Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 05-04-2021 Executado por rodri (administrador) em DESKTOP-3U9QL0E (Gigabyte Technology Co., Ltd. B450M S2H) (08-04-2021 11:00:16) Executando a partir de C:\Users\rodri\Downloads Perfis Carregados: rodri Platform: Windows 10 Pro Versão 20H2 19042.906 (X64) Idioma: Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0364232.inf_amd64_ac01b1fb8d253d0b\B364161\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0364232.inf_amd64_ac01b1fb8d253d0b\B364161\atiesrxx.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.2.10.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.2.10.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.2.10.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.2.10.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.2.10.0_x86__nzyj5cx40ttqa\iCloud\secd.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Autodesk, Inc. -> Autodesk Inc.) C:\Windows\Temp\AdAppMgrUpdater.exe (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3> (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\10.1.0.3194\AdskLicensingService\AdskLicensingService.exe (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe (Autodesk, Inc. -> Autodesk) C:\Users\rodri\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (KMSpico ByELDI LTD -> @ByELDI) C:\Program Files\KMSpico\KMSUPD.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <29> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\rodri\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerResearchParticipation\EPCP.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRQE.EXE (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk) HKLM\...\Run: [System] => C:\Windows\SysWOW64\WindowsUpdateBox.exe <==== ATENÇÃO HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Users\rodri\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe [1077864 2020-01-02] (Autodesk, Inc. -> Autodesk) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-06] (Adobe Inc. -> ) HKU\S-1-5-21-4197657792-588413649-2426973447-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIRQE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-4197657792-588413649-2426973447-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-4197657792-588413649-2426973447-1001\...\Policies\Explorer: [] HKLM\...\Print\Monitors\EPSON L380 Series 64MonitorBE: C:\Windows\system32\E_YLMBRQE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {151BE9C1-E877-4754-9D02-E078B6E110C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {725D3C3A-F05A-42AD-A490-DACE89490A20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8935431D-CC97-446E-B395-D2FFF90AF54C} - System32\Tasks\KMSpico Automatic Update Scheduler => C:\Program Files\KMSpico\KMSUPD.exe [89272 2021-02-11] (KMSpico ByELDI LTD -> @ByELDI) Task: {A31A5D23-6E5A-4226-9E6B-507DAA746159} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C783B3D1-0F90-45C7-9F37-3FE5C23763DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D22692AB-139A-4C55-B693-BB2F8C426C5F} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Arquivo não assinado] (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATENÇÃO (Restrição - ProxySettings) AutoConfigURL: [{D1BB9B6B-CF0F-4725-8DDE-6D3CDB257663}] => hxxp://127.0.0.1:86/ Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{2e48e568-75ff-4f69-8eac-924acf9a9c1e}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{63b78ca2-4fc4-41fc-a769-0f63f4bfe48a}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{dd0003fa-a1dd-439d-816b-0294522cb5fa}: [DhcpNameServer] 192.168.10.1 8.8.8.8 8.8.4.4 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO Edge: ======= Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)] Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)] Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)] Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)] Edge DefaultProfile: Default Edge Profile: C:\Users\rodri\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-08] Edge HomePage: Default -> hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP Edge StartupUrls: Default -> "hxxp://google.com/" Edge Extension: (Afiliados - Gerador de Links) - C:\Users\rodri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\knhfaiaiolgkmelphhmcpaeadmoldndd [2021-02-27] FireFox: ======== FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default [2021-04-05] CHR HomePage: Default -> hxxp://mail.ru/cnt/10445?gp=811013 CHR StartupUrls: Default -> "hxxps://www.google.com.br/","hxxp://mail.ru/cnt/10445?gp=811013" CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/apps-notify/drive_96_1x.png CHR Extension: (Apresentações) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-05] CHR Extension: (Google Drive) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghbiahbpaijignceidepookljebhfak [2021-04-05] CHR Extension: (Documentos) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-05] CHR Extension: (Google Drive) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-05] CHR Extension: (YouTube) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-05] CHR Extension: (Coupert - Encontre Cupons e Cashback) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceidgambojhojfhmejceeedijjcpcjga [2021-04-05] CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2021-04-05] CHR Extension: (Planilhas) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-05] CHR Extension: (Favoritos do iCloud) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2021-04-05] CHR Extension: (Documentos Google off-line) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-05] CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2021-04-05] CHR Extension: (WhatFont) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2021-04-05] CHR Extension: (Chromebook Recovery Utility) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jndclpdbaamdhonoechobihbbiimdgai [2021-04-05] CHR Extension: (OneDrive) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2021-04-05] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-05] CHR Extension: (Gmail) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-05] CHR Extension: (Chrome Media Router) - C:\Users\rodri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-05] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16930616 2019-12-18] (Autodesk, Inc. -> Autodesk) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation) R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-03-30] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479640 2021-03-30] (Electronic Arts, Inc. -> Electronic Arts) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-17] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) S3 DroidCamVideo; C:\Windows\System32\drivers\droidcamvideo.sys [33784 2020-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2021-02-28] (FNet Co., Ltd. -> FNet Co., Ltd.) R3 LifeCamTrueColor; C:\Windows\system32\DRIVERS\LifeCamTrueColor.sys [37928 2016-07-27] (Microsoft Corporation -> Microsoft Corporation) S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-03-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [420072 2021-03-17] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-17] (Microsoft Windows -> Microsoft Corporation) S3 XSpltVid; C:\Windows\system32\DRIVERS\XSpltVid.sys [118800 2020-09-16] (Microsoft Windows Hardware Compatibility Publisher -> SplitmediaLabs Limited) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-04-08 11:00 - 2021-04-08 11:00 - 000021476 _____ C:\Users\rodri\Downloads\FRST.txt 2021-04-08 10:59 - 2021-04-08 11:00 - 000000000 ____D C:\FRST 2021-04-08 10:59 - 2021-04-08 10:59 - 002298368 _____ (Farbar) C:\Users\rodri\Downloads\FRST64.exe 2021-04-08 10:51 - 2021-04-08 10:51 - 000223878 _____ C:\Users\rodri\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab 2021-04-08 10:32 - 2021-04-08 10:32 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4197657792-588413649-2426973447-1001 2021-04-07 10:07 - 2021-04-07 10:07 - 000002230 _____ C:\Users\rodri\Downloads\RODRIGO DANTAS MACARIO.pdf 2021-04-07 08:55 - 2021-04-07 08:55 - 012309563 _____ C:\Users\rodri\Downloads\lff_T (1).pdf 2021-04-06 17:22 - 2021-04-06 17:22 - 019648512 _____ C:\Users\rodri\Downloads\ST_Template_2019_R1.rte 2021-04-06 13:43 - 2021-04-06 16:05 - 139243520 _____ C:\Users\rodri\Downloads\Academia da Saúde - Cruzeiro.rvt 2021-04-06 13:43 - 2021-04-06 13:43 - 132481024 _____ C:\Users\rodri\Downloads\Academia da Saúde - Cruzeiro.0002.rvt 2021-04-06 12:36 - 2021-04-06 12:36 - 000026802 _____ C:\Users\rodri\Downloads\solicitacao_licenca (1).pdf 2021-04-06 12:17 - 2021-04-06 12:17 - 000026426 _____ C:\Users\rodri\Desktop\lic.pdf 2021-04-05 17:53 - 2021-04-05 17:53 - 000000000 ____D C:\Users\rodri\AppData\Local\MicrosoftEdge 2021-04-05 17:50 - 2021-04-05 17:50 - 000000279 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk 2021-04-05 16:21 - 2021-04-05 16:21 - 000000327 _____ C:\Users\rodri\Downloads\cons_documentacao_licenca_web (2).pdf 2021-04-05 16:19 - 2021-04-05 16:19 - 000000327 _____ C:\Users\rodri\Downloads\cons_documentacao_licenca_web.pdf 2021-04-05 16:19 - 2021-04-05 16:19 - 000000327 _____ C:\Users\rodri\Downloads\cons_documentacao_licenca_web (1).pdf 2021-04-05 15:18 - 2021-04-05 15:18 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome 2021-04-05 15:16 - 2021-04-05 15:16 - 000000000 ____D C:\Users\rodri\AppData\Local\Google 2021-04-05 15:15 - 2021-04-05 15:15 - 001304160 _____ (Google LLC) C:\Users\rodri\Downloads\ChromeSetup.exe 2021-04-05 14:05 - 2021-04-05 14:05 - 000011353 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-04-05 11:05 - 2021-04-05 11:23 - 562841274 _____ C:\Users\rodri\Downloads\Q2PT 20210104.mp4 2021-04-02 20:36 - 2021-04-02 20:36 - 000071173 _____ C:\Users\rodri\Downloads\corr21_T_Ba_20210323 (1).pdf 2021-04-02 19:13 - 2021-04-02 19:13 - 000184355 _____ C:\Users\rodri\Downloads\S-147-21.03-T_Ba.pdf 2021-04-02 18:17 - 2021-04-02 18:23 - 000000000 ____D C:\Users\rodri\Desktop\Documentos reunião de hoje 2021-04-02 12:33 - 2021-04-02 12:33 - 000003618 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-02 12:33 - 2021-04-02 12:33 - 000003494 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-04-02 10:21 - 2021-04-02 10:21 - 000712475 _____ C:\Users\rodri\Downloads\S-99-T.pdf 2021-04-02 10:20 - 2021-04-02 10:20 - 000047323 _____ C:\Users\rodri\Downloads\S-99a-T.pdf 2021-04-02 10:19 - 2021-04-02 10:19 - 020459747 _____ C:\Users\rodri\Downloads\S-34mp_T.jwpub 2021-04-02 10:17 - 2021-04-02 10:17 - 000438038 _____ C:\Users\rodri\Downloads\OrientacoesCovid-19 (1).pdf 2021-04-02 10:16 - 2021-04-02 10:16 - 001677935 _____ C:\Users\rodri\Downloads\sfl_T (1).jwpub 2021-04-02 10:16 - 2021-04-02 10:16 - 000665040 _____ C:\Users\rodri\Downloads\sfla_s-Ba_T.jwpub 2021-04-02 10:16 - 2021-04-02 10:16 - 000097564 _____ C:\Users\rodri\Downloads\Alvos_para_2021_-_Anciãos.pdf 2021-04-02 09:44 - 2021-04-02 09:44 - 001904648 _____ C:\Users\rodri\Downloads\Dengue-IMPRESSAO_V6.pdf 2021-04-01 16:53 - 2021-04-01 16:53 - 001144503 _____ C:\Users\rodri\Downloads\Dengue-DIGITAL_V6.pdf 2021-04-01 16:33 - 2021-04-01 16:33 - 000111576 _____ C:\Users\rodri\Downloads\S-147_T_Ba_202104.pdf 2021-04-01 14:55 - 2021-04-01 14:55 - 000000000 ____D C:\Users\rodri\AppData\Local\Autodesk,_Inc 2021-04-01 14:49 - 2021-04-01 14:49 - 000000000 ____D C:\Windows\SysWOW64\GPUCache 2021-04-01 10:51 - 2021-04-01 10:51 - 000076614 _____ C:\Users\rodri\Downloads\S-61-T.pdf 2021-04-01 10:38 - 2021-04-01 10:38 - 000057064 _____ C:\Users\rodri\Downloads\S-179_T.jwpub 2021-04-01 10:23 - 2021-04-01 10:23 - 001677935 _____ C:\Users\rodri\Downloads\sfl_T.jwpub 2021-04-01 09:46 - 2021-04-01 09:46 - 000003802 _____ C:\Windows\system32\Tasks\Optimize Thumbnail Cache 2021-04-01 09:46 - 2021-04-01 09:46 - 000003354 _____ C:\Windows\system32\Tasks\KMSpico