 _____ C:\Users\Pichau\Downloads\ARQOUT47679EE502A34E16B385B95045A6C10603062022100351822FRANQUIA_50_210104423.PDF 2022-06-03 18:59 - 2022-06-03 18:59 - 000311934 _____ C:\Users\Pichau\Downloads\IVANY KABBACH - COTAÇÃO TOKIO SEGUROS.pdf 2022-06-02 23:44 - 2022-06-02 23:44 - 000000223 _____ C:\Users\Pichau\Desktop\Edição Deluxe do Mass Effect™ Andromeda.url 2022-06-02 23:41 - 2022-06-02 23:41 - 000000368 _____ C:\Users\Pichau\Desktop\Darkest Dungeon®.url 2022-06-02 13:19 - 2022-06-02 13:19 - 000000222 _____ C:\Users\Pichau\Desktop\DARK SOULS™ III.url 2022-06-02 12:34 - 2022-06-02 12:34 - 000000113 _____ C:\WINDOWS\system32\Drivers\etc\RepairReminder.txt 2022-06-02 10:27 - 2022-06-02 10:27 - 000000000 ____D C:\Users\Pichau\AppData\Local\mbam 2022-06-02 10:26 - 2022-06-02 11:53 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-06-02 10:26 - 2022-06-02 10:26 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-06-02 10:26 - 2022-06-02 10:26 - 000002032 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-06-02 10:26 - 2022-06-02 10:25 - 000103888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-06-02 10:26 - 2022-06-02 10:24 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-06-02 10:21 - 2022-06-02 10:21 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-06-02 10:21 - 2022-06-02 10:21 - 000000000 ____D C:\Program Files\Malwarebytes 2022-06-01 21:00 - 2022-06-01 21:01 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\QtProject 2022-06-01 21:00 - 2021-03-09 18:41 - 000037336 _____ C:\WINDOWS\system32\pwdrvio.sys 2022-06-01 21:00 - 2019-11-08 10:14 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe 2022-06-01 21:00 - 2019-11-08 10:14 - 000012504 _____ C:\WINDOWS\system32\pwdspio.sys 2022-06-01 20:59 - 2022-06-01 21:00 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12 2022-06-01 20:59 - 2022-06-01 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool ShadowMaker 2022-06-01 20:59 - 2022-06-01 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12 2022-06-01 20:59 - 2022-06-01 20:59 - 000000000 ____D C:\Program Files\MiniTool ShadowMaker 2022-06-01 20:33 - 2022-06-01 20:33 - 001114388 _____ C:\WINDOWS\Minidump\060122-9734-01.dmp 2022-06-01 20:33 - 2022-06-01 20:33 - 000000000 ____D C:\WINDOWS\Minidump 2022-06-01 09:59 - 2022-06-01 09:59 - 000000222 _____ C:\Users\Pichau\Desktop\Valheim.url 2022-05-31 23:16 - 2022-05-31 23:16 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Riverbond 2022-05-31 23:16 - 2022-05-31 23:16 - 000000000 ____D C:\Users\Pichau\AppData\LocalLow\Cococucumber 2022-05-30 11:05 - 2022-05-30 11:05 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Wondershare 2022-05-30 11:04 - 2022-06-01 20:39 - 000000000 ____D C:\ProgramData\Wondershare 2022-05-30 11:04 - 2022-06-01 20:39 - 000000000 ____D C:\Program Files\Wondershare 2022-05-30 11:04 - 2022-05-30 11:05 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2022-05-29 14:45 - 2022-05-29 14:45 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2022-05-29 14:41 - 2022-05-21 00:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-05-29 14:41 - 2022-05-21 00:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-05-29 14:41 - 2022-05-21 00:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-05-29 14:41 - 2022-05-21 00:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-05-29 14:41 - 2022-05-21 00:26 - 001467080 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-05-29 14:41 - 2022-05-21 00:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-05-29 14:41 - 2022-05-21 00:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-05-29 14:41 - 2022-05-21 00:26 - 001209408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-05-29 14:41 - 2022-05-21 00:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-05-29 14:41 - 2022-05-21 00:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-05-29 14:41 - 2022-05-21 00:23 - 000587336 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-05-29 14:41 - 2022-05-21 00:23 - 000460496 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 002120896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 001603144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 