Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 30-08-2022 Executado por OS PVTS (administrador) em DESKTOP-DNS6SI6 (Gigabyte Technology Co., Ltd. B450 AORUS M) (01-09-2022 13:59:22) Executando a partir de D:\OneDrive\Área de Trabalho Perfis Carregados: OS PVTS Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1889 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Opera Norway AS -> Opera Software) D:\Program Files\Opera GX\89.0.4447.104\opera_autoupdate.exe <2> (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe (svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe (svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe [1343072 2021-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071192 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (Nenhum Arquivo) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Nenhum Arquivo) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [83119912 2022-08-15] (Discord Inc. -> Discord Inc.) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2109824 2021-12-20] (Famatech Corp. -> Famatech Corp.) HKLM\...\Policies\Explorer: [AllowOnlineTips] 1 HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [4230544 2022-07-26] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32952800 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [Opera GX Browser Assistant] => D:\Program Files\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [WallpaperEngine] => D:\Program Files\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2982608 2022-06-11] (Skutta, Kristjan -> ) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\OS PVTS\AppData\Local\Microsoft\Teams\Update.exe [2508536 2022-06-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [TranslucentTB] => D:\Program Files\TranslucentTB\TranslucentTB.exe [450768 2020-12-28] (Charles Milette -> TranslucentTB Open Source Developers) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [MicrosoftEdgeAutoLaunch_194EF9C7212BF7039119206C5438E622] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827104 2022-08-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (Nenhum Arquivo) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\105.1.43.88\Installer\chrmstp.exe [2022-09-01] (Brave Software, Inc. -> Brave Software, Inc.) IFEO\CompatTelRunner.exe: [Debugger] %windir%\System32\taskkill.exe IFEO\DeviceCensus.exe: [Debugger] %windir%\System32\taskkill.exe IFEO\software_reporter_tool.exe: [Debugger] %windir%\System32\taskkill.exe Startup: C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TaskbarX.exe - Atalho.lnk [2022-06-11] ShortcutTarget: TaskbarX.exe - Atalho.lnk -> D:\TaskbarX_1.7.6.0_x64\TaskbarX.exe (Chris Andriessen) [Arquivo não assinado] ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {09132807-CA98-4194-85FA-41E1FE03F11D} - System32\Tasks\Opera GX scheduled Autoupdate 1618641655 => D:\Program Files\Opera GX\launcher.exe [2462672 2022-08-22] (Opera Norway AS -> Opera Software) Task: {11E3F307-331A-4DED-94C0-2EA0FC88E81D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {2D110744-B796-46FE-B8FD-59E3C1D15E2F} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation) Task: {36144C5C-3CBA-4CBC-A33B-4606719D1ECE} - System32\Tasks\CorelUpdateHelperTask-5FA96A32ABE7DB9D8AACB3FC09A3D931 => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation) Task: {36A97DC6-9C6E-4077-A1B3-E12708454659} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {44BAFB52-E9FD-4BBF-B214-0D327AB9E7AA} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291776 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {47C4AF7E-F2EB-484F-815E-E5BC3346B06A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {64E18E06-38A3-4626-8C76-C504479272C1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56768 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {65B5F1E7-4789-4118-8F11-BB9D909FD3A0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6AF6B0AE-4866-470D-91C2-E18A9409DDF5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {75CEB6AE-BE58-4984-8BC3-A4A1A3F0DFAC} - System32\Tasks\Opera scheduled assistant Autoupdate 1614742647 => C:\Users\OS PVTS\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\OS PVTS\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {76B9B043-4E35-40B7-88FA-FB67EE7A2861} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {87179593-B4FD-42D0-A8F3-BFCAD1913AFD} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.exe /NoUACCheck Task: {89E303D1-AB48-4C7F-B5DC-30F07733E4B0} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {9DFD3E85-8316-44D1-B66D-CB57E3F3FF3B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-02] (Google LLC -> Google LLC) Task: {AD4D3CFF-A436-49FB-BAB0-7616E8785472} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183232 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {AE296AD0-DA88-4248-9DF5-B906458A0D10} - System32\Tasks\MSIAfterburner => D:\Program Files\MSI Afterburner\MSIAfterburner.exe [792120 2021-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {BE5DB22E-1C2F-41A2-B43E-ACF9BE516495} - System32\Tasks\TaskbarX DESKTOP-DNS6SI6OS PVTS => D:\TaskbarX_1.7.6.0_x64\TaskbarX.exe [173056 2021-12-29] (Chris Andriessen) [Arquivo não assinado] Task: {C133DFD6-1DD3-4355-944E-85D713278BA6} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1618861122 => D:\Program Files\Opera GX\launcher.exe [2462672 2022-08-22] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Program Files\Opera GX\assistant" $(Arg0) Task: {CFC1DC3E-8E66-4155-8982-AB31AD5C1B90} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-02] (Google LLC -> Google LLC) Task: {DD4C9308-D52D-48A4-BD2B-011A3CE2E79F} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {F3DCCD23-40EE-4D58-9066-96516E1111F0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {F3E13A88-2648-498D-B35B-D5AD61D70922} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: O arquivo Hosts não foi detectado no seu diretório padrão Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 131.196.124.25 Tcpip\..\Interfaces\{64af23da-57e7-498a-87d4-f84a11bc11ea}: [DhcpNameServer] 192.168.1.1 131.196.124.25 Tcpip\..\Interfaces\{c38c9c17-e25c-4dba-bbf9-cbde2ef58028}: [DhcpNameServer] 192.168.1.1 131.196.124.25 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01] Edge Extension: (Kaspersky Protection) - C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-15] Edge Extension: (UHRS Extension) - C:\Users\OS PVTS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ipgondbceeejmemchckjbgmmjgaabfhd [2022-07-01] Edge Extension: (Translate Web Pages) - D:\Windows\Downloads\TWP.9.5.1.Chromium [2022-08-03] Edge HKU\S-1-5-21-2991122402-1895833276-4253020033-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF DefaultProfile: rjsq0iza.default FF ProfilePath: C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\rjsq0iza.default [2022-08-15] FF ProfilePath: C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\tx3ch84d.default-release [2022-08-16] FF Extension: (Traduzir Páginas Web) - C:\Users\OS PVTS\AppData\Roaming\Mozilla\Firefox\Profiles\tx3ch84d.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2022-08-16] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF Plugin: @java.com/DTPlugin,version=11.51.2 -> D:\Program Files\Java\bin\dtplugin\npDeployJava1.dll [2021-03-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> D:\Program Files\Java\bin\plugin2\npjp2.dll [2021-03-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Arquivo não assinado] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2022-06-15] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2022-08-14] <==== ATENÇÃO (Aponta para arquivo *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2022-08-14] <==== ATENÇÃO Chrome: ======= CHR Profile: C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default [2022-09-01] CHR DownloadDir: D:\Windows\Downloads CHR Extension: (Safe Torrent Scanner) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-15] CHR Extension: (Kaspersky Protection) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-15] CHR Extension: (BetterTTV) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-08-05] CHR Extension: (ColorZilla) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2022-04-22] CHR Extension: (Word Online) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2022-04-16] CHR Extension: (Documentos Google off-line) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-25] CHR Extension: (Ultimate Volume Booster) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcfnhafpadfnabbnjnhdfdacolpmdbjo [2022-04-01] CHR Extension: (Recursos Copiar e Colar do Office Online) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-04-16] CHR Extension: (WhatFont) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2022-04-22] CHR Extension: (Twitch Channel Points Auto Clicker) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdpblpklojajpopllbckephjndibljbc [2022-06-18] CHR Extension: (Native Instagram Dark Mode) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kipaadjkfleinofipnlpbcjaagjjmahn [2022-07-15] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-02] CHR Extension: (Tema espaço profundo em preto) - C:\Users\OS PVTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pembcnmmbjikdbodfllkkkdaegalobbj [2021-03-02] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm Opera: ======= StartMenuInternet: (HKU\S-1-5-21-2991122402-1895833276-4253020033-1001) Opera GXStable - "D:\Program Files\Opera GX\Launcher.exe" Brave: ======= BRA Profile: C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-08-15] BRA Extension: (Safe Torrent Scanner) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-17] BRA Extension: (Brave Local Data