Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 26.02.2024 01
Executado por prrsi (administrador) em PAULO (INTEL X99) (27-02-2024 19:29:09)
Executando a partir de C:\Users\prrsi\Desktop\FRST64.exe
Perfis Carregados: prrsi
Plataforma: Microsoft Windows 11 Pro Versão 22H2 22621.3155 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avpui.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.52\msedgewebview2.exe <6>
(cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\plugins_nms.exe
(explorer.exe ->) (HP Development Company, L.P.) [Arquivo não assinado] C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <20>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirdpclient.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirpcd.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.0\kpm_service.exe
(services.exe ->) (HP Development Company, L.P.) [Arquivo não assinado] C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(services.exe ->) (HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WSL\wslservice.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\AgentService.exe
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_493585427225c794\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2401.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2401.1001.10.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2401.1001.10.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsimgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(vmcompute.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe
Falha ao acessar processo -> vmmemCmZygote
Falha ao acessar processo -> vmmemMDAG
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2022-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\prrsi\AppData\Local\Microsoft\Teams\Update.exe [2576128 2022-09-25] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (Nenhum Arquivo)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2598328 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [MicrosoftEdgeAutoLaunch_7AB00E55F2805CB6FD48D4D599A965AA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4067896 2024-02-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [Arquivo não assinado]
HKLM\...\Windows x64\Print Processors\Samsung Network PC Fax Print Processor: C:\Windows\System32\spool\prtprocs\x64\NetFaxProc64.dll [146944 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Samsung Network PC Fax Port: C:\Windows\system32\NetFaxPort64.dll [586240 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
HKLM\...\Print\Monitors\us008 Langmon: us008lm.dll (Nenhum Arquivo)
HKLM\...\Print\Monitors\us016 Langmon: C:\Windows\system32\us016lm.dll [40744 2022-02-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.70\Installer\chrmstp.exe [2024-02-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-27]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2023-08-27]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (HP Development Company, L.P.) [Arquivo não assinado]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) =================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {99471301-D1C6-4D6D-8D4E-58B20D322E61} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {E359C77A-0937-4863-B548-091691093C8E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\prrsi\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-08] (ESET, spol. s r.o. -> ESET)
Task: {FC2D2A73-4669-4EAD-B84D-14B87E9260A0} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\prrsi\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-08] (ESET, spol. s r.o. -> ESET)
Task: {175BD167-D0BA-4825-AD31-05CBA52109A0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6315.0{C5A473B7-BDEA-41A4-AC68-4AD30FF1326F} => C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Nenhum Arquivo)
Task: {3F7E4248-5E70-4A1C-BE3D-F364B83DC582} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Nenhum Arquivo)
Task: {BC3A5C7A-A24D-4527-837D-A11988B0798D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Nenhum Arquivo)
Task: {487BB1FF-A54D-4A6F-BC5F-E9D070065635} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Nenhum Arquivo)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Nenhum Arquivo)
Task: {A90DA401-D6FE-44F7-8F5F-6BCBFD48534A} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {79A2ECC7-9C7D-4B1B-943C-CDB5A3AEC499} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6C4F937E-E184-413D-AA94-F5DA0F724A66} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {633D5AC5-0DDD-4B47-A638-9F9222C80078} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DAEF982-FF06-42E9-875B-5C6752329A69} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF2C5F30-F510-41FF-B3DD-12CE1EDC5BD0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B1AEFF7-52C0-4ACD-88DA-7D3318341AEF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {75C8EEA1-5AF4-4E64-B918-9981995049BD} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1729C2C9-58E7-455E-8BA4-63DF2001B3C6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2B2837B9-C44B-450E-9A5E-9FEA2369ACB8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D95834CD-62A0-4171-84D4-A931AAD4D747} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDA4E96D-6065-4256-97EC-C828ACA178B7} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3235585821-2808089720-296561185-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {281C734C-DAFF-4032-B513-A0C4C83FAC9D} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (Nenhum Arquivo)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{8fa23b08-8cd6-4098-957d-091c4c43b6c1}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{a005f945-babd-4f82-b4a8-b4241fcc1eb1}: [DhcpNameServer] 177.37.220.17 8.8.8.8
