Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-10-2019
Executado por Lucas (administrador) em PCGAYMER (22-10-2019 22:43:09)
Executando a partir de C:\Users\Lucas\Downloads
Perfis Carregados: Lucas (Perfis Disponíveis: Lucas & raven)
Platform: Windows 10 Pro Versão 1809 17763.678 (X64) Idioma: Português (Brasil)
Navegador padrão: FF
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
() [Arquivo não assinado] C:\ProgramData\beleza.exe
() [Arquivo não assinado] C:\ProgramData\CloudPrinter\CloudPrinter.exe
(Acesso Negado) [Arquivo não assinado] C:\ProgramData\ApptreppabM\ApptreppabM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Bartels Media GmbH ) [Arquivo não assinado] C:\ProgramData\arpexemsieftp\CNB0390MANIFESThidi2c.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) [Arquivo não assinado] C:\ProgramData\arpexemsieftp\mouclasssyswclSqm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11906.1001.24.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\Creative.UWPRPCService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [653872 2018-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-03] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-07-17] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [joia] => C:\ProgramData\beleza.exe [357376 2019-10-22] () [Arquivo não assinado]
HKLM-x32\...\RunOnce: [joia] => C:\ProgramData\beleza.exe [357376 2019-10-22] () [Arquivo não assinado]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Discord] => C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [1768649] => C:\Users\Lucas\AppData\Local\Temp\is-OK340.tmp\BayaZerdi.exe [882087 2019-10-22] (Acesso Negado) [Arquivo não assinado] <==== ATENÇÃO
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)
AppInit_DLLs: C:\ProgramData\ApptreppabM\KayTamhold.dll => C:\ProgramData\ApptreppabM\KayTamhold.dll [342528 2019-10-22] () [Arquivo não assinado]
AppInit_DLLs-x32: C:\ProgramData\ApptreppabM\Ontotom.dll => C:\ProgramData\ApptreppabM\Ontotom.dll [460800 2019-10-22] (Acesso Negado) [Arquivo não assinado]
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {11267161-5810-4262-877B-F12CE50BDD6A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {12E7C785-5114-4202-9921-35A4E1E55884} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {157DB7AD-187D-4335-BFE6-F01F3DF34943} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D0A00E4-D9BC-4896-BC07-CBCAC98DE7A6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22ED3716-90AF-4A08-BB5F-EEE5B0245F18} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {23458331-3592-42E6-8B86-3D7EFB49CCBB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25DED66C-AC89-4976-A02E-7027A7149A18} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D0F0FBD-D382-47DE-A1BE-DCC3576992CE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4A1A3504-B574-440B-AC86-9939C478FAC8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D444487-C4DB-4C60-A114-D37E40970B88} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {680BCD3D-10D7-4B9E-AAB2-88A1D58FFEBA} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATENÇÃO
Task: {801E62C1-7FCD-42AD-A401-581235DB3549} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E7D0E22-DE11-4759-98EF-40EA6898FA9B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {913071BB-BF98-427E-AD9B-D22CD6C5D6F6} - System32\Tasks\CNB0390MANIFESThidi2c => C:\\ProgramData\\arpexemsieftp\CNB0390MANIFESThidi2c.exe [1048064 2019-10-22] (Bartels Media GmbH ) [Arquivo não assinado]
Task: {92CBAC49-07CE-426C-B343-102365323367} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95672100-967D-4680-A074-BD117CF658F8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96D3928A-04FA-4650-8C5F-00295B96BCD1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A67BAFA0-13FD-4BAA-A2A9-31CDAB3FEDBD} - System32\Tasks\mouclasssyswclSqm => C:\\ProgramData\\arpexemsieftp\mouclasssyswclSqm.exe [331776 2019-10-22] (Microsoft Corporation) [Arquivo não assinado]
Task: {B20376D0-A940-4826-AB82-7A00644E87E5} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B42B78D7-8081-41FE-A1A0-39D15EE49B9F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8848925-090C-461D-9C98-C4EE385A1A9E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE81C6EA-43CD-4872-AECE-FAD57A3B9A41} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFBFEA46-DB41-4FB7-9B58-1BA19C315559} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PCGAYMER-Lucas PCGAYMER => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D14A3620-6029-41C3-8114-5BED23C3919F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {D71BB7C1-368C-4160-AC7E-DF462165F54D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{0d6f2e7a-2c49-433b-8d59-b7a95e58066b}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{18cd003e-a2ae-44b4-937c-8b100af5b0a0}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{4b2ff1d5-83b9-11e9-a22b-806e6f6e6963}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{55fd2c42-c3d5-4152-9d5c-5747b041d5cc}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{9fd35001-8121-4d37-b7b7-4fc73dbc9aa5}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{d21fbd06-7130-4f0c-812a-6f30679ceedb}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{de29570c-ec56-4989-8ba5-647de5aa261d}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{de29570c-ec56-4989-8ba5-647de5aa261d}: [DhcpNameServer] 179.233.128.17 179.233.128.22
Tcpip\..\Interfaces\{e605b394-1de2-443f-a9d1-76e1a35d49cb}: [NameServer] 185.107.96.127,192.223.30.14
Internet Explorer:
==================
HKU\S-1-5-21-28817538-380499637-3411821432-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
HKU\S-1-5-21-28817538-380499637-3411821432-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27--sTSYpIUkrY7tcYzRTF_7oyC-eETLSzfq4XYnNoKzq0ePFRCrK2HK-lyWiGXOunSAoi2nhzEnDQwQ-Q9ba87JB4UQavU
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
SearchScopes: HKU\S-1-5-21-28817538-380499637-3411821432-1001 -> DefaultScope {ielnksrch} URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
SearchScopes: HKU\S-1-5-21-28817538-380499637-3411821432-1001 -> {ielnksrch} URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: zj23f7yq.default
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\zj23f7yq.default [2019-09-25]
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release [2019-10-22]
FF Extension: (AdBlocker Ultimate) - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2019-09-25]
FF Extension: (Google Translator for Firefox) - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release\Extensions\translator@zoli.bod.xpi [2019-10-20]
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-10-22]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Arquivo não assinado]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-10-22] <==== ATENÇÃO (Aponta para arquivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-10-22] <==== ATENÇÃO
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/search?q=tempo&oq=tempo&aqs=chrome.0.69i59j69i60l3j69i57j69i65.761j0j7&sourceid=chrome&ie=UTF-8
CHR NewTab: Default -> Not-active:"chrome-extension://jdlnhgjcehghpjmemkjbkhgpeblojiaj/ntp.html"
CHR Profile: C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default [2019-10-22]
CHR Extension: (Apresentações) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-31]
CHR Extension: (Documentos) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-31]
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-31]
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-31]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-26]
CHR Extension: (Dropbox para Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-05-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-30]
CHR Extension: (Planilhas) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-31]
CHR Extension: (Documentos Google off-line) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-31]
CHR Extension: (File Send Suite) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdlnhgjcehghpjmemkjbkhgpeblojiaj [2019-09-23]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-14]
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-31]
CHR Extension: (Chrome Media Router) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
R2 ApptreppabM; C:\ProgramData\\ApptreppabM\\ApptreppabM.exe [1515520 2019-10-22] () [Arquivo não assinado]
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-09-11] (BattlEye Innovations e.K. -> )
R2 CloudPrinter; C:\ProgramData\\CloudPrinter\\CloudPrinter.exe [1515520 2019-10-22] () [Arquivo não assinado]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] (Canon Inc. -> )
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [653872 2018-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 UWPService; C:\Windows\SysWOW64\Creative.UWPRPCService.exe [342496 2018-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WIFIService; C:\ProgramData\WIFIService\WIFIService.exe [1662976 2019-10-22] (Acesso Negado) [Arquivo não assinado] <==== ATENÇÃO
S3 wuauserv; C:\Windows\system32\svchost.exe [51696 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2019-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2019-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [76624 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [129152 2019-08-01] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251520 2019-08-02] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [514688 2019-06-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1204856 2019-09-12] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [197760 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [996992 2019-08-02] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [99152 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [210280 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [34896 2018-12-10] (WDKTestCert ctl_avpbuild,131450919658074287 -> Creative Technology Ltd.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_67c16e22f0dab361\nvlddmkm.sys [22734744 2019-10-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [8206848 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2016-05-12] (ZJMedia Digital Technology Ltd. -> WinISO.com)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-10-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2019-10-22 22:43 - 2019-10-22 22:44 - 000037599 _____ C:\Users\Lucas\Downloads\FRST.txt
