Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-07-2022 Executado por Trevis (administrador) em TREVIS (Gigabyte Technology Co., Ltd. GA-78LMT-S2) (26-07-2022 11:47:42) Executando a partir de C:\Users\Trevis\Downloads Perfis Carregados: Trevis Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1826 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Perform\nssm.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <42> (C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe (C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe (C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj\TranslucentTB.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Datronicsoft Inc. -> ) C:\Windows\System32\spacedeskService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Iain Patterson) [Arquivo não assinado] C:\Perform\nssm.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.30001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.30001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe (services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (spacedeskService.exe ->) (Datronicsoft Inc. -> datronicsoft) C:\Windows\System32\spacedeskServiceTray.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [82973864 2022-01-27] (Discord Inc. -> Discord Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Arquivo não assinado] HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600096 2017-02-14] (Razer USA Ltd. -> Razer Inc) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2109824 2021-12-20] (Famatech Corp. -> Famatech Corp.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3148016 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32706000 2022-07-22] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [432320 2021-10-04] (Parsec Cloud, Inc. -> Parsec) HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-253548606-69979022-82744366-1001\...\Run: [bt] => C:\Users\Trevis\AppData\Roaming\BitTorrent\BitTorrent.exe [2106408 2022-07-09] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-253548606-69979022-82744366-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\WPXSCR~1.SCR [261280 2022-01-28] (Skutta, Kristjan -> ) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [54944 2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-21] (Google LLC -> Google LLC) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-03-17] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0058DBF1-BB99-4655-83FB-235E8A161234} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108904 2022-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {11F68474-A373-4057-9E44-8B4D9EE64F13} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1209CC22-3991-4BE5-8EEE-452B8DC133E6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {2825891F-8C3F-4ACB-B589-F043751F9EDA} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804408 2021-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {2DE2ADA0-65E8-4B9C-8ED2-DEEC07A24010} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {327C62C7-69E5-441A-91EF-03C3E3760766} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108904 2022-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {41338D3C-B536-44E4-A517-6E92FBF30C78} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {582219CF-BAE7-4E90-B614-59C55654DBF5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6C4BEE1F-DD3F-4F44-8966-7801643E9F42} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {79B01A18-B2D3-4F1A-8F8A-2D8F54C023A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-27] (Google LLC -> Google LLC) Task: {844B5B4D-6871-4CB2-B1E3-6B90454DFC63} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {8B14B876-C006-4B1D-ADBB-8A1713215C4B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A5664EA5-D069-49A2-A677-54A211E0B5AD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {B379ADCF-25E3-46CD-A1D8-01B77E9173F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6469008 2022-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {B3F6A47C-11E1-4942-B8D8-CD2C02F462A9} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2021-09-08] () [Arquivo não assinado] Task: {C0C77AE9-7DD1-4FAD-BF4D-1E81487D284D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-27] (Google LLC -> Google LLC) Task: {D0B3BCD8-222A-417D-89F7-F40F6B33D5A3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {D8A460B5-969B-492D-89C3-ED9F4726D874} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {D92FBB71-B296-4309-9638-44C9961EBEFE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {E2CEAE8A-211F-447B-A273-047679359BEF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E96951AC-82E6-4C2B-9B5B-98942B9B175C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {E9B54688-5542-4204-BFB6-F89675E22D4A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6469008 