Tcpip\..\Interfaces\{bc3dfe9f-3dd0-481c-89e6-e836d05d9ac6}: [DhcpNameServer] 177.37.220.17 8.8.8.8
Tcpip\..\Interfaces\{ca94354a-47de-4be0-98da-e379a5e45bda}: [DhcpDomain] SISO_DOMAIN
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-27]
Edge Notifications: Default -> hxxps://www.wish.com
Edge Extension: (Kaspersky Protection) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-01-26]
Edge Extension: (Assistente SaveFrom.net) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\akncjgblpooaigmieecjiigaebgblnaj [2024-02-12]
Edge Extension: (AliAssist: assistente de compras) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\amembkpfochonfalpaelodhiaangjpih [2024-02-25]
Edge Extension: (Code Verify) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpndjjealjjagamdecpipjfamiigaknk [2024-02-12]
Edge Extension: (Documentos Google off-line) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-18]
Edge Extension: (Edge relevant text changes) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKU\S-1-5-21-3235585821-2808089720-296561185-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF Plugin: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-02-22] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default [2024-02-27]
CHR Extension: (Torrent Scanner) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-02-06]
CHR Extension: (Kaspersky Protection) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-02-06]
CHR Extension: (Documentos Google off-line) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-06]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5216584 2024-02-08] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe [184768 2022-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2023-07-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2024-01-21] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\FileSyncHelper.exe [3515936 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
S2 GoogleUpdaterService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2024-01-18] (HP Inc. -> HP Inc.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_service_24.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.0\kpm_service.exe [525224 2024-01-16] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072520 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
R2 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [734016 2022-11-14] (MiniTool Software Limited -> )
R2 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [225600 2022-11-14] (MiniTool Software Limited -> )
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_493585427225c794\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\OneDriveUpdaterService.exe [3853856 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [403048 2023-07-05] (Proton Technologies AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [328808 2023-07-05] (Proton Technologies AG -> ProtonVPN)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6669296 2024-02-20] (Rockstar Games, Inc. -> Rockstar Games)
R2 Samsung Network Fax Server; C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-06-24] (HP Inc. -> )
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2022-08-22] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534592 2023-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [999736 2023-09-21] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsaService; C:\Program Files\WSA_2306.40000.4.0_x64_Release-Nightly-MindTheGapps-13.0\WsaService\WsaService.exe [238592 2023-07-23] () [Arquivo não assinado]
S2 WslInstaller; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForLinux_2.0.9.0_x64__8wekyb3d8bbwe\wslinstaller.exe [2766880 2023-11-15] (Microsoft Corporation -> Microsoft Corporation)
R2 WSLService; C:\Program Files\WSL\wslservice.exe [6276528 2023-11-10] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 ALSysIO; C:\Users\prrsi\AppData\Local\Temp\ALSysIO64.sys [47240 2023-04-14] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATENÇÃO
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-10-28] (Microsoft Windows -> Microsoft Corporation)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [824528 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1999568 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235704 2023-06-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [384656 2023-10-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [354640 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [183120 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [262712 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-07-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-10-28] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2023-01-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473376 2023-01-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [39488 2024-02-24] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [41816 2023-05-05] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [52104 2023-09-19] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 GSDriver; \SystemRoot\System32\drivers\GSDriver64.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2024-02-27 19:29 - 2024-02-27 19:30 - 000032282 _____ C:\Users\prrsi\Desktop\FRST.txt
2024-02-27 19:15 - 2024-02-27 19:29 - 000000000 ____D C:\FRST
2024-02-27 19:09 - 2024-02-27 19:10 - 002386944 _____ (Farbar) C:\Users\prrsi\Desktop\FRST64.exe
2024-02-26 19:21 - 2024-02-26 19:21 - 000220886 _____ C:\Users\prrsi\Desktop\DP 70626-2.pdf
