Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 15-08-2022 02 Executado por OS PVTS (administrador) em DESKTOP-DNS6SI6 (Gigabyte Technology Co., Ltd. B450 AORUS M) (15-08-2022 12:57:49) Executando a partir de D:\OneDrive\Área de Trabalho Perfis Carregados: OS PVTS Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1889 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (svchost.exe ->) (Advanced Micro Devices, Inc.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe [1343072 2021-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071232 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (Nenhum Arquivo) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Nenhum Arquivo) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2109824 2021-12-20] (Famatech Corp. -> Famatech Corp.) HKLM\...\Policies\Explorer: [AllowOnlineTips] 1 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [4230544 2022-07-26] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32952800 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [Opera GX Browser Assistant] => D:\Program Files\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [WallpaperEngine] => D:\Program Files\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2982608 2022-06-11] (Skutta, Kristjan -> ) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\OS PVTS\AppData\Local\Microsoft\Teams\Update.exe [2508536 2022-06-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [PlanetVPN] => D:\Program Files\PlanetVPN\PlanetVPN.exe (Nenhum Arquivo) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [TranslucentTB] => D:\Program Files\TranslucentTB\TranslucentTB.exe [450768 2020-12-28] (Charles Milette -> TranslucentTB Open Source Developers) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [MicrosoftEdgeAutoLaunch_194EF9C7212BF7039119206C5438E622] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-09] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.88\Installer\chrmstp.exe [2022-08-07] (Brave Software, Inc. -> Brave Software, Inc.) IFEO\CompatTelRunner.exe: [Debugger] %windir%\System32\taskkill.exe IFEO\DeviceCensus.exe: [Debugger] %windir%\System32\taskkill.exe IFEO\software_reporter_tool.exe: [Debugger] %windir%\System32\taskkill.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2022-07-26] ShortcutTarget: SPDriverInstall.lnk -> D:\Program Files\MediaTek\SP Driver\SPDriverInstall (Nenhum Arquivo) Startup: C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TaskbarX.exe - Atalho.lnk [2022-06-11] ShortcutTarget: TaskbarX.exe - Atalho.lnk -> D:\TaskbarX_1.7.6.0_x64\TaskbarX.exe (Chris Andriessen) [Arquivo não assinado] GroupPolicy: Restrição ? <==== ATENÇÃO Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {035127B6-742F-4CCC-A3EC-B107FEAF6471} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation) Task: {26920D45-8680-4A84-BC52-DEDA47C86A78} - System32\Tasks\MSIAfterburner => D:\Program Files\MSI Afterburner\MSIAfterburner.exe [792120 2021-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {2D110744-B796-46FE-B8FD-59E3C1D15E2F} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation) Task: {3CE90A60-1EF4-47EF-AEFD-5955B3BC5A86} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {4A4FB252-84DF-48ED-9C3C-2AC35CE315BB} - System32\Tasks\CorelUpdateHelperTask-5FA96A32ABE7DB9D8AACB3FC09A3D931 => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation) Task: {5DA340AA-A35A-48EE-BE54-959CC9CB89E6} - System32\Tasks\Opera GX scheduled Autoupdate 1618641655 => D:\Program Files\Opera GX\launcher.exe [2462712 2022-07-25] (Opera Norway AS -> Opera Software) Task: {60161809-F842-40D7-9D57-D3CCDA1A0BCF} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {636A9D33-9FF3-400C-87C2-3CC85525CA98} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56368 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {65B5F1E7-4789-4118-8F11-BB9D909FD3A0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6DF1B5E4-6EB2-4F51-8CF2-BF6D813B32EB} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (Nenhum Arquivo) Task: {73C64C6B-1B6F-4CA9-A09E-C3FA79AA0BAA} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {75CEB6AE-BE58-4984-8BC3-A4A1A3F0DFAC} - System32\Tasks\Opera scheduled assistant Autoupdate 1614742647 => C:\Users\OS PVTS\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\OS PVTS\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {89E303D1-AB48-4C7F-B5DC-30F07733E4B0} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {9DF462FA-763A-4FC5-B9F4-7A55F9C3F05B} - System32\Tasks\Opera scheduled Autoupdate 1614742641 => C:\Users\OS PVTS\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo) Task: {9DFD3E85-8316-44D1-B66D-CB57E3F3FF3B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-02] (Google LLC -> Google LLC) Task: {A025BB7A-5F47-4D14-A2B8-2DC39354CD7D} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [329216 