Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 18-07-2023
Executado por Francisco Narde (administrador) em DESKTOP-0BF3N7R (Gigabyte Technology Co., Ltd. A320M-S2H) (24-07-2023 06:51:13)
Executando a partir de D:\Desktop\FRST64.exe
Perfis Carregados: Francisco Narde
Plataforma: Microsoft Windows 10 Pro Versão 22H2 19045.3208 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <6>
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(D:\Desktop\adwcleaner.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) D:\Desktop\adwcleaner.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe <2>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-06-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM\...\Run: [CM8828EX] => C:\WINDOWS\syswow64\ExMgr.exe [204800 2011-02-25] () [Arquivo não assinado]
HKLM\...\Run: [PEIC8828Sound] => C:\Program Files\Xear Audio Center\CPL\FaceLift_x64.exe [2406400 2017-01-20] () [Arquivo não assinado]
HKLM\...\Run: [Linksys Wireless Manager] => C:\Program Files (x86)\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe [1374264 2009-08-20] (Cisco-Linksys LLC -> Cisco Systems, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [256952 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [4517816 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [5794744 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Gravitating] => C:\Program Files (x86)\Committed\Purdy.exe "tgbnhyhtgbnhyttgbnhyttgbnhyptgbnhy:tgbnhy/tgbnhy/tgbnhywtgbnhywtgbnhywtgbnhy.tgbnhyatgbnhyltgbnhyatgbnhymtgbnhyotgbnhystgbnhyatgbnhyvtgbnhyetgbnhyrtgbnhyrtg (a entrada de dados tem 116 mais caracteres). (Nenhum Arquivo)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1792256 2023-06-23] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [nmctxth] => C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe [647216 2009-07-07] (Cisco-Linksys LLC -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [5581640 2023-01-10] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.)
HKLM-x32\...\Run: [HDD Regenerator] => C:\Program Files (x86)\HDD Regenerator\Shell.exe [90336 2013-05-08] (Abstradrome -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Borer] => C:\Program Files (x86)\Committed\Purdy.exe "tgbnhyhtgbnhyttgbnhyttgbnhyptgbnhy:tgbnhy/tgbnhy/tgbnhywtgbnhywtgbnhywtgbnhy.tgbnhyatgbnhyltgbnhyatgbnhymtgbnhyotgbnhystgbnhyatgbnhyvtgbnhyetgbnhyrtgbnhyrtg (a entrada de dados tem 116 mais caracteres). (Nenhum Arquivo)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\Installer\setup.exe [3663776 2023-07-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restrição <==== ATENÇÃO
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Nenhum Arquivo)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Nenhum Arquivo)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607536 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [KeyboardLeds.exe] => C:\Program Files (x86)\Keyboard LEDs\KeyboardLeds.exe [912896 2012-09-05] (KARPOLAN) [Arquivo não assinado]
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [Chromium] => "c:\users\francisco narde\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session [4195328 2017-10-06] (The Chromium Authors) [Arquivo não assinado]
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32754128 2022-12-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [190280 2021-09-30] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2385848 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [Spotify] => C:\Users\Francisco Narde\AppData\Roaming\Spotify\Spotify.exe [28257144 2023-07-19] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (Nenhum Arquivo)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [Gellert] => C:\Program Files (x86)\Committed\Purdy.exe "tgbnhyhtgbnhyttgbnhyttgbnhyptgbnhy:tgbnhy/tgbnhy/tgbnhywtgbnhywtgbnhywtgbnhy.tgbnhyatgbnhyltgbnhyatgbnhymtgbnhyotgbnhystgbnhyatgbnhyvtgbnhyetgbnhyrtgbnhyrtg (a entrada de dados tem 116 mais caracteres). (Nenhum Arquivo)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [Ikeda] => C:\Program Files (x86)\Committed\Purdy.exe "tgbnhyhtgbnhyttgbnhyttgbnhyptgbnhy:tgbnhy/tgbnhy/tgbnhywtgbnhywtgbnhywtgbnhy.tgbnhyatgbnhyltgbnhyatgbnhymtgbnhyotgbnhystgbnhyatgbnhyvtgbnhyetgbnhyrtgbnhyrtg (a entrada de dados tem 116 mais caracteres). (Nenhum Arquivo)