2024-02-20 20:33 - 2024-02-20 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-02-15 21:49 - 2024-02-15 21:50 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-02-15 21:40 - 2024-02-08 05:25 - 002095464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 002095464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001655656 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001655656 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001278824 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-02-15 21:40 - 2024-02-08 05:25 - 001278824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001434368 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001226760 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001542176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001199224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 000670240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 002173984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 001625096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 001024136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 000842376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-02-15 21:39 - 2024-02-08 05:19 - 000786960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-02-15 21:39 - 2024-02-08 05:18 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-02-15 21:38 - 2024-02-08 05:17 - 016033312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 012928648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 006780424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 005909112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 005773448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 003721232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-02-15 21:38 - 2024-02-07 19:49 - 000120261 _____ C:\WINDOWS\system32\nvinfo.pb
2024-02-15 20:37 - 2024-02-15 20:37 - 000768122 _____ C:\WINDOWS\system32\prfh0416.dat
2024-02-15 20:37 - 2024-02-15 20:37 - 000154250 _____ C:\WINDOWS\system32\prfc0416.dat
2024-02-15 19:07 - 2024-02-15 19:13 - 000000000 ___HD C:\$WinREAgent
2024-02-09 21:55 - 2024-02-09 21:55 - 000003591 _____ C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AliExpress.lnk
2024-02-08 21:36 - 2024-02-10 10:01 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware
2024-02-08 21:36 - 2024-02-08 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2024-02-08 21:36 - 2024-02-08 21:36 - 000000000 ____D C:\ProgramData\GridinSoft
2024-02-08 21:31 - 2024-02-08 21:31 - 000003838 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2024-02-08 21:31 - 2024-02-08 21:31 - 000003396 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2024-02-08 08:51 - 2024-02-08 18:48 - 000001413 _____ C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-02-08 08:51 - 2024-02-08 18:48 - 000001307 _____ C:\Users\prrsi\Desktop\ESET Online Scanner.lnk
2024-02-08 08:51 - 2024-02-08 08:51 - 000000000 ____D C:\Users\prrsi\AppData\Local\ESET
2024-02-07 01:54 - 2024-02-07 01:54 - 000009278 _____ C:\Users\prrsi\Documents\ESCALA FOLHA.xlsx
2024-02-06 23:45 - 2024-02-26 19:14 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-06 23:45 - 2024-02-26 19:14 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-30 20:34 - 2024-02-08 05:15 - 006030992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-01-28 21:37 - 2024-01-28 21:37 - 000365798 _____ C:\Users\prrsi\Desktop\MODELO REQUERIMENTO RETIFICACAO DE REGISTRO.pdf
2024-01-28 13:11 - 2024-01-28 13:11 - 000388587 _____ C:\Users\prrsi\Desktop\extrato cnis vera.pdf
==================== Um mês (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-27 19:19 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-27 19:09 - 2023-01-30 21:36 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{90B5777E-EE8F-4FF3-AE76-E9BE08EA8524}
2024-02-27 19:04 - 2022-11-04 19:36 - 000000000 ____D C:\Users\prrsi\AppData\Local\CrashDumps
2024-02-27 19:03 - 2023-01-30 21:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-27 19:03 - 2022-02-20 11:54 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-26 20:03 - 2022-04-12 11:47 - 000000600 _____ C:\Users\prrsi\PUTTY.RND
2024-02-26 19:32 - 2022-02-19 20:32 - 000000000 ____D C:\Users\prrsi\AppData\Local\D3DSCache
2024-02-25 22:49 - 2023-01-30 21:36 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-02-25 22:48 - 2022-10-12 17:29 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-02-25 22:48 - 2022-10-12 17:29 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-02-25 11:14 - 2023-01-17 19:55 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-25 11:14 - 2023-01-17 19:55 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-02-24 21:03 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Word
2024-02-24 21:03 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Modelos
2024-02-24 17:38 - 2022-04-12 21:08 - 000000579 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-02-24 17:37 - 2023-01-30 21:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-24 17:37 - 2022-04-13 21:11 - 000039488 _____ (Topaz OFD) C:\WINDOWS\system32\Drivers\wsddfac.sys
2024-02-24 17:37 - 2022-02-19 20:03 - 000012288 ___SH C:\DumpStack.log.tmp
2024-02-24 17:36 - 2023-01-30 21:25 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK
2024-02-24 15:24 - 2022-02-20 12:31 - 000000000 ____D C:\Program Files (x86)\Steam
2024-02-24 15:23 - 2022-02-22 18:34 - 000000000 ____D C:\Users\prrsi\Documents\Euro Truck Simulator 2
2024-02-24 13:56 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Office