2022-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {FECE1B55-6A29-4983-9C3F-92502F10DD37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF958AB2-DF9C-4718-8FF8-54A02078A633} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{33101031-fc70-4869-b8ab-55bf62537ab4}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ad397b2a-55d7-41ef-a3e8-a3a863b37ded}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{ad397b2a-55d7-41ef-a3e8-a3a863b37ded}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\Trevis\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-24] FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2022-05-31] [] FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default [2022-07-26] CHR Notifications: Default -> hxxps://adrenaline.com.br; hxxps://meet.google.com; hxxps://servicosonline.cpfl.com.br; hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.kabum.com.br; hxxps://www.oficinadanet.com.br; hxxps://www.reddit.com CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.facebook.com/","hxxps://www.youtube.com/","hxxps://web.whatsapp.com/" CHR Extension: (Google Tradutor) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-09] CHR Extension: (Safe Torrent Scanner) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-14] CHR Extension: (Slinky Elegante) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2022-01-27] CHR Extension: (Escorrega O Preço) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecikoeehpobhkjagenjmldoehmcmeioo [2022-01-27] CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-13] CHR Extension: (Floating Player) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekajjllcmeckibblgckgoceinmmgnfop [2022-01-27] CHR Extension: (Documentos Google off-line) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-09] CHR Extension: (Cuponomia - Cupom e Cashback) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidejehfgombmkfflghejpncblgfkagj [2022-07-22] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-20] CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2022-01-27] CHR Extension: (APK Downloader) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\idkigghdjmipnppaeahkpcoaiphjdccm [2022-06-10] CHR Extension: (Floating for YouTube™) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2022-01-27] CHR Extension: (MetaMask) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-07-19] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-27] CHR Extension: (Turbo Download Manager (3rd edition)) - C:\Users\Trevis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pabnknalmhfecdheflmcaehlepmhjlaa [2022-01-27] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3852912 2022-07-22] (philandro Software GmbH -> AnyDesk Software GmbH) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-07-10] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-21] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-21] (Epic Games Inc. -> Epic Games, Inc.) S2 GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [75240 2022-05-25] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-04-28] (HP Inc. -> HP Inc.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) R2 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-04] (Parsec Cloud, Inc. -> Parsec) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2458576 2022-07-22] (Rockstar Games, Inc. -> Rockstar Games) R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1058688 2021-12-20] (Famatech Corp. -> Famatech Corp.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 spacedeskService; C:\Windows\System32\spacedeskService.exe [3769400 2022-04-11] (Datronicsoft Inc. -> ) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-05-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [129696 2022-01-28] (Skutta, Kristjan -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Windows Chromer; C:\Perform\nssm.exe [324608 2017-04-26] (Iain Patterson) [Arquivo não assinado] S2 Windows Security; C:\Perform\nssm.exe [324608 2017-04-26] (Iain Patterson) [Arquivo não assinado] S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9280816 2022-05-23] (PUBG CORPORATION -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [104512 2022-07-13] (Hans Roes -> Multi Theft Auto) R1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [394408 2022-02-21] (Google LLC -> Google LLC) R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [72792 2021-11-30] (Insecure.Com LLC -> Insecure.Com LLC.) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 rtump64x64; C:\Windows\System32\drivers\rtump64x64.sys [1049936 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation) R3 RvNetMP60; C:\Windows\System32\drivers\RvNetMP60.sys [69048 2021-12-20] (Famatech Corp. -> Famatech Corp.) R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 spacedeskDriverAudio; C:\Windows\System32\drivers\spacedeskDriverAudio.sys [126000 2022-04-07] (Datronicsoft Inc. -> Windows (R) Win 7 DDK provider) R3 spacedeskDriverBus; C:\Windows\System32\drivers\spacedeskDriverBus.sys [102952 2022-04-07] (Datronicsoft Inc. -> datronicsoft Inc.) S3 spacedeskKtmInputMouse; C:\Windows\System32\drivers\spacedeskKtmInputMouse.sys [39480 2022-04-07] (Datronicsoft Inc. -> ) R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2021-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [1431256 2022-05-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) U4 npcap_wifi; não ImagePath ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-26 11:47 - 2022-07-26 11:48 - 000027734 _____ C:\Users\Trevis\Downloads\FRST.txt 2022-07-26 11:46 - 2022-07-26 11:48 - 000000000 ____D C:\FRST 2022-07-26 11:45 - 2022-07-26 11:45 - 002369536 _____ (Farbar) C:\Users\Trevis\Downloads\FRST64.exe 2022-07-26 11:44 - 2022-07-26 11:44 - 006472000 _____ (Solvusoft ) C:\Users\Trevis\Downloads\Setup_WinThruster_2022.exe 2022-07-25 21:24 - 2022-07-25 21:24 - 000000222 _____ C:\Users\Trevis\Desktop\Unturned.url 2022-07-25 21:02 - 2022-07-25 21:02 - 000000000 ____D C:\Users\Trevis\AppData\LocalLow\Smartly Dressed Games 2022-07-25 17:11 - 2022-07-25 17:11 - 000019968 _____ C:\Windows\system32\SppExtComObjHook.dll 2022-07-25 14:21 - 2022-07-25 14:21 - 000000000 _____ C:\Users\Trevis\Desktop\Illaoi sup.txt 2022-07-13 21:33 - 2022-07-13 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.5 2022-07-13 21:32 - 2022-07-13 21:33 - 000000000 ____D C:\Program Files (x86)\MTA San Andreas 1.5 2022-07-13 21:30 - 2022-07-13 21:33 - 000000000 ____D C:\ProgramData\MTA San Andreas All 2022-07-13 21:19 - 2022-07-13 21:20 - 000000000 ____D C:\Users\Trevis\Documents\GTA San Andreas User Files 2022-07-12 21:55 - 2022-07-12 21:55 - 000000000 ____D C:\Users\Trevis\.matplotlib 2022-07-12 18:47 - 2022-07-12 18:47 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-12 18:47 - 2022-07-12 18:47 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-12 18:47 - 2022-07-12 18:47 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-12 18:47 - 2022-07-12 18:47 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-12 18:47 - 2022-07-12 18:47 - 000011811 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-07-12 18:36 - 2022-07-12 18:36 - 000000000 ___HD C:\$WinREAgent 2022-07-10 23:35 - 2022-07-10 23:35 - 000000000 _____ C:\Windows\system32\netsh 2022-07-09 23:57 - 2022-07-09 23:57 - 000000000 ___HD C:\Program Files\Common FilesEAInstaller 2022-07-09 23:57 - 2022-07-09 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 1 2022-07-06 16:21 - 2022-07-06 16:21 - 000003460 _____ C:\Windows\system32\Tasks\npcapwatchdog 2022-07-06 16:21 - 2022-07-06 16:21 - 000001827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk 2022-07-06 16:21 - 2022-07-06 16:21 - 000000000 ____D C:\Windows\SysWOW64\Npcap 2022-07-06 16:21 - 2022-07-06 16:21 - 000000000 ____D C:\Windows\system32\Npcap 2022-07-06 16:20 - 2022-07-06 16:21 - 000000000 ____D C:\Program Files\Wireshark 2022-07-06 16:20 - 2022-07-06 16:21 - 000000000 ____D C:\Program Files\Npcap 2022-07-06 16:00 - 2022-07-06 16:00 - 000000000 ____D C:\Users\Trevis\AppData\Local\Cisco Packet Tracer 2022-07-06 15:58 - 2022-07-08 14:46 - 000000178 _____ C:\Users\Trevis\.packettracer 2022-07-06 15:58 - 2022-07-06 16:01 - 000000000 ____D C:\Users\Trevis\Cisco Packet Tracer 8.1.1 2022-07-06 15:57 - 2022-07-06 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer 2022-07-06 15:56 - 2022-07-06 15:57 - 000000000 ____D C:\Program Files\Cisco Packet Tracer 8.1.1 2022-07-03 16:22 - 2022-07-03 16:22 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\CreamAPI 2022-07-03 16:22 - 2022-07-03 16:22 - 000000000 ____D C:\Users\Trevis\AppData\LocalLow\SKS 2022-07-03 11:21 - 2022-07-03 11:21 - 000000000 ____H C:\Users\Trevis\Documents\Default.rdp 2022-06-29 23:27 - 2022-06-29 23:27 - 000000000 ____D C:\Users\Trevis\AppData\Local\DBG 2022-06-29 23:23 - 2022-06-24 00:05 - 000041984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-06-29 22:44 - 2022-06-24 14:19 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-06-29 22:44 - 2022-06-24 14:17 - 005734408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001905928 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-06-29 22:43 - 2022-06-24 14:23 - 001905928 _____ C:\Windows\system32\vulkaninfo.exe 2022-06-29 22:43 - 2022-06-24 14:23 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-06-29 22:43 - 2022-06-24 14:23 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-06-29 22:43 - 2022-06-24 14:23 - 001472552 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001432336 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001432336 _____ C:\Windows\system32\vulkan-1.