Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 13-12-2023 Executado por 01 (administrador) em DESKTOP-N4V6IK6 (14-12-2023 08:33:54) Executando a partir de C:\Users\01\Desktop\FRST64.exe Perfis Carregados: 01 Plataforma: Microsoft Windows 10 Pro Versão 22H2 19045.3803 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (CERTIF_NICOLAS_COOLMAN -> Nicolas Coolman) [Arquivo não assinado] C:\Users\01\Desktop\ZHPCleaner.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <19> (explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Users\01\Desktop\adwcleaner.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe <2> (services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [Discord] => C:\ProgramData\01\Discord\Update.exe [1525024 2023-12-05] (Discord Inc. -> GitHub) HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [MicrosoftEdgeAutoLaunch_06F6904A0A318C6BD53585E0B132D93D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-07] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3938912 2023-12-13] (Skutta, Kristjan -> ) HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37180368 2023-12-13] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3641152405-2951191243-1692812917-1001\...\Run: [GoogleChromeAutoLaunch_247723C09E5ABBF8AB0DA8271463C78F] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2693920 2023-12-05] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.71\Installer\chrmstp.exe [2023-12-13] (Google LLC -> Google LLC) ==================== Tarefas Agendadas (Whitelisted) ================= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {6A35BA92-1A14-4E12-9BD8-D706AD94BFFE} - System32\Tasks\GoogleUpdateTaskMachineCore{FBA9130F-2B3D-4A7C-900D-BCEF88BD8CD7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-12-13] (Google LLC -> Google LLC) Task: {20CC5AE7-4AE6-43F1-BC54-D90A55C6149C} - System32\Tasks\GoogleUpdateTaskMachineUA{B73E865A-590D-4835-AB61-18E91CB34B6C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-12-13] (Google LLC -> Google LLC) Task: {4DA27D09-5167-4F73-AC55-127B24C8D980} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [256512 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Task: {7180BB85-620F-4261-A5BE-04EBB01A8C4C} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {EEEB8BFD-786B-413A-BBD9-21C2388AA301} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {F7303EA3-389F-4C23-B930-81DE234FDF8E} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {D783C2EE-C116-4796-BC98-16DF40334921} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.10.10\WSCStub.exe [646520 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {C13928E0-7CCA-4487-B104-2417F23AA4CE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {993C1E54-77E7-4048-B641-CE6775E6A896} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {489B2890-73A4-4807-BB23-6FBDAB7FA5B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EA779F68-5A79-4F70-94E8-DF1EBE888418} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {299B439E-BD65-46B3-8D02-2CE6784E8CA9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {892C8721-2668-45F6-8C41-249DAC040A31} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BD1789BA-042C-4F85-94D7-14D7D14B4DF5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F50AC870-25B7-4315-BC71-FCBF0EB7DE98} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2D8FDC61-304B-49A7-9C84-D21DED54087C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EA37CBD3-07EB-43AC-948F-5CB1033A0EEE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2353000 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3560c919-1948-496e-b0ad-4f20ede130fc}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\01\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-13] Edge Extension: (Documentos Google off-line) - C:\Users\01\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-13] Edge Extension: (Edge relevant text changes) - C:\Users\01\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-13] Chrome: ======= CHR Profile: C:\Users\01\AppData\Local\Google\Chrome\User Data\Default [2023-12-14] CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxp://www.publipt.com/pages/psp.php","hxxp://www.publipt.com/pages/entrar.php","hxxp://www.publipt.com/pages/ptc_youtube.php?blur=1&startpos=0","hxxp://www.publipt.com/scripts/runner.php?PA=3848","hxxps://bitcambio.com.br/","hxxp://www.publipt.com/scripts/runner.php?SP=ba7b03f7gabrielcardoso1","hxxps://br.search.yahoo.com/?type=435371&fr=yo-yhp-ch","hxxp://maisdowns.com" CHR