Automatic Update Scheduler 2021-04-01 09:46 - 2021-04-01 09:46 - 000000000 ____D C:\Program Files\KMSpico 2021-03-30 16:15 - 2021-03-30 16:15 - 001807271 _____ C:\Users\rodri\Downloads\ARQUITETÔNICO - PLANTA BAIXA - Cruzeiro - 01.pdf 2021-03-26 20:48 - 2021-03-26 20:48 - 000435872 _____ C:\Users\rodri\Downloads\OrientacoesCovid-19.pdf 2021-03-26 20:47 - 2021-03-26 20:47 - 000484802 _____ C:\Users\rodri\Downloads\km1001TsuplementoUs.pdf 2021-03-26 20:42 - 2021-03-26 20:42 - 000127779 _____ C:\Users\rodri\Downloads\Orientações_Testemunho.pdf 2021-03-25 17:46 - 2021-03-25 17:46 - 000036880 _____ C:\Users\rodri\Downloads\S-34_T_017.pdf 2021-03-25 13:26 - 2021-03-25 13:26 - 000000000 ____D C:\Users\rodri\Creative Cloud Files 2021-03-25 13:03 - 2021-03-25 13:03 - 000036200 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS 2021-03-25 12:16 - 2021-03-25 12:50 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Anvsoft 2021-03-25 12:16 - 2021-03-25 12:16 - 000000000 ____D C:\Program Files (x86)\Anvsoft 2021-03-25 11:40 - 2021-03-25 11:40 - 000000000 ____D C:\ProgramData\TEMP 2021-03-25 11:27 - 2021-03-25 11:27 - 000000000 ____D C:\Users\rodri\Documents\Adobe 2021-03-25 11:25 - 2021-03-25 11:25 - 000001354 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk 2021-03-25 11:21 - 2021-03-25 11:24 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-03-25 11:21 - 2021-03-25 11:24 - 000000000 ____D C:\Program Files\Adobe 2021-03-25 11:21 - 2021-03-25 11:21 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-03-25 11:20 - 2021-03-25 11:27 - 000000000 ____D C:\Users\rodri\AppData\Local\Adobe 2021-03-25 11:20 - 2021-03-25 11:20 - 000000000 ____D C:\ProgramData\Adobe 2021-03-24 23:44 - 2021-03-24 23:52 - 000000000 ____D C:\Users\rodri\Downloads\routerpassview 2021-03-24 16:50 - 2021-03-24 16:50 - 000071173 _____ C:\Users\rodri\Downloads\corr21_T_Ba_20210323.pdf 2021-03-24 10:26 - 2021-03-24 10:26 - 012309563 _____ C:\Users\rodri\Downloads\lff_T.pdf 2021-03-23 17:24 - 2021-03-23 17:24 - 000000000 ____D C:\Users\rodri\AppData\Local\OneDrive 2021-03-23 12:47 - 2021-03-23 12:47 - 000000000 ____D C:\Users\rodri\AppData\Roaming\EaseUS 2021-03-23 12:47 - 2021-03-23 12:47 - 000000000 ____D C:\ProgramData\SystemAcCrux 2021-03-23 12:45 - 2021-03-23 12:45 - 000000000 ____D C:\Program Files\EaseUS 2021-03-23 10:37 - 2021-03-23 10:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2021-03-23 10:37 - 2021-03-23 10:37 - 000000000 ____D C:\Program Files\CPUID 2021-03-22 19:31 - 2021-03-22 19:31 - 000000000 ____D C:\Users\rodri\Downloads\OneDrive-2021-03-22 2021-03-22 17:42 - 2021-03-22 17:51 - 000000000 ____D C:\Program Files\GlobalMapper22.1_64bit 2021-03-22 17:42 - 2021-03-22 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Global Mapper 2021-03-22 17:30 - 2021-03-22 17:39 - 329542645 _____ C:\Users\rodri\Downloads\Global.Mapper.22.1.0.x64.rar 2021-03-22 17:00 - 2021-03-22 17:50 - 000000000 ____D C:\ProgramData\GlobalMapper 2021-03-22 16:59 - 2021-03-22 17:53 - 000000000 ____D C:\Users\rodri\AppData\Local\GlobalMapper 2021-03-22 16:59 - 2021-03-22 16:59 - 000000000 ____D C:\Users\rodri\AppData\Local\SafeNet Sentinel 2021-03-22 16:59 - 2021-03-22 16:59 - 000000000 ____D C:\ProgramData\SafeNet Sentinel 2021-03-22 16:32 - 2021-03-23 08:54 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Package Cache 2021-03-22 16:31 - 2021-03-22 16:31 - 000000000 ___HD C:\ProgramData\{480EDBFA-DDEA-47BD-BABE-99124B516A50} 2021-03-22 16:29 - 2021-03-22 17:40 - 000000000 ____D C:\Users\rodri\AppData\Local\IIIQF 2021-03-22 10:33 - 2021-03-22 10:33 - 000000218 ____H C:\Users\rodri\Documents\Desenho1.dwl2 2021-03-22 10:33 - 2021-03-22 10:33 - 000000067 ____H C:\Users\rodri\Documents\Desenho1.dwl 2021-03-21 23:36 - 2021-03-21 23:38 - 691403504 _____ (Foxit Software Inc.) C:\Users\rodri\Downloads\FoxitPhantomPDF1013_L10N_Setup_Website.exe 2021-03-19 22:43 - 2021-03-19 22:43 - 000000892 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FIFA19.lnk 2021-03-19 17:44 - 2021-03-19 17:58 - 000000000 ____D C:\Users\rodri\Downloads\EPC 2021-03-19 17:41 - 2021-03-19 17:42 - 000866586 _____ C:\Users\rodri\Downloads\EPC.zip 2021-03-18 10:59 - 2021-03-18 10:59 - 000007597 _____ C:\Users\rodri\AppData\Local\Resmon.ResmonCfg 2021-03-18 00:03 - 2021-03-18 00:10 - 000000000 ____D C:\Users\rodri\AppData\Local\Personify,_Inc 2021-03-18 00:02 - 2021-03-18 00:10 - 000000000 ____D C:\Users\rodri\AppData\Local\Personify 2021-03-17 23:38 - 2021-03-17 23:38 - 000000751 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tswinp.lnk 2021-03-17 12:30 - 2021-03-17 12:30 - 000000000 ____D C:\Users\rodri\AppData\LocalLow\Temp 2021-03-16 10:42 - 2021-03-16 10:42 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Agisoft 2021-03-16 10:42 - 2021-03-16 10:42 - 000000000 ____D C:\Users\rodri\AppData\Local\data 2021-03-16 10:42 - 2021-03-16 10:42 - 000000000 ____D C:\Users\rodri\AppData\Local\Agisoft 2021-03-16 10:42 - 2021-03-16 10:42 - 000000000 ____D C:\ProgramData\Reprise 2021-03-16 10:41 - 2021-03-16 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agisoft 2021-03-16 10:41 - 2021-03-16 10:41 - 000000000 ____D C:\Program Files\Agisoft 2021-03-15 18:21 - 2021-03-15 18:21 - 000000000 ____D C:\Users\rodri\Documents\Corel 2021-03-15 18:15 - 2021-03-15 18:21 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Corel 2021-03-15 18:15 - 2021-03-15 18:15 - 000000000 ____D C:\Program Files (x86)\gs 2021-03-15 18:14 - 2021-03-17 23:42 - 000000000 ____D C:\Program Files (x86)\Corel 2021-03-15 18:14 - 2021-03-15 18:14 - 000000000 ____D C:\Program Files\Common Files\Corel 2021-03-15 18:13 - 2021-03-19 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite 2020 (64-bit) 2021-03-15 18:13 - 2021-03-17 23:41 - 000000000 ____D C:\ProgramData\Corel 2021-03-15 18:13 - 2021-03-15 18:14 - 000000000 ____D C:\Program Files\Corel 2021-03-15 18:12 - 2021-03-15 18:12 - 000000000 ____D C:\ProgramData\UniqueId 2021-03-15 16:03 - 2021-03-15 16:03 - 000094619 _____ C:\Users\rodri\Downloads\corr_T_Ba_20210312.pdf 2021-03-14 16:49 - 2021-03-29 10:36 - 000000000 ____D C:\Users\rodri\AppData\Local\AMD_Common 2021-03-11 17:28 - 2021-04-03 12:13 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Notion 2021-03-11 17:28 - 2021-04-02 18:24 - 000000000 ____D C:\Users\rodri\AppData\Local\notion-updater 2021-03-11 17:28 - 2021-03-25 15:00 - 000002237 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notion.lnk 2021-03-11 13:05 - 2021-03-11 13:05 - 000000000 ____D C:\Users\rodri\AppData\Local\TeamViewer 2021-03-11 13:02 - 2021-04-08 10:53 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-03-11 13:02 - 2021-04-02 12:33 - 000000000 ____D C:\Users\rodri\AppData\Roaming\TeamViewer 2021-03-11 13:02 - 2021-03-22 15:13 - 000001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2021-03-10 21:02 - 2021-03-10 21:02 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2021-03-10 21:02 - 2021-03-10 21:02 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2021-03-10 21:02 - 2021-03-10 21:02 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll 2021-03-10 21:01 - 2021-03-10 21:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2021-03-10 21:01 - 2021-03-10 21:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2021-03-10 21:01 - 2021-03-10 21:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2021-03-10 21:01 - 2021-03-10 21:01 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE 2021-03-10 21:01 - 2021-03-10 21:01 - 000707016 _____ C:\Windows\system32\TextShaping.dll 2021-03-10 21:01 - 2021-03-10 21:01 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll 2021-03-10 21:01 - 2021-03-10 21:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll 2021-03-10 21:01 - 2021-03-10 21:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys 2021-03-09 19:03 - 2021-03-09 19:03 - 000000000 ____D C:\ProgramData\SplitmediaLabs 2021-03-09 19:00 - 2021-03-09 19:00 - 000000000 ____D C:\Users\rodri\AppData\Local\SplitmediaLabs 2021-03-09 18:59 - 2021-03-09 18:59 - 000000000 ____D C:\Users\rodri\Documents\vcam 2021-03-09 18:58 - 2021-03-09 18:58 - 000000000 ____D C:\ProgramData\Caphyon 2021-03-09 18:58 - 2021-03-09 18:58 - 000000000 ____D C:\Program Files (x86)\SplitmediaLabs 2021-03-08 13:39 - 2021-04-02 08:19 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime 2021-03-08 13:38 - 2021-03-08 13:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LifeCamTrueColor_01011.Wdf 2021-03-08 13:38 - 2021-03-08 13:38 - 000000000 ____D C:\Windows\SysWOW64\LifeCamTrueColor 2021-03-08 13:38 - 2021-03-08 13:38 - 000000000 ____D C:\Windows\system32\LifeCamTrueColor 2021-03-08 10:48 - 2021-04-01 15:01 - 000000000 ____D C:\ProgramData\boost_interprocess 2021-03-08 10:48 - 2021-03-08 12:00 - 000000000 ____D C:\Users\rodri\Documents\My Vehicle Tracking Data 2021-03-08 10:47 - 2021-03-08 10:47 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk 2021-03-08 10:44 - 2021-03-08 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk Civil 3D 2021 - Português - Brasil (Brazilian Portuguese) 2021-03-08 10:39 - 2021-03-08 10:39 - 000000000 ____D C:\Users\rodri\AppData\Local\AdSSO 2021-03-08 10:30 - 2021-03-08 10:30 - 000000000 ____D C:\Autodesk 2021-03-08 09:36 - 2021-04-05 15:20 - 000000000 ____D C:\Program Files\Google 2021-03-08 09:36 - 2021-03-08 09:36 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2021-03-08 09:36 - 2021-03-08 09:36 - 000000000 ____D C:\Users\rodri\AppData\LocalLow\Google 2021-03-08 09:35 - 2021-03-08 09:35 - 000000000 ____D C:\Program Files (x86)\Google 2021-03-06 23:01 - 2021-03-06 23:01 - 000000000 _____ C:\Windows\EEventManager.INI 2021-03-06 10:33 - 2021-03-06 10:34 - 000000000 ____D C:\Users\rodri\Documents\Gravações de som 2021-03-05 11:02 - 2021-03-05 11:26 - 000000000 ____D C:\ProgramData\X360CE 2021-03-05 10:55 - 2021-03-05 12:14 - 000000000 ____D C:\Users\rodri\Documents\FIFA 19 2021-03-05 08:31 - 2021-03-05 08:31 - 000000000 ____D C:\Users\rodri\Documents\Zoom 2021-03-04 23:33 - 2021-03-04 23:34 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Epson 2021-03-04 17:56 - 2021-03-04 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-03-04 14:07 - 2021-03-12 12:13 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2021-03-04 13:44 - 2021-03-04 13:44 - 000000042 _____ C:\Windows\L380.ini 2021-03-04 13:44 - 2021-03-04 13:44 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Leadertech 2021-03-04 13:34 - 2021-03-04 13:34 - 000000000 ____D C:\ProgramData\UDL 2021-03-04 13:34 - 2021-03-04 13:34 - 000000000 ____D C:\ProgramData\Sony Corporation 2021-03-04 13:33 - 2021-03-04 13:34 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-03-04 13:33 - 2021-03-04 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2021-03-04 13:33 - 2021-03-04 13:34 - 000000000 ____D C:\Program Files (x86)\EPSON Software 2021-03-04 12:59 - 2021-03-04 13:34 - 000000000 ____D C:\ProgramData\EPSON 2021-03-04 12:59 - 2021-03-04 13:34 - 000000000 ____D C:\Program Files\epson 2021-03-04 12:59 - 2021-03-04 13:33 - 000000000 ____D C:\Program Files (x86)\epson 2021-03-04 12:59 - 2021-03-04 12:59 - 000000000 ____D C:\Windows\twain_64 2021-03-04 12:59 - 2021-03-04 12:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2021-03-04 12:59 - 2021-03-04 12:59 - 000000000 ____D C:\Program Files\Common Files\EPSON 2021-03-04 12:59 - 2020-10-02 18:26 - 000206304 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe 2021-03-04 12:59 - 2020-10-02 18:26 - 000165392 _____ (TWAIN Working Group) C:\Windows\system32\twaindsm.dll 2021-03-04 12:59 - 2020-10-02 18:26 - 000147472 _____ (TWAIN Working Group) C:\Windows\SysWOW64\twaindsm.dll 2021-03-04 12:59 - 2017-03-10 16:02 - 000474624 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll 2021-03-04 12:59 - 2015-12-09 04:08 - 000182784 