Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 04-06-2022 01 Executado por Sistemas (administrador) em DESKTOP-2C710B2 (Gigabyte Technology Co., Ltd. A320M-S2H) (04-06-2022 22:27:47) Executando a partir de C:\Users\Sistemas\Desktop Perfis Carregados: Sistemas Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1706 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-03-16] (Adobe Inc. -> ) HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (Nenhum Arquivo) HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [4597232 2022-05-21] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632096 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [Discord] => C:\Users\Sistemas\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [utweb] => C:\Users\Sistemas\AppData\Roaming\uTorrent Web\utweb.exe [5944864 2021-11-30] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-05-27] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Sistemas\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-04-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32613856 2022-04-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [SandboxieControl] => D:\sandbox\SbieCtrl.exe [3394120 2022-05-01] (Tonalio GmbH -> Sandboxie-Plus.com) HKU\S-1-5-21-3946368670-3391554782-2956722438-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1088456 2022-06-02] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-05-31] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {01C9B636-C4B6-4B22-BC56-D72EDB2D27A5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139120 2022-04-10] (Microsoft Corporation -> Microsoft Corporation) Task: {19E4FFAD-9305-45A7-BEF5-95619814CCBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-07] (Microsoft Corporation -> Microsoft Corporation) Task: {1DF52582-EBCE-45AB-AA23-CA49397A327B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139120 2022-04-10] (Microsoft Corporation -> Microsoft Corporation) Task: {1E80E1EA-0631-4339-9466-3E34193867FF} - System32\Tasks\Opera scheduled Autoupdate 1642776188 => C:\Users\Sistemas\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo) Task: {21980D64-83F5-40B3-B1DB-AC365F5EADB4} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) Task: {21A4330A-1A7A-416C-AB04-C01913035E7D} - System32\Tasks\Driver Booster SkipUAC (Sistemas) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe [8625688 2022-01-11] (IObit CO., LTD -> IObit) Task: {22D3343B-C393-488F-B5A2-4F8E7830C928} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {3D2BCF0F-9D1E-434E-853A-C810F48644BA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {46249BDD-467C-436A-BF4E-D80AE55087D2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {5095E327-E049-43DF-B286-A35C29DCE869} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {5B509137-330D-4A1B-A56F-394C60CEAF3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-12] (Google LLC -> Google LLC) Task: {5C75AAE1-6EE1-4C1E-8094-E43FC7EBCCA5} - System32\Tasks\Opera scheduled assistant Autoupdate 1642776190 => C:\Users\Sistemas\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Sistemas\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {63AEE1C0-1A3A-41FC-9264-2DD4846E1071} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {6B2C83DA-2FB8-4987-950C-CE6348205EDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-12] (Google LLC -> Google LLC) Task: {6B4371E1-7419-4E3A-87BE-BE9F1B023B41} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6B6FC5F0-6D79-4BF2-8A8B-0BDB42381D9E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {759F02CB-8293-4A1B-B5A9-64E1D824D04F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {77284373-ABD3-4BE8-BCCB-61B79CB04A9A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3946368670-3391554782-2956722438-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) Task: {7E68C747-A0B8-4D98-9164-5C7E1B6B09E0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {7F3BC883-8718-4AD8-922B-273D7DD38CCC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8BDB58C3-FE3B-4FD6-B3CD-464B0AF2458A} - System32\Tasks\R@1n-KMS\Windows64Core => wmic path SoftwareLicensingProduct where (ID="58e97c99-f377-4ef1-81d5-4ad5522b5fd8") call Activate Task: {B0F3BCD8-6916-441F-8076-E857F7E1CA58} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053736 2022-04-10] (Microsoft Corporation -> Microsoft Corporation) Task: {B705576F-4423-42B9-A588-26B04D798494} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-07] (Microsoft Corporation -> Microsoft Corporation) Task: {BDA417A8-6686-4508-BAA0-F640B32BA36D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2022-01-03] () [Arquivo não assinado] Task: {C47A1C0F-8587-4111-8F25-329DCA2C655C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CF03ECAD-C24A-42FE-BF52-E03DDB5ECEE0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {CF89B24C-A90D-4544-BD82-705BC06CCF06} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\AutoUpdate.exe [2462744 2021-12-29] (IObit CO., LTD -> IObit) Task: {D1B3CDAB-0365-4C32-B5E2-AB0539252CD8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D77DB4A9-D29A-4EDE-BE35-293129A92FA6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {FF758753-3940-4791-8420-4EB4498C7ECA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053736 2022-04-10] (Microsoft Corporation -> Microsoft Corporation) Task: {FFD2CF73-3860-4F64-A63E-E1E2CF287665} - System32\Tasks\infatica_p2b => C:\Program Files (x86)\Infatica P2B\infatica-service-app.exe [20072 2021-12-04] (Infatica pte ltd -> ) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{54dd8151-bbdc-4943-8e63-6f0ebb9ebf12}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{54dd8151-bbdc-4943-8e63-6f0ebb9ebf12}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Sistemas\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-23] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2022-01-12] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2022-01-12] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-04-10] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Profile 6 CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-04] CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-06-01] CHR Notifications: Profile 2 -> hxxps://meet.google.com; hxxps://suaurl.com CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-26] CHR Extension: (Documentos Google off-line) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-22] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-16] CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-06-04] CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-03] CHR Extension: (Documentos Google off-line) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-03] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-24] CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-06-04] CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-12] CHR Extension: (Documentos Google off-line) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-12] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-04] CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 6 [2022-06-04] CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-04] CHR Extension: (Documentos Google off-line) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-04] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-04] CHR Profile: C:\Users\Sistemas\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-04] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [338432 2022-04-22] (Avira Operations GmbH & Co. KG) [Arquivo não assinado] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2022-04-24] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119416 2022-01-07] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-05-13] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncHelper.exe [3401112 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\OneDriveUpdaterService.exe [3842464 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) S2 SbieSvc; D:\sandbox\SbieSvc.exe [361544 2022-05-01] (Tonalio GmbH -> Sandboxie-Plus.com) S2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2286264 2022-02-25] (Banco Bradesco SA -> Banco Bradesco S.A.