Extension: (AutoJoin for SteamGifts) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\bchhlccjhoedhhegglilngpbnldfcidc [2023-12-13] CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-12-13] CHR Extension: (Norton Safe Web) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-12-13] CHR Extension: (Documentos Google off-line) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-13] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13] CHR Extension: (Excel Online) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2023-12-13] CHR Extension: (SteamDB) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2023-12-13] CHR Extension: (PowerPoint Online) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2023-12-13] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-13] CHR Extension: (AdBlocker Ultimate) - C:\Users\01\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2023-12-13] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2023-12-13] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-12-13] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.) S3 GameInputSvc; C:\Windows\System32\GameInputSvc.exe [50280 2023-12-13] (Microsoft Corporation -> Microsoft Corporation) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe [344888 2023-11-06] (NortonLifeLock Inc. -> NortonLifelock Inc.) R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe [1059176 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-07] (NVIDIA Corporation -> NVIDIA Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-13] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5066280 2023-12-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12410208 2023-12-13] (KRAFTON, Inc. -> KRAFTON, Inc) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.23.10.10\Definitions\BASHDefs\20231213.001\BHDrvx64.sys [1706512 2023-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\ccSetx64.sys [198280 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2022-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2023-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.23.10.10\Definitions\IPSDefs\20231213.064\IDSvia64.sys [1554400 2023-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 nsvst_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\nsvst.sys [57120 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation) R3 SRTSP; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSP64.SYS [956048 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSPX64.SYS [52872 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SYMEFASI64.SYS [2180248 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SymELAM.sys [36016 2023-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100344 2023-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.23.10.10\SymPlatform\SymEvnt.sys [722400 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymIRON; C:\Windows\System32\drivers\NGCx64\16170A0.00A\Ironx64.SYS [306824 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\Windows\System32\drivers\NGCx64\16170A0.00A\symnets.sys [492728 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S4 UCPD; C:\Windows\System32\drivers\UCPD.sys [29184 2023-12-13] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\wpCtrlDrv.sys [1016792 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 xhunter1; C:\Windows\xhunter1.sys [179112 2023-12-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-12-14 08:17 - 2023-12-14 08:34 - 000018175 _____ C:\Users\01\Desktop\FRST.txt 2023-12-14 08:16 - 2023-12-14 08:34 - 000000000 ____D C:\FRST 2023-12-14 08:15 - 2023-12-14 08:15 - 002386432 _____ (Farbar) C:\Users\01\Desktop\FRST64.exe 2023-12-14 08:13 - 2023-12-14 08:13 - 000011383 _____ C:\Users\01\Desktop\ZHPCleaner (S).html 2023-12-14 08:13 - 2023-12-14 08:13 - 000004158 _____ C:\Users\01\Desktop\ZHPCleaner (S).txt 2023-12-14 08:11 - 2023-12-14 08:07 - 000001684 _____ C:\Users\01\Desktop\AdwCleaner[C01].txt 2023-12-14 08:08 - 2023-12-14 08:13 - 000000000 ____D C:\Users\01\AppData\Roaming\ZHP 2023-12-14 08:08 - 2023-12-14 08:08 - 003362976 _____ (Nicolas Coolman) C:\Users\01\Desktop\ZHPCleaner.exe 2023-12-14 08:08 - 2023-12-14 08:08 - 000000872 _____ C:\Users\01\Desktop\ZHPCleaner.lnk 2023-12-14 08:08 - 2023-12-14 08:08 - 000000000 ____D C:\Users\01\AppData\Local\ZHP 2023-12-14 08:07 - 2023-12-14 08:07 - 000000000 ____D C:\Users\01\AppData\Local\PeerDistRepub 2023-12-14 08:05 - 2023-12-14 08:07 - 000000000 ____D C:\AdwCleaner 2023-12-14 08:04 - 2023-12-14 08:04 - 008791352 _____ (Malwarebytes) C:\Users\01\Desktop\adwcleaner.exe 2023-12-14 07:54 - 2023-12-14 07:54 - 000000000 ____D C:\Windows\system32\Tasks\Remediation 2023-12-14 05:59 - 2023-12-14 05:59 - 000000329 _____ C:\Users\01\Desktop\Fortnite.url 2023-12-14 03:58 - 2023-12-14 03:58 - 000000000 ____D C:\Users\01\AppData\Local\Athena 2023-12-14 03:46 - 2023-12-14 03:46 - 000000223 _____ C:\Users\01\Desktop\Fall Guys.url 2023-12-14 02:00 - 2023-12-14 02:00 - 012193586 _____ C:\Users\01\Downloads\553196395993_status_1a83b7ed3dc6489783c9da322973dd62.mp4 2023-12-13 14:51 - 2023-12-13 14:51 - 000000000 ____D C:\Users\01\AppData\Local\TslGame 2023-12-13 14:50 - 2023-12-14 06:25 - 000000000 ____D C:\Program Files\Common Files\PUBG 2023-12-13 14:50 - 2023-12-14 06:08 - 000179112 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys 2023-12-13 14:50 - 2023-12-13 14:50 - 000000000 ____D C:\Users\01\AppData\Local\WELLBIA 2023-12-13 14:50 - 2023-12-13 14:50 - 000000000 ____D C:\Users\01\AppData\Local\BattlEye 2023-12-13 14:50 - 2023-12-13 14:50 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com 2023-12-13 14:38 - 2023-12-13 14:38 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2023-12-13 14:38 - 2023-12-13 14:38 - 000001280 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk 2023-12-13 14:38 - 2023-12-13 14:38 - 000000000 ____D C:\Users\01\AppData\Local\UnrealEngineLauncher 2023-12-13 14:38 - 2023-12-13 14:38 - 000000000 ____D C:\Users\01\AppData\Local\EpicGamesLauncher 2023-12-13 14:38 - 2023-12-13 14:38 - 000000000 ____D C:\Users\01\AppData\Local\Epic Games 2023-12-13 14:37 - 2023-12-13 14:39 - 000000000 ____D C:\ProgramData\Epic 2023-12-13 14:37 - 2023-12-13 14:38 - 000000000 ____D C:\Program Files (x86)\Epic Games 2023-12-13 14:37 - 2023-12-13 14:37 - 185073664 _____ C:\Users\01\Downloads\EpicInstaller-15.17.1.msi 2023-12-13 13:57 - 2023-12-13 13:57 - 000000223 _____ C:\Users\01\Desktop\Call of Duty®.url 2023-12-13 13:12 - 2023-12-13 13:12 - 000000000 ____D C:\Users\01\AppData\Local\CrashReportClient 2023-12-13 12:48 - 2023-12-14 03:58 - 000000000 ____D C:\Users\01\AppData\Local\UnrealEngine 2023-12-13 12:48 - 2023-12-13 12:48 - 000027376 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_72622187819560.dll 2023-12-13 12:48 - 2023-12-13 12:48 - 000000000 ____D C:\Users\01\AppData\Roaming\GMEGLOBAL 2023-12-13 12:48 - 2023-12-13 12:48 - 000000000 ____D C:\Users\01\AppData\Local\Solarland 2023-12-13 12:48 - 2023-12-13 12:48 - 000000000 ____D C:\Users\01\.lim 2023-12-13 12:48 - 2023-12-13 12:48 - 000000000 ____D C:\ProgramData\NeteaseWinDev 2023-12-13 12:47 - 2023-12-13 12:47 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2023-12-13 12:47 - 2023-12-13 12:47 - 000000000 ____D C:\Program Files\Reference Assemblies 2023-12-13 12:47 - 2023-12-13 12:47 - 000000000 ____D C:\Program Files\MSBuild 2023-12-13 12:47 - 2023-12-13 12:47 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2023-12-13 12:47 - 2023-12-13 12:47 - 000000000 ____D C:\Program Files (x86)\MSBuild 2023-12-13 12:45 - 2023-12-13 12:47 - 000000000 ____D C:\Users\01\AppData\Roaming\EasyAntiCheat 2023-12-13 12:45 - 2023-12-13 12:47 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2023-12-13 12:05 - 2023-12-13 12:05 - 000000222 _____ C:\Users\01\Desktop\Wallpaper Engine.url 2023-12-13 11:41 - 2023-12-13 11:41 - 000000222 _____ C:\Users\01\Desktop\PUBG BATTLEGROUNDS.url 2023-12-13 08:08 - 2023-12-13 08:08 - 014905708 _____ (Geeks3D ) C:\Users\01\Downloads\FurMark_1.37.2.0_Setup.exe 2023-12-13 08:08 - 2023-12-13 08:08 - 000001339 _____ C:\Users\01\Desktop\FurMark.lnk 2023-12-13 08:08 - 2023-12-13 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D 2023-12-13 08:08 - 2023-12-13 08:08 - 000000000 ____D C:\Program Files (x86)\Geeks3D 2023-12-13 07:56 - 2023-12-13 07:56 - 000007597 _____ C:\Users\01\AppData\Local\Resmon.ResmonCfg 2023-12-13 07:32 - 2023-12-13 07:32 - 000000223 _____ C:\Users\01\Desktop\Farlight 84.url 2023-12-13 07:29 - 2023-12-14 03:46 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-12-13 07:29 - 2023-12-13 07:29 - 000000223 _____ C:\Users\01\Desktop\Sea of Thieves.url 2023-12-13 06:57 - 2023-12-13 06:57 - 000000000 ____D C:\Users\01\AppData\LocalLow\NVIDIA 2023-12-13 06:49 - 2023-12-07 22:23 - 001487368 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 001424064 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 001424064 _____ C:\Windows\system32\vulkan-1.