Files Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-08-14] BRA Extension: (Brave NTP background images) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-14] BRA Extension: (Brave NTP sponsored images) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2022-08-14] BRA Extension: (Wallet Data Files Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-08-14] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-08-14] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-05-23] BRA Extension: (Brave SpeedReader Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-05-23] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese)) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\jpolmkeojnkicccihhepfbkhcbicimpa [2022-08-14] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\OS PVTS\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-08-14] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-04-26] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-23] (Brave Software, Inc. -> BraveSoftware Inc.) S2 Ds3Service; D:\Windows\Downloads\Joystick_PS3_USB\ScpServer\bin\ScpService.exe [381952 2014-04-02] (Scarlet.Crush Productions) [Arquivo não assinado] S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-07-08] (EasyAntiCheat Oy -> Epic Games, Inc) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-11-27] (Mixbyte Inc -> Freemake) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_service_10.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 10.1\kpm_service.exe [518472 2022-07-18] (AO Kaspersky Lab -> AO Kaspersky Lab) S2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 MBAMService; D:\Program Files\Malwarebytes\MBAMService.exe [7901368 2021-12-31] (Malwarebytes Inc -> Malwarebytes) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-15] (Electronic Arts, Inc. -> Electronic Arts) S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-10-31] (Even Balance, Inc. -> ) S2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14592472 2022-06-13] (ADLICE -> ) S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2016208 2022-07-01] (Rockstar Games, Inc. -> Rockstar Games) S2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1058688 2021-12-20] (Famatech Corp. -> Famatech Corp.) S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-04-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10420944 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9280816 2022-04-28] (PUBG CORPORATION -> KRAFTON, Inc) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\105.1.43.88\elevation_service.exe" [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-08-19] (Advanced Micro Devices INC. -> Advanced Micro Devices) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66a9fa5d80327844\amdsafd.sys [113080 2022-06-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0382658.inf_amd64_03ff8c2b52214376\B382613\amdkmdag.sys [94445072 2022-08-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [237288 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [44832 2022-09-01] (CPUID S.A.R.L.U. -> CPUID) R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [30728 2022-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 DPIDEFil; C:\Windows\System32\drivers\DPIDEFil.sys [53608 2022-07-31] (NEC Personal Computers, Ltd. -> NEC Personal Computers, Ltd.) R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [41480 2022-04-02] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 gFilterMouUsb; C:\Windows\System32\drivers\gFilterMouUsb.sys [30568 2022-07-31] (KYE SYSTEMS CORP. -> KYE Systems Corp.) R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [206600 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [119568 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [522504 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [703056 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1582640 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [188648 2022-08-23] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1049864 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [90896 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [104728 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [107328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78088 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [88328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [357136 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [187200 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [270752 2022-08-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [150280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [325400 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [294680 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (ManyCam -> Visicom Media Inc.) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-12-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-12-31] (Malwarebytes Inc -> Malwarebytes) S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) R3 RvNetMP60; C:\Windows\System32\drivers\RvNetMP60.sys [69048 2021-03-03] (Famatech Corp. -> Famatech Corp.) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [44080 2016-09-27] (Shaul Eizikovich -> Nefarius Software Solutions) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2022-02-03] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 VCSVADHWSer; C:\Windows\System32\drivers\vcsvad.sys [27600 2020-03-11] (Audio and Video Software Corporation -> AVSOFT Corp.) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8736232 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2021-11-18] (NGO -> MBB) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [1431256 2022-04-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-09-01 13:59 - 2022-09-01 13:59 - 000000000 ____D C:\FRST 2022-09-01 13:57 - 2022-09-01 13:57 - 000000000 ____D C:\AdwCleaner 2022-08-29 12:51 - 2022-08-29 12:51 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\AMD 2022-08-29 00:06 - 2022-08-29 00:06 - 000003122 _____ C:\Windows\system32\Tasks\AMDInstallLauncher 2022-08-29 00:05 - 2022-08-29 00:05 - 000003110 _____ C:\Windows\system32\Tasks\AMDLinkUpdate 2022-08-29 00:05 - 2022-08-29 00:05 - 000003072 _____ C:\Windows\system32\Tasks\StartDVR 2022-08-29 00:05 - 2022-08-29 00:05 - 000002622 _____ C:\Windows\system32\Tasks\AMDRyzenMasterSDKTask 2022-08-29 00:05 - 2022-08-29 00:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2022-08-29 00:05 - 2022-08-29 00:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2022-08-29 00:04 - 2022-08-29 00:04 - 000003152 _____ C:\Windows\system32\Tasks\StartCN 2022-08-28 23:54 - 2022-08-08 04:35 - 000118152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2022-08-24 17:08 - 2022-08-24 17:08 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Visage 2022-08-24 15:59 - 2022-08-24 15:59 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Mobius Digital 2022-08-22 14:43 - 2022-08-22 14:43 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\EasyAntiCheat 2022-08-22 11:02 - 2022-08-22 11:02 - 001966112 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-22 11:02 - 2022-08-22 11:02 - 001966112 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-22 11:02 - 2022-08-22 11:02 - 001522720 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-22 11:02 - 2022-08-22 11:02 - 001522720 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-22 11:02 - 2022-08-22 11:02 - 001447936 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 001447936 _____ C:\Windows\system32\vulkan-1.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 001159512 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 001159512 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 000792096 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 000042016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2022-08-22 11:02 - 2022-08-22 11:02 - 000038944 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000669192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000594952 _____ C:\Windows\system32\GameManager64.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000529952 _____ C:\Windows\system32\dgtrayicon.exe 2022-08-22 11:01 - 2022-08-22 11:01 - 000493088 _____ C:\Windows\system32\EEURestart.exe 2022-08-22 11:01 - 2022-08-22 11:01 - 000448520 _____ C:\Windows\SysWOW64\GameManager32.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000351776 _____ C:\Windows\system32\clinfo.exe 2022-08-22 11:01 - 2022-08-22 11:01 - 000197128 _____ C:\Windows\system32\mantle64.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000176648 _____ C:\Windows\system32\mantleaxl64.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000154120 _____ C:\Windows\SysWOW64\mantle32.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000138248 _____ C:\Windows\SysWOW64\mantleaxl32.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000034672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2022-08-22 11:01 - 2022-08-22 11:01 - 000034672 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2022-08-22 10:59 - 2022-08-22 10:59 - 000174600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2022-08-22 10:59 - 2022-08-22 10:59 - 000161800 _____ (AMD) C:\Windows\system32\atimuixx.dll 2022-08-22 10:59 - 2022-08-22 10:59 - 000137736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 075115040 _____ C:\Windows\SysWOW64\amd_comgr32.