2024-02-23 16:13 - 2023-09-15 22:39 - 000000000 ____D C:\Users\prrsi\Desktop\pasta exclusiva savio
2024-02-22 19:38 - 2023-01-30 21:36 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-22 19:38 - 2023-01-30 21:36 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-22 15:23 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-02-20 20:38 - 2023-01-27 20:17 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-19 20:00 - 2023-11-05 14:56 - 000001067 _____ C:\Users\prrsi\Desktop\Telegram.lnk
2024-02-19 20:00 - 2023-11-05 14:56 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Telegram Desktop
2024-02-19 20:00 - 2023-11-05 14:56 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2024-02-19 20:00 - 2022-06-17 11:13 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2024-02-19 19:59 - 2022-06-17 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2024-02-17 22:35 - 2023-01-30 21:27 - 000000000 ____D C:\Users\prrsi
2024-02-17 22:32 - 2022-02-21 19:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-02-16 23:19 - 2023-01-30 21:36 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3235585821-2808089720-296561185-1001
2024-02-16 23:19 - 2023-01-30 21:36 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-02-16 23:19 - 2022-04-20 22:30 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-16 19:33 - 2023-02-17 15:56 - 002713080 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-02-16 19:33 - 2023-02-17 15:56 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-02-16 19:33 - 2023-02-17 15:56 - 000075256 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-02-16 19:32 - 2023-02-17 15:56 - 000689656 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000218728 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000202344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-02-15 22:10 - 2022-05-07 02:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-02-15 21:50 - 2022-02-20 12:06 - 000000000 ____D C:\Users\prrsi\AppData\Local\NVIDIA
2024-02-15 20:47 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-15 20:37 - 2023-01-30 21:35 - 001773040 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-15 20:28 - 2023-09-26 21:03 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-02-15 20:28 - 2023-01-30 21:17 - 000000000 ____D C:\Program Files\Hyper-V
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-15 19:38 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-15 19:37 - 2022-02-20 20:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-15 19:28 - 2022-02-20 20:10 - 191155960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-15 19:26 - 2022-03-21 20:59 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2024-02-15 19:26 - 2022-03-21 20:59 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2024-02-15 19:25 - 2022-08-04 00:30 - 000001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager.lnk
2024-02-15 19:25 - 2022-04-13 17:23 - 000001512 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2024-02-15 19:21 - 2023-01-30 21:27 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-02-15 19:04 - 2022-08-11 08:41 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-02-15 19:04 - 2022-02-20 12:41 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-11 21:27 - 2022-02-20 12:33 - 000000000 ____D C:\Users\prrsi\AppData\Local\Steam
2024-02-08 20:24 - 2022-03-06 20:13 - 000000000 ____D C:\Users\prrsi\dwhelper
2024-02-08 18:47 - 2023-01-27 19:23 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-02-08 05:24 - 2023-07-22 17:07 - 001434368 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-02-08 05:15 - 2023-01-24 21:02 - 006943344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-02-07 21:43 - 2022-04-08 11:46 - 000000000 ____D C:\Program Files\TeamViewer
2024-02-07 21:38 - 2023-04-13 21:03 - 000000000 ____D C:\Users\prrsi\AppData\Local\Malwarebytes
2024-02-07 09:11 - 2023-07-23 18:57 - 000000000 ____D C:\Program Files\WSA_2306.40000.4.0_x64_Release-Nightly-MindTheGapps-13.0
2024-02-07 01:54 - 2022-09-23 09:53 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Excel
2024-02-07 01:23 - 2022-02-24 19:29 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Samsung
2024-02-07 01:22 - 2022-08-21 11:04 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-02-06 23:45 - 2023-01-27 20:17 - 000000000 ____D C:\Users\prrsi\AppData\Local\Google
2024-02-05 23:08 - 2022-12-25 20:07 - 000000000 ____D C:\Users\prrsi\AppData\LocalLow\IGDump
2024-02-05 22:52 - 2022-02-19 20:32 - 000000000 ____D C:\Users\prrsi\AppData\Local\Packages
2024-02-05 22:52 - 2022-02-19 20:24 - 000000000 ____D C:\ProgramData\Packages
2024-01-30 21:25 - 2023-12-17 15:33 - 000000000 ____D C:\Program Files\Rockstar Games
2024-01-30 21:25 - 2023-12-17 15:33 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2024-01-28 12:49 - 2023-06-30 19:33 - 000022785 _____ C:\Users\prrsi\Desktop\planilha aposentadoria1.xlsx
==================== Arquivos na raiz de alguns diretórios ========
2022-03-01 21:31 - 2022-03-01 21:31 - 000000050 _____ () C:\Users\prrsi\AppData\Roaming\3300576UVDConfig.json
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Executado por prrsi (administrador) em PAULO (INTEL X99) (27-02-2024 19:29:09)
Executando a partir de C:\Users\prrsi\Desktop\FRST64.exe
Perfis Carregados: prrsi
Plataforma: Microsoft Windows 11 Pro Versão 22H2 22621.3155 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avpui.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.52\msedgewebview2.exe <6>
(cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\plugins_nms.exe