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 001246400 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 001246400 _____ C:\Windows\SysWOW64\vulkan-1.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 001227288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2023-12-13 06:49 - 2023-12-07 22:23 - 000850616 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2023-12-13 06:49 - 2023-12-07 22:23 - 000850616 _____ C:\Windows\system32\vulkaninfo.exe 2023-12-13 06:49 - 2023-12-07 22:23 - 000731320 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-12-13 06:49 - 2023-12-07 22:23 - 000731320 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2023-12-13 06:49 - 2023-12-07 22:19 - 000957960 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2023-12-13 06:49 - 2023-12-07 22:19 - 000670232 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll 2023-12-13 06:49 - 2023-12-07 22:19 - 000505480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 012375688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 002170992 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 001624712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 001541256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 001198728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 000997512 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 000810096 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2023-12-13 06:49 - 2023-12-07 22:18 - 000773744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2023-12-13 06:49 - 2023-12-07 22:18 - 000459912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2023-12-13 06:49 - 2023-12-07 22:17 - 015095408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2023-12-13 06:49 - 2023-12-07 22:17 - 006462600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2023-12-13 06:49 - 2023-12-07 22:17 - 005862512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2023-12-13 06:49 - 2023-12-07 22:17 - 005861000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2023-12-13 06:49 - 2023-12-07 22:17 - 003620488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2023-12-13 06:49 - 2023-12-07 22:17 - 000853640 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2023-12-13 06:49 - 2023-12-07 22:16 - 006745768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2023-12-13 06:49 - 2023-12-06 20:05 - 000113947 _____ C:\Windows\system32\nvinfo.pb 2023-12-13 06:46 - 2023-12-13 06:49 - 000000000 ____D C:\Users\01\AppData\Local\Steam 2023-12-13 06:45 - 2023-12-13 14:51 - 000000000 ____D C:\Users\01\AppData\Local\NVIDIA Corporation 2023-12-13 06:45 - 2023-12-13 14:49 - 000000000 ____D C:\ProgramData\Package Cache 2023-12-13 06:45 - 2023-12-13 06:57 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2023-12-13 06:45 - 2023-12-13 06:45 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-12-13 06:45 - 2023-12-13 06:45 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2023-12-13 06:45 - 2023-12-13 06:45 - 000000000 ____D C:\Users\01\AppData\Local\CEF 2023-12-13 06:45 - 2023-12-13 06:45 - 000000000 ____D C:\Users\01\ansel 2023-12-13 06:45 - 2023-12-13 06:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2023-12-13 06:45 - 2023-11-01 23:55 - 002905128 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2023-12-13 06:45 - 2023-11-01 23:55 - 002235944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2023-12-13 06:45 - 2023-11-01 23:54 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2023-12-13 06:45 - 2023-11-01 23:27 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll 2023-12-13 06:45 - 2023-11-01 23:27 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll 2023-12-13 06:45 - 2023-03-10 05:28 - 000170040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2023-12-13 06:45 - 2023-03-10 05:28 - 000149048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2023-12-13 06:45 - 2022-10-14 04:06 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2023-12-13 06:45 - 2022-07-13 20:32 - 000060112 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2023-12-13 06:44 - 2023-12-14 06:33 - 000000000 ____D C:\Program Files (x86)\Steam 2023-12-13 06:44 - 2023-12-13 06:44 - 131933552 _____ (NVIDIA Corporation) C:\Users\01\Downloads\GeForce_Experience_v3.27.0.120.exe 