2019-10-22 22:42 - 2019-10-22 22:43 - 000000000 ____D C:\FRST
2019-10-22 22:41 - 2019-10-22 22:41 - 001617408 _____ (Farbar) C:\Users\Lucas\Downloads\FRST64.exe
2019-10-22 18:39 - 2019-10-22 18:39 - 000306248 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2019-10-22 18:39 - 2019-10-22 18:39 - 000119744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2019-10-22 18:36 - 2019-10-22 18:37 - 000000242 _____ C:\Users\Lucas\Downloads\KRT_CLUB.ini
2019-10-22 18:36 - 2018-11-03 07:27 - 000000000 ____D C:\Users\Lucas\Downloads\Languages
2019-10-22 18:36 - 2018-09-14 15:30 - 014667776 _____ C:\Users\Lucas\Downloads\KRT_CLUB_2.1.2.69.exe
2019-10-22 18:30 - 2019-10-22 18:30 - 000204520 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2019-10-22 18:30 - 2019-10-22 18:30 - 000099152 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_kimul.sys
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\Users\Public\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\ProgramData\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\ProgramData\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2019-10-22 18:30 - 2019-10-22 18:30 - 000000000 ____D C:\Program Files\Common Files\AV
2019-10-22 18:29 - 2019-10-22 22:43 - 000000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 22:43 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 18:30 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 18:29 - 000251256 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\Users\Todos os Usuários\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\Users\Public\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\ProgramData\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\ProgramData\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2019-10-22 18:29 - 2019-08-02 14:19 - 000996992 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2019-10-22 18:29 - 2019-08-02 14:19 - 000251520 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2019-10-22 18:29 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2019-10-22 18:24 - 2019-10-22 18:24 - 002804448 _____ (Kaspersky) C:\Users\Lucas\Downloads\kts20.0.14.1085abcen_18793.exe
2019-10-22 18:21 - 2019-10-22 18:21 - 014520652 _____ C:\Users\Lucas\Downloads\Reset Kaspersky 2019.zip
2019-10-22 18:21 - 2019-10-22 18:21 - 000001628 _____ C:\Users\Lucas\Desktop\Install Kaspersky Anti-Virus version 20.0.14.1085.lnk
2019-10-22 18:18 - 2019-10-22 18:31 - 000000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2019-10-22 18:18 - 2019-10-22 18:31 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2019-10-22 18:08 - 2019-10-22 22:38 - 000000000 ____D C:\Users\Todos os Usuários\ApptreppabM
2019-10-22 18:08 - 2019-10-22 22:38 - 000000000 ____D C:\ProgramData\ApptreppabM
2019-10-22 18:08 - 2019-10-22 18:08 - 000015603 _____ C:\Windows\SysWOW64\findit.xml
2019-10-22 18:08 - 2019-10-22 18:08 - 000000000 ____D C:\Users\Todos os Usuários\ApptreppabMs
2019-10-22 18:08 - 2019-10-22 18:08 - 000000000 ____D C:\ProgramData\ApptreppabMs
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\Users\Todos os Usuários\tcc.exe
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\ProgramData\tcc.exe
2019-10-22 18:07 - 2019-10-22 18:07 - 000003862 _____ C:\Windows\system32\Tasks\CNB0390MANIFESThidi2c
2019-10-22 18:07 - 2019-10-22 18:07 - 000003846 _____ C:\Windows\system32\Tasks\mouclasssyswclSqm
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 __SHD C:\Users\Todos os Usuários\arpexemsieftp
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 __SHD C:\ProgramData\arpexemsieftp
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 ____D C:\Users\Lucas\AppData\Local\AdvinstAnalytics
2019-10-22 18:01 - 2019-10-22 22:22 - 000000008 _____ C:\Users\Todos os Usuários\irw.atsd
2019-10-22 18:01 - 2019-10-22 22:22 - 000000008 _____ C:\ProgramData\irw.atsd
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ C:\Users\Todos os Usuários\lock.dat
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ C:\ProgramData\lock.dat
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ C:\Users\Todos os Usuários\ts.dat
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ C:\ProgramData\ts.dat
2019-10-22 18:00 - 2019-10-22 18:00 - 000000000 ____D C:\Users\Todos os Usuários\WIFIService
2019-10-22 18:00 - 2019-10-22 18:00 - 000000000 ____D C:\ProgramData\WIFIService
2019-10-22 17:55 - 2019-10-22 18:07 - 000000000 ____D C:\Users\Todos os Usuários\CloudPrinter
2019-10-22 17:55 - 2019-10-22 18:07 - 000000000 ____D C:\ProgramData\CloudPrinter
2019-10-22 17:55 - 2019-10-22 17:55 - 001515520 _____ C:\Users\Lucas\AppData\Local\OpeRunhold.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ C:\Users\Lucas\AppData\Local\c3d5ca0b59.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ C:\Users\Lucas\AppData\Local\97eb3d0e92.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH C:\Users\Todos os Usuários\beleza.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH C:\ProgramData\beleza.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000140800 _____ C:\Users\Lucas\AppData\Local\Installer.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000126464 _____ C:\Users\Lucas\AppData\Local\lobby.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000072787 _____ C:\Users\Lucas\AppData\Local\OpeRunhold.tst
2019-10-22 17:55 - 2019-10-22 17:55 - 000054272 _____ C:\Users\Lucas\AppData\Local\ApplicationHosting.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000018432 _____ C:\Users\Lucas\AppData\Local\InstallationConfiguration.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000002880 _____ C:\Users\Lucas\AppData\Local\md.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000001834 _____ C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightening Media Player.lnk
2019-10-22 17:55 - 2019-10-22 17:55 - 000000000 ____D C:\Program Files\temp_files
2019-10-22 17:55 - 2019-10-22 17:55 - 000000000 ____D C:\Program Files (x86)\Bhim
2019-10-22 17:50 - 2019-10-22 17:50 - 001209608 ____H C:\BITE497.tmp
2019-10-22 17:30 - 2019-10-17 16:45 - 011838848 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 010164096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 001074080 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 001074080 _____ C:\Windows\system32\vulkan-1.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000848800 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000848800 _____ C:\Windows\system32\vulkaninfo.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000450464 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000353368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000824920 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000677064 _____ C:\Windows\system32\nvofapi64.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000545368 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 040510664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 035379912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 017460608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 015028424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 005380512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 004716416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 002074712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001733080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444097.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001567888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001491360 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444097.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001482656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001370712 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001144736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001064864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000813016 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000685016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000556984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-10-21 18:54 - 2019-10-21 19:05 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\BitTorrent
2019-10-21 17:14 - 2019-10-22 17:51 - 000000150 _____ C:\Windows\restoro.ini
2019-10-21 00:26 - 2019-10-21 00:26 - 000000000 ____D C:\Users\Public\Documents\Steam
2019-10-20 19:23 - 2019-10-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2019-10-20 19:23 - 2019-10-20 19:23 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\WinISO Computing
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinISO
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\WinISO Computing
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Program Files (x86)\WinISO Computing
2019-10-20 18:41 - 2016-05-12 03:07 - 000204032 _____ (WinISO.com) C:\Windows\system32\Drivers\WinisoCDBus.sys
2019-10-20 18:30 - 2019-10-20 18:30 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\PowerISO
2019-10-20 18:22 - 2019-10-20 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2019-10-20 18:08 - 2019-10-20 18:08 - 000047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrausbbus.sys
2019-10-20 18:00 - 2019-10-20 18:06 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Pro
2019-10-20 18:00 - 2019-10-20 18:06 - 000000000 ____D C:\ProgramData\DAEMON Tools Pro
2019-10-20 17:58 - 2019-10-20 18:08 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\DAEMON Tools Ultra
2019-10-20 17:58 - 2019-10-20 18:07 - 000030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrascsibus.sys
2019-10-20 17:57 - 2019-10-20 18:26 - 000000000 ____D C:\Program Files\DAEMON Tools Ultra
2019-10-20 17:57 - 2019-10-20 17:57 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Ultra
2019-10-20 17:57 - 2019-10-20 17:57 - 000000000 ____D C:\ProgramData\DAEMON Tools Ultra
2019-10-20 17:36 - 2019-10-20 18:06 - 000000000 ____D C:\Users\Lucas\AppData\Local\Disc_Soft_Ltd
2019-10-20 17:36 - 2019-10-20 17:36 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2019-10-20 17:35 - 2019-10-20 17:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\DAEMON Tools Lite
2019-10-20 17:35 - 2019-10-20 17:35 - 000059360 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2019-10-20 17:35 - 2019-10-20 17:35 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2019-10-20 17:35 - 2019-10-20 17:35 - 000000000 ____D C:\Users\Public\Documents\Catch!
