Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 19-06-2022 Executado por victo (administrador) em DESKTOP-MPJRUN7 (03-07-2022 13:37:38) Executando a partir de C:\Users\victo\Desktop Perfis Carregados: victo Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1766 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\plugins_nms.exe (explorer.exe ->) (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj\TranslucentTB.exe (explorer.exe ->) (Figma, Inc. -> ) C:\Users\victo\AppData\Local\FigmaAgent\figma_agent.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15> (explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (svchost.exe ->) (Advanced Micro Devices, Inc.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [212816 2022-06-14] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3069768 2022-06-03] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114379544 2021-01-28] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [117720 2020-03-07] (VMware, Inc. -> VMware, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2109824 2021-12-20] (Famatech Corp. -> Famatech Corp.) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3439176 2022-01-25] (Autodesk, Inc. -> Autodesk) HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [Arquivo não assinado] HKLM-x32\...\Run: [TcSysUI] => C:\TwinCAT\TcSysUI.exe [350408 2021-01-21] (Beckhoff Automation GmbH & Co. KG -> BECKHOFF Automation GmbH) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Discord] => C:\Users\victo\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2707104 2022-01-31] (Skutta, Kristjan -> ) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32659920 2022-07-02] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10517160 2021-03-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Spotify] => C:\Users\victo\AppData\Roaming\Spotify\Spotify.exe [20062112 2022-06-26] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [432320 2021-10-04] (Parsec Cloud, Inc. -> Parsec) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Nenhum Arquivo) HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\...\Run: [Figma Agent] => C:\Users\victo\AppData\Local\FigmaAgent\figma_agent.exe [6132384 2022-06-26] (Figma, Inc. -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-29] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {031AEE07-FF28-438C-8B6F-EF7C7E5E51F8} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [791608 2021-03-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {039E5421-F997-442D-9671-8FB3E9E45C81} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7058912 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {04654F83-954F-4CD5-AE1F-F051690E7DBE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864360 2022-06-12] (Microsoft Corporation -> Microsoft Corporation) Task: {352FC6BF-1C0D-4291-8178-B4DF7AA8F22A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {67E84193-780D-4619-B3CC-1EB67AE0C421} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [290352 2022-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {8D46F423-2E40-4577-B157-5C34D4347E9C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) Task: {8E8081BE-8939-4FFE-84C8-D6C30417A2F3} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [144896 2022-05-17] (Advanced Micro Devices, Inc.) [Arquivo não assinado] Task: {AACA00D2-D975-46C6-ADC6-B327DE904548} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-12] (Google LLC -> Google LLC) Task: {AB15B195-96BE-4545-8995-4AE87B57CCBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-12] (Google LLC -> Google LLC) Task: {B5FACA10-8E67-4FF3-A75A-BD917A1741BD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {C631AF8E-88F9-48F7-8E6C-BA259A0CEF95} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55344 2022-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {CF1A9AFF-6804-451D-A550-8A6D245396AB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7058912 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {D33D40D4-554F-4A85-B73E-2D1E3F5C5F01} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4925264 2022-06-14] (Avast Software s.r.o. -> AVAST Software) Task: {E053F89D-798B-4E1E-B80B-57777F106FB5} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [953392 2022-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {E7D85BE7-C570-45FA-893B-79E669F2EF83} - System32\Tasks\Opera scheduled assistant Autoupdate 1615743453 => C:\Users\victo\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\victo\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {EF3960FD-0D28-4F5D-A43B-9F3A1B96B872} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [953392 2022-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {F03882C2-21D6-43FF-AA2B-D792477269EB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864360 2022-06-12] (Microsoft Corporation -> Microsoft Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 181.213.132.2 181.213.132.3 Tcpip\..