Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20-01-2023 Executado por User (administrador) em DESKTOP-8MSIH6J (Gigabyte Technology Co., Ltd. M68MT-S2P) (22-01-2023 19:24:40) Executando a partir de C:\Users\User\Desktop Perfis Carregados: User Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.2486 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.135\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.135\BraveCrashHandler64.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe (C:\Users\User\Desktop\adwcleaner.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <36> (explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Users\User\Desktop\adwcleaner.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (services.exe ->) () [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\Common Files\FeelgoodDestroyaWH\FeelgoodDestroyaWH.exe (services.exe ->) (ALT Dev Group -> ) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\Altruistic\Altruistic.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711328 2022-06-16] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [126403424 2022-03-21] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [Arquivo não assinado] HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [2492128 2022-10-13] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32754128 2022-12-20] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149608 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000003] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000004] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Discord] => C:\Users\User\AppData\Local\Discord\Update.exe [1525016 2022-10-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Viewndow] => C:\Users\User\AppData\Local\Programs\Viewndow\Viewndow.exe (Nenhum Arquivo) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [TaskbarSystem] => C:\Users\User\AppData\Local\Programs\TaskbarSystem\TaskbarSystem.exe (Nenhum Arquivo) HKLM\...\Print\Monitors\EPSON L3250 Series 64MonitorBE: C:\Windows\system32\E_YLMBYWE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Arquivo não assinado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-18] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\109.1.47.171\Installer\chrmstp.exe [2023-01-17] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {16993602-A237-4948-97E1-C47427691A66} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1000 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (Nenhum Arquivo) Task: {1CFAFA94-6A32-4E50-915E-08D9D5B94F9E} - System32\Tasks\GoogleUpdateTaskMachineCore{5E2287D9-A541-4FD2-B857-8CC3CB625FB7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-13] (Google LLC -> Google LLC) Task: {2C22999B-EC9B-4143-837F-F837463E4115} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {2EE19EDE-FB65-489A-AFA6-AB83A14BD44B} - System32\Tasks\EPSON L3250 Series Update {9C03390E-FB09-4550-AA79-82566BA37588} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {37773AA6-AD4E-456E-A9B9-ED79A4A80780} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck Task: {39129647-1F58-442A-885F-A1DFBCA4A973} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6624232 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {3979A585-B6F0-412E-BFC8-9CE765A87860} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3C88E902-15AD-4126-AE6F-F7B7A1E1067D} - System32\Tasks\AMD RELAUNCHER => C:\AMD\Win10-Radeon-Pro-Software-Enterprise-21.Q2.1\\Bin64\InstallManagerApp.exe [1714648 ] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {558873BA-299A-4E26-A0C2-FC1FDADE80F4} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{EDB9513D-9C9C-4E10-AE86-78F9E1A01ED2} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {6F29DC16-CCBD-43CA-81B1-87B4EC16E64E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {7A6C9C97-0C91-4D06-B914-9609381CF018} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {A7AA8EB3-75F7-4153-99F0-78F46246F398} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6624232 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {A922942D-5389-4BA5-AFF3-053FC5C25AC6} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4185008 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {AD8BFB3B-0DFC-4562-8DFE-610664DCDE78} - System32\Tasks\GoogleUpdateTaskMachineUA{326F73CC-F1D8-4E84-97C9-02838DA395A4} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-13] (Google LLC -> Google LLC) Task: {BD54A80F-FB71-4F77-8BE2-FDF214370A36} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4185008 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {CE4BBF4C-1C26-49CA-98E3-D76D89E25769} - System32\Tasks\EPSON L3250 Series Update {B12943C1-781E-4AF1-BC89-98EE39233F02} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {D5DC78B9-551B-49F3-B69D-57CC1638898D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116096 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {E3A1F830-2226-46E8-A3C5-54D3F666E2C5} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD10E9D6-AD60-4802-8595-DD4F8F445324} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {E55DC332-CE7B-4E11-8334-296D5828D084} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116096 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {EE7DF701-3F83-4BED-9F1B-C3D9DF0EF771} - System32\Tasks\Opera GX scheduled Autoupdate 1674061990 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo) Task: {F8A29D69-E481-4662-9233-DE5E5C49B724} - System32\Tasks\EPSON L3250 Series Update {AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {FBB7977C-99B3-4AC4-9EDC-70A996F71618} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\EPSON L3250 Series Update {9C03390E-FB09-4550-AA79-82566BA37588}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{9C03390E-FB09-4550-AA79-82566BA37588} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\EPSON L3250 Series Update {AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\EPSON L3250 Series Update {B12943C1-781E-4AF1-BC89-98EE39233F02}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{B12943C1-781E-4AF1-BC89-98EE39233F02} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6e87e3f9-9c83-48a4-bafa-232743692e5e}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-22] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: fwdwavai.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\fwdwavai.default [2023-01-18] FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\lbh391y4.default-release [2023-01-22] FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-10-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-13] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2023-01-18] <==== ATENÇÃO (Aponta para arquivo *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2023-01-18] <==== ATENÇÃO Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-01-21] CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Super AdBlock para Sites & YouTube™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehbcbdefgokbnkgnkecmlabccnfnodab [2023-01-10] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-12-22] CHR Extension: (Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2022-12-16] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-13] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-22] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-01-22] CHR Extension: (Dark Theme v3) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2023-01-17] CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-17] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-01-10] CHR Extension: (Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2022-12-22] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-17] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-22] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] Brave: ======= BRA Profile: C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-01-21] BRA Extension: (Brave Local Data Files Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-01-21] BRA Extension: (Brave NTP background images) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-01-17] BRA Extension: (Brave NTP sponsored images) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2023-01-21] BRA Extension: (Wallet Data Files Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-01-17] BRA Extension: (Brave Ads Resources) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\fbpmbjccnaaeogogeldlomcmlhllgaje [2023-01-18] BRA Extension: (Brave Ads Resources) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\fimpfhgllgkaekhbpkakjchdogecjflf [2023-01-17] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-01-17] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-01-21] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese (plaintext))) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\meimhmgfbckapkbbbdaoefgnbppmkodp [2023-01-21] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-01-17] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-01-17] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) "AltruisticsService" => o serviço foi desbloqueado. <==== ATENÇÃO "FeelgoodDestroyaWH" => o serviço foi desbloqueado. <==== ATENÇÃO S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 AltruisticsService; C:\Program Files (x86)\Altruistic\Altruistic.exe [18360896 2023-01-21] (ALT Dev Group -> ) [Arquivo não assinado] [O