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 001507336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 001507336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000928776 _____ (AMD) C:\Windows\system32\atieclxx.exe 2022-08-22 10:58 - 2022-08-22 10:58 - 000526344 _____ C:\Windows\system32\atieah64.exe 2022-08-22 10:58 - 2022-08-22 10:58 - 000503328 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000463880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000395272 _____ C:\Windows\SysWOW64\atieah32.exe 2022-08-22 10:58 - 2022-08-22 10:58 - 000368672 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000257032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000217608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000201032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000163928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000135176 _____ C:\Windows\system32\atidxx64.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000109064 _____ C:\Windows\SysWOW64\atidxx32.dll 2022-08-22 10:58 - 2022-08-22 10:58 - 000065552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2022-08-22 10:57 - 2022-08-22 10:57 - 091449864 _____ C:\Windows\system32\amd_comgr.dll 2022-08-22 10:56 - 2022-08-22 10:56 - 000129056 _____ C:\Windows\system32\amdxc64.dll 2022-08-22 10:56 - 2022-08-22 10:56 - 000104480 _____ C:\Windows\SysWOW64\amdxc32.dll 2022-08-22 10:55 - 2022-08-22 10:55 - 000933904 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2022-08-22 10:55 - 2022-08-22 10:55 - 000761872 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2022-08-22 10:55 - 2022-08-22 10:55 - 000461832 _____ C:\Windows\system32\amdlogum.exe 2022-08-22 10:54 - 2022-08-22 10:54 - 000177840 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2022-08-22 10:54 - 2022-08-22 10:54 - 000156576 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2022-08-22 10:54 - 2022-08-22 10:54 - 000126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 010558496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 001695944 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 001374800 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000559120 _____ C:\Windows\system32\amdgfxinfo64.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000553912 _____ C:\Windows\system32\amdmiracast.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000422944 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000166432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000156584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000140864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2022-08-22 10:53 - 2022-08-22 10:53 - 000126360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2022-08-19 13:46 - 2022-08-19 13:46 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2022-08-19 13:46 - 2022-08-19 13:46 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2022-08-19 13:40 - 2022-08-19 13:40 - 079816480 _____ C:\Windows\system32\amdxc64.so 2022-08-19 13:40 - 2022-08-19 13:40 - 000576872 _____ C:\Windows\SysWOW64\atiapfxx.blb 2022-08-19 13:40 - 2022-08-19 13:40 - 000576872 _____ C:\Windows\system32\atiapfxx.blb 2022-08-19 12:50 - 2022-08-19 12:50 - 000746432 _____ (Advanced Micro Devices) C:\Windows\system32\Device.dll 2022-08-19 12:50 - 2022-08-19 12:50 - 000077760 _____ (Advanced Micro Devices) C:\Windows\system32\Platform.dll 2022-08-19 12:29 - 2022-08-19 12:29 - 000043336 _____ (Advanced Micro Devices) C:\Windows\system32\AMDRyzenMasterDriver.sys 2022-08-16 22:25 - 2022-08-17 01:00 - 000000000 ____D C:\Program Files (x86)\Radmin VPN 2022-08-16 22:25 - 2022-08-16 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Radmin VPN 2022-08-16 12:02 - 2022-08-16 12:02 - 000003660 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask 2022-08-16 12:02 - 2022-08-16 12:02 - 000000000 ____D C:\KPRM 2022-08-15 20:07 - 2022-08-15 21:09 - 000000000 ____D C:\KVRT2020_Data 2022-08-15 15:29 - 2022-09-01 01:25 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Discord 2022-08-15 15:29 - 2022-08-15 15:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2022-08-15 15:28 - 2022-08-15 15:28 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls 2022-08-15 03:11 - 2022-08-15 10:08 - 000000000 ____D C:\ProgramData\RogueKiller 2022-08-15 03:11 - 2022-08-15 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2022-08-15 03:11 - 2022-08-15 03:11 - 000000000 ____D C:\Program Files\RogueKiller 2022-08-15 02:57 - 2022-08-15 11:58 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\ZHP 2022-08-15 00:34 - 2022-08-15 00:34 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Kaspersky Lab 2022-08-14 19:20 - 2022-08-14 19:20 - 000357136 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys 2022-08-14 19:19 - 2022-08-14 19:19 - 000001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager.lnk 2022-08-14 19:19 - 2022-08-14 19:19 - 000000000 ____D C:\Program Files (x86)\dotnet 2022-08-14 19:16 - 2022-08-14 19:19 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-08-14 19:16 - 2022-08-14 19:19 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2022-08-14 19:16 - 2022-08-14 19:16 - 000376920 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000270752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000187200 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys 2022-08-14 19:16 - 2022-08-14 19:16 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud.lnk 2022-08-14 19:16 - 2022-08-14 19:16 - 000001299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN.lnk 2022-08-14 19:16 - 2022-02-17 06:29 - 001049864 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2022-08-14 19:16 - 2022-02-17 06:29 - 000522504 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2022-08-14 19:16 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2022-08-13 23:50 - 2022-08-13 23:56 - 000000000 ____D C:\ESD 2022-08-13 23:47 - 2022-08-13 23:47 - 000000000 ___HD C:\$Windows.