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14743984 2022-03-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 ndextlag; C:\Windows\system32\DRIVERS\ndextlag.sys [48640 2018-04-11] (Mainline Net Holdings Limited -> SKOWSAND SERVICOS DE PROVEDORES E INTERNET LTDA - ME) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 ptun0901; C:\Windows\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 SbieDrv; D:\sandbox\SbieDrv.sys [248864 2022-05-01] (Microsoft Windows Hardware Compatibility Publisher -> Sandboxie-Plus.com) R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2022-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 WacHidRouterPro; C:\Windows\System32\drivers\wachidrouter.sys [131288 2021-11-19] (WDKTestCert dant_ppxe9ny,132779414088034662 -> Wacom Technology, Corp.) S3 wacomrouterfilter; C:\Windows\System32\drivers\wacomrouterfilter.sys [29368 2021-11-19] (WDKTestCert dant_ppxe9ny,132779414088034662 -> Wacom Technology, Corp.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2022-03-03] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-06-04 22:27 - 2022-06-04 22:28 - 000023197 _____ C:\Users\Sistemas\Desktop\FRST.txt 2022-06-04 22:27 - 2022-06-04 22:28 - 000000000 ____D C:\FRST 2022-06-04 22:22 - 2022-06-04 22:25 - 000000000 ____D C:\AdwCleaner 2022-06-04 22:20 - 2022-06-04 22:21 - 002368000 _____ (Farbar) C:\Users\Sistemas\Desktop\FRST64.exe 2022-06-04 22:20 - 2022-06-04 22:20 - 008551608 _____ (Malwarebytes) C:\Users\Sistemas\Desktop\adwcleaner.exe 2022-06-02 17:11 - 2022-06-02 17:11 - 000000000 ____D C:\Users\Sistemas\Documents\DAZ 3D 2022-06-02 17:11 - 2022-06-02 17:11 - 000000000 ____D C:\Users\Public\Documents\My DAZ 3D Library 2022-06-02 17:08 - 2022-06-02 17:08 - 000001173 _____ C:\Users\Sistemas\Desktop\DAZ Studio 4.20 (64-bit).lnk 2022-06-02 16:31 - 2022-06-02 17:11 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\DAZ 3D 2022-06-02 16:31 - 2022-06-02 17:08 - 000000000 ____D C:\ProgramData\DAZ 3D 2022-06-02 16:31 - 2022-06-02 16:31 - 000000000 ____D C:\Users\Sistemas\AppData\Local\cache 2022-06-02 16:31 - 2022-06-02 16:31 - 000000000 ____D C:\Daz 3D 2022-06-02 16:30 - 2022-06-02 17:08 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D 2022-06-02 16:30 - 2022-06-02 16:30 - 000001992 _____ C:\Users\Sistemas\Desktop\DazCentral (64-bit).lnk 2022-06-02 16:30 - 2022-06-02 16:30 - 000000000 ____D C:\Program Files\DAZ 3D 2022-06-02 14:37 - 2022-06-02 14:42 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\CC 2022-06-02 14:36 - 2022-06-02 14:36 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Netease 2022-06-02 14:36 - 2022-06-02 14:36 - 000000000 ____D C:\Users\Sistemas\AppData\Local\UniSDK 2022-06-02 14:36 - 2022-06-02 14:36 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Netease 2022-06-02 11:56 - 2022-06-04 22:01 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Battle.net 2022-06-02 11:56 - 2022-06-02 11:56 - 000000952 _____ C:\Users\Public\Desktop\Battle.net.lnk 2022-06-02 11:56 - 2022-06-02 11:56 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Battle.net 2022-06-02 11:56 - 2022-06-02 11:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net 2022-06-02 11:55 - 2022-06-02 11:56 - 000000000 ____D C:\Program Files (x86)\Battle.net 2022-06-02 11:54 - 2022-06-02 11:55 - 000000000 ____D C:\ProgramData\Battle.net 2022-06-01 14:22 - 2022-06-01 14:55 - 021969884 _____ C:\Users\Sistemas\Desktop\Monstro.blend 2022-06-01 14:22 - 2022-06-01 14:38 - 023089656 _____ C:\Users\Sistemas\Desktop\Monstro.blend1 2022-06-01 13:40 - 2022-06-01 13:40 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Yandex 2022-06-01 01:22 - 2022-06-01 22:24 - 019264755 _____ C:\Users\Sistemas\Desktop\splash.psd 2022-05-30 12:02 - 2022-05-30 12:02 - 018836639 _____ C:\Users\Sistemas\Desktop\mat_trabalho_fotografia.pdf 2022-05-29 13:05 - 2022-05-29 