2022-04-28] (Advanced Micro Devices, Inc.) [Arquivo não assinado] Task: {A879B18B-495C-438B-BD71-2FB68F7153F8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [261680 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {BE5DB22E-1C2F-41A2-B43E-ACF9BE516495} - System32\Tasks\TaskbarX DESKTOP-DNS6SI6OS PVTS => D:\TaskbarX_1.7.6.0_x64\TaskbarX.exe [173056 2021-12-29] (Chris Andriessen) [Arquivo não assinado] Task: {C133DFD6-1DD3-4355-944E-85D713278BA6} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1618861122 => D:\Program Files\Opera GX\launcher.exe [2462712 2022-07-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Program Files\Opera GX\assistant" $(Arg0) Task: {CFC1DC3E-8E66-4155-8982-AB31AD5C1B90} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-02] (Google LLC -> Google LLC) Task: {D286E15A-70D5-4C07-86C2-B7703B57203C} - System32\Tasks\update-S-1-5-21-2991122402-1895833276-4253020033-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (Nenhum Arquivo) Task: {DD4C9308-D52D-48A4-BD2B-011A3CE2E79F} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {F5268BCB-EE9F-4C07-A499-AF3B1D5BDD7F} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\Windows\Tasks\update-S-1-5-21-2991122402-1895833276-4253020033-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 131.196.124.25 Tcpip\..\Interfaces\{64af23da-57e7-498a-87d4-f84a11bc11ea}: [DhcpNameServer] 192.168.1.1 131.196.124.25 Tcpip\..\Interfaces\{c38c9c17-e25c-4dba-bbf9-cbde2ef58028}: [DhcpNameServer] 192.168.1.1 131.196.124.25 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-15] Edge Extension: (Kaspersky Protection) - C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-15] Edge Extension: (UHRS Extension) - C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ipgondbceeejmemchckjbgmmjgaabfhd [2022-07-01] Edge Extension: (Translate Web Pages) - D:\Windows\Downloads\TWP.9.5.1.Chromium [2022-08-03] Edge HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF DefaultProfile: rjsq0iza.default FF ProfilePath: C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\rjsq0iza.default [2022-06-20] FF ProfilePath: C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\tx3ch84d.default-release [2022-08-14] FF Extension: (Traduzir Páginas Web) - C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\tx3ch84d.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2022-06-28] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF Plugin: @java.com/DTPlugin,version=11.51.2 -> D:\Program Files\Java\bin\dtplugin\npDeployJava1.dll [2021-03-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> D:\Program Files\Java\bin\plugin2\npjp2.dll [2021-03-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Arquivo não assinado] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2022-06-15] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2022-08-14] <==== ATENÇÃO (Aponta para arquivo *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2022-08-14] <==== ATENÇÃO Chrome: ======= CHR Profile: C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default [2022-08-15] CHR Extension: (Safe Torrent Scanner) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-15] CHR Extension: (Kaspersky Protection) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-15] CHR Extension: (BetterTTV) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-08-05] CHR Extension: (ColorZilla) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2022-04-22] CHR Extension: (Word Online) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2022-04-16] CHR Extension: (Documentos Google off-line) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-18] CHR Extension: (Ultimate Volume Booster) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcfnhafpadfnabbnjnhdfdacolpmdbjo [2022-04-01] CHR Extension: (Recursos Copiar e Colar do Office Online) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-04-16] CHR Extension: (WhatFont) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2022-04-22] CHR Extension: (Twitch Channel Points Auto Clicker) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdpblpklojajpopllbckephjndibljbc [2022-06-18] CHR Extension: (Native Instagram Dark Mode) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kipaadjkfleinofipnlpbcjaagjjmahn [2022-07-15] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-02] CHR Extension: (Tema espaço profundo em preto) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pembcnmmbjikdbodfllkkkdaegalobbj [2021-03-02] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm Opera: ======= StartMenuInternet: (HKU\S-1-5-21-2991122402-1895833276-4253020033-1001) Opera GXStable - "D:\Program Files\Opera GX\Launcher.exe" Brave: ======= BRA Profile: C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-08-15] BRA Extension: (Safe Torrent Scanner) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-17] BRA