(explorer.exe ->) (HP Development Company, L.P.) [Arquivo não assinado] C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <20>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirdpclient.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirpcd.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.0\kpm_service.exe
(services.exe ->) (HP Development Company, L.P.) [Arquivo não assinado] C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(services.exe ->) (HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WSL\wslservice.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\AgentService.exe
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_493585427225c794\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2401.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2401.1001.10.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2401.1001.10.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsimgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(vmcompute.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe
Falha ao acessar processo -> vmmemCmZygote
Falha ao acessar processo -> vmmemMDAG
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2022-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\prrsi\AppData\Local\Microsoft\Teams\Update.exe [2576128 2022-09-25] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (Nenhum Arquivo)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2598328 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [MicrosoftEdgeAutoLaunch_7AB00E55F2805CB6FD48D4D599A965AA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4067896 2024-02-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3235585821-2808089720-296561185-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [Arquivo não assinado]
HKLM\...\Windows x64\Print Processors\Samsung Network PC Fax Print Processor: C:\Windows\System32\spool\prtprocs\x64\NetFaxProc64.dll [146944 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Samsung Network PC Fax Port: C:\Windows\system32\NetFaxPort64.dll [586240 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
HKLM\...\Print\Monitors\us008 Langmon: us008lm.dll (Nenhum Arquivo)
HKLM\...\Print\Monitors\us016 Langmon: C:\Windows\system32\us016lm.dll [40744 2022-02-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.70\Installer\chrmstp.exe [2024-02-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-27]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2023-08-27]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (HP Development Company, L.P.) [Arquivo não assinado]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) =================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {99471301-D1C6-4D6D-8D4E-58B20D322E61} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {E359C77A-0937-4863-B548-091691093C8E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\prrsi\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-08] (ESET, spol. s r.o. -> ESET)
Task: {FC2D2A73-4669-4EAD-B84D-14B87E9260A0} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\prrsi\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-08] (ESET, spol. s r.o. -> ESET)
Task: {175BD167-D0BA-4825-AD31-05CBA52109A0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6315.0{C5A473B7-BDEA-41A4-AC68-4AD30FF1326F} => C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Nenhum Arquivo)
Task: {3F7E4248-5E70-4A1C-BE3D-F364B83DC582} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Nenhum Arquivo)
Task: {BC3A5C7A-A24D-4527-837D-A11988B0798D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Nenhum Arquivo)
Task: {487BB1FF-A54D-4A6F-BC5F-E9D070065635} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Nenhum Arquivo)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Nenhum Arquivo)
Task: {A90DA401-D6FE-44F7-8F5F-6BCBFD48534A} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {79A2ECC7-9C7D-4B1B-943C-CDB5A3AEC499} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6C4F937E-E184-413D-AA94-F5DA0F724A66} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {633D5AC5-0DDD-4B47-A638-9F9222C80078} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DAEF982-FF06-42E9-875B-5C6752329A69} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF2C5F30-F510-41FF-B3DD-12CE1EDC5BD0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B1AEFF7-52C0-4ACD-88DA-7D3318341AEF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {75C8EEA1-5AF4-4E64-B918-9981995049BD} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1729C2C9-58E7-455E-8BA4-63DF2001B3C6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2B2837B9-C44B-450E-9A5E-9FEA2369ACB8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D95834CD-62A0-4171-84D4-A931AAD4D747} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDA4E96D-6065-4256-97EC-C828ACA178B7} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3235585821-2808089720-296561185-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {281C734C-DAFF-4032-B513-A0C4C83FAC9D} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (Nenhum Arquivo)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{8fa23b08-8cd6-4098-957d-091c4c43b6c1}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{a005f945-babd-4f82-b4a8-b4241fcc1eb1}: [DhcpNameServer] 177.37.220.17 8.8.8.8
Tcpip\..\Interfaces\{bc3dfe9f-3dd0-481c-89e6-e836d05d9ac6}: [DhcpNameServer] 177.37.220.17 8.8.8.8
Tcpip\..\Interfaces\{ca94354a-47de-4be0-98da-e379a5e45bda}: [DhcpDomain] SISO_DOMAIN
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-27]
Edge Notifications: Default -> hxxps://www.wish.com
Edge Extension: (Kaspersky Protection) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-01-26]