13:12 - 071892667 _____ C:\Users\Sistemas\Desktop\paisagem.psd 2022-05-29 00:45 - 2022-05-29 00:45 - 000642972 _____ C:\Users\Sistemas\Desktop\duende.psd 2022-05-28 12:49 - 2022-05-28 13:04 - 001168900 _____ C:\Users\Sistemas\Desktop\espada.blend 2022-05-28 12:49 - 2022-05-28 12:57 - 001148756 _____ C:\Users\Sistemas\Desktop\espada.blend1 2022-05-25 23:59 - 2022-05-26 00:02 - 002770040 _____ C:\Users\Sistemas\Desktop\matheus ai.ai 2022-05-25 23:25 - 2022-05-25 23:25 - 002808350 _____ C:\Users\Sistemas\Desktop\Sem título-1 [Recuperado].ai 2022-05-25 11:04 - 2022-05-25 11:04 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Zoom 2022-05-25 11:04 - 2022-05-25 11:04 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2022-05-25 11:04 - 2022-05-25 11:04 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Zoom 2022-05-24 21:14 - 2022-05-24 21:14 - 000000000 ____D C:\Windows\LastGood 2022-05-24 21:13 - 2022-05-19 21:51 - 000047792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001905912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-05-24 21:09 - 2022-05-21 00:26 - 001905912 _____ C:\Windows\system32\vulkaninfo.exe 2022-05-24 21:09 - 2022-05-21 00:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-05-24 21:09 - 2022-05-21 00:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-05-24 21:09 - 2022-05-21 00:26 - 001467080 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001432304 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001432304 _____ C:\Windows\system32\vulkan-1.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001209408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-05-24 21:09 - 2022-05-21 00:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-05-24 21:09 - 2022-05-21 00:23 - 000587336 _____ C:\Windows\system32\nvofapi64.dll 2022-05-24 21:09 - 2022-05-21 00:23 - 000460496 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 002120896 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 001603144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 001530456 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 001177312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 000730320 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 000724688 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-05-24 21:09 - 2022-05-21 00:22 - 000712416 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-05-24 21:09 - 2022-05-21 00:21 - 006964824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-05-24 21:09 - 2022-05-21 00:21 - 006226640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-05-24 21:09 - 2022-05-21 00:21 - 005100752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-05-24 21:09 - 2022-05-21 00:21 - 002932952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-05-24 21:09 - 2022-05-21 00:21 - 000457944 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-05-24 21:09 - 2022-05-21 00:20 - 005730880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-05-24 21:09 - 2022-05-21 00:19 - 000851136 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-05-24 21:09 - 2022-05-21 00:18 - 006465200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-05-24 21:09 - 2022-05-19 21:51 - 000089337 _____ C:\Windows\system32\nvinfo.pb 2022-05-21 11:59 - 2022-05-21 11:59 - 000000834 _____ C:\Users\Public\Desktop\HuionTablet.lnk 2022-05-21 11:59 - 2022-05-21 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HuionTablet 2022-05-21 11:58 - 2022-05-21 12:02 - 000000000 ____D C:\Program Files\HuionTablet 2022-05-21 11:58 - 2022-05-21 11:58 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmulti.sys 2022-05-21 11:58 - 2022-05-21 11:58 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys 2022-05-18 19:45 - 2022-05-18 19:45 - 003389523 _____ C:\Users\Sistemas\Desktop\exercicio para nota 3 Matheus Cabral.ai 2022-05-14 16:13 - 2022-05-15 17:28 - 007069025 _____ C:\Users\Sistemas\Desktop\Sem Título-1.psd 2022-05-13 12:02 - 2022-05-13 12:02 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-05-13 