Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 04-08-2022 Executado por marce (administrador) em DESKGALLES (Gigabyte Technology Co., Ltd. H81M-S1) (09-08-2022 07:20:01) Executando a partir de C:\Users\marce\Desktop Perfis Carregados: marce Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1826 (X64) Idioma: Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (C:\Program Files\LGHUB\lghub_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2> (C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe (explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (explorer.exe ->) (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj\TranslucentTB.exe (explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (INTELBRAS S.A. INDUSTRIA DE TELECOM ELETRONICA BRASILEIRA -> ) C:\Program Files\Intelbras\SIMNext\Local Recording Service\SIMNext.LocalRecording.exe (services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.5.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1790_none_7df2aec07ca10e81\TiWorker.exe (svchost.exe ->) (WhatsApp Inc.) C:\Program Files\WindowsApps\5319275A.51895FA4EA97F_2.2230.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1602253523-1079814496-1200024627-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642320 2022-08-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1602253523-1079814496-1200024627-1001\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (Nenhum Arquivo) HKU\S-1-5-21-1602253523-1079814496-1200024627-1001\...\Run: [MicrosoftEdgeAutoLaunch_6A7EFD9FB16063B23C21C72578A008BC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827112 2022-08-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1602253523-1079814496-1200024627-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1602253523-1079814496-1200024627-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146944768 2022-07-27] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (Nenhum Arquivo) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-08] (Google LLC -> Google LLC) Startup: C:\Users\marce\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk [2022-02-22] ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {231E2347-6EC3-437E-A4D6-630497A04D4C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-08] (Microsoft Corporation -> Microsoft Corporation) Task: {25EF0182-7889-4E89-9314-251D16D8A6CB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145328 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {32A8FBB2-95D5-4063-B895-021234BADD57} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {3BB6DB00-2E2B-4620-85CE-B1C06C5ADFD5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-29] (Google LLC -> Google LLC) Task: {5232ABE2-225B-46A6-AB10-2B8140484B77} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {5D36E30B-DB1E-4274-914C-F8BE92593DCF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6D8F70C0-9365-403C-A87E-6742367BFE8F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145328 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {7123EE62-ECC2-4C00-AE03-243A3358FC3F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {72E2E9DB-711A-4C51-846E-13EBBE980034} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1602253523-1079814496-1200024627-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-08] (Microsoft Corporation -> Microsoft Corporation) Task: {72F2396D-C90B-4555-ACA6-A972E85BAC5C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {76E4003E-3020-4D8F-B56D-7BAE730E41EA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A18D80A0-54F0-449F-B17C-1134F29E9E88} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {A255CC76-4B61-4B35-ACDE-8D0E72D5AF9A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A7B9E8B3-33B0-4882-87D3-2DA0FBAA0985} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {B3CFBC58-44B3-4E26-9046-2F560E96C09C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {C9444312-B8E4-4949-B176-8770537CA9DF} - System32\Tasks\CorelUpdateHelperTask-DF8CB56F80FDA803EEC12FAD85F1AEE7 => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe -resume (Nenhum Arquivo) Task: {DEA1C9B1-29A2-4631-A163-9FC637FC9DC7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {E928970D-1716-45E0-8C17-3764171570E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {EEA5536C-4342-44F2-A408-4AF534E2C350} - System32\Tasks\CorelUpdateHelperTask-F2251323A7EB7D50F4B6576B0063142D => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe -resume (Nenhum Arquivo) Task: {F75FD6AA-6276-4714-8186-3384388F3835} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-29] (Google LLC -> Google LLC) Task: {F9CEAF6E-FB31-48B7-86B3-7F6EB757C450} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 181.213.132.6 181.213.132.7 Tcpip\..