\Interfaces\{c73828a6-1b1a-4623-bac7-f07711a4c79a}: [DhcpNameServer] 181.213.132.2 181.213.132.3 Edge: ======= Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\victo\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-04-16] Edge HKU\S-1-5-21-1296352862-3926534353-2412911790-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-01-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-01-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-01-25] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\victo\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-02] CHR Profile: C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-03] CHR Notifications: Profile 1 -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://www.toptal.com CHR Extension: (Just Black) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-05-07] CHR Extension: (Kaspersky Protection) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-06-18] CHR Extension: (BetterTTV) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-05-30] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-02] CHR Extension: (Web Translate - Tradutor, Dicionário) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ibppednjgooiepmkgdcoppnmbhmieefh [2022-05-14] CHR Extension: (Volume Master - controlador de volume) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2022-06-27] CHR Extension: (View image) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpcmhcelnjdmblfmjabdeclccemkghjk [2022-06-16] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-15] CHR Extension: (Turbo Download Manager (3rd edition)) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pabnknalmhfecdheflmcaehlepmhjlaa [2022-01-15] CHR Extension: (Chrome Safe) - C:\Users\victo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\phahokgoeemgffhnohpagbigjlgloipl [2022-01-15] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm Opera: ======= OPR Profile: C:\Users\victo\AppData\Roaming\Opera Software\Opera Stable [2022-06-25] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S4 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [13915208 2022-03-24] (Autodesk, Inc. -> Autodesk) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8432776 2022-06-14] (Avast Software s.r.o. -> AVAST Software) S4 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [8273536 2022-04-20] (Autodesk, Inc. -> Autodesk, Inc.) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [576336 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1995600 2022-06-18] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [576336 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-04-03] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9194920 2022-06-12] (Microsoft Corporation -> Microsoft Corporation) S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-04-24] (EasyAntiCheat Oy -> Epic Games, Inc) S4 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [595944 2021-08-12] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) S4 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-04] (Parsec Cloud, Inc. -> Parsec) S4 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2447152 2022-02-04] (Rockstar Games, Inc. -> Rockstar Games) S4 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1058688 2021-12-20] (Famatech Corp. -> Famatech Corp.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254368 2022-06-17] (Microsoft Windows Publisher -> Microsoft Corporation) S4 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [183816 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S4 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S4 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S4 TcAdsWcfHost; C:\TwinCAT\AdsApi\TcAdsWcf\v3.5\TcAdsWcfHost.exe [6656 2013-09-20] (Beckhoff Automation GmbH) [Arquivo não assinado] S4 TcEventLogger; C:\TwinCAT\EventLogger\TcEventLogger.exe [463416 2015-08-10] (Beckhoff Automation GmbH -> ) S4 TcSysSrv; C:\TwinCAT\TCATSysSrv.exe [847048 2021-01-21] (Beckhoff Automation GmbH & Co. KG -> BECKHOFF Automation) S4 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7374576 2021-08-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S4 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10595144 2022-06-03] (Riot Games, Inc. -> Riot Games, Inc.) S4 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15477208 2020-03-07] (VMware, Inc. -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) S4 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7550152 2021-08-10] (PUBG CORPORATION -> PUBG Corporation) S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe" [X] S2 mysql; "C:\program files\xaamp\mysql\bin\mysqld.exe" --defaults-file="c:\program files\xaamp\mysql\bin\my.ini" mysql ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2022-03-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R2 AMDRyzenMasterDriverV19; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [43336 2022-05-16] (Advanced Micro Devices INC. -> Advanced Micro Devices) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0380444.inf_amd64_2135839478f9f00d\B379425\amdkmdag.sys [91996136 2022-06-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [38912 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [382608 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255136 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102048 