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMBRQE.DLL 2021-03-04 12:59 - 2011-03-15 03:03 - 000083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BRQE.DLL 2021-03-04 00:06 - 2021-03-04 00:06 - 000000000 ____D C:\Users\rodri\Documents\Modelos Personalizados do Office 2021-03-03 21:24 - 2021-03-30 15:01 - 000000000 ____D C:\Users\rodri\Desktop\Things 2021-03-03 21:17 - 2021-04-05 16:01 - 000000000 ____D C:\Tswinp 2021-03-03 20:06 - 2021-04-08 10:53 - 000000000 ___RD C:\Users\rodri\iCloudDrive 2021-03-03 20:03 - 2021-03-03 20:03 - 000000000 ____D C:\ProgramData\Apple Inc 2021-03-03 17:02 - 2021-04-02 12:33 - 001684820 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2021-03-01 19:28 - 2021-03-10 23:16 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Foxit Software 2021-03-01 19:28 - 2021-03-01 19:28 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Foxit AgentInformation 2021-03-01 19:28 - 2021-03-01 19:28 - 000000000 ____D C:\Users\rodri\AppData\LocalLow\Foxit 2021-03-01 19:28 - 2021-03-01 19:28 - 000000000 ____D C:\ProgramData\Foxit Software 2021-03-01 19:28 - 2021-03-01 19:28 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform 2021-03-01 19:28 - 2021-03-01 19:28 - 000000000 ____D C:\Program Files (x86)\Foxit Software 2021-03-01 16:40 - 2021-03-01 16:40 - 000000000 ____D C:\Users\rodri\Apple 2021-03-01 16:39 - 2021-03-03 20:03 - 000000000 ____D C:\ProgramData\Apple 2021-03-01 16:39 - 2021-03-01 16:39 - 000000000 ____D C:\ProgramData\Apple Computer 2021-03-01 09:33 - 2021-03-04 23:35 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-03-01 09:33 - 2021-03-01 09:33 - 000000000 ____D C:\Users\rodri\Documents\FIFA 21 2021-03-01 09:32 - 2021-04-01 18:08 - 000000000 ____D C:\Program Files (x86)\Origin 2021-03-01 09:32 - 2021-03-01 09:32 - 000000000 ____D C:\ProgramData\Electronic Arts 2021-03-01 09:31 - 2021-03-05 10:37 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Origin 2021-03-01 09:31 - 2021-03-04 23:34 - 000000000 ____D C:\Users\rodri\AppData\Local\Origin 2021-03-01 09:31 - 2021-03-01 09:31 - 000000000 ____D C:\Users\rodri\.QtWebEngineProcess 2021-03-01 09:31 - 2021-03-01 09:31 - 000000000 ____D C:\Users\rodri\.Origin 2021-03-01 09:28 - 2021-03-04 23:35 - 000000000 ____D C:\ProgramData\Origin 2021-03-01 08:30 - 2021-03-01 08:30 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2021-03-01 08:30 - 2021-03-01 08:30 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2021-03-01 08:30 - 2021-03-01 08:30 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2021-03-01 08:30 - 2021-03-01 08:30 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl 2021-03-01 08:30 - 2021-03-01 08:30 - 000234496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2021-03-01 08:30 - 2021-03-01 08:30 - 000157184 _____ C:\Windows\system32\uwfcsp.dll 2021-03-01 08:30 - 2021-03-01 08:30 - 000138056 _____ C:\Windows\system32\HvsiManagementApi.dll 2021-03-01 08:30 - 2021-03-01 08:30 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax 2021-03-01 08:30 - 2021-03-01 08:30 - 000101704 _____ C:\Windows\SysWOW64\HvsiManagementApi.dll 2021-03-01 08:30 - 2021-03-01 08:30 - 000095744 _____ C:\Windows\system32\VirtualMonitorManager.dll 2021-03-01 08:30 - 2021-03-01 08:30 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl 2021-03-01 08:30 - 2021-03-01 08:30 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2021-03-01 08:30 - 2021-03-01 08:30 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl 2021-03-01 08:30 - 2021-03-01 08:30 - 000053760 _____ C:\Windows\SysWOW64\BWContextHandler.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000729600 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2021-03-01 08:29 - 2021-03-01 08:29 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000455680 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000422912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2021-03-01 08:29 - 2021-03-01 08:29 - 000330752 _____ C:\Windows\SysWOW64\ssdm.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2021-03-01 08:29 - 2021-03-01 08:29 - 000266240 _____ C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000240640 _____ C:\Windows\SysWOW64\CoreMas.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000235520 _____ C:\Windows\SysWOW64\HeatCore.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax 2021-03-01 08:29 - 2021-03-01 08:29 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl 2021-03-01 08:29 - 2021-03-01 08:29 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2021-03-01 08:29 - 2021-03-01 08:29 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-03-01 08:29 - 2021-03-01 08:29 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2021-03-01 08:29 - 2021-03-01 08:29 - 000010752 _____ C:\Windows\SysWOW64\agentactivationruntimestarter.exe 2021-03-01 08:28 - 2021-03-01 08:28 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 002254336 _____ C:\Windows\system32\dwmscene.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000643072 _____ C:\Windows\system32\WindowManagementAPI.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000562688 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2021-03-01 08:28 - 2021-03-01 08:28 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl 2021-03-01 08:28 - 2021-03-01 08:28 - 000455168 _____ C:\Windows\system32\ssdm.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000363520 _____ C:\Windows\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000306688 _____ C:\Windows\system32\HeatCore.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000287232 _____ C:\Windows\system32\CoreMas.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2021-03-01 08:28 - 2021-03-01 08:28 - 000190976 _____ C:\Windows\system32\BthpanContextHandler.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-03-01 08:28 - 2021-03-01 08:28 - 000152064 _____ C:\Windows\system32\EoAExperiences.exe 2021-03-01 08:28 - 2021-03-01 08:28 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000074240 _____ C:\Windows\system32\rdsxvmaudio.