2019-10-20 17:23 - 2019-10-20 17:35 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2019-10-20 17:23 - 2019-10-20 17:35 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2019-10-20 15:50 - 2019-10-20 15:50 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\SmartSteamEmu
2019-10-20 15:40 - 2019-10-20 15:40 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Unity
2019-10-20 15:31 - 2019-10-20 15:31 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Goldberg SteamEmu Saves
2019-10-20 14:34 - 2019-10-20 14:34 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Magnus Games Studio
2019-10-20 13:06 - 2019-10-20 13:06 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\8 Points
2019-10-20 12:53 - 2019-10-21 01:37 - 000000053 _____ C:\Windows\WrpYGF74DrEm.ini
2019-10-20 12:45 - 2019-10-22 18:06 - 000000000 ____D C:\Users\Lucas\Downloads\Tudo crackeado
2019-10-20 12:26 - 2019-10-20 15:14 - 000000000 ____D C:\Users\Public\Documents\CoopLand
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\Program Files\iTunes
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\Program Files\iPod
2019-10-20 12:19 - 2019-10-20 12:19 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2019-10-20 12:19 - 2019-10-20 12:19 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-10-20 12:16 - 2019-10-20 12:16 - 000000000 ____D C:\Users\Lucas\AppData\Local\TheWarhorn
2019-10-20 10:35 - 2019-10-20 10:35 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Dodge Roll
2019-10-20 01:42 - 2019-10-20 01:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torchlight 2 [GOG.com]
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\Users\Todos os Usuários\GOG.com
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\ProgramData\GOG.com
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\GOG Games
2019-10-19 23:59 - 2019-10-19 23:59 - 000000000 ____D C:\Users\Lucas\AppData\Local\TOM
2019-10-19 22:11 - 2019-10-19 22:11 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Surviving Mars
2019-10-19 20:07 - 2019-10-19 20:07 - 000169299 _____ C:\Users\Lucas\Desktop\Apresentação1.pptx
2019-10-17 21:23 - 2019-10-17 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-10-16 01:40 - 2019-10-16 01:40 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2019-10-16 01:40 - 2019-10-16 01:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2019-10-15 15:05 - 2019-10-15 15:05 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2019-10-13 01:09 - 2019-10-22 18:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-09 20:35 - 2019-10-09 20:35 - 000000000 ____D C:\Users\raven\AppData\Local\PlaceholderTileLogoFolder
2019-10-09 20:35 - 2019-10-09 20:35 - 000000000 ____D C:\Users\raven\AppData\Local\Comms
2019-10-09 19:21 - 2019-10-09 19:21 - 000000000 ____D C:\Users\raven\AppData\Local\DBG
2019-10-09 18:40 - 2019-10-09 18:40 - 000000000 ____D C:\Users\raven\AppData\Local\OneDrive
2019-10-09 17:30 - 2019-10-09 20:16 - 000000000 ___RD C:\Users\raven\OneDrive
2019-10-09 17:30 - 2019-10-09 18:40 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-28817538-380499637-3411821432-1003
2019-10-09 17:03 - 2019-10-09 17:13 - 000000000 ____D C:\Users\raven\AppData\Local\Roblox
2019-10-09 17:03 - 2019-10-09 17:09 - 000000252 _____ C:\Users\raven\AppData\LocalLow\rbxcsettings.rbx
2019-10-09 17:03 - 2019-10-09 17:04 - 000000000 ____D C:\Users\raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2019-10-09 17:03 - 2019-10-09 17:03 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(3).exe
2019-10-09 17:02 - 2019-10-09 17:02 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(2).exe
2019-10-09 17:01 - 2019-10-09 17:01 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher.exe
2019-10-09 17:01 - 2019-10-09 17:01 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(1).exe
2019-10-09 16:52 - 2019-10-09 20:54 - 000000000 ____D C:\Users\raven\AppData\LocalLow\Mozilla
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Roaming\Mozilla
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Roaming\Canon
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Local\Mozilla
2019-10-09 16:51 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Local\Dropbox
2019-10-09 16:51 - 2019-10-09 16:51 - 000000000 ____D C:\Users\raven\AppData\Roaming\Apple Computer
2019-10-09 16:51 - 2019-10-09 16:51 - 000000000 ____D C:\Users\raven\AppData\Local\Razer
2019-10-09 16:49 - 2019-10-09 16:49 - 000000000 ___HD C:\Users\raven\MicrosoftEdgeBackups
2019-10-09 16:49 - 2019-10-09 16:49 - 000000000 ____D C:\Users\raven\AppData\Local\MicrosoftEdge
2019-10-09 16:48 - 2019-10-09 20:49 - 000000000 ____D C:\Users\raven\AppData\Local\Packages
2019-10-09 16:48 - 2019-10-09 20:15 - 000000000 ____D C:\Users\raven\AppData\Local\ConnectedDevicesPlatform
2019-10-09 16:48 - 2019-10-09 18:40 - 000002365 _____ C:\Users\raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-09 16:48 - 2019-10-09 17:35 - 000000000 ____D C:\Users\raven
2019-10-09 16:48 - 2019-10-09 16:50 - 000000000 ____D C:\Users\raven\AppData\Local\NVIDIA Corporation
2019-10-09 16:48 - 2019-10-09 16:48 - 000000020 ___SH C:\Users\raven\ntuser.ini
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ___RD C:\Users\raven\3D Objects
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Roaming\Adobe
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\VirtualStore
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\Publishers
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\NVIDIA
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\Google
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\ansel
2019-10-06 01:59 - 2019-10-19 20:51 - 000000000 ____D C:\Users\Lucas\AppData\Local\minitGMS2
2019-10-06 00:18 - 2019-10-06 00:23 - 1249278524 _____ C:\Users\Lucas\Downloads\BrasMU_Season_14_Completo.rar
2019-10-02 23:30 - 2019-10-16 01:39 - 000000000 ____D C:\Users\Lucas\AppData\Local\Riot Games
2019-10-02 14:51 - 2019-10-02 14:51 - 000000000 ____D C:\Windows\LastGood
2019-10-02 14:50 - 2019-09-27 18:13 - 001726720 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443648.dll
2019-10-02 14:50 - 2019-09-27 18:13 - 001491144 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443648.dll
2019-09-25 16:29 - 2019-09-25 16:29 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-09-25 16:27 - 2019-09-06 15:26 - 001726400 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443630.dll
2019-09-25 16:27 - 2019-09-06 15:26 - 001491336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443630.dll
2019-09-25 16:10 - 2019-10-22 22:36 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Mozilla
2019-09-25 16:10 - 2019-10-13 19:42 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\Users\Todos os Usuários\Mozilla
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\Users\Lucas\AppData\Local\Mozilla
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\ProgramData\Mozilla
2019-09-22 23:31 - 2019-09-22 23:33 - 000000000 ____D C:\Users\Lucas\Documents\GTA San Andreas User Files
2019-09-22 15:42 - 2019-10-16 18:31 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2019-09-22 15:42 - 2019-10-14 13:58 - 000000000 ____D C:\Users\Lucas\AppData\Local\Roblox
2019-09-22 15:42 - 2019-10-14 13:40 - 000000254 _____ C:\Users\Lucas\AppData\LocalLow\rbxcsettings.rbx
2019-09-22 15:41 - 2019-09-25 17:59 - 001320024 _____ (Roblox Corporation) C:\Users\Lucas\Downloads\RobloxPlayerLauncher.exe
2019-09-22 12:00 - 2019-09-22 12:00 - 000000000 ___SH C:\Users\Public\Shared Files
2019-09-22 11:49 - 2019-09-22 11:49 - 000000000 ____D C:\Users\Lucas\AppData\Local\FortniteGame
2019-09-22 11:42 - 2019-09-22 11:42 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-09-22 11:41 - 2019-09-22 23:31 - 000000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Todos os Usuários\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\ProgramData\Rockstar Games
2019-09-22 11:39 - 2019-09-22 11:47 - 000000000 ____D C:\Program Files\Rockstar Games
==================== Um mês (modificados) ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2019-10-22 22:42 - 2019-06-01 13:06 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2019-10-22 22:42 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\LiveKernelReports
2019-10-22 22:36 - 2019-06-01 13:06 - 000000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2019-10-22 22:25 - 2019-07-10 17:07 - 000005244 _____ C:\Windows\system32\Tasks\Microsoft Office 15 Sync Maintenance for PCGAYMER-Lucas PCGAYMER
2019-10-22 22:25 - 2019-05-31 13:19 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2019-10-22 22:25 - 2019-05-31 13:19 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-22 22:23 - 2019-06-09 20:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2019-10-22 22:21 - 2019-05-31 12:41 - 000000000 ____D C:\Users\Lucas
2019-10-22 22:21 - 2019-05-31 12:32 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-22 22:21 - 2019-05-31 12:32 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-10-22 22:21 - 2018-09-15 04:33 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2019-10-22 22:21 - 2018-09-15 04:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-22 18:30 - 2018-09-15 04:31 - 000000000 ____D C:\Windows\INF
2019-10-22 18:29 - 2018-09-15 04:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-10-22 18:29 - 2018-09-15 03:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-10-22 18:25 - 2019-06-01 10:07 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Discord
2019-10-22 18:08 - 2019-05-31 13:12 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 17:56 - 2018-09-15 03:09 - 000786432 _____ C:\Windows\system32\config\BBI
2019-10-22 17:47 - 2019-05-31 15:18 - 000000000 ____D C:\Users\Lucas\AppData\Local\Battle.net
2019-10-22 17:33 - 2019-06-01 08:52 - 000000000 ____D C:\temp
2019-10-22 17:32 - 2019-05-31 13:20 - 000000000 ____D C:\Users\Lucas\AppData\Local\NVIDIA