Edge Extension: (Assistente SaveFrom.net) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\akncjgblpooaigmieecjiigaebgblnaj [2024-02-12]
Edge Extension: (AliAssist: assistente de compras) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\amembkpfochonfalpaelodhiaangjpih [2024-02-25]
Edge Extension: (Code Verify) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpndjjealjjagamdecpipjfamiigaknk [2024-02-12]
Edge Extension: (Documentos Google off-line) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-18]
Edge Extension: (Edge relevant text changes) - C:\Users\prrsi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKU\S-1-5-21-3235585821-2808089720-296561185-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF Plugin: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-02-22] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default [2024-02-27]
CHR Extension: (Torrent Scanner) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-02-06]
CHR Extension: (Kaspersky Protection) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-02-06]
CHR Extension: (Documentos Google off-line) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\prrsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-06]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5216584 2024-02-08] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\avp.exe [184768 2022-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2023-07-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2024-01-21] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\FileSyncHelper.exe [3515936 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
S2 GoogleUpdaterService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ATENÇÃO
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2024-01-18] (HP Inc. -> HP Inc.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 (1)\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_service_24.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.0\kpm_service.exe [525224 2024-01-16] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072520 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
R2 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [734016 2022-11-14] (MiniTool Software Limited -> )
R2 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [225600 2022-11-14] (MiniTool Software Limited -> )
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_493585427225c794\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\OneDriveUpdaterService.exe [3853856 2024-02-16] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [403048 2023-07-05] (Proton Technologies AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [328808 2023-07-05] (Proton Technologies AG -> ProtonVPN)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6669296 2024-02-20] (Rockstar Games, Inc. -> Rockstar Games)
R2 Samsung Network Fax Server; C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2021-04-14] (HP Development Company, L.P.) [Arquivo não assinado]
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-06-24] (HP Inc. -> )
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2022-08-22] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534592 2023-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [999736 2023-09-21] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsaService; C:\Program Files\WSA_2306.40000.4.0_x64_Release-Nightly-MindTheGapps-13.0\WsaService\WsaService.exe [238592 2023-07-23] () [Arquivo não assinado]
S2 WslInstaller; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForLinux_2.0.9.0_x64__8wekyb3d8bbwe\wslinstaller.exe [2766880 2023-11-15] (Microsoft Corporation -> Microsoft Corporation)
R2 WSLService; C:\Program Files\WSL\wslservice.exe [6276528 2023-11-10] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 ALSysIO; C:\Users\prrsi\AppData\Local\Temp\ALSysIO64.sys [47240 2023-04-14] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATENÇÃO
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-10-28] (Microsoft Windows -> Microsoft Corporation)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [824528 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1999568 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235704 2023-06-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [384656 2023-10-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [354640 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [183120 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [262712 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-04-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-07-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-10-28] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2023-01-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473376 2023-01-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [39488 2024-02-24] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [41816 2023-05-05] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [52104 2023-09-19] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 GSDriver; \SystemRoot\System32\drivers\GSDriver64.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2024-02-27 19:29 - 2024-02-27 19:30 - 000032282 _____ C:\Users\prrsi\Desktop\FRST.txt
2024-02-27 19:15 - 2024-02-27 19:29 - 000000000 ____D C:\FRST
2024-02-27 19:09 - 2024-02-27 19:10 - 002386944 _____ (Farbar) C:\Users\prrsi\Desktop\FRST64.exe
2024-02-26 19:21 - 2024-02-26 19:21 - 000220886 _____ C:\Users\prrsi\Desktop\DP 70626-2.pdf