2023-12-13 06:44 - 2023-12-13 06:44 - 002296488 _____ C:\Users\01\Downloads\SteamSetup.exe 2023-12-13 06:44 - 2023-12-13 06:44 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk 2023-12-13 06:44 - 2023-12-13 06:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2023-12-13 06:41 - 2023-12-14 07:35 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\MMC 2023-12-13 06:40 - 2023-12-13 06:40 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-12-13 06:40 - 2023-12-13 06:40 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-12-13 06:40 - 2023-12-13 06:40 - 000000000 ____D C:\Users\01\AppData\Local\Google 2023-12-13 06:40 - 2023-12-13 06:40 - 000000000 ____D C:\Program Files\Google 2023-12-13 06:39 - 2023-12-14 07:45 - 000000000 ____D C:\Program Files (x86)\Google 2023-12-13 06:39 - 2023-12-13 06:39 - 001376304 _____ (Google LLC) C:\Users\01\Downloads\ChromeSetup.exe 2023-12-13 06:39 - 2023-12-13 06:39 - 000003960 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{B73E865A-590D-4835-AB61-18E91CB34B6C} 2023-12-13 06:39 - 2023-12-13 06:39 - 000003836 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{FBA9130F-2B3D-4A7C-900D-BCEF88BD8CD7} 2023-12-13 06:28 - 2023-12-13 06:28 - 000000000 ____D C:\ProgramData\PLUG 2023-12-13 06:24 - 2023-12-13 06:24 - 000000000 ____D C:\Windows\InboxApps 2023-12-13 06:13 - 2023-12-13 06:13 - 000000000 ____D C:\Program Files\Common Files\AV 2023-12-13 05:56 - 2023-12-13 05:56 - 000000000 ____D C:\Users\01\AppData\Local\NPE 2023-12-13 05:41 - 2023-12-13 05:41 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2023-12-13 05:34 - 2023-12-14 08:33 - 000000000 ____D C:\Users\01\AppData\Local\Norton 2023-12-13 05:32 - 2023-12-13 05:32 - 000000000 ___HD C:\$WinREAgent 2023-12-13 05:31 - 2023-12-13 05:31 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-12-13 05:28 - 2023-12-13 05:29 - 000000000 ____D C:\Windows\system32\MRT 2023-12-13 05:27 - 2023-12-13 05:27 - 000000000 ____D C:\Program Files\RUXIM 2023-12-13 05:24 - 2023-12-13 05:24 - 000000000 ____D C:\Users\01\AppData\Local\Comms 2023-12-13 05:13 - 2023-12-13 08:29 - 000000000 ____D C:\Users\01\AppData\Local\PlaceholderTileLogoFolder 2023-12-13 05:13 - 2023-12-13 05:13 - 000000000 ____D C:\Users\01\AppData\Local\CrashDumps 2023-12-13 05:12 - 2023-12-14 07:38 - 000000000 ____D C:\Windows\system32\Tasks\Norton Security 2023-12-13 05:12 - 2023-12-13 05:12 - 000000000 ____D C:\Users\01\AppData\Roaming\NVIDIA 2023-12-13 05:11 - 2023-12-14 08:07 - 000000000 ____D C:\Users\01\AppData\Roaming\discord 2023-12-13 05:11 - 2023-12-14 07:39 - 001742348 _____ C:\Windows\system32\PerfStringBackup.INI 2023-12-13 05:11 - 2023-12-13 05:14 - 000002413 _____ C:\Users\Public\Desktop\Norton Security.lnk 2023-12-13 05:11 - 2023-12-13 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2023-12-13 05:11 - 2023-12-13 05:11 - 000003378 _____ C:\Windows\system32\Tasks\Norton WSC Integration 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Spelling 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Users\01\AppData\Local\SquirrelTemp 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Users\01\AppData\Local\Discord 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\ProgramData\01 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Program Files\Norton Security 2023-12-13 05:11 - 2023-12-13 05:11 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared 2023-12-13 05:10 - 2023-12-13 05:56 - 000000000 ____D C:\ProgramData\Norton 2023-12-13 05:10 - 2023-12-13 05:10 - 096194848 _____ (Discord Inc.) C:\Users\01\Downloads\DiscordSetup.exe 2023-12-13 05:10 - 2023-12-13 05:10 - 004378256 _____ (NortonLifeLock Inc.) C:\Users\01\Downloads\NortonNSDownloader.exe 2023-12-13 05:10 - 2023-12-13 05:10 - 000001362 _____ C:\Users\01\Desktop\Norton Installation Files.lnk 2023-12-13 05:10 - 2023-12-13 05:10 - 000000000 ____D C:\Users\Public\Downloads\Norton 2023-12-13 05:10 - 2023-12-13 05:10 - 000000000 ____D C:\Users\01\AppData\Local\DBG 2023-12-13 05:10 - 2023-12-13 05:10 - 000000000 ____D C:\ProgramData\NortonInstaller 2023-12-13 05:10 - 2023-12-13 05:10 - 000000000 ____D C:\Program Files (x86)\NortonInstaller 2023-12-13 05:09 - 2023-12-14 08:07 - 000000000 ____D C:\ProgramData\NVIDIA 2023-12-13 05:09 - 2023-12-13 08:57 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-12-13 05:09 - 2023-12-13 06:57 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation 2023-12-13 05:09 - 2023-12-13 06:57 - 000000000 ____D C:\Users\01\AppData\Local\NVIDIA 2023-12-13 05:09 - 2023-12-13 06:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2023-12-13 05:09 - 2023-12-13 05:09 - 000000000 ___RD C:\Users\01\OneDrive 2023-12-13 05:09 - 2023-12-13 05:09 - 000000000 ____D C:\Windows\system32\lxss 2023-12-13 05:08 - 2023-12-13 05:08 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2023-12-13 05:08 - 2023-12-07 22:16 - 007869576 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2023-12-13 05:08 - 2023-12-06 20:05 - 000121880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2023-12-13 05:07 - 2023-12-14 06:09 - 000000000 ____D C:\Users\01\AppData\Local\D3DSCache 2023-12-13 05:07 - 2023-12-13 12:25 - 000000000 ____D C:\Users\01\AppData\Local\Packages 2023-12-13 05:07 - 2023-12-13 12:25 - 000000000 ____D C:\ProgramData\Packages 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ___SD C:\Users\01\AppData\Roaming\Microsoft\SystemCertificates 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ___SD C:\Users\01\AppData\Roaming\Microsoft\Protect 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ___SD C:\Users\01\AppData\Roaming\Microsoft\Crypto 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ___SD C:\Users\01\AppData\Roaming\Microsoft\Credentials 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ___RD C:\Users\01\3D Objects 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Vault 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Network 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Roaming\Adobe 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Local\VirtualStore 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Local\Publishers 2023-12-13 05:07 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Local\ConnectedDevicesPlatform 2023-12-13 05:06 - 2023-12-14 06:33 - 000000000 ____D C:\Users\01 2023-12-13 05:06 - 2023-12-13 05:07 - 000000000 ____D C:\Users\01\AppData\Roaming\Microsoft\Windows 2023-12-13 05:06 - 2023-12-13 05:06 - 000000020 ___SH C:\Users\01\ntuser.ini 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Modelos 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Meus Documentos 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Menu Iniciar 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Documents\Minhas Músicas 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Documents\Minhas Imagens 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Documents\Meus Vídeos 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Dados de Aplicativos 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Configurações Locais 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\AppData\Local\Histórico 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\AppData\Local\Dados de Aplicativos 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Ambiente de Rede 2023-12-13 05:06 - 2023-12-13 05:06 - 000000000 _SHDL C:\Users\01\Ambiente de Impressão 2023-12-13 05:05 - 2023-12-13 05:05 - 000000000 ____D C:\Windows\CSC 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Usuário Padrão 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Todos os Usuários 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Músicas 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Imagens 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Public\Documents\Meus Vídeos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Modelos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Meus Documentos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Menu Iniciar 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Músicas 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Imagens 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Documents\Meus Vídeos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Configurações Locais 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\ProgramData\Modelos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\ProgramData\Menu Iniciar 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\ProgramData\Documentos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Program Files\Common Files\Sistema 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Program Files\Arquivos Comuns 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Documents and Settings 2023-12-13 05:04 - 2023-12-13 05:04 - 000000000 _SHDL C:\Arquivos de Programas 2023-12-13 