Extension: (Brave Local Data Files Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-08-14] BRA Extension: (Brave NTP background images) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-14] BRA Extension: (Brave NTP sponsored images) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2022-08-14] BRA Extension: (Wallet Data Files Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-08-14] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-08-14] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-05-23] BRA Extension: (Brave SpeedReader Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-05-23] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese)) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\jpolmkeojnkicccihhepfbkhcbicimpa [2022-08-14] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-08-14] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-04-26] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) S4 Ds3Service; D:\Windows\Downloads\Joystick_PS3_USB\ScpServer\bin\ScpService.exe [381952 2014-04-02] (Scarlet.Crush Productions) [Arquivo não assinado] S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-07-08] (EasyAntiCheat Oy -> Epic Games, Inc) S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-11-27] (Mixbyte Inc -> Freemake) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 kpm_service_10.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 10.1\kpm_service.exe [518472 2022-07-18] (AO Kaspersky Lab -> AO Kaspersky Lab) S4 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 MBAMService; D:\Program Files\Malwarebytes\MBAMService.exe [7901368 2021-12-31] (Malwarebytes Inc -> Malwarebytes) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-15] (Electronic Arts, Inc. -> Electronic Arts) S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-15] (Electronic Arts, Inc. -> Electronic Arts) S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-10-31] (Even Balance, Inc. -> ) S4 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14592472 2022-06-13] (ADLICE -> ) S4 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2016208 2022-07-01] (Rockstar Games, Inc. -> Rockstar Games) S4 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1058688 2021-12-20] (Famatech Corp. -> Famatech Corp.) S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation) S4 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-04-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S4 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10477800 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S4 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9280816 2022-04-28] (PUBG CORPORATION -> KRAFTON, Inc) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.88\elevation_service.exe" [X] S4 Red Giant Service; C:\Program Files\Red Giant\Services\Red Giant Service.exe [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [33216 2022-03-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-04-26] (Advanced Micro Devices INC. -> Advanced Micro Devices) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0379219.inf_amd64_3649648678001de4\B378972\amdkmdag.sys [90165704 2022-05-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [237288 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [30728 2022-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 DPIDEFil; C:\Windows\System32\drivers\DPIDEFil.sys [53608 2022-07-31] (NEC Personal Computers, Ltd. -> NEC Personal Computers, Ltd.) R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [41480 2022-04-02] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 gFilterMouUsb; C:\Windows\System32\drivers\gFilterMouUsb.sys [30568 2022-07-31] (KYE SYSTEMS CORP. -> KYE Systems Corp.) R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [206600 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [119568 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [522504 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [703056 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1582640 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [190696 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1049864 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [90896 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [104728 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [107328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78088 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [88328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [357136 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [187200 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [270752 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [150280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [325400 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [294680 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (ManyCam -> Visicom Media Inc.) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-12-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-12-31] (Malwarebytes Inc -> Malwarebytes) S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) R3 RvNetMP60; C:\Windows\System32\drivers\RvNetMP60.sys [69048 2021-03-03] (Famatech Corp. -> Famatech Corp.) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [44080 2016-09-27] (Shaul Eizikovich -> Nefarius Software Solutions) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2022-02-03] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 VCSVADHWSer; C:\Windows\System32\drivers\vcsvad.sys [27600 2020-03-11] (Audio and Video Software Corporation -> AVSOFT Corp.) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8596792 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2021-11-18] (NGO -> MBB) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [1431256 2022-04-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S1 grzpmsdm; \??\C:\Windows\system32\drivers\grzpmsdm.sys [X] S1 ihajnoke; \??\C:\Windows\system32\drivers\ihajnoke.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-08-15 12:24 - 2022-08-15 12:58 - 000000000 ____D C:\FRST 2022-08-15 10:03 - 2022-08-15 10:03 - 000041920 _____ C:\Windows\system32\Drivers\truesight.sys 2022-08-15 03:11 - 2022-08-15 10:08 - 000000000 ____D C:\ProgramData\RogueKiller 2022-08-15 03:11 - 2022-08-15 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2022-08-15 03:11 - 2022-08-15 03:11 - 000000000 ____D C:\Program Files\RogueKiller 2022-08-15 02:57 - 2022-08-15 11:58 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\ZHP 2022-08-15 02:57 - 2022-08-15 02:57 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\ZHP 2022-08-15 02:54 - 2022-08-15 02:56 - 000000000 ____D C:\AdwCleaner 2022-08-15 00:34 - 2022-08-15 00:34 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Kaspersky Lab 2022-08-14 19:20 - 2022-08-14 19:20 - 000357136 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys 2022-08-14 19:19 - 2022-08-14 19:19 - 000001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager.lnk 2022-08-14 19:19 - 2022-08-14 19:19 - 000000000 ____D C:\Program Files (x86)\dotnet 2022-08-14 19:16 - 2022-08-14 19:19 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-08-14 19:16 - 2022-08-14 19:19 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2022-08-14 19:16 - 2022-08-14 19:16 - 000376920 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000270752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000187200 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud.lnk 2022-08-14 19:16 - 2022-08-14 19:16 - 000001299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN.lnk 2022-08-14 19:16 - 2022-02-17 06:29 - 001049864 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2022-08-14 19:16 - 2022-02-17 06:29 - 000522504 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2022-08-14 19:16 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2022-08-13 23:50 - 2022-08-13 23:56 - 000000000 ____D C:\ESD 2022-08-13 23:47 - 2022-08-13 23:47 - 000000000 ___HD C:\$Windows.~WS 2022-08-13 14:32 - 2022-08-13 14:32 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\com.redgiant.vfx.opticalglow-ae 2022-08-13 14:29 - 2022-08-15 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant 2022-08-13 14:29 - 2022-08-13 14:29 - 000000074 _____ C:\ProgramData\WnHqYU0nH4 2022-08-13 14:29 - 2022-08-13 14:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Red Giant 2022-08-13 14:29 - 2022-08-13 14:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Red Giant 2022-08-13 14:26 - 2022-08-13 14:29 - 000000000 ____D C:\ProgramData\Red Giant 2022-08-11 15:04 - 2022-08-11 15:04 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\BorisFX 2022-08-11 15:04 - 2022-08-11 15:04 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\BorisFX 2022-08-11 14:41 - 2022-08-11 14:41 - 000000000 ____D C:\ProgramData\GenArts 2022-08-11 14:33 - 2022-08-11 14:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon 2022-08-11 14:31 - 2022-08-11 14:34 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R21 2022-08-11 14:10 - 2022-08-15 00:28 - 000000000 ____D C:\ProgramData\BorisFX 2022-08-10 11:17 - 2022-08-10 11:17 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\SafeNet Sentinel 2022-08-10 11:17 - 2022-08-10 11:17 - 000000000 ____D C:\ProgramData\SafeNet Sentinel 2022-08-10 10:04 - 2022-08-10 10:04 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-10 10:04 - 2022-08-10 10:04 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-10 10:03 - 2022-08-10 10:03 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-10 10:03 - 2022-08-10 10:03 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-10 10:03 - 2022-08-10 10:03 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-10 09:52 - 