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25048 2022-06-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [45072 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271600 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548968 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [662160 2022-06-14] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218608 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [321928 2022-06-14] (Avast Software s.r.o. -> AVAST Software) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1582672 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [188848 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [357136 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [187200 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [267824 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [69048 2021-07-23] (Famatech Corp. -> Famatech Corp.) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [45064 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 TcRouter; C:\TwinCAT\Driver\TcRouter.sys [1664464 2020-12-01] (Beckhoff Automation GmbH & Co. KG -> Beckhoff Automation GmbH) S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8596912 2022-06-03] (Riot Games, Inc. -> Riot Games, Inc.) R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2021-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [67448 2019-07-14] (On-site Dental Systems (Justin Shafer) -> Shaul Eizikovich) R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2020-03-07] (VMware, Inc. -> VMware, Inc.) R2 vmparport; C:\WINDOWS\system32\DRIVERS\vmparport.sys [49216 2020-03-07] (VMware, Inc. -> VMware, Inc.) R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [52576 2018-02-28] (VMware, Inc. -> VMware, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-03 13:17 - 2022-07-03 13:39 - 000031105 _____ C:\Users\victo\Desktop\FRST.txt 2022-07-03 13:07 - 2022-07-03 13:23 - 002533356 _____ C:\WINDOWS\Minidump\070322-52968-01.dmp 2022-07-03 00:27 - 2022-06-14 18:58 - 000269136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-07-02 21:45 - 2022-07-02 21:45 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2022-07-02 15:34 - 2022-07-02 15:44 - 002548748 _____ C:\WINDOWS\Minidump\070222-53218-02.dmp 2022-07-02 03:17 - 2022-07-02 03:26 - 002592124 _____ C:\WINDOWS\Minidump\070222-52515-01.dmp 2022-07-01 21:49 - 2022-07-01 22:10 - 002335332 _____ C:\WINDOWS\Minidump\070122-49453-01.dmp 2022-07-01 01:53 - 2022-07-01 01:53 - 000248500 _____ C:\Users\victo\Downloads\Trabalho - Segundo Bimestre_220701_015318.pdf 2022-06-30 19:48 - 2022-06-30 19:48 - 000000218 _____ C:\Users\victo\AppData\Local\recently-used.xbel 2022-06-30 18:54 - 2022-06-30 19:03 - 002539252 _____ C:\WINDOWS\Minidump\063022-153265-01.dmp 2022-06-27 15:26 - 2022-06-30 23:40 - 000000000 ____D C:\Users\victo\AppData\LocalLow\AMD 2022-06-27 12:57 - 2022-06-27 12:57 - 000025048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-06-27 11:18 - 2022-06-22 12:12 - 000110936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys 2022-06-27 11:15 - 2022-07-03 03:48 - 000002518 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2022-06-27 01:37 - 2022-07-03 03:48 - 000002420 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2022-06-27 01:37 - 2022-07-03 03:48 - 000002404 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask 2022-06-27 01:37 - 2022-06-27 01:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2022-06-27 01:36 - 2022-07-03 03:48 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN 2022-06-27 01:36 - 2022-07-03 03:48 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR 2022-06-27 01:36 - 2022-06-27 01:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2022-06-27 01:25 - 2022-06-27 01:25 - 000000000 ____D C:\Users\victo\AppData\Local\AMDSoftwareInstaller 2022-06-27 00:44 - 2022-06-22 12:29 - 000152760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2022-06-27 00:44 - 2022-06-22 12:29 - 000123816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2022-06-27 00:44 - 2022-06-22 12:28 - 001716920 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2022-06-27 00:44 - 2022-06-22 12:28 - 001392416 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2022-06-27 00:44 - 2022-06-22 12:28 - 000553024 _____ C:\WINDOWS\system32\amdmiracast.dll 2022-06-27 00:44 - 2022-06-22 12:28 - 000152744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2022-06-27 00:44 - 2022-06-22 12:28 - 000123832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2022-06-27 00:44 - 2022-06-22 12:27 - 000163176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2022-06-27 00:44 - 2022-06-22 12:27 - 000137896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 001973752 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 001973752 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 001530360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 001530360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 001444360 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 001444360 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 001155944 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 001155944 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000799736 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000676848 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000560624 _____ C:\WINDOWS\system32\GameManager64.