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Run: [autogen] => C:\Users\Francisco Narde\AppData\Local\Temp\is-2S6IU.tmp\s3.exe [5902390 2023-06-25] () [Arquivo não assinado] <==== ATENÇÃO
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\MountPoints2: {7604ca2d-d3c6-11ea-bba3-b42e99f176d3} - "F:\LG_PC_Programs.exe" 
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Winlogon: [Shell] C:\WINDOWS\Explorer.exe [5308592 2023-07-11] (Microsoft Windows -> Microsoft Corporation) <==== ATENÇÃO
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Nenhum Arquivo)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
Startup: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-12-29]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\Francisco Narde\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Arquivo não assinado]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
HKU\S-1-5-21-3907471261-615860086-2012423866-1001\SOFTWARE\Policies\Microsoft\Edge: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) =================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {35F53E27-9489-4D2E-95FF-AC40858B77A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {82DA4B5D-CD4A-41EB-9396-BB72D0A93467} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-06-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {4A7BDB52-2538-4257-B99B-B5185758FAD2} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-06-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {31C9A14E-7A91-41DC-B0AF-B80B366C6778} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F4D79EA6-9973-426D-A061-E72E98B5CD18} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {43CF82DF-811E-4023-BE25-605BA26D991B} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183736 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CBC091AF-313E-429A-8463-63E3936EDEDF} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4977592 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {45040645-3FE0-44C5-B449-A3BE56411A6C} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [5029816 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\Driver Updater\log" (a entrada de dados tem 44 mais caracteres).
Task: {07583B4D-15B2-4C61-8C5B-B1CF2B911419} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [7116728 2023-05-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {651F62F8-E14A-4C32-B19D-A9BF0764029E} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [5029816 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\TuneUp\log" --guid 941ce27e-2bcb-4ee9-a94a-8 (a entrada de dados tem 11 mais caracteres).
Task: {84B8C290-5385-4C2A-8748-B1CF6C681882} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [7116728 2023-05-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DD1A0037-ACC5-4460-9A20-6DA079086ACD} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2172344 2023-04-12] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {06EC2606-247A-4A4F-8B5E-0106CBA23AEB} - System32\Tasks\BatteryBoostCheckOnLogon_{B2HP0844-0772-46L7-BAED-A80BD35AC5B8} => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [492032 2023-05-10] (Microsoft Windows -> Microsoft Corporation) -> Invoke-WebRequest hxxps://github.com/hiero2020/kms-acc01/raw/main/Files/01/GoogleCrashHandler.exe -OutFile C:\Users\FRANCI~1\AppData\Local\Temp\GoogleCrashHandler.exe
Task: {003FA98C-C40C-4E11-8C76-F1614AA157D1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5760205D-7920-439B-83D6-F12E3414DB91} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "bbb7afcb-b84e-4cea-a206-9184fb31e2d6" --version "6.13.10517" --silent
Task: {91B9C99D-7855-4CD5-8C60-366AC259871E} - System32\Tasks\CCleanerSkipUAC - Francisco Narde => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B9F4BD87-F126-4DC1-B45B-C41FB9934739} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe [3233560 2023-06-24] (Google LLC -> Google LLC) -> "hxxp://localhost:1487/cfosspeed/console.htm"
Task: {F712C560-4E91-4AE0-92F1-629BCBD67798} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [17280 2021-04-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {CF82152C-87B1-4D41-9DFB-DF2789C473E0} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [20352 2021-10-11] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {87081E1A-7901-428F-8713-C05B3C799AE1} - System32\Tasks\gaj141\t8v7nl\2tjnx7\auokl6\87xl3z\9jmohv\r2uzp0\tybmet\xmh4v3\6hx1zo\ph9d7j\l14v5c\yhl7j1\6sw5ms\r3s5cl\h36mc9\s6hev8 => C:\Program Files (x86)\Droite\orsa.exe [37649 2023-06-25] () [Arquivo não assinado] <==== ATENÇÃO