arquivo está em uso] S3 AVP21.8; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.8\avp.exe [32008 2022-10-13] (Kaspersky Lab JSC -> AO Kaspersky Lab) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477392 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10032232 2023-01-19] (Electronic Arts, Inc. -> Electronic Arts) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2021-06-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 FeelgoodDestroyaWH; C:\Program Files (x86)\Common Files\FeelgoodDestroyaWH\FeelgoodDestroyaWH.exe [3218432 2023-01-12] () [Arquivo não assinado] [O arquivo está em uso] S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.002.0102.0004\FileSyncHelper.exe [3483024 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-10-11] (GOG Sp. z o.o. -> GOG.com) S3 klvssbridge64_21.8; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.8\x64\vssbridge64.exe [452808 2022-10-13] (AO Kaspersky Lab -> AO Kaspersky Lab) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.002.0102.0004\OneDriveUpdaterService.exe [3853232 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16119104 2022-09-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\109.1.47.171\elevation_service.exe" [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [240536 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupdisk.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klbackupdisk.sys [122728 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt.Kaspersky4Win-21-8; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-8\klbackupflt.sys [233344 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\kldisk.sys [135040 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [60544 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klflt.sys [553336 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse.Kaspersky4Win-21-8; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-8\klgse.sys [717448 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klhk.sys [1729160 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.8\Bases\klids.sys [244832 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF.Kaspersky4Win-21-8; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-8\klif.sys [1134936 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [107888 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klkbdflt.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klkbdflt.sys [125288 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klmouflt.sys [123768 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd.Kaspersky4Win-21-8; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-8\klpd.sys [90496 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klpnpflt.sys [107880 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_Kaspersky4Win-21-8_arkmon; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-8_arkmon.sys [382304 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_Kaspersky4Win-21-8_klark; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-8_klark.sys [359976 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_Kaspersky4Win-21-8_klbg; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-8_klbg.sys [190048 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_Kaspersky4Win-21-8_mark; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-8_mark.sys [270672 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [166792 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp.Kaspersky4Win-21-8; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-8\klwtp.sys [416616 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [341864 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-22 19:24 - 2023-01-22 19:25 - 000030831 _____ C:\Users\User\Desktop\FRST.txt 2023-01-22 19:24 - 2023-01-22 19:25 - 000000000 ____D C:\FRST 2023-01-22 19:24 - 2023-01-22 19:24 - 002376704 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2023-01-22 19:18 - 2023-01-22 19:19 - 000000000 ____D C:\AdwCleaner 2023-01-22 19:18 - 2023-01-22 19:18 - 008791352 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner.exe 2023-01-22 17:54 - 2023-01-22 17:54 - 000000000 ____D C:\ProgramData\Apple Computer 2023-01-22 17:54 - 2023-01-22 17:54 - 000000000 ____D C:\ProgramData\Apple 2023-01-22 16:13 - 2023-01-22 16:13 - 000002236 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegação privativa do Firefox.lnk 2023-01-22 16:12 - 2023-01-22 16:12 - 000000000 ____D C:\Users\User\AppData\Local\mbam 2023-01-22 16:10 - 2023-01-22 16:10 - 000000000 ____D C:\Program Files\Malwarebytes 2023-01-22 16:07 - 2023-01-22 16:07 - 002552184 _____ (Malwarebytes) C:\Users\User\Downloads\MBSetup (1).exe 2023-01-21 