2019-10-22 17:18 - 2019-06-01 10:43 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-22 17:16 - 2019-07-05 14:40 - 000004178 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{063390F6-D365-4728-9251-3927531DB744}
2019-10-22 17:16 - 2019-06-04 22:51 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2019-10-22 17:16 - 2019-06-02 13:54 - 000000000 ____D C:\Users\Lucas\Downloads\Torrent
2019-10-21 19:05 - 2019-06-01 10:43 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\BitTorrent
2019-10-21 18:56 - 2019-07-10 16:52 - 000000000 ____D C:\Users\Lucas\AppData\Local\LogMeIn Hamachi
2019-10-21 18:40 - 2019-07-15 18:18 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2019-10-21 18:40 - 2019-06-01 10:44 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\.minecraft
2019-10-21 15:57 - 2019-06-01 09:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\D3DSCache
2019-10-21 00:06 - 2019-06-01 11:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\Users\Todos os Usuários\Origin
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\ProgramData\Origin
2019-10-20 14:24 - 2019-06-15 15:51 - 000129080 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-10-20 14:24 - 2019-06-15 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-20 14:24 - 2019-06-15 15:50 - 000000000 ____D C:\Program Files\Java
2019-10-20 12:19 - 2019-07-05 15:24 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-10-20 11:44 - 2019-05-31 12:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\Packages
2019-10-20 11:30 - 2019-05-31 15:16 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-10-20 10:32 - 2019-06-17 00:22 - 000000000 ____D C:\Program Files\Epic Games
2019-10-20 02:00 - 2019-05-31 13:24 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-20 01:44 - 2019-06-30 01:02 - 000000000 ____D C:\Users\Lucas\Documents\My Games
2019-10-19 23:59 - 2019-06-03 03:33 - 000000000 ____D C:\Users\Lucas\AppData\Local\UnrealEngine
2019-10-19 20:58 - 2019-06-02 19:53 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2019-10-19 20:46 - 2019-06-01 10:44 - 000000000 ____D C:\Users\Lucas\AppData\Local\Glyph
2019-10-19 20:45 - 2019-06-01 10:44 - 000000000 ____D C:\Program Files (x86)\Glyph
2019-10-18 09:49 - 2019-09-09 16:59 - 000000000 ____D C:\Users\Lucas\Desktop\Faculdade - Iasmim
2019-10-18 09:49 - 2019-08-07 14:43 - 000000000 ____D C:\Users\Lucas\Desktop\faculdade - lucas
2019-10-18 09:49 - 2019-07-10 15:29 - 000000000 ____D C:\Users\Lucas\Desktop\Documentos - Iasmim
2019-10-17 21:24 - 2019-06-18 00:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-10-17 19:39 - 2019-07-23 16:48 - 004205272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-10-17 19:39 - 2019-05-31 13:18 - 004936088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-10-17 16:43 - 2019-05-31 13:18 - 000659544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-10-16 23:51 - 2019-05-31 13:24 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2019-10-16 23:49 - 2019-05-31 13:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\Adobe
2019-10-16 22:47 - 2019-05-31 15:54 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-10-16 21:28 - 2019-05-31 13:18 - 000056045 _____ C:\Windows\system32\nvinfo.pb
2019-10-16 19:45 - 2019-05-31 13:19 - 005524464 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-10-16 19:45 - 2019-05-31 13:19 - 002636656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 001767464 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000655216 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000450872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000124784 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-10-16 16:44 - 2019-06-01 10:50 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-15 16:55 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\NDF
2019-10-14 10:26 - 2019-05-31 13:19 - 008750052 _____ C:\Windows\system32\nvcoproc.bin
2019-10-14 10:24 - 2019-06-01 10:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-13 00:25 - 2019-06-01 09:37 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2019-10-10 14:57 - 2019-05-31 12:43 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-28817538-380499637-3411821432-1001
2019-10-10 14:57 - 2019-05-31 12:43 - 000000000 ___RD C:\Users\Lucas\OneDrive
2019-10-10 14:57 - 2019-05-31 12:41 - 000002365 _____ C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-09 20:51 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\AppReadiness
2019-10-09 18:02 - 2019-06-01 20:00 - 000000000 ____D C:\Users\Lucas\AppData\Local\PlaceholderTileLogoFolder
2019-10-09 16:48 - 2019-05-31 12:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-09 16:48 - 2018-09-15 04:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-02 23:31 - 2019-06-17 23:53 - 000000000 ____D C:\Users\Todos os Usuários\Riot Games
2019-10-02 23:31 - 2019-06-17 23:53 - 000000000 ____D C:\ProgramData\Riot Games
2019-10-02 23:30 - 2019-06-17 23:52 - 000000000 ____D C:\Riot Games
2019-10-02 15:18 - 2019-05-31 13:12 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 14:51 - 2019-05-31 13:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-09-26 14:47 - 2019-05-31 13:19 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-09-26 01:58 - 2019-05-31 13:20 - 000000000 ____D C:\Users\Lucas\AppData\Local\NVIDIA Corporation
2019-09-25 16:10 - 2019-06-01 10:26 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Mozilla
2019-09-22 23:32 - 2018-09-15 04:41 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2019-09-22 23:32 - 2018-09-15 04:41 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2019-09-22 23:32 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000472576 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2019-09-22 23:32 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2019-09-22 23:32 - 2018-09-15 04:23 - 000000000 ____D C:\Windows\CbsTemp
2019-09-22 12:00 - 2018-09-15 04:33 - 000000000 __SHD C:\Users\Public\Libraries
2019-09-22 11:48 - 2019-06-03 21:55 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\EasyAntiCheat
2019-09-22 11:41 - 2019-05-31 13:19 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2019-09-22 11:41 - 2019-05-31 13:19 - 000000000 ____D C:\ProgramData\Package Cache
==================== Arquivos na raiz de alguns diretórios ================
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH () C:\ProgramData\beleza.exe
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ () C:\ProgramData\lock.dat
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\ProgramData\tcc.exe
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ () C:\ProgramData\ts.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH () C:\Users\Todos os Usuários\beleza.exe
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ () C:\Users\Todos os Usuários\lock.dat
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\Users\Todos os Usuários\tcc.exe
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ () C:\Users\Todos os Usuários\ts.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ () C:\Users\Lucas\AppData\Local\97eb3d0e92.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000054272 _____ () C:\Users\Lucas\AppData\Local\ApplicationHosting.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ () C:\Users\Lucas\AppData\Local\c3d5ca0b59.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000018432 _____ () C:\Users\Lucas\AppData\Local\InstallationConfiguration.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000140800 _____ () C:\Users\Lucas\AppData\Local\Installer.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000126464 _____ () C:\Users\Lucas\AppData\Local\lobby.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000002880 _____ () C:\Users\Lucas\AppData\Local\md.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 001515520 _____ () C:\Users\Lucas\AppData\Local\OpeRunhold.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000072787 _____ () C:\Users\Lucas\AppData\Local\OpeRunhold.tst
==================== SigCheck ===============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ============================
Executado por Lucas (administrador) em PCGAYMER (22-10-2019 22:43:09)
Executando a partir de C:\Users\Lucas\Downloads
Perfis Carregados: Lucas (Perfis Disponíveis: Lucas & raven)
Platform: Windows 10 Pro Versão 1809 17763.678 (X64) Idioma: Português (Brasil)
Navegador padrão: FF
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
() [Arquivo não assinado] C:\ProgramData\beleza.exe
() [Arquivo não assinado] C:\ProgramData\CloudPrinter\CloudPrinter.exe
(Acesso Negado) [Arquivo não assinado] C:\ProgramData\ApptreppabM\ApptreppabM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Bartels Media GmbH ) [Arquivo não assinado] C:\ProgramData\arpexemsieftp\CNB0390MANIFESThidi2c.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) [Arquivo não assinado] C:\ProgramData\arpexemsieftp\mouclasssyswclSqm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11906.1001.24.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\Creative.UWPRPCService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [653872 2018-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-03] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-07-17] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [joia] => C:\ProgramData\beleza.exe [357376 2019-10-22] () [Arquivo não assinado]
HKLM-x32\...\RunOnce: [joia] => C:\ProgramData\beleza.exe [357376 2019-10-22] () [Arquivo não assinado]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Discord] => C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [1768649] => C:\Users\Lucas\AppData\Local\Temp\is-OK340.tmp\BayaZerdi.exe [882087 2019-10-22] (Acesso Negado) [Arquivo não assinado] <==== ATENÇÃO
HKU\S-1-5-21-28817538-380499637-3411821432-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)
AppInit_DLLs: C:\ProgramData\ApptreppabM\KayTamhold.dll => C:\ProgramData\ApptreppabM\KayTamhold.dll [342528 2019-10-22] () [Arquivo não assinado]