~WS 2022-08-13 14:32 - 2022-08-13 14:32 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\com.redgiant.vfx.opticalglow-ae 2022-08-13 14:29 - 2022-08-31 16:35 - 000000074 _____ C:\ProgramData\WnHqYU0nH4 2022-08-13 14:29 - 2022-08-15 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant 2022-08-13 14:29 - 2022-08-13 14:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Red Giant 2022-08-11 15:04 - 2022-08-11 15:04 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\BorisFX 2022-08-11 14:33 - 2022-08-11 14:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon 2022-08-11 14:31 - 2022-08-11 14:34 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R21 2022-08-10 11:17 - 2022-08-10 11:17 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\SafeNet Sentinel 2022-08-10 11:17 - 2022-08-10 11:17 - 000000000 ____D C:\ProgramData\SafeNet Sentinel 2022-08-10 10:04 - 2022-08-10 10:04 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-10 10:04 - 2022-08-10 10:04 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-10 10:03 - 2022-08-10 10:03 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-10 10:03 - 2022-08-10 10:03 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-10 10:03 - 2022-08-10 10:03 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-10 10:03 - 2022-08-10 10:03 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-10 09:52 - 2022-08-10 09:52 - 000000000 ___HD C:\$WinREAgent 2022-08-10 03:16 - 2022-08-11 14:42 - 000000000 ____D C:\ProgramData\Reprise 2022-08-10 03:16 - 2019-08-15 06:35 - 000000000 _____ C:\Windows\MSUTIL.INI 2022-08-06 01:17 - 2022-08-06 01:17 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\HelloGames 2022-08-05 20:36 - 2022-08-05 20:37 - 000000000 ____D C:\Windows\system32\appmgmt 2022-08-05 16:47 - 2022-09-01 13:50 - 000000000 ____D C:\Program Files\Riot Vanguard 2022-08-05 01:10 - 2022-08-05 01:10 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Briano 2022-08-03 03:19 - 2022-08-03 03:20 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\AMD Wraith 2022-08-03 03:19 - 2022-08-03 03:19 - 000081172 _____ C:\Windows\uninsWraith Prism.dat 2022-08-03 03:19 - 2022-08-03 03:19 - 000000000 ____D C:\Program Files (x86)\AMD Wraith 2022-08-03 03:19 - 2018-07-27 08:57 - 006177792 _____ (AMD Wraith) C:\Windows\uninsWraith Prism.exe 2022-08-02 12:32 - 2021-08-22 13:31 - 006505000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2022-08-02 12:32 - 2021-08-22 13:20 - 048274129 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2022-08-02 10:30 - 2019-10-30 02:20 - 001126344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll 2022-08-02 10:30 - 2019-10-30 02:20 - 000481888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2022-08-02 10:30 - 2019-10-29 23:20 - 000856288 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe 2022-08-02 10:30 - 2019-10-29 23:20 - 000821336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll 2022-08-02 10:28 - 2019-10-30 02:20 - 005623256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPOU64.dll 2022-08-02 10:28 - 2019-10-29 23:20 - 000215032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-09-01 13:59 - 2021-03-02 11:54 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-01 13:57 - 2021-03-02 11:51 - 002008474 _____ C:\Windows\system32\PerfStringBackup.INI 2022-09-01 13:57 - 2019-12-07 11:53 - 000852562 _____ C:\Windows\system32\prfh0416.dat 2022-09-01 13:57 - 2019-12-07 11:53 - 000188574 _____ C:\Windows\system32\prfc0416.dat 2022-09-01 13:57 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-09-01 13:54 - 2022-07-26 15:17 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-09-01 13:54 - 2022-05-21 11:43 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Mozilla 2022-09-01 13:53 - 2022-05-23 16:41 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-09-01 13:53 - 2021-05-24 00:20 - 000000001 _____ C:\Windows\vgkbootstatus.dat 2022-09-01 13:50 - 2022-05-21 11:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-09-01 13:50 - 2021-10-25 08:22 - 000003134 _____ C:\Windows\system32\Tasks\MSIAfterburner 2022-09-01 13:50 - 2021-03-02 11:43 - 000008192 ___SH