05:02 - 2023-12-14 07:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-12-13 05:02 - 2023-12-14 07:32 - 000008192 ___SH C:\DumpStack.log.tmp 2023-12-13 05:02 - 2023-12-14 03:14 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-12-13 05:02 - 2023-12-13 06:26 - 000259824 _____ C:\Windows\system32\FNTCACHE.DAT 2023-12-13 05:02 - 2023-12-13 05:17 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-12-13 05:02 - 2023-12-13 05:12 - 000003672 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-12-13 05:02 - 2023-12-13 05:12 - 000003548 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-12-13 05:02 - 2023-12-13 05:02 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2023-12-13 05:02 - 2023-12-13 05:02 - 000000000 ____D C:\Windows\system32\Drivers\wd 2023-12-13 05:02 - 2023-12-13 05:02 - 000000000 ____D C:\Windows\ServiceProfiles 2023-12-13 05:01 - 2023-12-13 05:03 - 000000000 ____D C:\Windows\Panther ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-12-14 08:16 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2023-12-14 07:45 - 2023-05-05 09:26 - 000000000 ____D C:\Windows\SystemTemp 2023-12-14 07:39 - 2019-12-07 11:53 - 000752560 _____ C:\Windows\system32\prfh0416.dat 2023-12-14 07:39 - 2019-12-07 11:53 - 000148674 _____ C:\Windows\system32\prfc0416.dat 2023-12-14 07:34 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-12-14 07:12 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-12-14 06:49 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2023-12-14 06:33 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2023-12-14 03:17 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\appcompat 2023-12-13 12:47 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2023-12-13 12:47 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\MUI 2023-12-13 12:25 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-12-13 08:06 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2023-12-13 06:29 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-12-13 06:24 - 2019-12-07 11:56 - 000000000 ___SD C:\Windows\system32\AppV 2023-12-13 06:24 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-12-13 06:24 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-12-13 06:24 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\UNP 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\F12 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\PrintDialog 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Sysprep 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lv-LV 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lt-LT 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\et-EE 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Com 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\appraiser 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\Provisioning 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\IME 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows Defender 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2023-12-13 06:24 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-12-13 06:24 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\servicing 2023-12-13 05:48 - 2019-12-07 11:56 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2023-12-13 05:48 - 2019-12-07 11:56 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2023-12-13 05:48 - 2019-12-07 06:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2023-12-13 05:48 - 2019-12-07 06:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2023-12-13 05:23 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ServiceState 2023-12-13 05:14 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2023-12-13 05:11 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-12-13 05:06 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2023-12-13 05:05 - 2019-12-07 11:54 - 000000000 ____D C:\Windows\system32\FxsTmp 2023-12-13 05:05 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\spool 2023-12-13 05:04 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows NT 2023-12-13 05:02 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\USOPrivate 2023-12-13 05:01 - 2019-12-07 06:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template ==================== Arquivos na raiz de alguns diretórios ======== 2023-12-13 07:56 - 2023-12-13 07:56 - 000007597 _____ () C:\Users\01\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================