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000503280 _____ C:\WINDOWS\system32\dgtrayicon.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 000495096 _____ C:\WINDOWS\system32\EEURestart.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 000421888 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000356824 _____ C:\WINDOWS\system32\clinfo.exe 2022-06-27 00:44 - 2022-06-22 12:16 - 000197112 _____ C:\WINDOWS\system32\mantle64.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000180216 _____ C:\WINDOWS\system32\mantleaxl64.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000158200 _____ C:\WINDOWS\SysWOW64\mantle32.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000143864 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000049664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000046592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000031112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2022-06-27 00:44 - 2022-06-22 12:16 - 000031104 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000896976 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2022-06-27 00:44 - 2022-06-22 12:14 - 000528344 _____ C:\WINDOWS\system32\atieah64.exe 2022-06-27 00:44 - 2022-06-22 12:14 - 000471504 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000396240 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2022-06-27 00:44 - 2022-06-22 12:14 - 000263632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000222688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000205720 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000181216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000169424 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000143848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000142288 _____ C:\WINDOWS\system32\atidxx64.dll 2022-06-27 00:44 - 2022-06-22 12:14 - 000116184 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 089903592 _____ C:\WINDOWS\system32\amd_comgr.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 074060800 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 001426920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 001426920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 000500728 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 000367576 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 000170136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 000140792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2022-06-27 00:44 - 2022-06-22 12:13 - 000073192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2022-06-27 00:44 - 2022-06-22 12:12 - 000941552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2022-06-27 00:44 - 2022-06-22 12:12 - 000768984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2022-06-27 00:44 - 2022-06-22 12:12 - 000469488 _____ C:\WINDOWS\system32\amdlogum.exe 2022-06-27 00:44 - 2022-06-22 12:12 - 000135640 _____ C:\WINDOWS\system32\amdxc64.dll 2022-06-27 00:44 - 2022-06-22 12:12 - 000111576 _____ C:\WINDOWS\SysWOW64\amdxc32.dll 2022-06-27 00:44 - 2022-06-22 12:10 - 010428384 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll 2022-06-27 00:44 - 2022-06-22 12:10 - 000561120 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2022-06-27 00:44 - 2022-06-22 12:10 - 000424408 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2022-06-27 00:44 - 2022-06-22 11:43 - 057489984 _____ C:\WINDOWS\system32\amdxc64.so 2022-06-27 00:44 - 2022-06-22 11:43 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2022-06-27 00:44 - 2022-06-22 11:43 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2022-06-27 00:44 - 2022-06-22 11:43 - 000574248 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2022-06-27 00:44 - 2022-06-22 11:43 - 000574248 _____ C:\WINDOWS\system32\atiapfxx.blb 2022-06-27 00:44 - 2022-03-08 09:07 - 000601536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe 2022-06-26 17:04 - 2022-06-26 17:04 - 000009724 _____ C:\Users\victo\Downloads\Ex10_20-06.pr6 2022-06-26 16:47 - 2022-07-02 23:48 - 000000000 ____D C:\TwinCAT 2022-06-26 16:47 - 2022-06-26 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TwinCAT System 2022-06-24 02:34 - 2022-06-24 02:34 - 000001645 _____ C:\Users\victo\Downloads\PEÇA D Maria Eduarda Teixeira e Victor.M4 2022-06-24 02:33 - 2022-06-24 02:34 - 000005046 _____ C:\Users\victo\Downloads\Desenho Livre Victor e Maria Eduarda Teixeira.M4 2022-06-24 01:43 - 2022-06-24 01:43 - 000357136 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2022-06-24 01:42 - 2022-06-24 01:42 - 000376920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2022-06-24 01:42 - 2022-06-24 01:42 - 000267824 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2022-06-24 01:42 - 2022-06-24 01:42 - 000187200 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2022-06-19 20:20 - 2022-07-03 13:39 - 000000000 ____D C:\FRST 2022-06-19 20:17 - 