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-03-01 08:28 - 2021-03-01 08:28 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe 2021-03-01 08:28 - 2021-03-01 08:28 - 000001370 _____ C:\Windows\system32\ThirdPartyNoticesBySHS.txt 2021-03-01 08:21 - 2021-03-01 08:21 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-03-01 08:19 - 2021-03-10 20:50 - 000000000 ____D C:\Windows\system32\MRT 2021-03-01 08:19 - 2021-03-01 08:19 - 000000000 ___HD C:\$WinREAgent 2021-02-28 22:23 - 2021-02-28 22:33 - 000000000 ____D C:\Program Files (x86)\Data Transfer Accelerator 2021-02-28 22:23 - 2021-02-28 22:23 - 000032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS 2021-02-28 22:23 - 2021-02-28 22:23 - 000000000 ____D C:\Users\rodri\AppData\Roaming\FNET 2021-02-28 22:23 - 2021-02-28 22:23 - 000000000 ____D C:\ProgramData\FNET 2021-02-28 22:01 - 2021-02-28 22:01 - 000000000 ____D C:\Users\rodri\Documents\Inventor Server for AutoCAD 2021-02-28 22:01 - 2021-02-28 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2020 - Português - Brasil (Brazilian Portuguese) 2021-02-28 10:31 - 2021-02-28 10:31 - 000000000 ____D C:\Users\rodri\AppData\Local\PeerDistRepub 2021-02-28 10:19 - 2021-03-24 16:29 - 000002565 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-02-28 10:19 - 2021-03-04 17:56 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2021-02-28 10:17 - 2021-03-23 19:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-02-28 10:17 - 2021-02-28 10:17 - 000000000 ____D C:\Program Files\Microsoft Office 15 2021-02-28 06:17 - 2021-04-08 10:48 - 000000000 ____D C:\ProgramData\RevitInterProcess 2021-02-28 06:17 - 2021-03-16 09:55 - 000150408 _____ C:\Users\rodri\AppData\Local\GDIPFONTCACHEV1.DAT 2021-02-28 06:09 - 2021-02-28 06:09 - 000000000 ____D C:\ProgramData\FLEXnet 2021-02-28 05:56 - 2021-03-08 10:47 - 000000000 ____D C:\Users\rodri\Autodesk 2021-02-28 05:55 - 2021-03-09 10:01 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Autodesk 2021-02-28 05:55 - 2021-02-28 05:55 - 000000000 ____D C:\Users\rodri\AppData\Local\CEF 2021-02-28 05:53 - 2021-03-09 10:01 - 000000000 ____D C:\Users\rodri\AppData\Local\Autodesk 2021-02-28 05:52 - 2021-03-08 10:43 - 000000000 ____D C:\Program Files (x86)\Autodesk 2021-02-28 05:52 - 2021-03-08 10:41 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2021-02-28 05:49 - 2021-02-28 05:49 - 000002364 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-02-28 05:49 - 2021-02-28 05:49 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Teams 2021-02-28 05:49 - 2021-02-28 05:49 - 000000000 ____D C:\Users\rodri\AppData\Local\SquirrelTemp 2021-02-28 05:48 - 2021-03-08 10:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2021-02-28 05:48 - 2021-02-28 05:48 - 000000000 ____D C:\Program Files\Microsoft SQL Server 2021-02-28 05:48 - 2021-02-28 05:48 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2021-02-28 05:46 - 2021-02-28 05:46 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Zoom 2021-02-28 05:46 - 2021-02-28 05:46 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-02-28 05:41 - 2021-03-08 10:48 - 000000000 ____D C:\Program Files\Autodesk 2021-02-28 05:04 - 2021-04-08 10:53 - 000000000 ____D C:\ProgramData\Autodesk 2021-02-28 03:53 - 2021-03-25 22:19 - 000000000 ____D C:\Users\rodri\AppData\Local\BitTorrentHelper 2021-02-28 03:52 - 2021-03-25 22:35 - 000000000 ____D C:\Users\rodri\AppData\Roaming\uTorrent 2021-02-28 03:51 - 2021-02-28 03:51 - 000000000 ____D C:\Users\rodri\AppData\Local\UT008 2021-02-28 03:43 - 2021-03-08 10:39 - 000000000 ____D C:\Users\rodri\AppData\Local\cache 2021-02-28 03:36 - 2021-03-25 11:21 - 000000000 ____D C:\ProgramData\Package Cache 2021-02-28 03:36 - 2021-02-28 03:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software 2021-02-28 03:36 - 2021-02-22 11:53 - 000107656 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2021-02-28 03:35 - 2021-02-28 03:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2021-02-28 03:34 - 2021-02-28 03:34 - 000000000 ____D C:\Users\rodri\AppData\Local\RadeonInstaller 2021-02-28 03:34 - 2021-02-28 03:34 - 000000000 ____D C:\ProgramData\AMD 2021-02-28 03:33 - 2021-03-29 10:41 - 000000000 ____D C:\AMD 2021-02-28 03:22 - 2021-02-28 03:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2021-02-28 03:22 - 2021-02-28 03:22 - 000000000 ____D C:\Program Files\7-Zip 2021-02-27 22:13 - 2021-02-28 03:41 - 000000000 ____D C:\Users\rodri\AppData\Local\Comms 2021-02-27 22:03 - 2021-02-28 03:40 - 000000000 ____D C:\Users\rodri\AppData\Local\PackageStaging 2021-02-27 21:58 - 2021-04-08 10:53 - 000000000 ___RD C:\Users\rodri\OneDrive 2021-02-27 21:58 - 2021-02-27 21:58 - 000000000 ___HD C:\OneDriveTemp 2021-02-27 21:57 - 2021-03-30 14:44 - 000000000 ____D C:\Users\rodri\AppData\Local\PlaceholderTileLogoFolder 2021-02-27 21:56 - 2021-04-05 16:33 - 000000000 ____D C:\Users\rodri\AppData\Local\Packages 2021-02-27 21:56 - 2021-03-27 08:28 - 000000000 ____D C:\Users\rodri\AppData\Local\D3DSCache 2021-02-27 21:56 - 2021-03-25 11:27 - 000000000 ____D C:\Users\rodri\AppData\Roaming\Adobe 2021-02-27 21:56 - 2021-03-01 16:39 - 000000000 ____D C:\Users\rodri\AppData\Local\Publishers 2021-02-27 21:56 - 2021-02-28 05:52 - 000000000 ____D C:\Users\rodri\AppData\Local\ConnectedDevicesPlatform 2021-02-27 21:56 - 2021-02-28 03:43 - 000000000 ____D C:\Users\rodri\AppData\Local\AMD 2021-02-27 21:56 - 2021-02-27 21:56 - 000000000 ___RD C:\Users\rodri\3D Objects 2021-02-27 21:56 - 2021-02-27 21:56 - 000000000 ____D C:\Users\rodri\AppData\LocalLow\AMD 2021-02-27 21:56 - 2021-02-27 21:56 - 000000000 ____D C:\Users\rodri\AppData\Local\VirtualStore 2021-02-27 21:53 - 2021-04-08 10:32 - 000002369 _____ C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-27 21:53 - 2021-03-29 23:20 - 000000000 ____D C:\Users\rodri 2021-02-27 21:53 - 