12:02 - 2022-05-13 12:02 - 000188928 _____ C:\Windows\system32\uwfcfgmgmt.dll 2022-05-13 12:02 - 2022-05-13 12:02 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-05-13 12:02 - 2022-05-13 12:02 - 000011799 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-05-13 11:57 - 2022-05-13 11:57 - 000000000 ___HD C:\$WinREAgent 2022-05-12 12:54 - 2022-05-12 12:54 - 003252086 _____ C:\Users\Sistemas\Downloads\vanessa e caio e data 8x8, 6 imagens.pdf 2022-05-12 11:40 - 2022-05-16 13:37 - 000000000 ____D C:\Users\Sistemas\Desktop\ccasamento vanessa 2022-05-12 11:33 - 2022-05-12 11:33 - 000077628 _____ C:\Users\Sistemas\Downloads\WhatsApp Image 2022-05-12 at 11.31.21 (2).jpeg 2022-05-12 11:33 - 2022-05-12 11:33 - 000076330 _____ C:\Users\Sistemas\Downloads\WhatsApp Image 2022-05-12 at 11.31.21 (1).jpeg 2022-05-12 11:33 - 2022-05-12 11:33 - 000075764 _____ C:\Users\Sistemas\Downloads\WhatsApp Image 2022-05-12 at 11.31.21.jpeg 2022-05-11 18:20 - 2022-05-11 18:42 - 000000000 ____D C:\Users\Sistemas\Desktop\Brazilian Fauna 2022-05-09 15:43 - 2022-05-09 15:43 - 000047460 _____ C:\Users\Sistemas\Desktop\ekko.pdf 2022-05-08 17:45 - 2022-05-08 17:45 - 006527727 _____ C:\Users\Sistemas\Desktop\aaa.psd 2022-05-06 16:10 - 2022-05-06 16:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mesa Gráfica Wacom 2022-05-05 21:27 - 2022-05-05 22:06 - 001237717 _____ C:\Users\Sistemas\Desktop\Brasa_semBurguers_sem_site.psd 2022-05-05 19:16 - 2022-05-05 19:16 - 010298608 _____ C:\Users\Sistemas\Desktop\brasa eventos.aep 2022-05-05 15:36 - 2022-05-05 15:36 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\WizzyMotion 2022-05-05 15:07 - 2022-05-05 15:07 - 000001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2022.lnk 2022-05-05 15:07 - 2022-05-05 15:07 - 000001121 _____ C:\Users\Sistemas\Desktop\Adobe Premiere Pro 2022.lnk 2022-05-05 15:05 - 2022-05-05 15:05 - 000000000 ____D C:\Users\Sistemas\Downloads\Premiere 2022-05-05 14:37 - 2022-05-05 15:04 - 1767082344 _____ C:\Users\Sistemas\Downloads\Premiere.rar 2022-05-05 12:21 - 2022-05-05 12:21 - 002638689 _____ (Rubens Nobre ) C:\Windows\unins000.exe 2022-05-05 12:19 - 2022-05-05 12:21 - 000010819 _____ C:\Windows\unins000.dat 2022-05-05 12:19 - 2022-05-05 12:19 - 001588936 _____ (Rubens Nobre ) C:\Users\Sistemas\Downloads\WizzyMotion.exe ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-06-04 22:25 - 2022-01-21 19:01 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\IObit 2022-06-04 22:25 - 2022-01-12 17:21 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\discord 2022-06-04 22:25 - 2022-01-12 12:11 - 000000000 ____D C:\ProgramData\NVIDIA 2022-06-04 22:08 - 2022-01-12 11:58 - 000000000 ____D C:\Program Files (x86)\Google 2022-06-04 22:01 - 2022-01-27 13:44 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\WTablet 2022-06-04 22:01 - 2022-01-13 11:12 - 000000000 ____D C:\Program Files (x86)\Steam 2022-06-04 22:01 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-04 22:01 - 2019-12-07 04:00 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-06-04 19:39 - 2022-01-12 17:21 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Discord 2022-06-04 19:36 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-04 19:36 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-06-04 19:36 - 2019-12-07 04:03 - 000000000 ____D C:\ProgramData\Packages 2022-06-04 18:42 - 2022-04-29 19:17 - 000004190 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{FC6AD42A-66E0-4E90-A1E9-F525C3EA99F2} 2022-06-04 18:40 - 2019-12-07 04:00 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-04 18:40 - 2019-12-07 04:00 - 000002279 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-06-03 21:45 - 2022-04-08 20:27 - 000000000 ____D C:\Users\Sistemas\Desktop\portfoil concept art 2022-06-03 20:17 - 2022-04-22 16:22 - 000000000 ____D C:\Users\Sistemas\AppData\Local\ExitLag 2022-06-03 11:38 - 2022-01-12 20:27 - 000000000 ____D C:\Users\Sistemas\AppData\Local\CrashDumps 2022-06-02 12:34 - 2022-04-12 20:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-06-02 12:34 - 2022-04-10 16:33 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-06-02 12:34 - 2022-04-10 16:32 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-02 12:34 - 2022-01-12 11:39 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3946368670-3391554782-2956722438-1001 2022-06-02 11:55 - 2022-01-31 12:29 - 000000000 ____D C:\Users\Sistemas\AppData\Local\Blizzard Entertainment 2022-05-31 17:08 - 2022-01-12 11:58 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-31 17:08 - 2022-01-12 11:58 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-05-28 12:25 - 2022-01-12 12:11 - 000000000 ____D C:\Users\Sistemas\AppData\Local\NVIDIA 2022-05-26 18:09 - 2022-01-12 20:09 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\TS3Client 2022-05-25 11:34 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-05-24 21:13 - 2022-01-12 11:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-05-24 15:58 - 2022-05-03 15:11 - 000000650 _____ C:\Users\Sistemas\Desktop\PokeXGames.lnk 2022-05-24 09:36 - 2022-01-12 11:43 - 001651882 _____ C:\Windows\system32\PerfStringBackup.INI 2022-05-24 09:36 - 2019-12-07 11:54 - 000715500 _____ C:\Windows\system32\prfh0416.dat 2022-05-24 09:36 - 2019-12-07 11:54 - 000140656 _____ C:\Windows\system32\prfc0416.dat 2022-05-24 09:29 - 2022-03-28 12:35 - 000000000 ____D C:\Program Files\TeamViewer 2022-05-24 09:29 - 2019-12-07 04:00 - 000008192 ___SH C:\DumpStack.log.tmp 2022-05-24 09:29 - 2019-12-07 04:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-05-24 09:25 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-05-21 11:59 - 2022-01-27 13:38 - 000218040 _____ (Graphics Tablet) C:\Windows\system32\Wintab32.dll 2022-05-21 11:59 - 2022-01-27 13:38 - 000192440 _____ (Graphics Tablet) C:\Windows\SysWOW64\Wintab32.dll 2022-05-21 00:21 - 2022-01-12 15:51 - 000582712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-05-21 00:18 - 2022-01-12 11:47 - 007618584 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-05-19 21:51 - 2022-01-12 11:47 - 000134832 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2022-05-14 09:17 - 2019-12-07 04:00 - 000441152 _____ C:\Windows\system32\FNTCACHE.DAT 2022-05-13 23:57 - 2022-02-14 19:52 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-05-13 23:57 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-13 17:08 - 2022-03-02 10:09 - 000000777 _____ C:\Users\Public\Desktop\AlbionOnline.lnk 2022-05-13 12:05 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-05-13 11:56 - 2022-01-12 12:18 - 000000000 ____D C:\Windows\system32\MRT 2022-05-13 11:55 - 2022-01-12 12:18 - 145501456 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-05-12 11:39 - 2022-01-17 15:52 - 000001456 _____ C:\Users\Sistemas\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2022-05-10 09:21 - 2019-12-07 04:00 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-05-10 09:21 - 2019-12-07 04:00 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-05-09 21:31 - 2022-05-03 15:25 - 000000709 _____ C:\Users\Sistemas\Desktop\Navegador web em uma caixa.lnk 2022-05-06 16:10 - 2022-01-27 13:38 - 000000000 ____D C:\Program Files\Tablet 2022-05-06 12:54 - 2022-01-12 12:07 - 000000000 ____D C:\Users\Sistemas\AppData\Local\D3DSCache 2022-05-05 19:15 - 2022-03-22 10:12 - 000000000 ____D C:\Users\Sistemas\Desktop\Trabalhos social media-portfoil 2022-05-05 19:12 - 2022-04-09 17:40 - 000000000 ____D C:\Users\Sistemas\Desktop\memes 2022-05-05 15:10 - 2019-12-07 04:03 - 000000000 ____D C:\Users\Sistemas\AppData\Roaming\Adobe 2022-05-05 15:07 - 2022-03-17 19:59 - 000000000 ____D C:\Users\Public\Documents\Adobe 2022-05-05 15:07 - 2022-03-16 19:33 - 000000000 ____D C:\Program Files\Adobe ==================== Arquivos na raiz de alguns diretórios ======== 2020-11-25 11:08 - 2020-11-25 11:08 - 000186580 _____ () C:\Program Files\changelog.txt 2020-11-19 09:19 - 2020-11-19 09:19 - 000145216 _____ () C:\Program Files\createfileassoc.exe 