Task: {327511D7-2C88-478B-A929-C2970A8E9243} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-22] (Google LLC -> Google LLC)
Task: {C46B819F-CC1F-4ADE-9FE1-E5E8EB3F8F0C} - System32\Tasks\GoogleUpdateTaskMachineEULA => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [492032 2023-05-10] (Microsoft Windows -> Microsoft Corporation) -> Invoke-WebRequest hxxps://github.com/hiero2020/kms-acc01/raw/main/Files/01/GoogleCrashHandler64.exe -OutFile C:\Users\FRANCI~1\AppData\Local\Temp\GoogleCrashHandler64.exe <==== ATENÇÃO
Task: {F281D7AA-9041-4F5B-8B2C-C56FB97058EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-22] (Google LLC -> Google LLC)
Task: {9122AD0E-E519-4414-8704-1363511918FA} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [234880 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {3B6C932C-C143-4DC2-9C1E-736740374173} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {891ECC3F-5B53-4E9C-88B3-3A4184D96C51} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineEULA => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [492032 2023-05-10] (Microsoft Windows -> Microsoft Corporation) -> Invoke-WebRequest hxxps://github.com/hiero2020/kms-acc01/raw/main/Files/01/RuntimeBroker.exe -OutFile C:\Users\FRANCI~1\AppData\Local\Temp\RuntimeBroker.exe <==== ATENÇÃO
Task: {DA1292EF-DDE0-47F5-BA9B-F75644F02178} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E3D01E32-EE8E-46BB-96A8-263E6AED2396} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [680352 2023-06-30] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {FD0C400D-3D7A-4F83-92A4-C0955DB0DADA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {999E8AB9-044C-44B8-8554-4FFD91BCE966} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A93A650B-8D90-44E4-A121-39AACCECB6AD} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3907471261-615860086-2012423866-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8769B0E8-C558-4A28-AC14-68D1CD0EC867} - System32\Tasks\Opera scheduled assistant Autoupdate 1642933137 => C:\Users\Francisco Narde\AppData\Local\Programs\Opera\launcher.exe  -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Francisco Narde\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {80BF1ECB-1011-4426-8C79-56B39C3127C5} - System32\Tasks\Opera scheduled Autoupdate 1642933131 => C:\Users\Francisco Narde\AppData\Local\Programs\Opera\launcher.exe  --scheduledautoupdate $(Arg0) (Nenhum Arquivo)
Task: {A1DBC244-33CC-41FC-B11A-890569417FC3} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [392296 2022-12-27] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {6060A1C0-E894-4C54-8C74-A4E0A5EB6AA6} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [257408 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2CDECD48-706F-49E5-A213-6A5991D07C5D} - System32\Tasks\SoundBass => %appdata%\Unpacker\Unpacker.exe  (Nenhum Arquivo) <==== ATENÇÃO
Task: {219DDBA9-5B63-447D-B159-094BF72F1EF4} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [710584 2023-04-12] (Advanced Micro Devices Inc. -> AMD)
Task: {C7E61436-256B-47DB-9C45-92DE8AC893F1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59832 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {5FD68DF5-7D30-4A8B-8183-4AED3B06DFD0} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59832 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {97002AF5-BD0A-4530-80D6-7F4CCC1D55F0} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {379DDF02-FEA3-4002-9943-9A74F08CD0CC} - System32\Tasks\Warsaw's CoreFixer => GoogleCrashHandler64.exe  (Nenhum Arquivo)
Task: {5EBFCA2D-25A4-4B0C-9081-21ABA6815CD0} - System32\Tasks\Win Manager => GoogleCrashHandler.exe  (Nenhum Arquivo)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 177.92.143.254 8.8.8.8
Tcpip\..\Interfaces\{faa4086f-8f47-40da-97b1-9e4d6204ee61}: [DhcpNameServer] 177.92.143.254 8.8.8.8
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO

Edge: 
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Norton Safe Web) -> EdgeExtension_SymantecCorporationNortonSafeWeb_v68kp9n051hdp => C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.11.6.0_neutral__v68kp9n051hdp [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-08]
Edge Notifications: Default -> hxxps://www.instagram.com