2022-08-10 09:52 - 000000000 ___HD C:\$WinREAgent 2022-08-10 03:16 - 2022-08-11 14:42 - 000000000 ____D C:\ProgramData\Reprise 2022-08-10 03:16 - 2019-08-15 06:35 - 000000000 _____ C:\Windows\MSUTIL.INI 2022-08-06 01:17 - 2022-08-06 01:17 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\HelloGames 2022-08-05 20:37 - 2022-08-15 03:25 - 000000000 ____D C:\Program Files (x86)\Radmin VPN 2022-08-05 20:37 - 2022-08-05 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Radmin VPN 2022-08-05 20:36 - 2022-08-05 20:37 - 000000000 ____D C:\Windows\system32\appmgmt 2022-08-05 16:47 - 2022-08-05 16:47 - 000000000 ____D C:\Program Files\Riot Vanguard 2022-08-05 01:10 - 2022-08-05 01:10 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Briano 2022-08-03 15:41 - 2022-08-03 15:41 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\AMD 2022-08-03 15:39 - 2022-08-03 15:39 - 000003122 _____ C:\Windows\system32\Tasks\AMDInstallLauncher 2022-08-03 15:38 - 2022-08-03 15:38 - 000003160 _____ C:\Windows\system32\Tasks\StartCN 2022-08-03 15:38 - 2022-08-03 15:38 - 000003110 _____ C:\Windows\system32\Tasks\AMDLinkUpdate 2022-08-03 15:38 - 2022-08-03 15:38 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR 2022-08-03 15:38 - 2022-08-03 15:38 - 000002622 _____ C:\Windows\system32\Tasks\AMDRyzenMasterSDKTask 2022-08-03 15:38 - 2022-08-03 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2022-08-03 15:38 - 2022-08-03 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2022-08-03 03:19 - 2022-08-03 03:20 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\AMD Wraith 2022-08-03 03:19 - 2022-08-03 03:19 - 000081172 _____ C:\Windows\uninsWraith Prism.dat 2022-08-03 03:19 - 2022-08-03 03:19 - 000000000 ____D C:\Program Files (x86)\AMD Wraith 2022-08-03 03:19 - 2018-07-27 08:57 - 006177792 _____ (AMD Wraith) C:\Windows\uninsWraith Prism.exe 2022-08-02 12:32 - 2021-08-22 13:31 - 006505000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2022-08-02 12:32 - 2021-08-22 13:20 - 048274129 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2022-08-02 10:30 - 2019-10-30 02:20 - 001126344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll 2022-08-02 10:30 - 2019-10-30 02:20 - 000481888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2022-08-02 10:30 - 2019-10-29 23:20 - 000856288 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe 2022-08-02 10:30 - 2019-10-29 23:20 - 000821336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll 2022-08-02 10:28 - 2019-10-30 02:20 - 005623256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPOU64.dll 2022-08-02 10:28 - 2019-10-29 23:20 - 000215032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2022-07-31 02:33 - 2022-07-31 02:33 - 000030568 _____ (KYE Systems Corp.) C:\Windows\system32\Drivers\gFilterMouUsb.sys 2022-07-31 02:32 - 2022-07-31 02:32 - 000053608 _____ (NEC Personal Computers, Ltd.) C:\Windows\system32\Drivers\DPIDEFil.sys 2022-07-31 02:32 - 2022-07-31 02:32 - 000035120 _____ (COMPAL ELECTRONIC INC.) C:\Windows\system32\Drivers\LPCFilter.sys 2022-07-31 02:23 - 2022-07-31 02:54 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\ROSTPAY LTD 2022-07-26 16:35 - 2022-07-26 16:35 - 000000000 ____D C:\Program Files (x86)\MediaTek 2022-07-26 16:34 - 2022-07-26 16:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SP Driver 2022-07-26 16:33 - 2022-07-26 16:36 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Mediatek 2022-07-26 15:34 - 2022-07-26 15:34 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Trolltech 2022-07-26 15:17 - 2022-08-14 20:28 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-07-25 18:07 - 2022-07-25 18:07 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\DotNetBrowser 2022-07-25 18:07 - 2022-07-25 18:07 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Chromium 2022-07-25 18:07 - 2022-07-25 18:07 - 000000000 ____D C:\ProgramData\RSA 2022-07-25 18:05 - 2022-07-25 18:09 - 000000000 ____D C:\ProgramData\LMSA 2022-07-25 16:15 - 2022-07-30 03:39 - 000000000 ____D C:\ProgramData\SP_FT_Logs 2022-07-25 15:26 - 2022-07-25 15:26 - 000000000 ____D C:\Program Files\Motorola Mobility LLC 2022-07-25 15:26 - 2022-07-25 15:26 - 000000000 ____D C:\Program Files\Common Files\Motorola Shared 2022-07-22 13:42 - 2022-07-22 13:42 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Interior Night Ltd 2022-07-21 17:28 - 2022-07-21 17:28 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\CoinCrewGames 2022-07-21 16:45 - 2022-07-21 16:45 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\FuturLab 2022-07-21 00:29 - 2022-07-21 00:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Hk_project ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-08-15 12:52 - 2021-03-02 11:54 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-15 12:43 - 2022-05-21 11:43 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Mozilla 