2021-02-27 21:53 - 000000020 ___SH C:\Users\rodri\ntuser.ini 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Modelos 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Meus Documentos 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Menu Iniciar 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Documents\Minhas Músicas 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Documents\Minhas Imagens 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Documents\Meus Vídeos 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Dados de Aplicativos 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Configurações Locais 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\AppData\Local\Histórico 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\AppData\Local\Dados de Aplicativos 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Ambiente de Rede 2021-02-27 21:53 - 2021-02-27 21:53 - 000000000 _SHDL C:\Users\rodri\Ambiente de Impressão 2021-02-27 21:52 - 2021-02-28 03:36 - 000000000 ____D C:\Windows\system32\AMD 2021-02-27 21:52 - 2021-02-28 03:36 - 000000000 ____D C:\Program Files\AMD 2021-02-27 21:52 - 2019-10-30 02:20 - 005623256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPOU64.dll 2021-02-27 21:52 - 2019-10-30 02:20 - 001126344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll 2021-02-27 21:52 - 2019-10-30 02:20 - 000481888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2021-02-27 21:52 - 2019-10-29 23:20 - 000856288 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe 2021-02-27 21:52 - 2019-10-29 23:20 - 000821336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll 2021-02-27 21:52 - 2019-10-29 23:20 - 000215032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2021-02-27 21:51 - 2021-02-22 11:54 - 001800504 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2021-02-27 21:51 - 2021-02-22 11:53 - 000202104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2021-02-27 21:51 - 2020-10-29 12:29 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2021-02-27 21:51 - 2020-10-29 12:29 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2021-02-27 21:51 - 2020-10-29 12:29 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin 2021-02-27 21:51 - 2020-10-29 12:29 - 000121168 _____ C:\Windows\system32\kapp_si.sbin 2021-02-27 21:51 - 2020-10-29 12:28 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2021-02-27 21:51 - 2020-10-29 12:28 - 000204952 _____ C:\Windows\system32\ativvsvl.dat 2021-02-27 21:51 - 2020-10-29 12:28 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2021-02-27 21:51 - 2020-10-29 12:28 - 000157144 _____ C:\Windows\system32\ativvsva.dat 2021-02-27 11:02 - 2021-02-27 11:02 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2021-02-27 11:00 - 2021-04-08 10:59 - 001675134 _____ C:\Windows\system32\PerfStringBackup.INI 2021-02-27 10:58 - 2021-02-27 10:58 - 000000000 ____D C:\Windows\CSC 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Usuário Padrão 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Todos os Usuários 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Modelos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Meus Documentos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Menu Iniciar 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Músicas 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Imagens 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Documents\Meus Vídeos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Configurações Locais 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\ProgramData\Modelos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\ProgramData\Menu Iniciar 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\ProgramData\Documentos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Program Files\Common Files\Sistema 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Program Files\Arquivos Comuns 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Documents and Settings 2021-02-27 10:56 - 2021-02-27 10:56 - 000000000 _SHDL C:\Arquivos de Programas 2021-02-27 10:54 - 2021-02-27 10:54 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-02-27 10:53 - 2021-04-08 10:53 - 000008192 ___SH C:\DumpStack.log.tmp 2021-02-27 10:53 - 2021-03-01 11:56 - 000000000 ____D C:\Windows\Panther 2021-02-22 11:55 - 2021-02-22 11:55 - 001857824 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 001857824 _____ C:\Windows\system32\vulkaninfo.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 001438528 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 001438528 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 001093704 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 001093704 _____ C:\Windows\system32\vulkan-1.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000736544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000620832 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000496416 _____ C:\Windows\system32\GameManager64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000492856 _____ C:\Windows\system32\dgtrayicon.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 000432448 _____ C:\Windows\system32\EEURestart.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 000379680 _____ C:\Windows\SysWOW64\GameManager32.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000339232 _____ C:\Windows\system32\clinfo.exe 2021-02-22 11:55 - 2021-02-22 11:55 - 000186656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000166696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000166200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000156480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000142136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000140576 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000135456 _____ (AMD) C:\Windows\system32\atimuixx.