23:43 - 2023-01-21 23:43 - 000049530 _____ C:\Users\User\Downloads\FRST.txt 2023-01-21 23:23 - 2023-01-22 19:24 - 000000000 ____D C:\ProgramData\Altruistic 2023-01-21 23:23 - 2023-01-21 23:37 - 000000000 ____D C:\Program Files (x86)\Altruistic 2023-01-21 23:23 - 2023-01-21 23:23 - 000000000 ____D C:\Users\User\AppData\Local\AltruisticApp 2023-01-21 23:23 - 2023-01-21 23:23 - 000000000 ____D C:\Users\User\AppData\Local\Altruistic 2023-01-21 23:22 - 2023-01-21 23:22 - 000000000 _____ C:\Windows\AnimFax.INI 2023-01-21 20:53 - 2023-01-21 20:53 - 000059344 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrausbbus.sys 2023-01-21 20:53 - 2023-01-21 20:53 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrascsibus.sys 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\User\AppData\Local\Disc_Soft_Ltd 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\Public\Documents\Catch! 2023-01-21 20:52 - 2023-01-21 20:53 - 033313648 _____ (Disc Soft Ltd) C:\Users\User\Downloads\daemon-tools-5-7-0.exe 2023-01-21 09:48 - 2023-01-21 09:48 - 000069787 _____ C:\Users\User\Downloads\Midway.pdf 2023-01-19 09:23 - 2023-01-19 09:37 - 000283188 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-19 at 8.45.39 AM.jpeg 2023-01-19 09:23 - 2023-01-19 09:37 - 000174448 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-19 at 8.45.25 AM.jpeg 2023-01-19 09:23 - 2023-01-19 09:34 - 000253389 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-19 at 8.45.08 AM.jpeg 2023-01-19 09:23 - 2023-01-19 09:34 - 000161254 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-19 at 8.44.55 AM.jpeg 2023-01-19 09:22 - 2023-01-19 09:22 - 000197859 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-19 at 8.44.24 AM.jpeg 2023-01-18 17:08 - 2023-01-18 17:14 - 000002426 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky.lnk 2023-01-18 17:08 - 2023-01-18 17:08 - 000000000 ____D C:\Program Files\Common Files\AV 2023-01-18 17:07 - 2023-01-18 17:07 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2023-01-18 17:07 - 2023-01-18 17:07 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2023-01-18 17:07 - 2022-10-13 14:08 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2023-01-18 17:06 - 2023-01-21 23:37 - 000000000 ____D C:\Windows\system32\Drivers\Kaspersky4Win-21-8 2023-01-18 17:06 - 2023-01-18 17:06 - 000000000 ____D C:\Program Files (x86)\dotnet 2023-01-18 15:35 - 2023-01-18 15:35 - 000000000 ____D C:\Program Files\chrome_BITS_11508_648128638 2023-01-18 14:15 - 2023-01-18 14:15 - 000000000 ____D C:\Users\User\AppData\Local\Opera Software 2023-01-18 14:13 - 2023-01-18 14:13 - 000004220 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1674061990 2023-01-18 12:37 - 2023-01-18 12:37 - 000030252 _____ C:\Windows\system32\servers.def.lkg 2023-01-18 12:37 - 2023-01-18 12:37 - 000030252 _____ C:\Windows\system32\servers.def 2023-01-18 12:37 - 2023-01-18 12:37 - 000016822 _____ C:\Windows\system32\uat64.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000003304 _____ C:\Windows\system32\.tmp 2023-01-18 12:37 - 2023-01-18 12:37 - 000002454 _____ C:\Windows\system32\servers.def.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000000571 _____ C:\Windows\system32\prod-pgm.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000000343 _____ C:\Windows\system32\prod-vps.vpx 2023-01-18 12:35 - 2023-01-18 12:35 - 000000000 ____D C:\Windows\system32\gf2engine 2023-01-18 12:33 - 2023-01-18 12:39 - 003973968 _____ (Kaspersky) C:\Users\User\Downloads\kaspersky4win202121.8.5.452pt_35801.exe 2023-01-18 12:33 - 2023-01-18 12:33 - 000000000 _____ C:\Windows\ExtenEmploy.INI 2023-01-18 12:30 - 2023-01-18 12:30 - 000000000 ___HD C:\avast! sandbox 2023-01-18 12:19 - 2023-01-21 23:37 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software 2023-01-18 11:50 - 2023-01-18 12:49 - 000000000 ____D C:\Users\User\AppData\Local\Gh 2023-01-18 11:45 - 2023-01-18 11:45 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys 2023-01-18 11:44 - 2023-01-18 12:34 - 000000000 ____D C:\ProgramData\Avast Software 2023-01-18 11:43 - 2023-01-18 11:43 - 000000000 _____ C:\Windows\ThankJudge.INI 2023-01-18 11:40 - 2023-01-18 11:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Opera Software 2023-01-18 11:38 - 2023-01-18 11:38 - 000000000 ____D C:\Users\User\AppData\Roaming\7zip 2023-01-18 09:34 - 2023-01-18 09:35 - 002127029 _____ (Fortrek ) C:\Users\User\Downloads\Fortrek_G_Pro_K7_PLUS_Setup_V1.0.exe 2023-01-17 22:44 - 2023-01-17 22:44 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-01-17 22:44 - 2023-01-17 22:44 - 000002397 _____ C:\Users\Public\Desktop\Brave.lnk 2023-01-17 22:44 - 2023-01-17 22:44 - 000000000 ____D