C:\DumpStack.log.tmp 2022-09-01 13:50 - 2020-11-18 23:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-09-01 13:50 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-09-01 07:38 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-09-01 07:35 - 2021-03-02 12:13 - 000000000 ____D C:\ProgramData\Riot Games 2022-09-01 07:23 - 2022-05-21 11:43 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-09-01 07:23 - 2022-05-21 11:43 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-09-01 02:53 - 2021-03-04 02:41 - 000000000 ____D C:\Windows\pss 2022-09-01 02:14 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\discord 2022-09-01 01:45 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-09-01 01:01 - 2021-12-12 23:11 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2991122402-1895833276-4253020033-1001 2022-09-01 01:01 - 2021-03-02 11:50 - 000003384 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2991122402-1895833276-4253020033-1001 2022-09-01 01:01 - 2021-03-02 11:48 - 000002395 _____ C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-09-01 00:19 - 2021-04-19 20:05 - 000003462 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-5FA96A32ABE7DB9D8AACB3FC09A3D931 2022-08-31 23:57 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\D3DSCache 2022-08-31 16:35 - 2022-04-22 19:40 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk 2022-08-31 16:35 - 2022-04-03 22:48 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall RGBFusion 2.0.lnk 2022-08-31 16:35 - 2022-04-02 01:04 - 000000665 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\God of War.lnk 2022-08-31 16:35 - 2021-06-14 03:01 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2022-08-31 16:35 - 2021-03-06 16:58 - 000003216 _____ C:\ProgramData\droidcam-client-options-v2 2022-08-31 16:35 - 2021-03-02 11:57 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-31 12:24 - 2021-04-21 00:06 - 000000943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2022-08-31 11:45 - 2021-09-18 22:51 - 000000000 ____D C:\Windows\Minidump 2022-08-31 02:05 - 2021-03-02 11:48 - 000000000 ____D C:\Users\OS PVTS 2022-08-31 01:35 - 2021-03-03 01:07 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\CrashDumps 2022-08-31 01:17 - 2021-03-06 16:58 - 000000403 _____ C:\ProgramData\droidcam-settings 2022-08-31 00:06 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-08-30 10:56 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-30 10:56 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-29 17:54 - 2021-03-02 11:54 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-08-29 17:54 - 2021-03-02 11:54 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-08-29 12:42 - 2021-04-17 03:41 - 000004198 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1618641655 2022-08-29 12:42 - 2021-04-17 03:40 - 000000896 _____ C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk 2022-08-29 00:08 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\AMD 2022-08-29 00:07 - 2021-03-02 12:11 - 000000000 ____D C:\Windows\system32\AMD 2022-08-29 00:05 - 2021-03-02 23:36 - 000000000 ____D C:\Program Files\AMD 2022-08-28 23:58 - 2021-03-02 23:36 - 000000000 ____D C:\AMD 2022-08-27 20:11 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-08-26 14:44 - 2021-03-16 10:58 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\.tlauncher 2022-08-26 11:49 - 2020-11-18 23:48 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-26 00:14 - 2021-03-06 17:05 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\obs-studio 2022-08-25 11:22 - 2021-03-02 11:43 - 000549457 ____N C:\Windows\Minidump\082522-31171-01.dmp 2022-08-24 16:16 - 2021-03-02 11:49 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Packages 2022-08-24 16:16 - 2020-11-18 23:49 - 000000000 ____D C:\ProgramData\Packages 2022-08-22 23:43 - 2020-11-18 23:47 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-22 23:43 - 2020-11-18 23:47 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-22 10:58 - 2020-09-22 04:04 - 001979912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2022-08-22 10:54 - 2020-09-22 04:03 - 000222664 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2022-08-19 14:04 - 2021-03-23 23:29 - 002977368 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe 2022-08-17 21:10 - 2021-03-02 23:36 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\AMD_Common 2022-08-16 23:37 - 2022-04-23 22:28 - 000000000 ____D C:\SteamLibrary 2022-08-16 14:15 - 2022-05-21 11:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-15 15:31 - 2021-03-02 12:04 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\PlaceholderTileLogoFolder 2022-08-15 15:29 - 2021-03-02 12:12 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\SquirrelTemp 2022-08-15 14:26 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\NDF 2022-08-15 13:28 - 2021-05-04 