AppInit_DLLs-x32: C:\ProgramData\ApptreppabM\Ontotom.dll => C:\ProgramData\ApptreppabM\Ontotom.dll [460800 2019-10-22] (Acesso Negado) [Arquivo não assinado]
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {11267161-5810-4262-877B-F12CE50BDD6A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {12E7C785-5114-4202-9921-35A4E1E55884} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {157DB7AD-187D-4335-BFE6-F01F3DF34943} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D0A00E4-D9BC-4896-BC07-CBCAC98DE7A6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22ED3716-90AF-4A08-BB5F-EEE5B0245F18} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {23458331-3592-42E6-8B86-3D7EFB49CCBB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25DED66C-AC89-4976-A02E-7027A7149A18} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D0F0FBD-D382-47DE-A1BE-DCC3576992CE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4A1A3504-B574-440B-AC86-9939C478FAC8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D444487-C4DB-4C60-A114-D37E40970B88} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {680BCD3D-10D7-4B9E-AAB2-88A1D58FFEBA} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATENÇÃO
Task: {801E62C1-7FCD-42AD-A401-581235DB3549} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E7D0E22-DE11-4759-98EF-40EA6898FA9B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {913071BB-BF98-427E-AD9B-D22CD6C5D6F6} - System32\Tasks\CNB0390MANIFESThidi2c => C:\\ProgramData\\arpexemsieftp\CNB0390MANIFESThidi2c.exe [1048064 2019-10-22] (Bartels Media GmbH ) [Arquivo não assinado]
Task: {92CBAC49-07CE-426C-B343-102365323367} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95672100-967D-4680-A074-BD117CF658F8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96D3928A-04FA-4650-8C5F-00295B96BCD1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A67BAFA0-13FD-4BAA-A2A9-31CDAB3FEDBD} - System32\Tasks\mouclasssyswclSqm => C:\\ProgramData\\arpexemsieftp\mouclasssyswclSqm.exe [331776 2019-10-22] (Microsoft Corporation) [Arquivo não assinado]
Task: {B20376D0-A940-4826-AB82-7A00644E87E5} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B42B78D7-8081-41FE-A1A0-39D15EE49B9F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8848925-090C-461D-9C98-C4EE385A1A9E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE81C6EA-43CD-4872-AECE-FAD57A3B9A41} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFBFEA46-DB41-4FB7-9B58-1BA19C315559} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PCGAYMER-Lucas PCGAYMER => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D14A3620-6029-41C3-8114-5BED23C3919F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {D71BB7C1-368C-4160-AC7E-DF462165F54D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{0d6f2e7a-2c49-433b-8d59-b7a95e58066b}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{18cd003e-a2ae-44b4-937c-8b100af5b0a0}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{4b2ff1d5-83b9-11e9-a22b-806e6f6e6963}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{55fd2c42-c3d5-4152-9d5c-5747b041d5cc}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{9fd35001-8121-4d37-b7b7-4fc73dbc9aa5}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{d21fbd06-7130-4f0c-812a-6f30679ceedb}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{de29570c-ec56-4989-8ba5-647de5aa261d}: [NameServer] 185.107.96.127,192.223.30.14
Tcpip\..\Interfaces\{de29570c-ec56-4989-8ba5-647de5aa261d}: [DhcpNameServer] 179.233.128.17 179.233.128.22
Tcpip\..\Interfaces\{e605b394-1de2-443f-a9d1-76e1a35d49cb}: [NameServer] 185.107.96.127,192.223.30.14
Internet Explorer:
==================
HKU\S-1-5-21-28817538-380499637-3411821432-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
HKU\S-1-5-21-28817538-380499637-3411821432-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27--sTSYpIUkrY7tcYzRTF_7oyC-eETLSzfq4XYnNoKzq0ePFRCrK2HK-lyWiGXOunSAoi2nhzEnDQwQ-Q9ba87JB4UQavU
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
SearchScopes: HKU\S-1-5-21-28817538-380499637-3411821432-1001 -> DefaultScope {ielnksrch} URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
SearchScopes: HKU\S-1-5-21-28817538-380499637-3411821432-1001 -> {ielnksrch} URL = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBHN-2kkRkOz2F0hKXzqqTFRtcL_pqdTeUdkT8LSQ6xz0h5_yiLAmEZi1K4x4s8dOWeFVp4EDuuAg16Zymj6B8UcY12I27ya-yIY16KPis1SS1db4Nn6DKODD7s8MPYqHHNzFuRjtG3JJ5sGVAodAVhxWiw8lWkNX-6fWEG2OKem29HY2auemfwHPku&q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: zj23f7yq.default
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\zj23f7yq.default [2019-09-25]
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release [2019-10-22]
FF Extension: (AdBlocker Ultimate) - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2019-09-25]
FF Extension: (Google Translator for Firefox) - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7p5nhgek.default-release\Extensions\translator@zoli.bod.xpi [2019-10-20]
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-10-22]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Arquivo não assinado]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-02] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-10-22] <==== ATENÇÃO (Aponta para arquivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-10-22] <==== ATENÇÃO
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/search?q=tempo&oq=tempo&aqs=chrome.0.69i59j69i60l3j69i57j69i65.761j0j7&sourceid=chrome&ie=UTF-8
CHR NewTab: Default -> Not-active:"chrome-extension://jdlnhgjcehghpjmemkjbkhgpeblojiaj/ntp.html"
CHR Profile: C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default [2019-10-22]
CHR Extension: (Apresentações) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-31]
CHR Extension: (Documentos) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-31]
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-31]
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-31]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-26]
CHR Extension: (Dropbox para Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-05-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-30]
CHR Extension: (Planilhas) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-31]
CHR Extension: (Documentos Google off-line) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-31]
CHR Extension: (File Send Suite) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdlnhgjcehghpjmemkjbkhgpeblojiaj [2019-09-23]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-14]
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-31]
CHR Extension: (Chrome Media Router) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
R2 ApptreppabM; C:\ProgramData\\ApptreppabM\\ApptreppabM.exe [1515520 2019-10-22] () [Arquivo não assinado]
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-09-11] (BattlEye Innovations e.K. -> )
R2 CloudPrinter; C:\ProgramData\\CloudPrinter\\CloudPrinter.exe [1515520 2019-10-22] () [Arquivo não assinado]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] (Canon Inc. -> )
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [653872 2018-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 UWPService; C:\Windows\SysWOW64\Creative.UWPRPCService.exe [342496 2018-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WIFIService; C:\ProgramData\WIFIService\WIFIService.exe [1662976 2019-10-22] (Acesso Negado) [Arquivo não assinado] <==== ATENÇÃO
S3 wuauserv; C:\Windows\system32\svchost.exe [51696 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2019-10-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2019-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2019-10-20] (Disc Soft Ltd -> Disc Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [76624 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [129152 2019-08-01] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251520 2019-08-02] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [514688 2019-06-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1204856 2019-09-12] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [197760 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [996992 2019-08-02] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [99152 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [210280 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [34896 2018-12-10] (WDKTestCert ctl_avpbuild,131450919658074287 -> Creative Technology Ltd.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_67c16e22f0dab361\nvlddmkm.sys [22734744 2019-10-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [8206848 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2016-05-12] (ZJMedia Digital Technology Ltd. -> WinISO.com)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-10-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2019-10-22 22:43 - 2019-10-22 22:44 - 000037599 _____ C:\Users\Lucas\Downloads\FRST.txt
2019-10-22 22:42 - 2019-10-22 22:43 - 000000000 ____D C:\FRST
2019-10-22 22:41 - 2019-10-22 22:41 - 001617408 _____ (Farbar) C:\Users\Lucas\Downloads\FRST64.exe
2019-10-22 18:39 - 2019-10-22 18:39 - 000306248 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2019-10-22 18:39 - 2019-10-22 18:39 - 000119744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2019-10-22 18:36 - 2019-10-22 18:37 - 000000242 _____ C:\Users\Lucas\Downloads\KRT_CLUB.ini
2019-10-22 18:36 - 2018-11-03 07:27 - 000000000 ____D C:\Users\Lucas\Downloads\Languages
2019-10-22 18:36 - 2018-09-14 15:30 - 014667776 _____ C:\Users\Lucas\Downloads\KRT_CLUB_2.1.2.69.exe
2019-10-22 18:30 - 2019-10-22 18:30 - 000204520 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2019-10-22 18:30 - 2019-10-22 18:30 - 000099152 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_kimul.sys