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001213424 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-06-29 22:43 - 2022-06-24 14:23 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-06-29 22:43 - 2022-06-24 14:20 - 000866344 _____ C:\Windows\system32\nvofapi64.dll 2022-06-29 22:43 - 2022-06-24 14:20 - 000687592 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-06-29 22:43 - 2022-06-24 14:19 - 002127848 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-06-29 22:43 - 2022-06-24 14:19 - 001537072 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-06-29 22:43 - 2022-06-24 14:19 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-06-29 22:43 - 2022-06-24 14:19 - 000715304 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-06-29 22:43 - 2022-06-24 14:18 - 010270272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 008804416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 003067456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 001608232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 001059880 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-06-29 22:43 - 2022-06-24 14:18 - 000456200 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-06-29 22:43 - 2022-06-24 14:17 - 005363264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-06-29 22:43 - 2022-06-24 14:17 - 000853568 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-06-29 22:43 - 2022-06-24 00:05 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-06-29 22:21 - 2022-07-21 10:37 - 000000000 ____D C:\Users\Trevis\Projetos Python 2022-06-29 13:54 - 2022-06-29 13:54 - 002449146 _____ C:\Users\Trevis\Desktop\gabaritos.pdf 2022-06-29 13:54 - 2022-06-29 13:54 - 000643828 _____ C:\Users\Trevis\Desktop\prova_tecnologo_em_redes_de_computadores.pdf 2022-06-28 21:58 - 2022-06-28 22:00 - 000000589 _____ C:\Users\Trevis\Untitled.ipynb 2022-06-28 21:58 - 2022-06-28 21:58 - 000000000 ____D C:\Users\Trevis\.ipynb_checkpoints 2022-06-28 21:57 - 2022-06-28 21:57 - 000000000 ____D C:\Users\Trevis\.jupyter 2022-06-28 21:33 - 2022-06-28 21:33 - 000000025 _____ C:\Users\Trevis\.condarc 2022-06-28 21:32 - 2022-06-29 21:58 - 000000000 ____D C:\Users\Trevis\.conda 2022-06-28 21:32 - 2022-06-28 21:58 - 000000000 ____D C:\Users\Trevis\.ipython 2022-06-28 21:32 - 2022-06-28 21:32 - 000000000 ____D C:\Users\Trevis\AppData\Local\conda 2022-06-28 21:32 - 2022-06-28 21:32 - 000000000 ____D C:\Users\Trevis\.continuum 2022-06-28 21:31 - 2022-06-28 21:31 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\.anaconda 2022-06-26 19:24 - 2022-06-26 19:24 - 000000000 ____D C:\Users\Trevis\Desktop\Backup roteador ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-26 11:38 - 2022-01-27 13:01 - 000000000 ____D C:\Program Files (x86)\Steam 2022-07-26 11:37 - 2022-01-27 12:39 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-26 11:17 - 2022-01-27 13:00 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-26 09:05 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-26 08:58 - 2022-01-27 13:19 - 000000000 ____D C:\ProgramData\NVIDIA 2022-07-26 08:58 - 2022-01-27 12:39 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-26 08:58 - 2022-01-27 12:39 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-26 08:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ServiceState 2022-07-26 08:58 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-26 01:58 - 2022-01-27 17:53 - 000003126 _____ C:\Windows\system32\Tasks\MSIAfterburner 2022-07-26 01:58 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-07-25 23:47 - 2022-01-27 13:27 - 000000000 ____D C:\ProgramData\Riot Games 2022-07-25 21:24 - 2022-01-27 13:33 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-07-25 21:10 - 2022-05-23 19:07 - 000000000 ____D C:\Users\Trevis\AppData\Local\BattlEye 2022-07-25 17:20 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-25 16:02 - 2022-01-29 14:29 - 000000000 ____D C:\Users\Trevis\Documents\Euro Truck Simulator 2 2022-07-25 15:48 - 2022-01-27 17:41 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2022-07-25 14:25 - 2022-01-27 12:53 - 000000000 ____D C:\Users\Trevis\AppData\Local\Packages 2022-07-24 17:35 - 2022-01-27 12:39 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-24 16:51 - 2022-03-12 13:26 - 000000000 ____D C:\Users\Trevis\AppData\Local\ElevatedDiagnostics 2022-07-22 23:10 - 2022-03-17 20:27 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2022-07-22 19:23 - 2022-02-17 21:20 - 000000000 ____D C:\Users\Trevis\AppData\Local\Rockstar