Edge Extension: (Editor Microsoft: Verificador Ortográfico e Gramatical) - C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hokifickgkhplphjiodbggjmoafhignh [2023-07-03]
Edge Extension: (Edge relevant text changes) - C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]

FireFox:
========
FF DefaultProfile: 4d8cb8zv.default
FF ProfilePath: C:\Users\Francisco Narde\AppData\Roaming\Mozilla\Firefox\Profiles\4d8cb8zv.default [2022-04-23]
FF NewTab: Mozilla\Firefox\Profiles\4d8cb8zv.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10440__200103
FF ProfilePath: C:\Users\Francisco Narde\AppData\Roaming\Mozilla\Firefox\Profiles\ms2im456.default-release [2023-07-14]
FF NewTab: Mozilla\Firefox\Profiles\ms2im456.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10440__200103
FF Notifications: Mozilla\Firefox\Profiles\ms2im456.default-release -> hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://mail.google.com; hxxps://porneq.com
FF Extension: (Video DownloadHelper) - C:\Users\Francisco Narde\AppData\Roaming\Mozilla\Firefox\Profiles\ms2im456.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-01-09]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Francisco Narde\AppData\Roaming\Mozilla\Firefox\Profiles\ms2im456.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-22]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Nenhum Arquivo]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default [2023-07-24]
CHR Notifications: Default -> hxxps://ar.pinterest.com; hxxps://br.pinterest.com; hxxps://cultura.uol.com.br; hxxps://drive.google.com; hxxps://en.vidmo.org; hxxps://fcc.lc; hxxps://filmora.wondershare.com.br; hxxps://jc.ne10.uol.com.br; hxxps://m.kabum.com.br; hxxps://mail.google.com; hxxps://mobile.twitter.com; hxxps://pngio.com; hxxps://porneq.com; hxxps://pt.aliexpress.com; hxxps://pt.joecomp.com; hxxps://ru.pinterest.com; hxxps://steamcommunity.com; hxxps://stfly.me; hxxps://tinder.com; hxxps://tmearn.com; hxxps://totalcoolblog.com; hxxps://tubsexer.com; hxxps://upornia.com; hxxps://wp.aliexpress.com; hxxps://www.agazeta.com.br; hxxps://www.band.uol.com.br; hxxps://www.comparegames.com.br; hxxps://www.dn.pt; hxxps://www.drogariasaopaulo.com.br; hxxps://www.drogariaspacheco.com.br; hxxps://www.facebook.com; hxxps://www.huffingtonpost.fr; hxxps://www.infojobs.com.br; hxxps://www.instagram.com; hxxps://www.metrojornal.com.br; hxxps://www.netflix.com; hxxps://www.opensubtitles.org; hxxps://www.pornfactory.info; hxxps://www.posthaus.com.br; hxxps://www.prompthunt.com; hxxps://www.reddit.com; hxxps://www.sextpanther.com; hxxps://www.tecmundo.com.br; hxxps://www.terra.com.br; hxxps://www.xvideos.com; hxxps://www.youtube.com; hxxps://www17a.myrnamooney.pro; hxxps://www20a.myrnamooney.pro; hxxps://www33a.tabathaherman.pro; hxxps://www9a.tabathaherman.pro
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-07-14]
CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-06-28]
CHR Extension: (Hiddengram - view insta stories anonymously) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\gadndffmjdmdkjkmfmioeibmlabhbccb [2022-09-07]
CHR Extension: (Documentos Google off-line) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-07-21]
CHR Extension: (Embedy HD) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\igldobfphppodifdnpealajhijnpaohf [2022-11-18]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-26]
CHR Extension: (Acesso rápido a apps para o Drive (do Google)) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-07-07]
CHR Extension: (Video DownloadHelper) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-10-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (AdBlocker Ultimate) - C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2023-05-22]
CHR Profile: C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-20]
CHR Profile: C:\Users\Francisco Narde\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-26]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-3907471261-615860086-2012423866-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

Opera: 
=======
OPR Profile: C:\Users\Francisco Narde\AppData\Roaming\Opera Software\Opera Stable [2022-01-23]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-06-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S3 ATLOISAService; C:\WINDOWS\system\ATLOISAService.exe [512000 2013-10-25] (Cmedia Electronics Inc.) [Arquivo não assinado]