2022-08-15 12:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\NDF 2022-08-15 12:23 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-15 11:58 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\D3DSCache 2022-08-15 10:46 - 2022-05-23 16:40 - 000003612 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2022-08-15 10:46 - 2022-05-23 16:40 - 000003488 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2022-08-15 10:36 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-15 10:07 - 2021-03-02 11:51 - 000007176 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-15 10:07 - 2019-12-07 11:53 - 002665942 _____ C:\Windows\system32\prfh0416.dat 2022-08-15 10:07 - 2019-12-07 11:53 - 001917342 _____ C:\Windows\system32\prfc0416.dat 2022-08-15 10:03 - 2021-05-24 00:20 - 000000001 _____ C:\Windows\vgkbootstatus.dat 2022-08-15 10:00 - 2021-10-25 08:22 - 000003134 _____ C:\Windows\system32\Tasks\MSIAfterburner 2022-08-15 10:00 - 2021-03-02 11:43 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-15 10:00 - 2020-11-18 23:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-15 04:44 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-08-15 04:10 - 2021-03-03 01:07 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\CrashDumps 2022-08-15 03:25 - 2021-04-21 00:49 - 000000000 ____D C:\Program Files (x86)\Radmin Viewer 3 2022-08-15 03:06 - 2021-03-02 11:57 - 000000000 ____D C:\Program Files\Google 2022-08-15 02:56 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\discord 2022-08-15 02:52 - 2021-03-03 20:06 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\BitTorrentHelper 2022-08-15 02:52 - 2021-03-03 20:05 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\uTorrent 2022-08-15 02:10 - 2021-09-11 19:44 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Discord 2022-08-15 00:57 - 2021-04-19 20:05 - 000003462 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-5FA96A32ABE7DB9D8AACB3FC09A3D931 2022-08-15 00:54 - 2021-06-02 15:25 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Origin 2022-08-15 00:54 - 2021-06-02 15:25 - 000000000 ____D C:\ProgramData\Origin 2022-08-15 00:52 - 2022-04-23 22:28 - 000000000 ____D C:\SteamLibrary 2022-08-15 00:51 - 2021-06-02 15:30 - 000000000 ____D C:\Program Files (x86)\Origin 2022-08-15 00:51 - 2021-06-02 15:25 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Origin 2022-08-15 00:30 - 2021-08-09 19:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Zoom 2022-08-14 22:43 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-08-14 21:50 - 2021-03-02 12:13 - 000000000 ____D C:\ProgramData\Riot Games 2022-08-14 21:21 - 2022-05-23 16:41 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-08-14 21:21 - 2022-04-22 19:40 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk 2022-08-14 21:21 - 2022-04-03 22:48 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall RGBFusion 2.0.lnk 2022-08-14 21:21 - 2022-04-02 01:04 - 000000665 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\God of War.lnk 2022-08-14 21:21 - 2021-04-21 00:06 - 000000943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2022-08-14 21:21 - 2021-03-06 16:58 - 000003216 _____ C:\ProgramData\droidcam-client-options-v2 2022-08-14 21:21 - 2021-03-02 11:57 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-14 21:20 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-08-14 21:19 - 2022-05-21 11:43 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-14 21:19 - 2021-06-14 03:01 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2022-08-14 20:33 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-14 20:29 - 2022-05-21 11:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-14 20:28 - 2022-05-21 11:43 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-14 20:14 - 2021-03-06 16:58 - 000000403 _____ C:\ProgramData\droidcam-settings 2022-08-14 19:19 - 2021-03-02 23:37 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-14 19:16 - 2021-03-03 08:40 - 000000000 ____D C:\Program Files\Common Files\AV 2022-08-14 19:16 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-08-14 19:16 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-08-14 19:15 - 2022-04-22 19:33 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-08-14 19:08 - 2022-06-20 11:56 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2022-08-14 18:13 - 2021-03-02 11:49 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Adobe 2022-08-13 23:56 - 2021-03-02 11:42 - 000000000 ____D C:\Windows\Panther 2022-08-13 18:12 - 2022-04-22 19:33 - 000000000 ____D C:\Program Files\Adobe 2022-08-13 01:18 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-12 22:10 - 2022-06-15 23:13 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\FiveM 2022-08-12 22:10 - 2021-06-04 23:47 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\DigitalEntitlements 2022-08-12 