2022-06-19 20:17 - 002369024 _____ (Farbar) C:\Users\victo\Desktop\FRST64.exe 2022-06-19 20:12 - 2022-06-19 20:12 - 000000000 ____D C:\AdwCleaner 2022-06-19 20:10 - 2022-06-19 20:10 - 008551608 _____ (Malwarebytes) C:\Users\victo\Desktop\adwcleaner.exe 2022-06-18 23:42 - 2022-06-18 23:42 - 000001299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN.lnk 2022-06-18 23:42 - 2022-06-18 23:42 - 000001169 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk 2022-06-18 23:42 - 2022-06-18 23:42 - 000000000 ____D C:\Program Files\Common Files\AV 2022-06-18 23:41 - 2022-06-18 23:42 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-06-18 23:41 - 2022-06-18 23:42 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2022-06-18 23:41 - 2022-06-18 23:41 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud.lnk 2022-06-18 23:41 - 2022-06-18 23:41 - 000002184 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk 2022-06-18 23:41 - 2022-02-17 06:29 - 001049864 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2022-06-18 23:41 - 2022-02-17 06:29 - 000522504 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2022-06-18 23:41 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2022-06-18 23:29 - 2022-06-18 23:30 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2022-06-18 23:29 - 2022-06-18 23:29 - 002770256 _____ (Kaspersky) C:\Users\victo\Downloads\ks4.021.3.10.391pt_25041.exe 2022-06-17 15:33 - 2022-06-17 15:33 - 000000000 ____D C:\Users\victo\Downloads\sublima 2022-06-17 15:32 - 2022-06-17 15:32 - 000124688 _____ C:\Users\victo\Downloads\sublima.zip 2022-06-17 15:29 - 2014-10-20 15:47 - 000207736 _____ C:\Users\victo\Downloads\TrueNorthInline.otf 2022-06-17 15:29 - 2014-03-09 12:50 - 000006008 _____ C:\Users\victo\Downloads\ReadMe.txt 2022-06-17 15:28 - 2022-06-17 15:28 - 000669404 _____ C:\Users\victo\Downloads\OnlineWebFonts_COM_ca28731b1a97ed35064056015926ee6c.zip 2022-06-17 15:28 - 2022-06-17 15:28 - 000151848 _____ C:\Users\victo\Downloads\true_north_inline.zip 2022-06-17 15:24 - 2022-06-17 15:24 - 003594016 _____ (RCS LT) C:\Users\victo\Downloads\CCSetup.exe 2022-06-17 15:07 - 2022-06-17 15:07 - 000024371 _____ C:\Users\victo\Downloads\adam.zip 2022-06-17 15:07 - 2020-03-15 14:57 - 000012940 _____ C:\Users\victo\Downloads\Adam-Medium.ttf 2022-06-17 15:07 - 2020-03-15 14:56 - 000012884 _____ C:\Users\victo\Downloads\Adam-Light.ttf 2022-06-17 15:07 - 2020-03-15 14:56 - 000012476 _____ C:\Users\victo\Downloads\Adam-Bold.ttf 2022-06-17 15:01 - 2022-06-26 23:59 - 000000000 ____D C:\Users\victo\AppData\Roaming\Figma 2022-06-17 15:01 - 2022-06-26 23:40 - 000000000 ____D C:\Users\victo\AppData\Local\Figma 2022-06-17 15:01 - 2022-06-17 15:01 - 000002141 _____ C:\Users\victo\Desktop\Figma.lnk 2022-06-17 15:01 - 2022-06-17 15:01 - 000000000 ____D C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Figma, Inc 2022-06-17 14:54 - 2022-06-26 23:45 - 000000000 ____D C:\Users\victo\AppData\Local\FigmaAgent 2022-06-17 14:53 - 2022-06-17 14:55 - 090440352 _____ (Figma, Inc.) C:\Users\victo\Downloads\FigmaSetup.exe 2022-06-17 14:53 - 2022-06-17 14:53 - 002184432 _____ (Figma, Inc.) C:\Users\victo\Downloads\InstallFigmaAgent.exe 2022-06-17 04:57 - 2022-06-17 04:57 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2022-06-17 04:57 - 2022-06-17 04:57 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll 2022-06-17 04:57 - 2022-06-17 04:57 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2022-06-17 04:56 - 2022-06-17 04:56 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-06-17 04:56 - 2022-06-17 04:56 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-06-17 04:54 - 2022-06-17 04:54 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-06-17 04:54 - 2022-06-17 04:54 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-06-17 04:08 - 2022-06-17 04:12 - 000000000 ___HD C:\$WinREAgent 2022-06-16 23:03 - 2022-06-16 23:03 - 336196162 _____ C:\Users\victo\Downloads\Firmware 14.1.2.zip 2022-06-16 22:51 - 2022-06-16 22:51 - 000000000 ____D C:\Users\victo\Documents\ryujinx 2022-06-16 22:36 - 2022-06-16 22:36 - 000006934 _____ C:\Users\victo\Downloads\mod fix.zip 2022-06-16 22:25 - 2022-06-16 22:25 - 000000000 ____D C:\Users\victo\Downloads\key 2022-06-16 22:23 - 2022-06-16 22:23 - 000000000 ____D C:\Users\victo\Downloads\Keys+Firmware 13.2 2022-06-16 22:03 - 2022-06-16 22:03 - 000024876 _____ C:\Users\victo\Downloads\cutscene skip.7z 2022-06-16 21:58 - 2022-06-16 21:59 - 006879744 _____ C:\Users\victo\Downloads\yuzu_install (1).exe 2022-06-16 21:57 - 2022-06-16 22:16 - 335727279 _____ C:\Users\victo\Downloads\Keys+Firmware 13.2.zip 2022-06-16 21:57 - 2022-06-16 21:57 - 000001450 _____ C:\Users\victo\Downloads\GUIA_YUZU_LINKS.txt 2022-06-16 20:22 - 2022-06-16 20:22 - 000000000 ____D C:\Users\victo\AppData\LocalLow\webviewdata 2022-06-16 18:07 - 2022-06-16 18:07 - 000000000 ____D C:\Users\victo\Downloads\Mario Strikers Battle League [XCI] 2022-06-16 01:29 - 2022-06-16 01:29 - 000000223 _____ C:\Users\victo\Desktop\Turbo Golf Racing Demo.url 2022-06-16 01:06 - 2022-06-16 01:06 - 000000000 ____D C:\Users\victo\AppData\LocalLow\CoinCrewGames 