2014-03-11 07:54 - 2014-03-11 07:54 - 004173928 _____ (Microsoft Corporation) C:\Program Files\d3dcompiler_47.dll 2020-11-25 11:07 - 2020-11-25 11:07 - 000565208 _____ (TeamSpeak Systems GmbH) C:\Program Files\error_report.exe 2019-04-10 18:45 - 2019-04-10 18:45 - 010218000 _____ () C:\Program Files\icudtl.dat 2017-04-11 06:01 - 2017-04-11 06:01 - 002100504 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files\libeay32.dll 2019-04-09 05:21 - 2019-04-09 05:21 - 000018432 _____ () C:\Program Files\libEGL.dll 2019-04-09 05:21 - 2019-04-09 05:21 - 003572224 _____ () C:\Program Files\libGLESv2.dll 2017-10-13 10:20 - 2017-10-13 10:20 - 017599640 _____ () C:\Program Files\opengl32sw.dll 2018-07-23 06:12 - 2018-07-23 06:12 - 000004502 _____ () C:\Program Files\openglblacklist.json 2020-11-25 11:07 - 2020-11-25 11:07 - 000644056 _____ (TeamSpeak Systems GmbH) C:\Program Files\package_inst.exe 2019-05-31 08:05 - 2019-05-31 08:05 - 006130176 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Core.dll 2019-04-09 05:25 - 2019-04-09 05:25 - 006470656 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Gui.dll 2019-04-09 05:24 - 2019-04-09 05:24 - 001314816 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Network.dll 2019-04-10 14:31 - 2019-04-10 14:31 - 000317440 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Positioning.dll 2019-04-09 05:28 - 2019-04-09 05:28 - 000318464 _____ (The Qt Company Ltd.) C:\Program Files\Qt5PrintSupport.dll 2019-04-10 13:55 - 2019-04-10 13:55 - 004001792 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Qml.dll 2019-04-10 13:48 - 2019-04-10 13:48 - 003776000 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Quick.dll 2019-04-10 13:50 - 2019-04-10 13:50 - 000072704 _____ (The Qt Company Ltd.) C:\Program Files\Qt5QuickWidgets.dll 2019-04-09 05:23 - 2019-04-09 05:23 - 000205312 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Sql.dll 2019-04-10 13:29 - 2019-04-10 13:29 - 000332288 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Svg.dll 2019-04-10 14:40 - 2019-04-10 14:40 - 000113664 _____ (The Qt Company Ltd.) C:\Program Files\Qt5WebChannel.dll 2019-04-10 22:37 - 2019-04-10 22:37 - 079989760 _____ (The Qt Company Ltd.) C:\Program Files\Qt5WebEngineCore.dll 2019-04-10 22:54 - 2019-04-10 22:54 - 000228864 _____ (The Qt Company Ltd.) C:\Program Files\Qt5WebEngineWidgets.dll 2019-04-09 05:27 - 2019-04-09 05:27 - 005580800 _____ (The Qt Company Ltd.) C:\Program Files\Qt5Widgets.dll 2019-04-10 22:52 - 2019-04-10 22:52 - 000019456 _____ (The Qt Company Ltd.) C:\Program Files\QtWebEngineProcess.exe 2019-04-10 19:34 - 2019-04-10 19:34 - 001628193 _____ () C:\Program Files\qtwebengine_resources.pak 2019-04-10 19:34 - 2019-04-10 19:34 - 000630140 _____ () C:\Program Files\qtwebengine_resources_100p.pak 2019-04-10 19:34 - 2019-04-10 19:34 - 000690371 _____ () C:\Program Files\qtwebengine_resources_200p.pak 2020-11-25 11:07 - 2020-11-25 11:07 - 000165336 _____ () C:\Program Files\quazip.dll 2017-04-11 06:01 - 2017-04-11 06:01 - 000360216 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files\ssleay32.dll 2020-11-25 11:07 - 2020-11-25 11:07 - 017911768 _____ (TeamSpeak Systems GmbH) C:\Program Files\ts3client_win64.exe 2020-11-11 15:33 - 2020-11-11 15:33 - 000000285 _____ () C:\Program Files\ts3client_win64.VisualElementsManifest.xml 2022-01-12 20:09 - 2022-01-12 20:09 - 000157616 _____ (TeamSpeak Systems GmbH) C:\Program Files\Uninstall.exe 2020-11-25 11:07 - 2020-11-25 11:07 - 001970648 _____ (TeamSpeak Systems GmbH) C:\Program Files\update.exe 2018-07-23 06:12 - 2018-07-23 06:12 - 000599668 _____ () C:\Program Files\usb.ids 2022-01-17 15:52 - 2022-05-12 11:39 - 000001456 _____ () C:\Users\Sistemas\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2022-01-21 11:42 - 2022-01-21 11:42 - 000016438 _____ () C:\Users\Sistemas\AppData\Local\partner.bmp 2022-01-31 20:37 - 2022-01-31 20:37 - 000000218 _____ () C:\Users\Sistemas\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================