21:00 - 2021-03-16 10:58 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\.tlauncher 2022-08-12 11:44 - 2020-11-18 23:48 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-11 18:02 - 2021-12-12 23:11 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2991122402-1895833276-4253020033-1001 2022-08-11 18:02 - 2021-03-02 11:50 - 000003384 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2991122402-1895833276-4253020033-1001 2022-08-11 18:02 - 2021-03-02 11:48 - 000002395 _____ C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-11 17:46 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\AMD 2022-08-10 14:31 - 2022-05-24 16:04 - 000387560 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-10 14:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-10 14:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-10 10:07 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-10 10:03 - 2020-11-18 23:47 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-10 09:52 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-10 09:51 - 2021-03-12 01:06 - 000000000 ____D C:\Windows\system32\MRT 2022-08-10 09:49 - 2021-03-03 07:50 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-09 20:03 - 2021-03-02 11:48 - 000000000 ____D C:\Users\OS PVTS 2022-08-06 14:04 - 2022-06-21 00:42 - 000007605 _____ C:\Users\OS PVTS\AppData\Local\Resmon.ResmonCfg 2022-08-06 01:12 - 2021-03-02 11:49 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Packages 2022-08-06 01:12 - 2020-11-18 23:49 - 000000000 ____D C:\ProgramData\Packages 2022-08-05 20:51 - 2021-03-16 11:02 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\.minecraft 2022-08-04 19:47 - 2021-03-02 12:04 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\PlaceholderTileLogoFolder 2022-08-03 15:40 - 2022-05-21 11:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-03 15:38 - 2021-03-02 23:36 - 000000000 ____D C:\Program Files\AMD 2022-08-03 15:30 - 2021-03-02 23:36 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\AMD_Common 2022-08-03 03:09 - 2021-07-07 23:07 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Ninja Kiwi 2022-08-03 03:09 - 2021-03-05 19:53 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-08-03 03:08 - 2021-04-02 18:22 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-08-03 03:07 - 2021-04-02 19:07 - 000000000 ____D C:\ProgramData\MTA San Andreas All 2022-08-03 03:02 - 2022-07-02 15:59 - 000000000 ____D C:\Program Files\Electronic Arts 2022-08-02 12:33 - 2021-06-14 02:58 - 000000000 ___HD C:\Program Files (x86)\Temp 2022-08-02 12:32 - 2021-06-14 02:58 - 000000000 ____D C:\Program Files (x86)\Realtek 2022-07-31 12:34 - 2021-03-03 01:19 - 000000000 ____D C:\ProgramData\ProductData 2022-07-31 12:33 - 2021-03-03 01:15 - 000000000 ____D C:\ProgramData\IObit 2022-07-29 18:04 - 2021-03-06 17:05 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\obs-studio 2022-07-28 09:14 - 2021-04-17 03:41 - 000004198 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1618641655 2022-07-28 09:14 - 2021-04-17 03:40 - 000000896 _____ C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk 2022-07-27 11:25 - 2022-06-20 00:36 - 002754000 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000402904 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000234960 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000144856 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-07-27 11:25 - 2022-06-20 00:36 - 000067032 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-07-26 21:38 - 2020-11-18 23:47 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-26 21:38 - 2020-11-18 23:47 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-22 12:20 - 2021-03-06 17:07 - 000000015 _____ C:\Users\OS PVTS\AppData\Roaming\obs-virtualcam.txt ==================== Arquivos na raiz de alguns diretórios ======== 2021-08-14 00:51 - 2022-06-27 18:50 - 000012288 _____ () C:\Users\OS PVTS\AppData\Roaming\emp.bin 2021-03-06 17:07 - 2022-07-22 12:20 - 000000015 _____ () C:\Users\OS PVTS\AppData\Roaming\obs-virtualcam.txt 2021-05-23 09:24 - 2021-05-23 09:28 - 000000132 _____ () C:\Users\OS PVTS\AppData\Roaming\Preferências do Formato PNG do Adobe CS6 2022-05-02 23:58 - 2022-05-24 03:46 - 000001456 _____ () C:\Users\OS PVTS\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2021-03-03 00:10 - 2021-03-03 00:10 - 000016438 _____ () C:\Users\OS PVTS\AppData\Local\partner.bmp 2021-04-30 11:00 - 2022-06-07 14:00 - 000060683 _____ () C:\Users\OS PVTS\AppData\Local\PlariumPlay.log 2022-06-21 00:42 - 2022-08-06 14:04 - 000007605 _____ () C:\Users\OS PVTS\AppData\Local\Resmon.ResmonCfg 2021-04-28 09:52 - 2021-04-28 09:52 - 000000003 _____ () C:\Users\OS PVTS\AppData\Local\updater.log 2021-04-28 09:52 - 2021-04-28 09:52 - 000000424 _____ () C:\Users\OS PVTS\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================