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000090400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000075040 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000046368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000043304 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000019840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2021-02-22 11:55 - 2021-02-22 11:55 - 000019832 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 079753528 _____ C:\Windows\system32\amd_comgr.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 065448768 _____ C:\Windows\SysWOW64\amd_comgr32.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 004922176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 004628800 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 001492768 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 001358112 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 001358112 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000796968 _____ (AMD) C:\Windows\system32\atieclxx.exe 2021-02-22 11:54 - 2021-02-22 11:54 - 000468256 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000456000 _____ C:\Windows\system32\atieah64.exe 2021-02-22 11:54 - 2021-02-22 11:54 - 000351552 _____ C:\Windows\SysWOW64\atieah32.exe 2021-02-22 11:54 - 2021-02-22 11:54 - 000245032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000212768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000182064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000158320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000149816 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000130368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000125240 _____ C:\Windows\system32\atidxx64.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000122176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000107296 _____ C:\Windows\SysWOW64\atidxx32.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000106784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2021-02-22 11:54 - 2021-02-22 11:54 - 000069952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 073048376 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 001685704 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000940832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000768288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000466208 _____ C:\Windows\system32\amdlogum.exe 2021-02-22 11:53 - 2021-02-22 11:53 - 000379704 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000169656 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000130288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2021-02-22 11:53 - 2021-02-22 11:53 - 000108304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 001365040 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 000546872 _____ C:\Windows\system32\amdmiracast.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 000135984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 000130288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 000120320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2021-02-22 11:52 - 2021-02-22 11:52 - 000108304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2021-02-17 12:46 - 2021-02-17 12:46 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2021-02-17 12:46 - 2021-02-17 12:46 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2021-02-17 12:40 - 2021-02-17 12:40 - 000554160 _____ C:\Windows\SysWOW64\atiapfxx.blb 2021-02-17 12:40 - 2021-02-17 12:40 - 000554160 _____ C:\Windows\system32\atiapfxx.blb 2021-02-09 14:39 - 2021-02-09 14:39 - 000517536 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdfendrsr.exe 2021-02-09 14:39 - 2021-02-09 14:39 - 000098744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys ==================== Três meses (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-04-08 10:59 - 2019-12-07 11:53 - 000724402 _____ C:\Windows\system32\prfh0416.dat 2021-04-08 10:59 - 2019-12-07 11:53 - 000143378 _____ C:\Windows\system32\prfc0416.dat 2021-04-08 10:59 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-08 10:59 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2021-04-08 10:59 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-08 10:59 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2021-04-08 10:53 - 2020-11-18 23:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-04-08 10:52 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2021-04-08 10:14 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-04-08 10:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ServiceState 2021-04-05 23:29 - 2020-11-18 23:45 - 000632664 _____ C:\Windows\system32\FNTCACHE.DAT 2021-04-05 23:28 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lv-LV 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lt-LT 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\et-EE 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\Provisioning 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-04-05 23:28 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2021-04-05 14:07 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2021-04-05 14:04 - 2020-11-18 23:47 - 002877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2021-04-03 10:39 - 2020-11-18 23:48 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-30 14:44 - 2020-11-18 23:49 - 000000000 ____D C:\ProgramData\Packages 2021-03-23 18:56 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2021-03-17 11:22 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-03-15 18:15 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-03-11 00:09 - 2019-12-07 11:56 - 000000000 ___SD C:\Windows\system32\AppV 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2021-03-11 00:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism ==================== Arquivos na raiz de alguns diretórios ======== 2021-03-18 10:59 - 2021-03-18 10:59 - 000007597 _____ () C:\Users\rodri\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================