001530456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 001177312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 000730320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 000724688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2022-05-29 14:41 - 2022-05-21 00:22 - 000712416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2022-05-29 14:41 - 2022-05-21 00:21 - 006964824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-05-29 14:41 - 2022-05-21 00:21 - 006226640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-05-29 14:41 - 2022-05-21 00:21 - 005100752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-05-29 14:41 - 2022-05-21 00:21 - 002932952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-05-29 14:41 - 2022-05-21 00:21 - 000582712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-05-29 14:41 - 2022-05-21 00:21 - 000457944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2022-05-29 14:41 - 2022-05-21 00:20 - 005730880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2022-05-29 14:41 - 2022-05-21 00:19 - 000851136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2022-05-29 14:41 - 2022-05-19 21:51 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb 2022-05-28 10:08 - 2022-05-28 10:08 - 000000000 ____D C:\Users\Pichau\AppData\LocalLow\adamgryu 2022-05-27 14:46 - 2022-05-28 16:02 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\paradox-launcher-v2 2022-05-27 10:39 - 2022-05-27 10:39 - 000000279 _____ C:\Users\Pichau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk 2022-05-23 18:44 - 2022-05-23 18:44 - 000000000 ____D C:\Users\Pichau\AppData\Local\techland 2022-05-23 10:36 - 2022-05-23 10:36 - 000000222 _____ C:\Users\Pichau\Desktop\DARK SOULS™ REMASTERED.url 2022-05-22 23:13 - 2022-05-22 23:13 - 000000222 _____ C:\Users\Pichau\Desktop\The Evil Within 2.url 2022-05-18 13:33 - 2022-05-18 13:34 - 000000000 ____D C:\Users\Pichau\Documents\Shadow of the Tomb Raider 2022-05-18 13:33 - 2022-05-18 13:33 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Eidos Montreal 2022-05-17 11:26 - 2022-05-17 11:26 - 000000222 _____ C:\Users\Pichau\Desktop\METAL GEAR RISING REVENGEANCE.url 2022-05-17 11:20 - 2022-05-17 11:20 - 000000222 _____ C:\Users\Pichau\Desktop\DmC Devil May Cry.url 2022-05-11 20:57 - 2022-05-11 20:57 - 000000028 ____H C:\.GamingRoot 2022-05-11 20:57 - 2022-05-11 20:57 - 000000000 ____D C:\XboxGames 2022-05-11 14:42 - 2022-05-11 14:42 - 000000000 ____D C:\Users\Pichau\AppData\Local\AWSToolkit 2022-05-11 14:38 - 2022-05-11 14:38 - 000000000 ____D C:\temp 2022-05-11 14:37 - 2022-05-11 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RazerCentral 2022-05-11 14:32 - 2022-05-25 00:12 - 000083200 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3Coinstaller.dll 2022-05-11 12:48 - 2022-05-11 12:48 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-05-11 12:48 - 2022-05-11 12:48 - 000188928 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2022-05-11 12:48 - 2022-05-11 12:48 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2022-05-11 12:48 - 2022-05-11 12:48 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-05-11 12:34 - 2022-05-11 12:34 - 000000000 ___HD C:\$WinREAgent 2022-05-08 21:12 - 2022-05-08 21:12 - 000000000 ____D C:\Users\Pichau\AppData\Local\Gh ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-06-04 15:59 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF 2022-06-04 15:50 - 2020-08-04 21:32 - 000000000 ____D C:\Program Files (x86)\Steam 2022-06-04 15:38 - 2021-05-18 14:18 - 000000000 ____D C:\Users\Pichau\Desktop\PDFS DAS APOLICES E PROPOSTAS 2022-06-04 14:44 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-04 14:06 - 2019-10-26 12:59 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2022-06-04 14:06 - 2019-10-26 12:58 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2022-06-04 14:06 - 2019-05-21 15:10 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Origin 2022-06-04 14:06 - 2019-05-21 15:10 - 000000000 ____D C:\ProgramData\Origin 2022-06-04 13:54 - 2019-05-21 15:10 - 000000000 ____D C:\Users\Pichau\AppData\Local\Origin 2022-06-04 13:24 - 2019-04-25 16:21 