C:\Program Files\BraveSoftware 2023-01-17 22:36 - 2023-01-17 22:44 - 000000000 ____D C:\Users\User\AppData\Local\BraveSoftware 2023-01-17 22:36 - 2023-01-17 22:36 - 000003688 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{EDB9513D-9C9C-4E10-AE86-78F9E1A01ED2} 2023-01-17 22:36 - 2023-01-17 22:36 - 000003564 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD10E9D6-AD60-4802-8595-DD4F8F445324} 2023-01-17 22:36 - 2023-01-17 22:36 - 000000000 ____D C:\Program Files (x86)\BraveSoftware 2023-01-17 22:34 - 2023-01-17 22:35 - 001367168 _____ (BraveSoftware Inc.) C:\Users\User\Downloads\BraveBrowserSetup (2).exe 2023-01-17 16:38 - 2023-01-18 15:27 - 000000000 ____D C:\Users\User\AppData\Local\BY-COMBO2 2023-01-17 16:38 - 2023-01-18 09:36 - 000001969 _____ C:\Users\User\Desktop\Fortrek G Pro K7 PLUS.lnk 2023-01-17 16:38 - 2023-01-18 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fortrek G Pro K7 PLUS 2023-01-17 16:38 - 2023-01-18 09:36 - 000000000 ____D C:\Program Files (x86)\Fortrek G Pro K7 PLUS 2023-01-17 14:54 - 2023-01-21 09:35 - 000000383 _____ C:\Users\User\Desktop\VISUALG.INI 2023-01-16 23:34 - 2023-01-21 06:34 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-01-12 07:21 - 2023-01-12 07:21 - 000239689 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.18.20 AM.jpeg 2023-01-12 07:20 - 2023-01-12 07:20 - 000187103 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.16.20 AM.jpeg 2023-01-12 07:20 - 2023-01-12 07:20 - 000135226 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.17.30 AM.jpeg 2023-01-11 21:20 - 2023-01-11 21:20 - 000151281 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 9.25.34 PM.jpeg 2023-01-11 21:19 - 2023-01-19 21:54 - 000000000 ____D C:\Users\User\Desktop\doc JF 2023-01-11 20:43 - 2023-01-11 20:48 - 000251416 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 8.43.52 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:47 - 000314719 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 8.42.46 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:47 - 000136844 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.26.32 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:45 - 000261423 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.21.58 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:44 - 000157960 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.27.28 PM.jpeg 2023-01-11 09:34 - 2023-01-11 09:34 - 000017636 _____ C:\Users\User\Downloads\download (8).pdf 2023-01-10 22:32 - 2023-01-10 22:35 - 000281271 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.31.41 PM.jpeg 2023-01-10 22:32 - 2023-01-10 22:34 - 000313930 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.37.02 PM.jpeg 2023-01-10 22:31 - 2023-01-10 22:38 - 000195745 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.20.14 PM.jpeg 2023-01-10 22:31 - 2023-01-10 22:33 - 000455748 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.31.23 PM.jpeg 2023-01-10 22:29 - 2023-01-10 22:29 - 000000000 ___HD C:\$WinREAgent 2023-01-10 22:16 - 2023-01-10 22:17 - 000359948 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.19.12 PM (1).jpeg 2023-01-10 22:07 - 2023-01-10 22:11 - 000307751 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.18.35 PM.jpeg 2023-01-10 22:07 - 2023-01-10 22:10 - 000264996 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.17.01 PM.jpeg 2023-01-10 22:07 - 2023-01-10 22:09 - 000369910 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.02.58 PM.jpeg 2023-01-10 21:50 - 2023-01-10 21:56 - 000334843 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.42.03 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:54 - 000286659 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.41.33 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:53 - 000321389 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.54 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:51 - 000361679 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.19 AM.jpeg 2023-01-10 21:35 - 2023-01-10 21:37 - 000374622 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.04 AM.jpeg 2023-01-10 21:21 - 2023-01-10 21:23 - 000351459 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.51 AM.jpeg 2023-01-10 21:17 - 2023-01-10 21:20 - 000402429 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.34 AM.jpeg 2023-01-10 20:54 - 2023-01-10 21:02 - 000350973 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.18 AM - Copia.jpeg 2023-01-10 09:53 - 2023-01-10 09:53 - 000152092 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.52.13 AM.jpeg 2023-01-09 22:50 - 2023-01-09 22:50 - 000102946 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-09 