\Interfaces\{404e491d-3b15-4590-9e1a-9a718da29f73}: [DhcpNameServer] 181.213.132.6 181.213.132.7 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\marce\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-09] Edge Notifications: Default -> hxxps://cartoes.itau.com.br; hxxps://desktopnotificationshub.com; hxxps://notfreeads.com Edge Extension: (Malwarebytes Browser Guard) - C:\Users\marce\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2022-08-08] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-07-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Arquivo não assinado] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\marce\AppData\Local\Google\Chrome\User Data\Default [2022-08-09] CHR Notifications: Default -> hxxps://www.instagram.com CHR Extension: (Google Tradutor) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-10] CHR Extension: (ReclameAqui+) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhamhppabjaafimidmelnmpfangjdnhj [2022-06-30] CHR Extension: (Botão do Google Acadêmico) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2021-08-30] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\marce\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-09] CHR Profile: C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-08-08] CHR Extension: (Safe Torrent Scanner) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-08] CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-08-08] CHR Extension: (Documentos Google off-line) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-08] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-08] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-09] CHR Profile: C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-06-20] CHR Extension: (Safe Torrent Scanner) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-20] CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-20] CHR Extension: (Documentos Google off-line) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-20] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marce\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20] CHR Profile: C:\Users\marce\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-09] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2022-04-12] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-08-02] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-12-01] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncHelper.exe [3387808 2022-07-22] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-08-19] (HP Inc. -> HP Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10876672 2022-07-27] (Logitech Inc -> Logitech, Inc.) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8680192 2022-08-08] (Malwarebytes Inc. -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.141.0703.0002\OneDriveUpdaterService.exe [3827616 2022-07-22] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2578792 2022-07-27] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2020-12-30] (Even Balance, Inc. -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SIMNextLocalRecording; C:\Program Files\Intelbras\SIMNext\Local Recording Service\SIMNext.LocalRecording.exe [55304 2022-06-02] (INTELBRAS S.A. INDUSTRIA DE TELECOM ELETRONICA BRASILEIRA -> ) R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [1004448 2022-04-12] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 GoogleChromeElevationService; "C:\Program Files\Google\Chrome\Application\103.0.5060.134\elevation_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [287744 2022-05-13] (Microsoft Corporation) [Arquivo não assinado] R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 fdrawcmd; C:\Windows\system32\drivers\fdrawcmd.sys [33144 2010-04-24] (Simon Owen -> simonowen.com) R1 googledrivefs3758; C:\Windows\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.) S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.) R3 logi_generic_hid_filter; C:\Windows\System32\drivers\logi_generic_hid_filter.sys [56368 2022-07-27] (Logitech Inc -> Logitech) R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [33528 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [21704 