2022-06-15 18:40 - 2022-06-15 18:40 - 000000016 _____ C:\Users\victo\AppData\Roaming\obs-virtualcam.txt 2022-06-15 17:14 - 2022-06-15 17:14 - 000684915 _____ C:\Users\victo\Downloads\CamScanner 06-14-2022 17.09.pdf 2022-06-15 17:14 - 2022-06-15 17:14 - 000684915 _____ C:\Users\victo\Downloads\CamScanner 06-14-2022 17.09 (1).pdf 2022-06-15 15:41 - 2022-04-01 14:52 - 000000000 ____D C:\Users\victo\Downloads\Launguage Pack 2022-06-15 15:41 - 2021-01-08 13:32 - 002524072 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\Users\victo\Downloads\Setup-1.bin 2022-06-15 15:41 - 2021-01-08 13:32 - 002524072 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\Users\victo\Downloads\Bunifu_UI_v1.52.dll 2022-06-15 15:41 - 2012-10-09 20:16 - 000000437 _____ C:\Users\victo\Downloads\VR.nfo 2022-06-15 15:39 - 2022-06-15 15:39 - 000626998 _____ C:\Users\victo\Downloads\R-intro.pdf 2022-06-15 15:31 - 2022-06-15 15:33 - 004153623 _____ C:\Users\victo\Downloads\Adobe After Effects 2022 v22.1.1.17145 Multilinguan.rar 2022-06-15 15:25 - 2022-06-15 15:27 - 334209734 _____ C:\Users\victo\Downloads\Introdução a Linguagem R (Aulão - Introdução a Linguagem R)..mp4 2022-06-14 18:58 - 2022-06-14 18:58 - 000218608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2022-06-13 23:53 - 2022-06-13 23:53 - 000000223 _____ C:\Users\victo\Desktop\Escape Academy Demo.url 2022-06-13 23:07 - 2022-06-13 23:07 - 000000222 _____ C:\Users\victo\Desktop\Tricky Towers.url 2022-06-12 23:37 - 2022-06-12 23:37 - 000015527 _____ C:\Users\victo\Downloads\DrawingDoCastelinho.txt 2022-06-12 23:36 - 2022-06-12 23:36 - 000216447 _____ C:\Users\victo\Downloads\DrawingDoCastelinho.dxf 2022-06-12 23:16 - 2022-06-12 23:16 - 000002694 _____ C:\Users\victo\Downloads\O Overwatch.txt 2022-06-12 19:17 - 2022-06-12 19:17 - 000000000 ____D C:\Users\victo\Documents\Inventor Interoperability 2022-06-12 19:09 - 2022-06-12 19:09 - 000002171 _____ C:\Users\Public\Desktop\AutoCAD 2023 - English.lnk 2022-06-12 19:09 - 2022-06-12 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2023 - English 2022-06-12 18:53 - 2022-06-12 18:56 - 000000000 ____D C:\Program Files\dotnet 2022-06-12 18:50 - 2022-06-12 19:22 - 000000000 ____D C:\Users\victo\AppData\Roaming\Autodesk Installer 2022-06-12 18:42 - 2022-06-12 18:45 - 011444376 _____ (Autodesk, Inc.) C:\Users\victo\Downloads\AutoCAD_2023_English_Win_64bit_di_en-US_setup_webinstall.exe 2022-06-12 18:31 - 2022-06-12 18:31 - 001007776 _____ C:\Users\victo\Downloads\Declaração Automação-1.pdf 2022-06-12 18:21 - 2022-06-12 18:21 - 000000000 ____D C:\Users\victo\.config 2022-06-12 18:08 - 2022-06-12 18:08 - 000001302 _____ C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DXF to G-Code Converter.lnk 2022-06-12 17:58 - 2022-06-12 18:01 - 087191552 _____ C:\Users\victo\Downloads\DXF2GCODE-2022.2.26-win64_RC1.msi 2022-06-10 23:51 - 2022-06-10 23:51 - 000000000 ____D C:\Users\victo\AppData\Local\TheQuarry 2022-06-10 23:49 - 2022-06-10 23:50 - 000000000 ____D C:\Users\victo\AppData\Local\T2GP Launcher 2022-06-10 23:49 - 2022-06-10 23:49 - 000000000 ____D C:\Users\victo\AppData\Roaming\T2GP Launcher 2022-06-03 23:52 - 2022-06-03 23:52 - 000000916 _____ C:\Users\victo\Downloads\WhatsApp Image 2022-06-02 at 12.11.22.jpeg ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-03 13:34 - 2021-02-12 16:29 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-03 13:31 - 2021-02-12 20:36 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-07-03 13:23 - 2022-05-21 12:03 - 000000000 ____D C:\WINDOWS\Minidump 2022-07-03 13:17 - 2021-02-12 20:26 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-03 13:07 - 2022-05-21 12:03 - 1349244070 _____ C:\WINDOWS\MEMORY.DMP 2022-07-03 13:07 - 2021-02-12 19:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-07-03 13:07 - 2021-02-12 19:54 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-03 13:07 - 2021-02-12 19:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-07-03 03:49 - 2021-02-12 21:00 - 000000000 ____D C:\Users\victo\AppData\Roaming\discord 2022-07-03 03:48 - 2022-04-16 11:52 - 000002434 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner 2022-07-03 03:48 - 2021-12-12 14:48 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1296352862-3926534353-2412911790-1001 2022-07-03 03:48 - 2021-03-14 14:37 - 000003858 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1615743453 2022-07-03 03:48 - 2021-02-18 00:16 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-03 03:48 - 2021-02-18 00:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-03 03:48 - 2021-02-12 20:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-07-03 03:48 - 2021-02-12 20:26 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-07-03 03:48 - 2021-02-12 20:26 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-07-03 03:48 - 2021-02-12 20:25 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1296352862-3926534353-2412911790-1001 2022-07-03 03:46 - 2021-09-26 13:33 - 000000000 ____D C:\Users\victo\AppData\Roaming\Spotify 2022-07-03 03:15 - 2021-02-12 21:00 - 000000000 ____D C:\Users\victo\AppData\Local\Discord 2022-07-03 02:25 - 2021-02-12 