Games 2022-07-22 19:23 - 2022-02-17 21:20 - 000000000 ____D C:\ProgramData\Rockstar Games 2022-07-22 19:23 - 2022-02-17 21:19 - 000000000 ____D C:\Program Files\Rockstar Games 2022-07-22 19:23 - 2022-02-17 21:19 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2022-07-22 18:48 - 2022-01-27 17:01 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\.minecraft 2022-07-21 19:18 - 2022-01-27 13:00 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-07-21 10:55 - 2022-01-27 12:52 - 000000000 ____D C:\Users\Trevis 2022-07-21 10:29 - 2022-06-15 21:55 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\jupyter 2022-07-20 19:29 - 2022-01-27 12:39 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-20 19:29 - 2022-01-27 12:39 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-20 01:09 - 2022-01-27 13:48 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\Origin 2022-07-20 01:09 - 2022-01-27 13:48 - 000000000 ____D C:\ProgramData\Origin 2022-07-20 00:56 - 2022-01-27 13:48 - 000000000 ____D C:\Users\Trevis\AppData\Local\Origin 2022-07-19 23:43 - 2022-01-27 18:00 - 000000000 ____D C:\Program Files (x86)\SpeedFan 2022-07-19 23:27 - 2022-01-27 13:54 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-07-17 18:19 - 2022-03-01 16:28 - 000000000 ____D C:\Users\Trevis\Documents\American Truck Simulator 2022-07-17 04:03 - 2022-06-15 01:04 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\HandBrake 2022-07-14 18:49 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-07-13 21:32 - 2022-01-27 17:42 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-07-13 21:19 - 2019-12-07 06:10 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2022-07-13 21:19 - 2019-12-07 06:10 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2022-07-13 21:19 - 2019-12-07 06:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2022-07-13 21:19 - 2019-12-07 06:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2022-07-13 21:19 - 2019-12-07 06:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2022-07-13 21:19 - 2019-12-07 06:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2022-07-13 21:19 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-07-12 19:51 - 2022-01-27 12:45 - 001742348 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-12 19:51 - 2019-12-07 11:53 - 000752560 _____ C:\Windows\system32\prfh0416.dat 2022-07-12 19:51 - 2019-12-07 11:53 - 000148674 _____ C:\Windows\system32\prfc0416.dat 2022-07-12 19:45 - 2022-01-27 12:39 - 000462304 _____ C:\Windows\system32\FNTCACHE.DAT 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-07-12 19:44 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-07-12 19:43 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-07-12 19:43 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-07-12 18:47 - 2022-01-27 12:43 - 003010560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-07-12 18:35 - 2022-01-27 12:57 - 000000000 ____D C:\Windows\system32\MRT 2022-07-12 18:31 - 2022-01-27 12:57 - 146546848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-07-10 16:37 - 2022-04-16 20:02 - 000000016 _____ C:\Users\Trevis\AppData\Roaming\msregsvv.dll 2022-07-10 16:37 - 2022-04-16 20:02 - 000000016 _____ C:\ProgramData\autobk.inc 2022-07-10 00:39 - 2022-03-11 17:41 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\BitTorrent 2022-07-10 00:14 - 2022-03-11 17:42 - 000000000 ____D C:\Users\Trevis\AppData\Local\BitTorrentHelper 2022-07-09 17:52 - 2022-01-27 16:40 - 002754024 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000402920 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000144872 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-07-09 17:52 - 2022-01-27 16:40 - 000067048 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-07-08 19:30 - 2022-01-29 15:34 - 000000000 ____D C:\Users\Trevis\AppData\Local\CrashDumps 2022-07-06 01:16 - 2022-01-27 17:42 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2022-07-02 20:00 - 2022-01-27 12:56 - 000000000 ____D C:\Users\Trevis\AppData\Local\PlaceholderTileLogoFolder 2022-06-29 23:27 - 2022-01-27 13:19 - 000000000 ____D C:\Users\Trevis\AppData\Local\NVIDIA 2022-06-29 22:18 - 2022-06-15 22:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit) 2022-06-28 21:39 - 2022-04-18 13:10 - 000000000 ____D C:\Users\Trevis\AppData\Roaming\Code ==================== Arquivos na raiz de alguns diretórios ======== 2022-04-16 20:02 - 2022-07-10 16:37 - 000000016 _____ () C:\Users\Trevis\AppData\Roaming\msregsvv.dll 2022-06-01 10:53 - 2022-06-01 10:53 - 000030660 _____ () C:\Users\Trevis\AppData\Local\recently-used.xbel 2022-05-11 10:39 - 2022-05-11 10:39 - 000000017 _____ () C:\Users\Trevis\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================