S2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [509880 ] (Advanced Micro Devices Inc. -> AMD)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [615864 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2165176 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [616888 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8917432 2023-07-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-10-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe [74520 2023-06-26] (Google LLC -> Google LLC)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [17477560 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [9007032 2023-05-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [147824 2022-06-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-11-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncHelper.exe [3447712 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
S2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [18944 2021-04-08] () [Arquivo não assinado]
S2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S2 hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [82144 2013-05-08] (Abstradrome -> )
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [127360 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\OneDriveUpdaterService.exe [3783584 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [17680640 2023-07-08] (Logitech Inc -> Logitech, Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1352832 2020-11-10] (Rockstar Games, Inc. -> Rockstar Games)
S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16518456 2022-12-12] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\NisSrv.exe [2169576 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\MsMpEng.exe [128376 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25560 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [27256 2022-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2023-04-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390767.inf_amd64_9b58a6f46b7bac50\B390703\amdkmdag.sys [100259776 2023-04-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [237512 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [392872 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297912 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96512 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39688 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [272096 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [556664 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105288 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80456 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [943496 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [704352 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [212712 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319600 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R3 CmHdAudAddService; C:\WINDOWS\System32\drivers\CMHDAudioB64.sys [64000 2014-03-26] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics Inc.)
R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
S3 gdrv; C:\WINDOWS\gdrv.sys [26792 2019-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [41480 2023-01-21] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 pnarp; C:\WINDOWS\system32\DRIVERS\pnarp.sys [33328 2009-07-07] (Cisco-Linksys LLC -> Cisco Systems, Inc.)
S3 PTSimBus; C:\WINDOWS\System32\drivers\PTSimBus.sys [32128 2012-12-22] (UC-Logic Technology Corporation -> PenTablet Driver)
S3 PTSimHid; C:\WINDOWS\System32\drivers\PTSimHid.sys [22912 2012-12-22] (UC-Logic Technology Corporation -> UC-Logic Technology Corp.)
R2 purendis; C:\WINDOWS\system32\DRIVERS\purendis.sys [35376 2009-07-07] (Cisco-Linksys LLC -> Cisco Systems, Inc.)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S4 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [78232 2020-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S4 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [430312 2020-07-19] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S4 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98544 2020-07-19] (Microsoft Windows -> Microsoft Corporation)
S3 WUSB54GCv3; C:\WINDOWS\system32\DRIVERS\WUSB54GCv3.sys [797184 2009-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Ralink Technology Corp.)