20:21 - 000000000 ____D C:\Users\victo\AppData\Local\Packages 2022-07-03 02:22 - 2021-05-03 17:13 - 000000000 ____D C:\Users\victo\AppData\LocalLow\Temp 2022-07-03 00:28 - 2021-02-12 20:38 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2022-07-03 00:28 - 2021-02-12 20:38 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2022-07-03 00:27 - 2021-02-12 16:29 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-07-02 23:58 - 2021-09-26 13:35 - 000000000 ____D C:\Users\victo\AppData\Local\Spotify 2022-07-02 23:57 - 2021-02-12 21:23 - 000000000 ____D C:\ProgramData\Riot Games 2022-07-02 23:50 - 2021-02-12 19:54 - 000631168 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-07-02 22:15 - 2021-02-12 21:03 - 000000000 ____D C:\Program Files (x86)\Steam 2022-07-02 22:01 - 2021-02-12 21:00 - 000000000 ____D C:\ProgramData\Package Cache 2022-07-02 21:59 - 2021-02-24 15:56 - 000000000 ____D C:\Users\victo\.nbi 2022-07-02 21:53 - 2022-05-14 22:05 - 000000000 ____D C:\Program Files\Git 2022-07-02 21:49 - 2021-02-25 08:08 - 000000000 ____D C:\ProgramData\Autodesk 2022-07-02 21:47 - 2021-02-25 08:46 - 000000000 ____D C:\Program Files\Autodesk 2022-07-02 21:39 - 2021-03-20 13:46 - 000000000 ____D C:\ProgramData\Adobe 2022-07-02 21:36 - 2021-02-12 16:29 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-02 21:36 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-07-02 21:11 - 2021-02-13 00:44 - 000000000 ____D C:\Users\victo\AppData\Local\CrashDumps 2022-07-02 17:46 - 2021-02-18 00:17 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-02 17:46 - 2021-02-18 00:17 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-07-02 04:39 - 2021-02-12 20:16 - 000000000 ____D C:\Users\victo 2022-07-01 22:10 - 2021-02-12 20:16 - 000002389 _____ C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-30 23:01 - 2021-02-12 16:27 - 000000000 ____D C:\WINDOWS\INF 2022-06-30 23:00 - 2021-02-12 20:21 - 000000000 ____D C:\Users\victo\AppData\Local\D3DSCache 2022-06-30 07:23 - 2021-07-17 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2022-06-30 07:23 - 2021-03-02 17:53 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2022-06-30 07:23 - 2021-03-02 17:53 - 000002399 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2022-06-30 07:22 - 2021-03-02 17:37 - 000000000 ____D C:\Program Files\Microsoft Office 2022-06-29 23:07 - 2021-02-12 20:27 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-06-29 23:07 - 2021-02-12 20:27 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-06-29 22:34 - 2021-07-18 02:01 - 000000000 ____D C:\Users\victo\AppData\Local\UT008 2022-06-29 12:19 - 2021-02-12 20:32 - 000000000 ____D C:\ProgramData\Avast Software 2022-06-29 12:14 - 2021-02-12 16:15 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-06-29 12:13 - 2021-02-12 19:57 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2022-06-29 00:03 - 2021-03-06 16:06 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2022-06-28 23:46 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-06-28 20:29 - 2021-02-12 20:21 - 000000000 ____D C:\Users\victo\AppData\Local\AMD 2022-06-28 20:13 - 2021-02-26 21:24 - 000000000 ____D C:\Users\victo\AppData\Local\AMD_Common 2022-06-27 11:18 - 2021-08-16 12:09 - 000000000 ____D C:\Program Files\AMD 2022-06-27 01:37 - 2021-02-12 20:21 - 000000000 ____D C:\ProgramData\Packages 2022-06-27 00:44 - 2021-02-12 20:55 - 000000000 ____D C:\AMD 2022-06-26 16:50 - 2021-02-12 20:21 - 000000000 ____D C:\Users\victo\AppData\Local\VirtualStore 2022-06-26 16:41 - 2021-02-12 16:15 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-06-25 16:43 - 2021-02-12 20:12 - 001750102 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-06-25 16:43 - 2021-02-12 16:34 - 000755158 _____ C:\WINDOWS\system32\prfh0416.dat 2022-06-25 16:43 - 2021-02-12 16:34 - 000149798 _____ C:\WINDOWS\system32\prfc0416.dat 2022-06-24 02:12 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-06-23 23:19 - 2021-02-25 08:52 - 000000000 ____D C:\ProgramData\boost_interprocess 2022-06-22 12:13 - 2021-08-16 11:43 - 001892856 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2022-06-22 12:13 - 2021-08-16 11:43 - 000116712 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2022-06-22 12:11 - 2021-08-16 11:43 - 000228880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll 2022-06-22 12:11 - 2021-08-16 11:43 - 000184072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2022-06-19 20:48 - 2022-05-23 22:27 - 000000000 ____D C:\Users\victo\AppData\Roaming\Notion 2022-06-19 13:26 - 2021-02-18 21:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2022-06-19 12:59 - 2021-10-20 22:48 - 000000000 ____D C:\Users\victo\Documents\imagen vis 2022-06-19 00:23 - 2022-04-10 18:49 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-06-19 00:23 - 2021-03-25 10:41 - 000000000 ____D C:\Program Files\xaamp 2022-06-17 15:01 - 2021-02-12 20:59 - 000000000 ____D C:\Users\victo\AppData\Local\SquirrelTemp 2022-06-17 13:32 - 2021-02-12 16:21 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-06-17 13:15 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-06-17 13:15 