2024-02-20 20:33 - 2024-02-20 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-02-15 21:49 - 2024-02-15 21:50 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-02-15 21:40 - 2024-02-08 05:25 - 002095464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 002095464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001655656 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001655656 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-02-15 21:40 - 2024-02-08 05:25 - 001278824 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-02-15 21:40 - 2024-02-08 05:25 - 001278824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001434368 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-02-15 21:40 - 2024-02-08 05:24 - 001226760 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001542176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001199224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 001040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 000670240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-02-15 21:39 - 2024-02-08 05:20 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 002173984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 001625096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 001024136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-02-15 21:39 - 2024-02-08 05:19 - 000842376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-02-15 21:39 - 2024-02-08 05:19 - 000786960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-02-15 21:39 - 2024-02-08 05:18 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-02-15 21:38 - 2024-02-08 05:17 - 016033312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 012928648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 006780424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 005909112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 005773448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 003721232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-02-15 21:38 - 2024-02-08 05:17 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-02-15 21:38 - 2024-02-07 19:49 - 000120261 _____ C:\WINDOWS\system32\nvinfo.pb
2024-02-15 20:37 - 2024-02-15 20:37 - 000768122 _____ C:\WINDOWS\system32\prfh0416.dat
2024-02-15 20:37 - 2024-02-15 20:37 - 000154250 _____ C:\WINDOWS\system32\prfc0416.dat
2024-02-15 19:07 - 2024-02-15 19:13 - 000000000 ___HD C:\$WinREAgent
2024-02-09 21:55 - 2024-02-09 21:55 - 000003591 _____ C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AliExpress.lnk
2024-02-08 21:36 - 2024-02-10 10:01 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware
2024-02-08 21:36 - 2024-02-08 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2024-02-08 21:36 - 2024-02-08 21:36 - 000000000 ____D C:\ProgramData\GridinSoft
2024-02-08 21:31 - 2024-02-08 21:31 - 000003838 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2024-02-08 21:31 - 2024-02-08 21:31 - 000003396 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2024-02-08 08:51 - 2024-02-08 18:48 - 000001413 _____ C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-02-08 08:51 - 2024-02-08 18:48 - 000001307 _____ C:\Users\prrsi\Desktop\ESET Online Scanner.lnk
2024-02-08 08:51 - 2024-02-08 08:51 - 000000000 ____D C:\Users\prrsi\AppData\Local\ESET
2024-02-07 01:54 - 2024-02-07 01:54 - 000009278 _____ C:\Users\prrsi\Documents\ESCALA FOLHA.xlsx
2024-02-06 23:45 - 2024-02-26 19:14 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-06 23:45 - 2024-02-26 19:14 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-30 20:34 - 2024-02-08 05:15 - 006030992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-01-28 21:37 - 2024-01-28 21:37 - 000365798 _____ C:\Users\prrsi\Desktop\MODELO REQUERIMENTO RETIFICACAO DE REGISTRO.pdf
2024-01-28 13:11 - 2024-01-28 13:11 - 000388587 _____ C:\Users\prrsi\Desktop\extrato cnis vera.pdf
==================== Um mês (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-27 19:20 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-27 19:19 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-27 19:09 - 2023-01-30 21:36 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{90B5777E-EE8F-4FF3-AE76-E9BE08EA8524}
2024-02-27 19:04 - 2022-11-04 19:36 - 000000000 ____D C:\Users\prrsi\AppData\Local\CrashDumps
2024-02-27 19:03 - 2023-01-30 21:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-27 19:03 - 2022-02-20 11:54 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-26 20:03 - 2022-04-12 11:47 - 000000600 _____ C:\Users\prrsi\PUTTY.RND
2024-02-26 19:32 - 2022-02-19 20:32 - 000000000 ____D C:\Users\prrsi\AppData\Local\D3DSCache
2024-02-25 22:49 - 2023-01-30 21:36 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-02-25 22:48 - 2022-10-12 17:29 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-02-25 22:48 - 2022-10-12 17:29 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-02-25 11:14 - 2023-01-17 19:55 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-25 11:14 - 2023-01-17 19:55 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-02-24 21:03 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Word
2024-02-24 21:03 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Modelos
2024-02-24 17:38 - 2022-04-12 21:08 - 000000579 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-02-24 17:37 - 2023-01-30 21:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-24 17:37 - 2022-04-13 21:11 - 000039488 _____ (Topaz OFD) C:\WINDOWS\system32\Drivers\wsddfac.sys
2024-02-24 17:37 - 2022-02-19 20:03 - 000012288 ___SH C:\DumpStack.log.tmp
2024-02-24 17:36 - 2023-01-30 21:25 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK