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [37816 2021-06-30] (SplitmediaLabs Limited -> SplitmediaLabs Limited)
R3 XSpltAud; C:\WINDOWS\System32\drivers\XSpltAud.sys [82440 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> SplitmediaLabs Limited)
U1 avgbdisk; não ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2023-07-24 06:50 - 2023-07-24 06:51 - 000000000 ____D C:\FRST
2023-07-24 06:45 - 2023-07-24 06:46 - 000000000 ____D C:\AdwCleaner
2023-07-11 22:04 - 2023-07-11 22:04 - 000000000 ___HD C:\$WinREAgent
2023-07-11 21:54 - 2023-07-11 21:54 - 000000000 ____D C:\WINDOWS\Panther
2023-07-11 01:20 - 2023-07-11 01:20 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-07-08 19:32 - 2023-07-19 07:08 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-07-08 19:32 - 2023-07-18 03:10 - 000002098 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-08 19:32 - 2023-07-08 19:32 - 000000000 ___RD C:\Users\Default\OneDrive
2023-07-08 19:31 - 2023-07-18 03:10 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-07-08 18:38 - 2023-07-08 18:38 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2023-07-06 20:06 - 2023-07-19 07:08 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-06-30 10:13 - 2023-06-30 11:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-06-29 16:58 - 2023-06-29 16:58 - 000000546 _____ C:\Users\Francisco Narde\AppData\Roaming\PureRef.ini
2023-06-27 04:29 - 2023-07-24 06:48 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\LogiOptionsPlus
2023-06-27 04:29 - 2023-06-27 04:30 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\logioptionsplus
2023-06-27 04:27 - 2023-06-27 04:29 - 000000000 ____D C:\ProgramData\LogiOptionsPlus
2023-06-27 04:26 - 2023-06-27 04:26 - 000000000 ____D C:\Program Files\Logitech
2023-06-26 18:07 - 2023-06-26 18:07 - 000002259 _____ C:\WINDOWS\epplauncher.mif
2023-06-26 16:24 - 2023-06-26 16:24 - 000001959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Internet Security.lnk
2023-06-26 06:48 - 2023-06-26 06:48 - 000000000 ____D C:\ProgramData\AW Manager
2023-06-25 07:48 - 2023-06-25 08:36 - 000000000 ____D C:\Program Files (x86)\Droite
2023-06-25 07:48 - 2023-06-25 08:03 - 000000000 ____D C:\Program Files (x86)\koufax
2023-06-25 07:48 - 2023-06-25 07:59 - 000000000 ____D C:\Program Files (x86)\Bedbug
2023-06-25 07:48 - 2023-06-25 07:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\p3l0ya
2023-06-25 07:48 - 2023-06-25 07:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\gaj141
2023-06-25 07:48 - 2023-06-25 07:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\2orqw9
2023-06-25 07:48 - 2023-06-25 07:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\1vlho0
2023-06-25 07:48 - 2023-06-25 07:48 - 000000000 ____D C:\Program Files (x86)\Crack4
2023-06-25 07:46 - 2023-06-25 07:46 - 000000000 ____D C:\Program Files (x86)\Crack1
2023-06-25 07:46 - 2023-06-25 07:46 - 000000000 ____D C:\Program Files (x86)\AW Manager
2023-06-25 06:59 - 2023-06-25 06:59 - 000369850 _____ C:\Users\Francisco Narde\AppData\Local\ceos.exe
2023-06-25 06:59 - 2023-06-25 06:59 - 000313344 _____ () C:\Users\Francisco Narde\AppData\Local\Purdy.exe
2023-06-25 06:59 - 2023-06-25 06:59 - 000313344 _____ () C:\Users\Francisco Narde\AppData\Local\Chl.exe
2023-06-25 06:59 - 2023-06-25 06:59 - 000046183 _____ C:\Users\Francisco Narde\AppData\Local\wrigley.exe

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2023-07-24 06:47 - 2023-01-28 16:48 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\IObit
2023-07-24 06:46 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-24 06:41 - 2022-04-24 22:11 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\qBittorrent
2023-07-24 06:33 - 2020-07-19 02:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-24 06:08 - 2021-12-17 07:00 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-24 06:08 - 2019-10-30 00:58 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-24 02:50 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-24 02:00 - 2020-11-09 16:28 - 000004202 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{8E6CDB7D-C0DB-4FD4-9899-F020CAC9E76F}
2023-07-24 01:59 - 2020-10-22 22:38 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-24 01:59 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-24 01:58 - 2019-03-20 00:29 - 000000000 ___RD C:\Users\Francisco Narde\OneDrive