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Discord 2022-06-04 13:24 - 2019-01-17 07:42 - 000000000 ____D C:\ProgramData\NVIDIA 2022-06-04 13:03 - 2019-04-25 16:21 - 000000000 ____D C:\Users\Pichau\AppData\Local\Discord 2022-06-04 12:32 - 2021-04-21 00:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-06-04 12:20 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-04 12:20 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-06-04 11:34 - 2021-04-21 00:56 - 001741820 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-06-04 11:34 - 2019-12-07 11:53 - 000752392 _____ C:\WINDOWS\system32\prfh0416.dat 2022-06-04 11:34 - 2019-12-07 11:53 - 000148506 _____ C:\WINDOWS\system32\prfc0416.dat 2022-06-04 11:33 - 2021-04-22 20:29 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D15662D3-A33C-432A-AB37-131E1185808E} 2022-06-04 11:28 - 2019-12-16 21:06 - 000000000 ____D C:\Users\Pichau\AppData\LocalLow\360WD 2022-06-04 11:27 - 2021-04-21 01:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-06-04 11:27 - 2021-04-21 00:50 - 000008192 ___SH C:\DumpStack.log.tmp 2022-06-04 11:27 - 2019-12-07 06:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-06-04 11:26 - 2019-05-10 17:02 - 000000000 ____D C:\Program Files (x86)\Razer 2022-06-03 10:53 - 2019-11-15 17:17 - 000000000 ____D C:\Users\Pichau\Documents\BioWare 2022-06-03 10:04 - 2021-06-11 09:24 - 000004196 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1623414239 2022-06-03 10:04 - 2021-06-11 09:24 - 000001452 _____ C:\Users\Pichau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk 2022-06-03 10:02 - 2019-01-17 07:11 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2022-06-03 00:45 - 2021-04-21 00:52 - 000000000 ____D C:\Users\Pichau 2022-06-02 23:44 - 2019-04-25 16:18 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-06-02 23:04 - 2019-04-25 20:02 - 000000000 ____D C:\Users\Pichau\AppData\Local\CrashDumps 2022-06-02 21:58 - 2019-10-25 14:40 - 000000000 ____D C:\Users\Pichau\AppData\Local\Ubisoft Game Launcher 2022-06-02 21:40 - 2021-08-27 20:18 - 000000000 ____D C:\Program Files\Common Files\PUBG 2022-06-02 18:17 - 2019-05-27 17:11 - 001431256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys 2022-06-02 12:34 - 2019-12-16 21:08 - 000000000 __SHD C:\$360Section 2022-06-02 12:34 - 2019-12-16 21:06 - 000000000 ____D C:\ProgramData\360Quarant 2022-06-02 12:34 - 2019-04-30 19:19 - 000000000 ____D C:\Users\Pichau\Desktop\OUTROS ARQUIVOS 2022-06-02 12:14 - 2019-12-16 21:06 - 000000000 ____D C:\ProgramData\360safe 2022-06-02 10:54 - 2021-05-15 02:22 - 000000000 ____D C:\Program Files (x86)\AlphacomAceforceP 2022-06-02 10:54 - 2020-10-16 14:58 - 000000000 ____D C:\Program Files (x86)\TinyFyfete 2022-06-02 10:54 - 2019-12-12 20:44 - 000000000 ____D C:\Program Files (x86)\Segurazo 2022-06-02 10:52 - 2020-12-30 10:40 - 000000000 ____D C:\Program Files (x86)\RedistributedIntelligentEmission 2022-06-02 10:52 - 2020-02-09 12:41 - 000000000 ____D C:\Program Files (x86)\Aurora Media Workshop 2022-06-02 10:26 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-06-02 09:47 - 2020-12-03 01:43 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-01 20:56 - 2021-08-01 13:00 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel 2022-06-01 19:19 - 2021-12-13 09:45 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4279104284-4029660985-1505193530-1001 2022-06-01 19:19 - 2021-04-21 01:02 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4279104284-4029660985-1505193530-1001 2022-06-01 19:19 - 2021-04-21 00:52 - 000002403 _____ C:\Users\Pichau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-01 18:54 - 2021-08-08 20:56 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\.minecraft 2022-06-01 18:51 - 2021-08-08 20:56 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\.tlauncher 2022-06-01 10:40 - 2021-05-31 20:45 - 000000000 ____D C:\Users\Pichau\Desktop\EXTRATOS E NOTAS FISCAIS 2022-05-31 23:27 - 2021-03-01 15:22 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\Parsec 2022-05-31 15:14 - 2019-06-03 17:39 - 000000000 ____D C:\Users\Pichau\AppData\Local\BitTorrentHelper 2022-05-31 15:14 - 2019-04-25 16:14 - 000000000 ____D