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\Users\Public\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000002302 _____ C:\ProgramData\Desktop\Kaspersky Passwords.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000001253 _____ C:\ProgramData\Desktop\Kaspersky Secure Connection.lnk
2019-10-22 18:30 - 2019-10-22 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2019-10-22 18:30 - 2019-10-22 18:30 - 000000000 ____D C:\Program Files\Common Files\AV
2019-10-22 18:29 - 2019-10-22 22:43 - 000000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 22:43 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 18:30 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2019-10-22 18:29 - 2019-10-22 18:29 - 000251256 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\Users\Todos os Usuários\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\Users\Public\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002198 _____ C:\ProgramData\Desktop\Safe Money.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\Users\Todos os Usuários\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000002170 _____ C:\ProgramData\Desktop\Kaspersky Total Security.lnk
2019-10-22 18:29 - 2019-10-22 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2019-10-22 18:29 - 2019-08-02 14:19 - 000996992 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2019-10-22 18:29 - 2019-08-02 14:19 - 000251520 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2019-10-22 18:29 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2019-10-22 18:24 - 2019-10-22 18:24 - 002804448 _____ (Kaspersky) C:\Users\Lucas\Downloads\kts20.0.14.1085abcen_18793.exe
2019-10-22 18:21 - 2019-10-22 18:21 - 014520652 _____ C:\Users\Lucas\Downloads\Reset Kaspersky 2019.zip
2019-10-22 18:21 - 2019-10-22 18:21 - 000001628 _____ C:\Users\Lucas\Desktop\Install Kaspersky Anti-Virus version 20.0.14.1085.lnk
2019-10-22 18:18 - 2019-10-22 18:31 - 000000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2019-10-22 18:18 - 2019-10-22 18:31 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2019-10-22 18:08 - 2019-10-22 22:38 - 000000000 ____D C:\Users\Todos os Usuários\ApptreppabM
2019-10-22 18:08 - 2019-10-22 22:38 - 000000000 ____D C:\ProgramData\ApptreppabM
2019-10-22 18:08 - 2019-10-22 18:08 - 000015603 _____ C:\Windows\SysWOW64\findit.xml
2019-10-22 18:08 - 2019-10-22 18:08 - 000000000 ____D C:\Users\Todos os Usuários\ApptreppabMs
2019-10-22 18:08 - 2019-10-22 18:08 - 000000000 ____D C:\ProgramData\ApptreppabMs
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\Users\Todos os Usuários\tcc.exe
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\ProgramData\tcc.exe
2019-10-22 18:07 - 2019-10-22 18:07 - 000003862 _____ C:\Windows\system32\Tasks\CNB0390MANIFESThidi2c
2019-10-22 18:07 - 2019-10-22 18:07 - 000003846 _____ C:\Windows\system32\Tasks\mouclasssyswclSqm
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 __SHD C:\Users\Todos os Usuários\arpexemsieftp
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 __SHD C:\ProgramData\arpexemsieftp
2019-10-22 18:07 - 2019-10-22 18:07 - 000000000 ____D C:\Users\Lucas\AppData\Local\AdvinstAnalytics
2019-10-22 18:01 - 2019-10-22 22:22 - 000000008 _____ C:\Users\Todos os Usuários\irw.atsd
2019-10-22 18:01 - 2019-10-22 22:22 - 000000008 _____ C:\ProgramData\irw.atsd
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ C:\Users\Todos os Usuários\lock.dat
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ C:\ProgramData\lock.dat
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ C:\Users\Todos os Usuários\ts.dat
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ C:\ProgramData\ts.dat
2019-10-22 18:00 - 2019-10-22 18:00 - 000000000 ____D C:\Users\Todos os Usuários\WIFIService
2019-10-22 18:00 - 2019-10-22 18:00 - 000000000 ____D C:\ProgramData\WIFIService
2019-10-22 17:55 - 2019-10-22 18:07 - 000000000 ____D C:\Users\Todos os Usuários\CloudPrinter
2019-10-22 17:55 - 2019-10-22 18:07 - 000000000 ____D C:\ProgramData\CloudPrinter
2019-10-22 17:55 - 2019-10-22 17:55 - 001515520 _____ C:\Users\Lucas\AppData\Local\OpeRunhold.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ C:\Users\Lucas\AppData\Local\c3d5ca0b59.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ C:\Users\Lucas\AppData\Local\97eb3d0e92.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH C:\Users\Todos os Usuários\beleza.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH C:\ProgramData\beleza.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000140800 _____ C:\Users\Lucas\AppData\Local\Installer.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000126464 _____ C:\Users\Lucas\AppData\Local\lobby.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000072787 _____ C:\Users\Lucas\AppData\Local\OpeRunhold.tst
2019-10-22 17:55 - 2019-10-22 17:55 - 000054272 _____ C:\Users\Lucas\AppData\Local\ApplicationHosting.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000018432 _____ C:\Users\Lucas\AppData\Local\InstallationConfiguration.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000002880 _____ C:\Users\Lucas\AppData\Local\md.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000001834 _____ C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightening Media Player.lnk
2019-10-22 17:55 - 2019-10-22 17:55 - 000000000 ____D C:\Program Files\temp_files
2019-10-22 17:55 - 2019-10-22 17:55 - 000000000 ____D C:\Program Files (x86)\Bhim
2019-10-22 17:50 - 2019-10-22 17:50 - 001209608 ____H C:\BITE497.tmp
2019-10-22 17:30 - 2019-10-17 16:45 - 011838848 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 010164096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 001074080 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 001074080 _____ C:\Windows\system32\vulkan-1.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000848800 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000848800 _____ C:\Windows\system32\vulkaninfo.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-10-22 17:30 - 2019-10-17 16:45 - 000450464 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-10-22 17:30 - 2019-10-17 16:45 - 000353368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000824920 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000677064 _____ C:\Windows\system32\nvofapi64.dll
2019-10-22 17:30 - 2019-10-17 16:44 - 000545368 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 040510664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 035379912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 017460608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 015028424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 005380512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 004716416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 002074712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001733080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444097.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001567888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001491360 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444097.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001482656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001370712 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001144736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 001064864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000813016 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000685016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-10-22 17:30 - 2019-10-17 16:43 - 000556984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-10-21 18:54 - 2019-10-21 19:05 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\BitTorrent
2019-10-21 17:14 - 2019-10-22 17:51 - 000000150 _____ C:\Windows\restoro.ini
2019-10-21 00:26 - 2019-10-21 00:26 - 000000000 ____D C:\Users\Public\Documents\Steam
2019-10-20 19:23 - 2019-10-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2019-10-20 19:23 - 2019-10-20 19:23 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\WinISO Computing
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinISO
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\WinISO Computing
2019-10-20 18:41 - 2019-10-20 18:41 - 000000000 ____D C:\Program Files (x86)\WinISO Computing
2019-10-20 18:41 - 2016-05-12 03:07 - 000204032 _____ (WinISO.com) C:\Windows\system32\Drivers\WinisoCDBus.sys
2019-10-20 18:30 - 2019-10-20 18:30 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\PowerISO
2019-10-20 18:22 - 2019-10-20 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2019-10-20 18:08 - 2019-10-20 18:08 - 000047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrausbbus.sys
2019-10-20 18:00 - 2019-10-20 18:06 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Pro
2019-10-20 18:00 - 2019-10-20 18:06 - 000000000 ____D C:\ProgramData\DAEMON Tools Pro
2019-10-20 17:58 - 2019-10-20 18:08 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\DAEMON Tools Ultra
2019-10-20 17:58 - 2019-10-20 18:07 - 000030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrascsibus.sys
2019-10-20 17:57 - 2019-10-20 18:26 - 000000000 ____D C:\Program Files\DAEMON Tools Ultra
2019-10-20 17:57 - 2019-10-20 17:57 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Ultra
2019-10-20 17:57 - 2019-10-20 17:57 - 000000000 ____D C:\ProgramData\DAEMON Tools Ultra
2019-10-20 17:36 - 2019-10-20 18:06 - 000000000 ____D C:\Users\Lucas\AppData\Local\Disc_Soft_Ltd
2019-10-20 17:36 - 2019-10-20 17:36 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2019-10-20 17:35 - 2019-10-20 17:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\DAEMON Tools Lite
2019-10-20 17:35 - 2019-10-20 17:35 - 000059360 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2019-10-20 17:35 - 2019-10-20 17:35 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2019-10-20 17:35 - 2019-10-20 17:35 - 000000000 ____D C:\Users\Public\Documents\Catch!