2023-07-24 01:57 - 2023-04-24 13:49 - 000003138 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-07-24 01:57 - 2023-04-24 13:36 - 000003130 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-07-23 05:03 - 2022-09-03 03:51 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\Spotify
2023-07-23 05:02 - 2022-09-03 03:50 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\Spotify
2023-07-19 22:52 - 2020-07-22 21:27 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\AVAST Software
2023-07-19 07:08 - 2023-04-26 09:16 - 000002504 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2023-07-19 07:08 - 2023-04-26 09:16 - 000002372 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2023-07-19 07:08 - 2023-04-24 13:36 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2023-07-19 07:08 - 2023-04-24 13:36 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2023-07-19 07:08 - 2023-04-24 13:36 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-07-19 07:08 - 2023-04-24 13:35 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-07-19 07:08 - 2023-01-24 19:24 - 000002614 _____ C:\WINDOWS\system32\Tasks\GraphicsCardEngine
2023-07-19 07:08 - 2023-01-24 19:24 - 000002520 _____ C:\WINDOWS\system32\Tasks\SIV-VGA
2023-07-19 07:08 - 2023-01-24 19:24 - 000002514 _____ C:\WINDOWS\system32\Tasks\SIV
2023-07-19 07:08 - 2023-01-21 17:37 - 000002630 _____ C:\WINDOWS\system32\Tasks\EasyTune 1
2023-07-19 07:08 - 2023-01-21 17:37 - 000002530 _____ C:\WINDOWS\system32\Tasks\EasyTune
2023-07-19 07:08 - 2022-10-02 21:09 - 000003046 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-19 07:08 - 2022-10-02 21:09 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-19 07:08 - 2022-01-23 07:18 - 000003936 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1642933137
2023-07-19 07:08 - 2022-01-23 07:18 - 000003668 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1642933131
2023-07-19 07:08 - 2021-12-11 00:34 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3907471261-615860086-2012423866-1001
2023-07-19 07:08 - 2021-10-06 18:00 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-07-19 07:08 - 2021-08-19 05:54 - 000002272 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Francisco Narde
2023-07-19 07:08 - 2021-05-22 02:53 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineEULA
2023-07-19 07:08 - 2021-05-22 02:53 - 000003162 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineEULA
2023-07-19 07:08 - 2021-05-22 02:53 - 000002964 _____ C:\WINDOWS\system32\Tasks\BatteryBoostCheckOnLogon_{B2HP0844-0772-46L7-BAED-A80BD35AC5B8}
2023-07-19 07:08 - 2021-05-22 02:53 - 000002728 _____ C:\WINDOWS\system32\Tasks\Warsaw's CoreFixer
2023-07-19 07:08 - 2021-05-22 02:53 - 000002710 _____ C:\WINDOWS\system32\Tasks\Win Manager
2023-07-19 07:08 - 2020-10-22 22:38 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-19 07:08 - 2020-10-22 22:38 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-19 07:08 - 2020-10-22 10:46 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-07-19 07:08 - 2020-10-22 10:46 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-07-19 07:08 - 2020-07-20 21:14 - 000002598 _____ C:\WINDOWS\system32\Tasks\SoundBass
2023-07-19 07:08 - 2020-07-19 02:10 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-19 07:08 - 2020-07-19 02:10 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-07-14 03:20 - 2020-08-08 22:07 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\CrashDumps
2023-07-13 20:28 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-07-13 03:16 - 2019-10-30 02:44 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\vlc
2023-07-12 00:40 - 2019-10-30 00:41 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\D3DSCache
2023-07-12 00:39 - 2020-07-19 02:09 - 001741824 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-12 00:39 - 2019-12-07 11:53 - 000752436 _____ C:\WINDOWS\system32\prfh0416.dat
2023-07-12 00:39 - 2019-12-07 11:53 - 000148550 _____ C:\WINDOWS\system32\prfc0416.dat
2023-07-12 00:39 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-11 22:28 - 2022-12-26 12:00 - 000000000 ____D C:\Program Files\TeamViewer