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [62904 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_mouse_hid_filter; C:\Windows\System32\drivers\logi_mouse_hid_filter.sys [55856 2022-07-27] (Logitech Inc -> Logitech) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [192960 2022-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74704 2022-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181992 2022-08-09] (Malwarebytes Inc. -> Malwarebytes) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) S3 RzDev_006e; C:\Windows\System32\drivers\RzDev_006e.sys [56152 2021-03-22] (Razer USA Ltd. -> Razer Inc) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [39488 2022-08-09] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [36768 2022-02-25] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 xhunter1; C:\Windows\xhunter1.sys [2522256 2022-07-06] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-08-09 07:20 - 2022-08-09 07:20 - 000028317 _____ C:\Users\marce\Desktop\FRST.txt 2022-08-09 06:58 - 2022-08-09 06:58 - 000192960 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-08-09 06:58 - 2022-08-09 06:58 - 000181992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-08-09 06:58 - 2022-08-09 06:58 - 000074704 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-08-09 06:58 - 2022-08-09 06:58 - 000000000 ____D C:\Users\marce\AppData\LocalLow\IGDump 2022-08-08 13:56 - 2022-08-08 13:56 - 000012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe 2022-08-08 13:47 - 2022-08-08 13:49 - 014248944 _____ (SurfRight B.V.) C:\Users\marce\Downloads\HitmanPro_x64.exe 2022-08-08 13:33 - 2022-08-08 13:33 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-08-08 13:33 - 2022-08-08 13:33 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-08-08 13:33 - 2022-08-08 13:33 - 000002036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-08-08 13:33 - 2022-08-08 13:33 - 000002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-08-08 13:33 - 2022-08-08 13:33 - 000000000 ____D C:\Users\marce\AppData\Local\mbam 2022-08-08 13:33 - 2022-08-08 13:32 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-08-08 13:33 - 2022-08-08 13:32 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-08-08 13:32 - 2022-08-08 13:32 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-08-08 13:32 - 2022-08-08 13:32 - 000000000 ____D C:\Program Files\Malwarebytes 2022-08-08 13:31 - 2022-08-08 13:31 - 002086424 _____ (Malwarebytes) C:\Users\marce\Desktop\MBSetup-076886.076886-Consumer.exe 2022-08-08 12:55 - 2022-08-08 12:55 - 001559801 _____ C:\Users\marce\Downloads\A flor da pele (1).zip 2022-08-07 18:03 - 2022-08-09 07:20 - 000000000 ____D C:\FRST 2022-08-07 18:02 - 2022-08-07 18:02 - 000002144 _____ C:\Users\marce\Desktop\AdwCleaner.txt 2022-08-07 18:00 - 2022-08-07 18:00 - 002370048 _____ (Farbar) C:\Users\marce\Desktop\FRST64.exe 2022-08-07 17:54 - 2022-08-07 17:54 - 008551608 _____ (Malwarebytes) C:\Users\marce\Desktop\adwcleaner.exe 2022-08-07 12:11 - 2022-08-07 12:11 - 006705440 _____ (EnigmaSoft Limited) C:\Users\marce\Downloads\SpyHunter-5.12-122-18929-Installer.exe 2022-08-06 08:49 - 2022-08-06 08:49 - 000000000 ____D C:\Users\marce\AppData\LocalLow\Game Labs 2022-08-06 08:40 - 2022-08-06 08:40 - 000000203 _____ C:\Users\marce\Desktop\This Land Is My Land.url 2022-08-05 07:05 - 2022-08-05 07:05 - 000000000 ____D C:\Users\marce\Downloads\O Predador - A Caçada 2022 WEB-DL 1080p DUAL 5.1 2022-08-03 19:46 - 2022-08-03 19:46 - 000001164 _____ C:\Users\marce\Desktop\Microsoft Flight Simulator.lnk 2022-08-02 13:14 - 2022-08-02 13:14 - 000000000 ____D C:\Users\marce\AppData\Local\Deadside 2022-08-02 12:57 - 2022-08-02 12:57 - 000000202 _____ C:\Users\marce\Desktop\Deadside.url 2022-07-30 08:34 - 2022-07-29 18:06 - 010171005 _____ C:\Users\marce\Downloads\Vídeo do WhatsApp de 2022-07-29 à(s) 18.06.02.mp4 2022-07-28 10:26 - 2022-07-28 10:26 - 000000000 ____D C:\Users\marce\AppData\LocalLow\1M Bits Horde 2022-07-28 10:11 - 2022-07-28 10:11 - 000000203 _____ C:\Users\marce\Desktop\Spirit Of The Island.url 2022-07-27 12:17 - 2022-07-27 12:17 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2022-07-27 12:17 - 2022-07-27 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2022-07-27 12:17 - 2022-07-27 12:17 - 000000000 ____D C:\Program Files\LGHUB 2022-07-27 07:42 - 2022-07-27 07:42 - 000056368 _____ (Logitech) C:\Windows\system32\Drivers\logi_generic_hid_filter.sys 2022-07-27 07:42 - 2022-07-27 07:42 - 000055856 _____ (Logitech) C:\Windows\system32\Drivers\logi_mouse_hid_filter.sys 2022-07-22 16:32 - 2022-07-22 16:42 - 000000000 ____D C:\Users\marce\Downloads\[ACESSE COMANDOTORRENTS.COM] Duro de Matar - A Vingança 1995 [720p] [WEB-DL] [DUAL] 2022-07-19 16:19 - 2022-07-19 16:19 - 000000000 ____D C:\Users\marce\AppData\LocalLow\James Bendon 2022-07-19 16:18 - 2022-07-19 16:18 - 000000203 _____ C:\Users\marce\Desktop\Dinkum.url 2022-07-19 09:45 - 2022-07-19 09:45 - 034064120 _____ C:\Users\marce\Downloads\Resumo - Como anunciar no Google Ads 2022 - Adriano Gianini.pdf 2022-07-17 08:43 - 2022-07-17 08:47 - 000000000 ____D C:\Users\marce\Downloads\Viúva Negra 2021 WEB-DL 1080p DUAL 5.1 2022-07-16 18:15 - 2022-07-16 18:15 - 000508969 _____ C:\Users\marce\Downloads\Calendário Presencial 2020.2 - Aluno UNESA.7.pdf 2022-07-14 19:28 - 2022-07-14 19:28 - 000001346 _____ C:\Users\marce\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games.lnk 2022-07-14 19:28 - 2022-07-14 19:28 - 000001338 _____ C:\Users\marce\Desktop\Amazon Games.lnk 2022-07-14 19:28 - 2022-07-14 19:28 - 000000000 ____D C:\Users\marce\AppData\Roaming\electron-platform 2022-07-14 19:28 - 2022-07-14 19:28 - 000000000 ____D C:\Users\marce\AppData\Local\Amazon Games 2022-07-13 17:16 - 2022-07-13 17:16 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-13 17:16 - 2022-07-13 17:16 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-13 17:16 - 2022-07-13 17:16 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-13 17:16 - 2022-07-13 17:16 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-13 17:16 - 2022-07-13 17:16 - 000011811 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-07-13 17:07 - 2022-07-13 17:07 - 000000000 ___HD C:\$WinREAgent ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-08-09 07:18 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-09 07:11 - 2020-12-29 15:41 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-09 07:11 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-09 07:11 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-09 07:05 - 2020-12-29 15:17 - 001742268 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-09 07:05 - 2019-12-07 11:53 - 000752540 _____ C:\Windows\system32\prfh0416.dat 2022-08-09 07:05 - 2019-12-07 11:53 - 000148654 _____ C:\Windows\system32\prfc0416.dat 2022-08-09 07:05 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-08-09 06:59 - 2022-02-21 09:50 - 000000000 ____D C:\Users\marce\AppData\Roaming\LGHUB 2022-08-09 06:59 - 2022-02-21 09:50 - 000000000 ____D C:\Users\marce\AppData\Local\LGHUB 2022-08-09 06:59 - 2020-12-29 15:26 - 000000000 ___RD C:\Users\marce\OneDrive 2022-08-09 06:58 - 2022-04-18 13:01 - 000039488 _____ (Topaz OFD) C:\Windows\system32\Drivers\wsddfac.sys 2022-08-09 06:58 - 2020-12-29 15:29 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-09 06:58 - 2020-12-29 15:25 - 000000000 __SHD C:\Users\marce\IntelGraphicsProfiles 2022-08-09 06:58 - 2020-12-29 15:24 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-08-09 06:58 - 2020-12-29 15:11 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-09 06:58 - 2020-11-18 23:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-09 06:58 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-08-09 06:55 - 2020-12-30 08:30 - 000000000 ____D C:\Program Files\Microsoft Office 2022-08-09 06:50 - 2021-09-16 14:56 - 000000000 ____D C:\Users\Public\Logi 2022-08-08 20:06 - 2021-07-30 10:55 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-08 20:06 - 2021-07-30 10:54 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-08-08 19:00 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-08 18:44 - 2021-01-17 19:18 - 000000000 ____D C:\Users\marce\AppData\Roaming\discord 2022-08-08 18:29 - 2021-01-17 19:18 - 000000000 ____D C:\Users\marce\AppData\Local\Discord 2022-08-08 15:37 - 2021-02-09 07:58 - 000000000 ____D C:\Users\marce\AppData\Roaming\Telegram Desktop 2022-08-08 15:26 - 2020-12-29 15:42 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-08 13:56 - 2022-06-03 15:38 - 000000000 ____D C:\Users\marce\AppData\Roaming\uTorrent 2022-08-08 13:33 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-08-08 08:01 - 2020-12-29 17:56 - 000000000 ____D C:\Users\marce\AppData\Local\D3DSCache 2022-08-07 17:57 - 2021-01-25 15:02 - 000000000 ____D C:\AdwCleaner 2022-08-07 