2019-10-20 17:23 - 2019-10-20 17:35 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2019-10-20 17:23 - 2019-10-20 17:35 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2019-10-20 15:50 - 2019-10-20 15:50 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\SmartSteamEmu
2019-10-20 15:40 - 2019-10-20 15:40 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Unity
2019-10-20 15:31 - 2019-10-20 15:31 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Goldberg SteamEmu Saves
2019-10-20 14:34 - 2019-10-20 14:34 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Magnus Games Studio
2019-10-20 13:06 - 2019-10-20 13:06 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\8 Points
2019-10-20 12:53 - 2019-10-21 01:37 - 000000053 _____ C:\Windows\WrpYGF74DrEm.ini
2019-10-20 12:45 - 2019-10-22 18:06 - 000000000 ____D C:\Users\Lucas\Downloads\Tudo crackeado
2019-10-20 12:26 - 2019-10-20 15:14 - 000000000 ____D C:\Users\Public\Documents\CoopLand
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\Program Files\iTunes
2019-10-20 12:23 - 2019-10-20 12:23 - 000000000 ____D C:\Program Files\iPod
2019-10-20 12:19 - 2019-10-20 12:19 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2019-10-20 12:19 - 2019-10-20 12:19 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-10-20 12:16 - 2019-10-20 12:16 - 000000000 ____D C:\Users\Lucas\AppData\Local\TheWarhorn
2019-10-20 10:35 - 2019-10-20 10:35 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Dodge Roll
2019-10-20 01:42 - 2019-10-20 01:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torchlight 2 [GOG.com]
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\Users\Todos os Usuários\GOG.com
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\ProgramData\GOG.com
2019-10-20 01:41 - 2019-10-20 01:41 - 000000000 ____D C:\GOG Games
2019-10-19 23:59 - 2019-10-19 23:59 - 000000000 ____D C:\Users\Lucas\AppData\Local\TOM
2019-10-19 22:11 - 2019-10-19 22:11 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Surviving Mars
2019-10-19 20:07 - 2019-10-19 20:07 - 000169299 _____ C:\Users\Lucas\Desktop\Apresentação1.pptx
2019-10-17 21:23 - 2019-10-17 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-10-16 01:40 - 2019-10-16 01:40 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2019-10-16 01:40 - 2019-10-16 01:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2019-10-15 15:05 - 2019-10-15 15:05 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-10-15 15:05 - 2019-10-15 15:05 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2019-10-13 01:09 - 2019-10-22 18:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-09 20:35 - 2019-10-09 20:35 - 000000000 ____D C:\Users\raven\AppData\Local\PlaceholderTileLogoFolder
2019-10-09 20:35 - 2019-10-09 20:35 - 000000000 ____D C:\Users\raven\AppData\Local\Comms
2019-10-09 19:21 - 2019-10-09 19:21 - 000000000 ____D C:\Users\raven\AppData\Local\DBG
2019-10-09 18:40 - 2019-10-09 18:40 - 000000000 ____D C:\Users\raven\AppData\Local\OneDrive
2019-10-09 17:30 - 2019-10-09 20:16 - 000000000 ___RD C:\Users\raven\OneDrive
2019-10-09 17:30 - 2019-10-09 18:40 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-28817538-380499637-3411821432-1003
2019-10-09 17:03 - 2019-10-09 17:13 - 000000000 ____D C:\Users\raven\AppData\Local\Roblox
2019-10-09 17:03 - 2019-10-09 17:09 - 000000252 _____ C:\Users\raven\AppData\LocalLow\rbxcsettings.rbx
2019-10-09 17:03 - 2019-10-09 17:04 - 000000000 ____D C:\Users\raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2019-10-09 17:03 - 2019-10-09 17:03 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(3).exe
2019-10-09 17:02 - 2019-10-09 17:02 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(2).exe
2019-10-09 17:01 - 2019-10-09 17:01 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher.exe
2019-10-09 17:01 - 2019-10-09 17:01 - 001321600 _____ (Roblox Corporation) C:\Users\raven\Downloads\RobloxPlayerLauncher(1).exe
2019-10-09 16:52 - 2019-10-09 20:54 - 000000000 ____D C:\Users\raven\AppData\LocalLow\Mozilla
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Roaming\Mozilla
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Roaming\Canon
2019-10-09 16:52 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Local\Mozilla
2019-10-09 16:51 - 2019-10-09 16:52 - 000000000 ____D C:\Users\raven\AppData\Local\Dropbox
2019-10-09 16:51 - 2019-10-09 16:51 - 000000000 ____D C:\Users\raven\AppData\Roaming\Apple Computer
2019-10-09 16:51 - 2019-10-09 16:51 - 000000000 ____D C:\Users\raven\AppData\Local\Razer
2019-10-09 16:49 - 2019-10-09 16:49 - 000000000 ___HD C:\Users\raven\MicrosoftEdgeBackups
2019-10-09 16:49 - 2019-10-09 16:49 - 000000000 ____D C:\Users\raven\AppData\Local\MicrosoftEdge
2019-10-09 16:48 - 2019-10-09 20:49 - 000000000 ____D C:\Users\raven\AppData\Local\Packages
2019-10-09 16:48 - 2019-10-09 20:15 - 000000000 ____D C:\Users\raven\AppData\Local\ConnectedDevicesPlatform
2019-10-09 16:48 - 2019-10-09 18:40 - 000002365 _____ C:\Users\raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-09 16:48 - 2019-10-09 17:35 - 000000000 ____D C:\Users\raven
2019-10-09 16:48 - 2019-10-09 16:50 - 000000000 ____D C:\Users\raven\AppData\Local\NVIDIA Corporation
2019-10-09 16:48 - 2019-10-09 16:48 - 000000020 ___SH C:\Users\raven\ntuser.ini
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ___RD C:\Users\raven\3D Objects
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Roaming\Adobe
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\VirtualStore
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\Publishers
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\NVIDIA
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\AppData\Local\Google
2019-10-09 16:48 - 2019-10-09 16:48 - 000000000 ____D C:\Users\raven\ansel
2019-10-06 01:59 - 2019-10-19 20:51 - 000000000 ____D C:\Users\Lucas\AppData\Local\minitGMS2
2019-10-06 00:18 - 2019-10-06 00:23 - 1249278524 _____ C:\Users\Lucas\Downloads\BrasMU_Season_14_Completo.rar
2019-10-02 23:30 - 2019-10-16 01:39 - 000000000 ____D C:\Users\Lucas\AppData\Local\Riot Games
2019-10-02 14:51 - 2019-10-02 14:51 - 000000000 ____D C:\Windows\LastGood
2019-10-02 14:50 - 2019-09-27 18:13 - 001726720 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443648.dll
2019-10-02 14:50 - 2019-09-27 18:13 - 001491144 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443648.dll
2019-09-25 16:29 - 2019-09-25 16:29 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-09-25 16:27 - 2019-09-06 15:26 - 001726400 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443630.dll
2019-09-25 16:27 - 2019-09-06 15:26 - 001491336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443630.dll
2019-09-25 16:10 - 2019-10-22 22:36 - 000000000 ____D C:\Users\Lucas\AppData\LocalLow\Mozilla
2019-09-25 16:10 - 2019-10-13 19:42 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\Users\Todos os Usuários\Mozilla
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\Users\Lucas\AppData\Local\Mozilla
2019-09-25 16:10 - 2019-09-25 16:10 - 000000000 ____D C:\ProgramData\Mozilla
2019-09-22 23:31 - 2019-09-22 23:33 - 000000000 ____D C:\Users\Lucas\Documents\GTA San Andreas User Files
2019-09-22 15:42 - 2019-10-16 18:31 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2019-09-22 15:42 - 2019-10-14 13:58 - 000000000 ____D C:\Users\Lucas\AppData\Local\Roblox
2019-09-22 15:42 - 2019-10-14 13:40 - 000000254 _____ C:\Users\Lucas\AppData\LocalLow\rbxcsettings.rbx
2019-09-22 15:41 - 2019-09-25 17:59 - 001320024 _____ (Roblox Corporation) C:\Users\Lucas\Downloads\RobloxPlayerLauncher.exe
2019-09-22 12:00 - 2019-09-22 12:00 - 000000000 ___SH C:\Users\Public\Shared Files
2019-09-22 11:49 - 2019-09-22 11:49 - 000000000 ____D C:\Users\Lucas\AppData\Local\FortniteGame
2019-09-22 11:42 - 2019-09-22 11:42 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-09-22 11:41 - 2019-09-22 23:31 - 000000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Todos os Usuários\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\Rockstar Games
2019-09-22 11:41 - 2019-09-22 11:41 - 000000000 ____D C:\ProgramData\Rockstar Games
2019-09-22 11:39 - 2019-09-22 11:47 - 000000000 ____D C:\Program Files\Rockstar Games
==================== Um mês (modificados) ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2019-10-22 22:42 - 2019-06-01 13:06 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2019-10-22 22:42 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\LiveKernelReports
2019-10-22 22:36 - 2019-06-01 13:06 - 000000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2019-10-22 22:25 - 2019-07-10 17:07 - 000005244 _____ C:\Windows\system32\Tasks\Microsoft Office 15 Sync Maintenance for PCGAYMER-Lucas PCGAYMER
2019-10-22 22:25 - 2019-05-31 13:19 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2019-10-22 22:25 - 2019-05-31 13:19 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-22 22:23 - 2019-06-09 20:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2019-10-22 22:21 - 2019-05-31 12:41 - 000000000 ____D C:\Users\Lucas
2019-10-22 22:21 - 2019-05-31 12:32 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-22 22:21 - 2019-05-31 12:32 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-10-22 22:21 - 2018-09-15 04:33 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2019-10-22 22:21 - 2018-09-15 04:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-22 18:30 - 2018-09-15 04:31 - 000000000 ____D C:\Windows\INF