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-06-17 13:15 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-06-17 13:15 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-06-17 13:15 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\SystemResources 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-06-17 13:14 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-06-17 13:13 - 2021-02-12 16:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-06-17 13:13 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-06-17 13:13 - 2021-02-12 16:29 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-06-17 13:13 - 2021-02-12 16:29 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-06-17 13:13 - 2021-02-12 16:15 - 000000000 ____D C:\WINDOWS\servicing 2022-06-17 04:54 - 2021-02-12 19:57 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-06-17 04:07 - 2021-02-12 22:42 - 000000000 ____D C:\Users\victo\AppData\Local\ElevatedDiagnostics 2022-06-17 03:19 - 2021-10-05 18:49 - 000000000 ____D C:\Users\victo\AppData\Roaming\Parsec 2022-06-17 01:20 - 2021-02-27 13:00 - 000000000 ____D C:\Users\victo\AppData\Local\Battle.net 2022-06-17 01:03 - 2021-02-27 13:02 - 000000000 ____D C:\Program Files (x86)\Overwatch 2022-06-17 00:21 - 2021-02-15 00:58 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-06-17 00:16 - 2021-02-15 00:58 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-06-16 22:43 - 2021-09-04 13:31 - 000002238 _____ C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2022-06-16 22:00 - 2021-09-04 13:29 - 000000000 ____D C:\Users\victo\AppData\Local\yuzu 2022-06-16 15:17 - 2021-02-12 20:40 - 000000000 ____D C:\Users\victo\Documents\Cotec 2022 2022-06-16 01:07 - 2021-02-19 16:35 - 000000000 ____D C:\Users\victo\AppData\Local\GameAnalytics 2022-06-16 00:41 - 2021-04-23 17:02 - 000000000 ____D C:\ProgramData\Origin 2022-06-16 00:40 - 2021-04-23 17:03 - 000000000 ____D C:\Users\victo\AppData\Roaming\Origin 2022-06-16 00:33 - 2021-04-23 17:03 - 000000000 ____D C:\Users\victo\AppData\Local\Origin 2022-06-15 23:48 - 2021-07-18 21:30 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-06-15 20:23 - 2021-08-16 13:54 - 000001608 _____ C:\ProgramData\droidcam-client-options-v2 2022-06-15 20:23 - 2021-08-16 13:54 - 000000374 _____ C:\ProgramData\droidcam-settings 2022-06-15 20:19 - 2021-10-16 22:51 - 000000000 ____D C:\Users\victo\AppData\Roaming\obs-studio 2022-06-15 00:13 - 2021-02-27 12:56 - 000000000 ____D C:\Program Files (x86)\Battle.net 2022-06-14 18:59 - 2021-02-12 20:36 - 000382608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-06-14 18:59 - 2021-02-12 20:36 - 000321928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000857488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000662160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000548968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000271600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000255136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000232648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000111056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000102048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000086120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000045072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-06-14 18:58 - 2021-02-12 20:36 - 000038912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2022-06-13 19:18 - 2021-04-23 17:06 - 000000000 ____D C:\Program Files (x86)\Origin 2022-06-12 19:24 - 2021-02-25 08:49 - 000000000 ____D C:\Users\victo\AppData\Local\Autodesk 2022-06-12 19:17 - 2021-02-25 08:09 - 000000000 ____D C:\Users\victo\AppData\Roaming\Autodesk 2022-06-12 19:17 - 2021-02-25 08:07 - 000000000 ____D C:\Autodesk 2022-06-12 19:16 - 2021-02-25 08:46 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2022-06-11 14:02 - 2021-07-29 17:22 - 000000000 ____D C:\Program Files\Riot Vanguard 2022-06-09 22:54 - 2022-02-17 06:29 - 001582672 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys 2022-06-09 22:54 - 2022-02-17 06:29 - 000703056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys 2022-06-09 22:40 - 2021-02-22 13:51 - 000000000 ____D C:\Users\victo\AppData\Local\EpicGamesLauncher 2022-06-09 11:22 - 2021-02-12 21:00 - 000002231 _____ C:\Users\victo\Desktop\Discord.lnk 2022-06-04 00:16 - 2021-02-25 10:21 - 000000000 ____D C:\Users\victo\AppData\Roaming\Code ==================== Arquivos na raiz de alguns diretórios ======== 2021-11-14 14:29 - 2022-02-04 18:59 - 000000032 _____ () C:\Users\victo\AppData\Roaming\.machineId 2022-02-04 19:01 - 2022-02-04 19:02 - 000001372 _____ () C:\Users\victo\AppData\Roaming\bff78fce-3305-4bcc-86e0-3b77b40cfbab.tmp 2022-06-15 18:40 - 2022-06-15 18:40 - 000000016 _____ () C:\Users\victo\AppData\Roaming\obs-virtualcam.txt 2022-03-08 00:15 - 2022-07-02 21:45 - 000000615 _____ () C:\Users\victo\AppData\Local\oobelibMkey.log 2021-03-14 14:33 - 2021-03-14 14:33 - 000016438 _____ () C:\Users\victo\AppData\Local\partner.bmp 2022-06-30 19:48 - 2022-06-30 19:48 - 000000218 _____ () C:\Users\victo\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================