08:33 - 2020-11-18 23:48 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-07 08:33 - 2020-11-18 23:48 - 000002279 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-08-06 08:40 - 2021-01-12 07:56 - 000000000 ____D C:\Users\marce\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-08-05 15:23 - 2021-03-27 11:32 - 000000000 ____D C:\Users\marce\Downloads\Telegram Desktop 2022-08-05 07:44 - 2020-12-29 18:16 - 000000000 ____D C:\Users\marce\AppData\Local\BitTorrentHelper 2022-08-04 20:15 - 2020-12-29 16:49 - 000000000 ____D C:\Users\marce\AppData\Local\Ubisoft Game Launcher 2022-08-03 19:46 - 2020-12-29 15:25 - 000000000 ____D C:\Users\marce\AppData\Local\Packages 2022-08-02 13:14 - 2022-02-04 19:38 - 000000000 ____D C:\Users\marce\AppData\Roaming\EasyAntiCheat 2022-08-02 13:14 - 2021-01-09 10:01 - 000000000 ____D C:\Users\marce\AppData\Local\UnrealEngine 2022-08-02 09:27 - 2020-12-29 15:27 - 000000000 ____D C:\Users\marce\AppData\Local\PlaceholderTileLogoFolder 2022-08-02 09:27 - 2020-11-18 23:49 - 000000000 ____D C:\ProgramData\Packages 2022-07-30 08:20 - 2020-12-30 08:20 - 002754000 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-07-30 08:20 - 2020-12-30 08:20 - 000234960 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-07-30 08:20 - 2020-12-30 08:20 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-07-30 08:19 - 2021-11-18 06:58 - 000144856 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-07-30 08:19 - 2020-12-30 08:20 - 000402904 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-07-30 08:19 - 2020-12-30 08:20 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-07-30 08:19 - 2020-12-30 08:20 - 000067032 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-07-28 12:12 - 2021-09-21 17:17 - 000002060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2022-07-28 12:12 - 2021-09-21 17:17 - 000001902 _____ C:\Users\Default\Desktop\Google Slides.lnk 2022-07-28 12:12 - 2021-09-21 17:17 - 000001902 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2022-07-28 12:12 - 2021-09-21 17:17 - 000001890 _____ C:\Users\Default\Desktop\Google Docs.lnk 2022-07-28 11:05 - 2020-12-29 15:22 - 000000000 ____D C:\Users\marce 2022-07-27 12:17 - 2021-09-16 14:53 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2022-07-26 17:48 - 2022-04-10 21:29 - 000000000 ____D C:\Users\marce\AppData\Local\Battle.net 2022-07-22 16:51 - 2021-12-11 10:00 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1602253523-1079814496-1200024627-1001 2022-07-22 16:51 - 2021-07-30 10:55 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-07-16 11:05 - 2020-11-18 23:45 - 000525648 _____ C:\Windows\system32\FNTCACHE.DAT 2022-07-16 11:04 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-07-16 11:04 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-07-14 19:47 - 2020-12-29 18:02 - 000000000 ____D C:\Users\marce\AppData\Roaming\Origin 2022-07-14 19:47 - 2020-12-29 18:02 - 000000000 ____D C:\ProgramData\Origin 2022-07-14 19:41 - 2020-12-29 18:02 - 000000000 ____D C:\Users\marce\AppData\Local\Origin 2022-07-14 07:39 - 2020-11-18 23:47 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-14 07:39 - 2020-11-18 23:47 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-14 06:59 - 2022-06-24 18:58 - 000000000 ____D C:\Program Files\Netmarble 2022-07-13 17:19 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-07-13 17:16 - 2020-11-18 23:47 - 003010560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-07-13 17:16 - 2020-11-18 20:29 - 000415550 __RSH C:\bootmgr 2022-07-13 17:05 - 2021-01-01 16:13 - 000000000 ____D C:\Windows\system32\MRT 2022-07-13 17:03 - 2021-01-01 16:13 - 146546848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-07-13 15:15 - 2021-11-06 09:10 - 000002076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-07-13 15:15 - 2021-11-06 09:10 - 000002064 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2022-07-13 15:15 - 2021-04-28 07:39 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-07-11 07:03 - 2021-01-21 19:08 - 000000000 ____D C:\Users\marce\AppData\Roaming\Corel 2022-07-11 07:03 - 2021-01-21 19:07 - 000000000 ____D C:\ProgramData\Corel 2022-07-11 07:03 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-07-10 10:48 - 2022-07-07 08:48 - 000003326 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-DF8CB56F80FDA803EEC12FAD85F1AEE7 ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================