2019-10-22 18:29 - 2018-09-15 04:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-10-22 18:29 - 2018-09-15 03:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-10-22 18:25 - 2019-06-01 10:07 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Discord
2019-10-22 18:08 - 2019-05-31 13:12 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 17:56 - 2018-09-15 03:09 - 000786432 _____ C:\Windows\system32\config\BBI
2019-10-22 17:47 - 2019-05-31 15:18 - 000000000 ____D C:\Users\Lucas\AppData\Local\Battle.net
2019-10-22 17:33 - 2019-06-01 08:52 - 000000000 ____D C:\temp
2019-10-22 17:32 - 2019-05-31 13:20 - 000000000 ____D C:\Users\Lucas\AppData\Local\NVIDIA
2019-10-22 17:18 - 2019-06-01 10:43 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-22 17:16 - 2019-07-05 14:40 - 000004178 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{063390F6-D365-4728-9251-3927531DB744}
2019-10-22 17:16 - 2019-06-04 22:51 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2019-10-22 17:16 - 2019-06-02 13:54 - 000000000 ____D C:\Users\Lucas\Downloads\Torrent
2019-10-21 19:05 - 2019-06-01 10:43 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\BitTorrent
2019-10-21 18:56 - 2019-07-10 16:52 - 000000000 ____D C:\Users\Lucas\AppData\Local\LogMeIn Hamachi
2019-10-21 18:40 - 2019-07-15 18:18 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2019-10-21 18:40 - 2019-06-01 10:44 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\.minecraft
2019-10-21 15:57 - 2019-06-01 09:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\D3DSCache
2019-10-21 00:06 - 2019-06-01 11:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\Users\Todos os Usuários\Origin
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2019-10-21 00:06 - 2019-06-01 10:47 - 000000000 ____D C:\ProgramData\Origin
2019-10-20 14:24 - 2019-06-15 15:51 - 000129080 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-10-20 14:24 - 2019-06-15 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-20 14:24 - 2019-06-15 15:50 - 000000000 ____D C:\Program Files\Java
2019-10-20 12:19 - 2019-07-05 15:24 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-10-20 11:44 - 2019-05-31 12:41 - 000000000 ____D C:\Users\Lucas\AppData\Local\Packages
2019-10-20 11:30 - 2019-05-31 15:16 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-10-20 10:32 - 2019-06-17 00:22 - 000000000 ____D C:\Program Files\Epic Games
2019-10-20 02:00 - 2019-05-31 13:24 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-20 01:44 - 2019-06-30 01:02 - 000000000 ____D C:\Users\Lucas\Documents\My Games
2019-10-19 23:59 - 2019-06-03 03:33 - 000000000 ____D C:\Users\Lucas\AppData\Local\UnrealEngine
2019-10-19 20:58 - 2019-06-02 19:53 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2019-10-19 20:46 - 2019-06-01 10:44 - 000000000 ____D C:\Users\Lucas\AppData\Local\Glyph
2019-10-19 20:45 - 2019-06-01 10:44 - 000000000 ____D C:\Program Files (x86)\Glyph
2019-10-18 09:49 - 2019-09-09 16:59 - 000000000 ____D C:\Users\Lucas\Desktop\Faculdade - Iasmim
2019-10-18 09:49 - 2019-08-07 14:43 - 000000000 ____D C:\Users\Lucas\Desktop\faculdade - lucas
2019-10-18 09:49 - 2019-07-10 15:29 - 000000000 ____D C:\Users\Lucas\Desktop\Documentos - Iasmim
2019-10-17 21:24 - 2019-06-18 00:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-10-17 19:39 - 2019-07-23 16:48 - 004205272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-10-17 19:39 - 2019-05-31 13:18 - 004936088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-10-17 16:43 - 2019-05-31 13:18 - 000659544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-10-16 23:51 - 2019-05-31 13:24 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2019-10-16 23:49 - 2019-05-31 13:22 - 000000000 ____D C:\Users\Lucas\AppData\Local\Adobe
2019-10-16 22:47 - 2019-05-31 15:54 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-10-16 21:28 - 2019-05-31 13:18 - 000056045 _____ C:\Windows\system32\nvinfo.pb
2019-10-16 19:45 - 2019-05-31 13:19 - 005524464 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-10-16 19:45 - 2019-05-31 13:19 - 002636656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 001767464 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000655216 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000450872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000124784 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-10-16 19:44 - 2019-05-31 13:19 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-10-16 16:44 - 2019-06-01 10:50 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-15 16:55 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\NDF
2019-10-14 10:26 - 2019-05-31 13:19 - 008750052 _____ C:\Windows\system32\nvcoproc.bin
2019-10-14 10:24 - 2019-06-01 10:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-13 00:25 - 2019-06-01 09:37 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2019-10-10 14:57 - 2019-05-31 12:43 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-28817538-380499637-3411821432-1001
2019-10-10 14:57 - 2019-05-31 12:43 - 000000000 ___RD C:\Users\Lucas\OneDrive
2019-10-10 14:57 - 2019-05-31 12:41 - 000002365 _____ C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-09 20:51 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\AppReadiness
2019-10-09 18:02 - 2019-06-01 20:00 - 000000000 ____D C:\Users\Lucas\AppData\Local\PlaceholderTileLogoFolder
2019-10-09 16:48 - 2019-05-31 12:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-09 16:48 - 2018-09-15 04:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-02 23:31 - 2019-06-17 23:53 - 000000000 ____D C:\Users\Todos os Usuários\Riot Games
2019-10-02 23:31 - 2019-06-17 23:53 - 000000000 ____D C:\ProgramData\Riot Games
2019-10-02 23:30 - 2019-06-17 23:52 - 000000000 ____D C:\Riot Games
2019-10-02 15:18 - 2019-05-31 13:12 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 14:51 - 2019-05-31 13:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-09-26 14:47 - 2019-05-31 13:19 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-09-26 01:58 - 2019-05-31 13:20 - 000000000 ____D C:\Users\Lucas\AppData\Local\NVIDIA Corporation
2019-09-25 16:10 - 2019-06-01 10:26 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\Mozilla
2019-09-22 23:32 - 2018-09-15 04:41 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2019-09-22 23:32 - 2018-09-15 04:41 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2019-09-22 23:32 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2019-09-22 23:32 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000472576 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2019-09-22 23:32 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2019-09-22 23:32 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2019-09-22 23:32 - 2018-09-15 04:23 - 000000000 ____D C:\Windows\CbsTemp
2019-09-22 12:00 - 2018-09-15 04:33 - 000000000 __SHD C:\Users\Public\Libraries
2019-09-22 11:48 - 2019-06-03 21:55 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\EasyAntiCheat
2019-09-22 11:41 - 2019-05-31 13:19 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2019-09-22 11:41 - 2019-05-31 13:19 - 000000000 ____D C:\ProgramData\Package Cache
==================== Arquivos na raiz de alguns diretórios ================
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH () C:\ProgramData\beleza.exe
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ () C:\ProgramData\lock.dat
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\ProgramData\tcc.exe
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ () C:\ProgramData\ts.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000357376 __RSH () C:\Users\Todos os Usuários\beleza.exe
2019-10-22 18:01 - 2019-10-22 22:22 - 000000004 _____ () C:\Users\Todos os Usuários\lock.dat
2019-10-22 18:07 - 2019-10-22 18:07 - 030957264 _____ (JP Software) C:\Users\Todos os Usuários\tcc.exe
2019-10-22 18:01 - 2019-10-22 18:01 - 000000008 _____ () C:\Users\Todos os Usuários\ts.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ () C:\Users\Lucas\AppData\Local\97eb3d0e92.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000054272 _____ () C:\Users\Lucas\AppData\Local\ApplicationHosting.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000722944 _____ () C:\Users\Lucas\AppData\Local\c3d5ca0b59.db
2019-10-22 17:55 - 2019-10-22 17:55 - 000018432 _____ () C:\Users\Lucas\AppData\Local\InstallationConfiguration.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 000140800 _____ () C:\Users\Lucas\AppData\Local\Installer.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000126464 _____ () C:\Users\Lucas\AppData\Local\lobby.dat
2019-10-22 17:55 - 2019-10-22 17:55 - 000002880 _____ () C:\Users\Lucas\AppData\Local\md.xml
2019-10-22 17:55 - 2019-10-22 17:55 - 001515520 _____ () C:\Users\Lucas\AppData\Local\OpeRunhold.exe
2019-10-22 17:55 - 2019-10-22 17:55 - 000072787 _____ () C:\Users\Lucas\AppData\Local\OpeRunhold.tst
==================== SigCheck ===============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ============================