2024-02-24 15:24 - 2022-02-20 12:31 - 000000000 ____D C:\Program Files (x86)\Steam
2024-02-24 15:23 - 2022-02-22 18:34 - 000000000 ____D C:\Users\prrsi\Documents\Euro Truck Simulator 2
2024-02-24 13:56 - 2022-02-19 21:41 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Office
2024-02-23 16:13 - 2023-09-15 22:39 - 000000000 ____D C:\Users\prrsi\Desktop\pasta exclusiva savio
2024-02-22 19:38 - 2023-01-30 21:36 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-22 19:38 - 2023-01-30 21:36 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-22 15:23 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-02-20 20:38 - 2023-01-27 20:17 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-19 20:00 - 2023-11-05 14:56 - 000001067 _____ C:\Users\prrsi\Desktop\Telegram.lnk
2024-02-19 20:00 - 2023-11-05 14:56 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Telegram Desktop
2024-02-19 20:00 - 2023-11-05 14:56 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2024-02-19 20:00 - 2022-06-17 11:13 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2024-02-19 19:59 - 2022-06-17 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2024-02-17 22:35 - 2023-01-30 21:27 - 000000000 ____D C:\Users\prrsi
2024-02-17 22:32 - 2022-02-21 19:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-02-16 23:19 - 2023-01-30 21:36 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3235585821-2808089720-296561185-1001
2024-02-16 23:19 - 2023-01-30 21:36 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-02-16 23:19 - 2022-04-20 22:30 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-16 19:33 - 2023-02-17 15:56 - 002713080 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-02-16 19:33 - 2023-02-17 15:56 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-02-16 19:33 - 2023-02-17 15:56 - 000075256 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-02-16 19:32 - 2023-02-17 15:56 - 000689656 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000218728 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000202344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-02-16 19:32 - 2023-02-17 15:56 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-02-15 22:10 - 2022-05-07 02:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-02-15 21:50 - 2022-02-20 12:06 - 000000000 ____D C:\Users\prrsi\AppData\Local\NVIDIA
2024-02-15 20:47 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-15 20:37 - 2023-01-30 21:35 - 001773040 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-15 20:28 - 2023-09-26 21:03 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-02-15 20:28 - 2023-01-30 21:17 - 000000000 ____D C:\Program Files\Hyper-V
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-15 20:28 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-15 19:38 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-15 19:37 - 2022-02-20 20:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-15 19:28 - 2022-02-20 20:10 - 191155960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-15 19:26 - 2022-03-21 20:59 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2024-02-15 19:26 - 2022-03-21 20:59 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2024-02-15 19:25 - 2022-08-04 00:30 - 000001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager.lnk
2024-02-15 19:25 - 2022-04-13 17:23 - 000001512 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2024-02-15 19:21 - 2023-01-30 21:27 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-02-15 19:04 - 2022-08-11 08:41 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-02-15 19:04 - 2022-02-20 12:41 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-11 21:27 - 2022-02-20 12:33 - 000000000 ____D C:\Users\prrsi\AppData\Local\Steam
2024-02-08 20:24 - 2022-03-06 20:13 - 000000000 ____D C:\Users\prrsi\dwhelper
2024-02-08 18:47 - 2023-01-27 19:23 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-02-08 05:24 - 2023-07-22 17:07 - 001434368 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-02-08 05:15 - 2023-01-24 21:02 - 006943344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-02-07 21:43 - 2022-04-08 11:46 - 000000000 ____D C:\Program Files\TeamViewer
2024-02-07 21:38 - 2023-04-13 21:03 - 000000000 ____D C:\Users\prrsi\AppData\Local\Malwarebytes
2024-02-07 09:11 - 2023-07-23 18:57 - 000000000 ____D C:\Program Files\WSA_2306.40000.4.0_x64_Release-Nightly-MindTheGapps-13.0
2024-02-07 01:54 - 2022-09-23 09:53 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Microsoft\Excel
2024-02-07 01:23 - 2022-02-24 19:29 - 000000000 ____D C:\Users\prrsi\AppData\Roaming\Samsung
2024-02-07 01:22 - 2022-08-21 11:04 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-02-06 23:45 - 2023-01-27 20:17 - 000000000 ____D C:\Users\prrsi\AppData\Local\Google
2024-02-05 23:08 - 2022-12-25 20:07 - 000000000 ____D C:\Users\prrsi\AppData\LocalLow\IGDump
2024-02-05 22:52 - 2022-02-19 20:32 - 000000000 ____D C:\Users\prrsi\AppData\Local\Packages
2024-02-05 22:52 - 2022-02-19 20:24 - 000000000 ____D C:\ProgramData\Packages
2024-01-30 21:25 - 2023-12-17 15:33 - 000000000 ____D C:\Program Files\Rockstar Games
2024-01-30 21:25 - 2023-12-17 15:33 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2024-01-28 12:49 - 2023-06-30 19:33 - 000022785 _____ C:\Users\prrsi\Desktop\planilha aposentadoria1.xlsx
==================== Arquivos na raiz de alguns diretórios ========
2022-03-01 21:31 - 2022-03-01 21:31 - 000000050 _____ () C:\Users\prrsi\AppData\Roaming\3300576UVDConfig.json
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================