C:\Users\Pichau\AppData\Roaming\uTorrent 2022-05-30 22:40 - 2021-11-01 13:23 - 000002256 _____ C:\Users\Pichau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2022-05-30 22:39 - 2021-11-01 13:23 - 000000000 ____D C:\Users\Pichau\AppData\Local\yuzu 2022-05-30 22:03 - 2021-04-21 00:50 - 000287240 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-05-29 14:46 - 2019-05-02 15:22 - 000000000 ____D C:\Users\Pichau\AppData\Local\NVIDIA 2022-05-28 12:01 - 2020-07-29 22:36 - 000001170 _____ C:\Users\Pichau\Desktop\MSI Afterburner.lnk 2022-05-27 14:46 - 2019-01-17 07:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-05-26 23:39 - 2022-01-21 19:36 - 000000000 ____D C:\Users\Pichau\Desktop\COISAS DO TRABALHO 2022-05-25 19:32 - 2019-12-16 21:05 - 000000000 _RSHD C:\360SANDBOX 2022-05-25 19:32 - 2019-05-21 15:10 - 000000000 ____D C:\Users\Pichau\.Origin 2022-05-21 00:18 - 2022-05-04 15:39 - 006465200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2022-05-21 00:18 - 2021-04-18 00:38 - 007618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2022-05-18 15:37 - 2020-01-04 21:38 - 000000000 ____D C:\Program Files\Rockstar Games 2022-05-18 15:37 - 2020-01-04 21:38 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2022-05-18 13:33 - 2019-04-25 16:11 - 000000000 ____D C:\Users\Pichau\AppData\Local\D3DSCache 2022-05-18 12:01 - 2019-05-12 21:30 - 000000000 ____D C:\Users\Pichau\Documents\My Games 2022-05-16 21:53 - 2019-07-29 20:17 - 000000000 ____D C:\Users\Pichau\Documents\The Witcher 3 2022-05-11 21:21 - 2019-11-02 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer 2022-05-11 21:21 - 2019-11-02 16:31 - 000000000 ____D C:\Program Files (x86)\Tribo Gamer 2022-05-11 20:56 - 2021-11-19 15:41 - 000132560 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2022-05-11 20:56 - 2020-04-18 23:44 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2022-05-11 20:56 - 2019-12-13 00:25 - 000394704 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2022-05-11 20:56 - 2019-10-12 20:36 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2022-05-11 20:56 - 2019-09-24 12:46 - 002274768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2022-05-11 20:56 - 2019-09-24 12:46 - 000222672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2022-05-11 20:56 - 2019-09-24 12:46 - 000198096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2022-05-11 15:34 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-05-11 15:34 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-11 14:38 - 2019-05-10 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2022-05-11 14:37 - 2019-01-17 07:42 - 000000000 ____D C:\ProgramData\Package Cache 2022-05-11 12:50 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-05-11 12:33 - 2019-01-17 07:20 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-05-11 12:29 - 2019-01-17 07:20 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-05-09 22:35 - 2019-08-20 22:39 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher 2022-05-08 21:14 - 2021-10-04 16:39 - 000005016 _____ C:\ProgramData\rsEngine.config.backup ==================== Arquivos na raiz de alguns diretórios ======== 2019-06-18 14:06 - 2019-06-18 14:06 - 000000000 ___RH () C:\Users\Pichau\AppData\Roaming\abfe0e7921320e7166f9102c55f0fc2d2 2020-08-03 02:17 - 2020-08-03 02:17 - 000286940 _____ () C:\Users\Pichau\AppData\Roaming\w1x_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt 2021-06-20 22:07 - 2021-06-20 22:07 - 513289886 _____ () C:\Users\Pichau\AppData\Local\CrashDump__20210621_010744.dmp 2021-04-28 17:33 - 2021-04-28 17:35 - 001065984 _____ () C:\Users\Pichau\AppData\Local\file__0.localstorage 2019-05-12 01:29 - 2019-05-12 01:29 - 000000000 ___SH () C:\Users\Pichau\AppData\Local\LumaEmu 2020-10-16 14:57 - 2022-01-31 15:05 - 000016438 _____ () C:\Users\Pichau\AppData\Local\partner.bmp 2022-01-30 20:40 - 2022-01-30 20:40 - 000000218 _____ () C:\Users\Pichau\AppData\Local\recently-used.xbel 2019-05-29 21:21 - 2019-05-29 21:21 - 000000003 _____ () C:\Users\Pichau\AppData\Local\updater.log 2019-05-29 21:21 - 2022-03-05 21:33 - 000000424 _____ () C:\Users\Pichau\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================