2023-07-11 22:28 - 2022-07-04 22:32 - 000583536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-11 22:28 - 2021-10-06 17:59 - 000000000 ____D C:\ProgramData\AVG
2023-07-11 22:28 - 2020-07-19 02:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-11 22:27 - 2019-12-07 06:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-07-11 22:27 - 2019-10-30 00:25 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-07-11 22:26 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-11 22:26 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-11 22:25 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-11 22:21 - 2020-07-19 02:09 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-11 01:20 - 2021-10-06 18:00 - 000943496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000704352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000556664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000392872 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000319600 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000297912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000272096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000237512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000105288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000096512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000080456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2023-07-11 01:20 - 2021-10-06 18:00 - 000039688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2023-07-11 01:20 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-08 19:51 - 2019-03-20 00:27 - 000000000 ___SD C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Credentials
2023-07-08 18:38 - 2021-11-11 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-07-07 16:48 - 2019-03-20 00:31 - 000000000 ____D C:\AMD
2023-07-07 16:39 - 2020-07-19 01:31 - 000000000 ____D C:\Users\Francisco Narde
2023-07-06 19:52 - 2021-12-31 14:00 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\AMD_Common
2023-07-03 12:02 - 2023-03-05 04:10 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\DeepL_SE
2023-06-30 11:42 - 2019-10-30 14:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-30 10:20 - 2019-10-30 14:13 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-06-29 06:57 - 2019-10-30 00:59 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-27 07:58 - 2019-10-30 03:18 - 000000000 ____D C:\ProgramData\Logishrd
2023-06-27 04:26 - 2020-10-19 23:10 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\Deployment
2023-06-27 04:26 - 2019-03-22 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-06-26 15:57 - 2019-10-30 04:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-26 15:45 - 2019-10-30 00:54 - 000000000 ____D C:\Users\Francisco Narde\AppData\Roaming\Microsoft\MMC
2023-06-25 07:46 - 2021-05-22 02:50 - 000000000 ____D C:\Users\Francisco Narde\AppData\Local\AdvinstAnalytics
2023-06-24 17:34 - 2020-02-21 03:42 - 000000000 ____D C:\Program Files\CCleaner

==================== Arquivos na raiz de alguns diretórios ========

2021-05-16 02:31 - 2021-05-16 03:49 - 000000095 _____ () C:\Users\Francisco Narde\AppData\Roaming\Camdata.ini
2021-05-16 02:31 - 2021-05-16 03:49 - 000000408 _____ () C:\Users\Francisco Narde\AppData\Roaming\CamLayout.ini
2021-05-16 02:31 - 2021-05-16 03:49 - 000000408 _____ () C:\Users\Francisco Narde\AppData\Roaming\CamShapes.ini
2021-05-16 02:07 - 2021-05-16 03:49 - 000004522 _____ () C:\Users\Francisco Narde\AppData\Roaming\CamStudio.cfg
2023-06-29 16:58 - 2023-06-29 16:58 - 000000546 _____ () C:\Users\Francisco Narde\AppData\Roaming\PureRef.ini
2023-06-25 06:59 - 2023-06-25 06:59 - 000369850 _____ () C:\Users\Francisco Narde\AppData\Local\ceos.exe
2023-06-25 06:59 - 2023-06-25 06:59 - 000313344 _____ () C:\Users\Francisco Narde\AppData\Local\Chl.exe
2019-11-01 18:15 - 2022-11-17 02:20 - 000000205 _____ () C:\Users\Francisco Narde\AppData\Local\oobelibMkey.log
2023-06-25 06:59 - 2023-06-25 06:59 - 000313344 _____ () C:\Users\Francisco Narde\AppData\Local\Purdy.exe
2021-11-20 13:06 - 2021-11-20 13:06 - 000138680 _____ (Microsoft Corporation) C:\Users\Francisco Narde\AppData\Local\WebView2Loader.dll
2023-06-25 06:59 - 2023-06-25 06:59 - 000046183 _____ () C:\Users\Francisco Narde\AppData\Local\wrigley.exe

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================