08:11 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Temp 2022-08-15 13:28 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2022-08-15 13:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2022-08-15 10:46 - 2022-05-23 16:40 - 000003612 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2022-08-15 10:46 - 2022-05-23 16:40 - 000003488 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2022-08-15 03:06 - 2021-03-02 11:57 - 000000000 ____D C:\Program Files\Google 2022-08-15 00:54 - 2021-06-02 15:25 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Origin 2022-08-15 00:54 - 2021-06-02 15:25 - 000000000 ____D C:\ProgramData\Origin 2022-08-15 00:51 - 2021-06-02 15:30 - 000000000 ____D C:\Program Files (x86)\Origin 2022-08-15 00:51 - 2021-06-02 15:25 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\Origin 2022-08-15 00:30 - 2021-08-09 19:29 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Zoom 2022-08-14 19:19 - 2021-03-02 23:37 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-14 19:16 - 2021-03-03 08:40 - 000000000 ____D C:\Program Files\Common Files\AV 2022-08-14 19:16 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-08-14 19:15 - 2022-04-22 19:33 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-08-14 19:08 - 2022-06-20 11:56 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2022-08-14 18:13 - 2021-03-02 11:49 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Adobe 2022-08-13 23:56 - 2021-03-02 11:42 - 000000000 ____D C:\Windows\Panther 2022-08-13 18:12 - 2022-04-22 19:33 - 000000000 ____D C:\Program Files\Adobe 2022-08-12 22:10 - 2022-06-15 23:13 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\FiveM 2022-08-12 22:10 - 2021-06-04 23:47 - 000000000 ____D C:\Users\OS PVTS\AppData\Local\DigitalEntitlements 2022-08-10 14:31 - 2022-05-24 16:04 - 000387560 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-10 14:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-10 14:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-10 14:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-10 14:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-10 10:07 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-10 10:03 - 2020-11-18 23:47 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-10 09:52 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-10 09:51 - 2021-03-12 01:06 - 000000000 ____D C:\Windows\system32\MRT 2022-08-10 09:49 - 2021-03-03 07:50 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-08 04:35 - 2022-06-24 11:59 - 000142208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2022-08-08 04:30 - 2021-12-31 17:19 - 000623032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdfendrsr.exe 2022-08-08 04:30 - 2021-10-28 12:16 - 000054720 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendrmgr.sys 2022-08-08 04:30 - 2021-03-02 23:48 - 000195016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys 2022-08-06 14:04 - 2022-06-21 00:42 - 000007605 _____ C:\Users\OS PVTS\AppData\Local\Resmon.ResmonCfg 2022-08-05 20:51 - 2021-03-16 11:02 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\.minecraft 2022-08-03 03:09 - 2021-07-07 23:07 - 000000000 ____D C:\Users\OS PVTS\AppData\LocalLow\Ninja Kiwi 2022-08-03 03:09 - 2021-03-05 19:53 - 000000000 ____D C:\Users\OS PVTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-08-03 03:08 - 2021-04-02 18:22 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-08-03 03:07 - 2021-04-02 19:07 - 000000000 ____D C:\ProgramData\MTA San Andreas All 2022-08-03 03:02 - 2022-07-02 15:59 - 000000000 ____D C:\Program Files\Electronic Arts 2022-08-02 12:33 - 2021-06-14 02:58 - 000000000 ___HD C:\Program Files (x86)\Temp 2022-08-02 12:32 - 2021-06-14 02:58 - 000000000 ____D C:\Program Files (x86)\Realtek ==================== Arquivos na raiz de alguns diretórios ======== 2021-08-14 00:51 - 2022-06-27 18:50 - 000012288 _____ () C:\Users\OS PVTS\AppData\Roaming\emp.bin 2021-03-06 17:07 - 2022-07-22 12:20 - 000000015 _____ () C:\Users\OS PVTS\AppData\Roaming\obs-virtualcam.txt 2021-05-23 09:24 - 2021-05-23 09:28 - 000000132 _____ () C:\Users\OS PVTS\AppData\Roaming\Preferências do Formato PNG do Adobe CS6 2022-05-02 23:58 - 2022-05-24 03:46 - 000001456 _____ () C:\Users\OS PVTS\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2021-03-03 00:10 - 2021-03-03 00:10 - 000016438 _____ () C:\Users\OS PVTS\AppData\Local\partner.bmp 2021-04-30 11:00 - 2022-06-07 14:00 - 000060683 _____ () C:\Users\OS PVTS\AppData\Local\PlariumPlay.log 2022-06-21 00:42 - 2022-08-06 14:04 - 000007605 _____ () C:\Users\OS PVTS\AppData\Local\Resmon.ResmonCfg 2021-04-28 09:52 - 2021-04-28 09:52 - 000000003 _____ () C:\Users\OS PVTS\AppData\Local\updater.log 2021-04-28 09:52 - 2021-04-28 09:52 - 000000424 _____ () C:\Users\OS PVTS\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================