at 10.55.30 PM.jpeg 2023-01-09 18:42 - 2023-01-09 18:43 - 000000000 ____D C:\Users\User\Documents\Euro Truck Simulator 2 2023-01-09 11:14 - 2023-01-09 11:14 - 000294314 _____ C:\Users\User\Downloads\WebNewBoleto 01 2023.pdf 2023-01-09 10:59 - 2023-01-09 11:00 - 000017633 _____ C:\Users\User\Downloads\download (7).pdf 2023-01-09 10:30 - 2023-01-09 10:30 - 000371043 _____ C:\Users\User\Downloads\credicard_•••• 0571_fatura_2023-01.pdf 2023-01-09 10:29 - 2023-01-09 10:29 - 000609048 _____ C:\Users\User\Downloads\itaucard_•••• 5900_fatura_2023-01.pdf 2023-01-09 10:29 - 2023-01-09 10:29 - 000309035 _____ C:\Users\User\Downloads\itaucard_•••• 1072_fatura_2023-01.pdf 2023-01-04 11:41 - 2023-01-04 11:41 - 000000000 ____D C:\Users\User\AppData\LocalLow\505 Games 2023-01-02 09:34 - 2023-01-02 09:34 - 000000000 ___HD C:\OneDriveTemp 2022-12-30 15:14 - 2022-12-30 15:14 - 000000000 ____D C:\Users\User\AppData\LocalLow\Polyslash 2022-12-30 14:24 - 2023-01-11 23:26 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games 2022-12-30 14:24 - 2022-12-30 14:35 - 000000000 ____D C:\Users\User\AppData\Local\mslugx 2022-12-30 14:24 - 2022-12-30 14:24 - 000000000 ____D C:\Amazon Games 2022-12-30 14:23 - 2022-12-30 14:23 - 000001301 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games.lnk 2022-12-30 14:23 - 2022-12-30 14:23 - 000001293 _____ C:\Users\User\Desktop\Amazon Games.lnk 2022-12-30 14:23 - 2022-12-30 14:23 - 000000000 ____D C:\Users\User\AppData\Roaming\electron-platform 2022-12-30 14:21 - 2022-12-30 14:21 - 000000000 ____D C:\Users\User\AppData\Local\Amazon Games 2022-12-30 14:20 - 2022-12-30 14:20 - 001961368 _____ (Amazon) C:\Users\User\Downloads\AmazonGamesSetup.exe 2022-12-26 08:25 - 2022-12-26 08:25 - 000450006 _____ C:\Users\User\Downloads\TABELA DE FREQUENCIA.pdf ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-22 19:18 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-01-22 19:16 - 2019-12-07 04:02 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-01-22 18:49 - 2022-10-13 08:41 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-22 18:22 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2023-01-22 18:06 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-22 17:54 - 2022-10-13 08:37 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\Publishers 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\ProgramData\Packages 2023-01-22 17:53 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-22 16:13 - 2022-10-13 08:44 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2023-01-22 16:13 - 2022-10-13 08:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-01-22 16:12 - 2022-10-13 08:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-22 16:12 - 2022-10-13 08:44 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-01-22 16:12 - 2022-10-13 08:44 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-01-22 16:12 - 2022-10-13 08:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-22 16:05 - 2019-12-07 11:53 - 000715446 _____ C:\Windows\system32\prfh0416.dat 2023-01-22 16:05 - 2019-12-07 11:53 - 000140602 _____ C:\Windows\system32\prfc0416.dat 2023-01-22 16:05 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2023-01-22 16:05 - 2019-12-07 04:09 - 001651882 _____ C:\Windows\system32\PerfStringBackup.INI 2023-01-22 16:04 - 2022-11-15 19:30 - 000000000 ____D C:\Users\User\AppData\Roaming\discord 2023-01-22 16:01 - 2022-11-15 19:30 - 000000000 ____D C:\Users\User\AppData\Local\Discord 2023-01-22 16:01 - 2022-10-13 08:37 - 000000000 ___RD C:\Users\User\OneDrive 2023-01-22 16:00 - 2022-10-13 09:17 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2023-01-22 16:00 - 2022-10-13 08:40 - 000000000 ____D C:\Program Files\TeamViewer 2023-01-22 16:00 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-01-22 16:00 - 2019-12-07 04:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-01-22 16:00 - 2019-12-07 04:02 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-21 23:39 - 2022-11-15 19:30 - 000002226 _____ C:\Users\User\Desktop\Discord.lnk 2023-01-21 23:37 - 2022-10-13 09:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-01-21 09:49 - 2022-10-13 09:23 - 000000000 ____D C:\Users\User\AppData\Roaming\WhatsApp 2023-01-21 08:01 - 2022-10-13 08:56 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-01-21 08:01 - 2022-10-13 08:56 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-21 08:01 - 2022-10-13 08:38 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1001 2023-01-21 06:34 - 2019-12-07 04:03 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-20 22:34 - 2022-10-13 14:03 - 000000000 ____D C:\Users\User\Desktop\Estudos do visualg 2023-01-20 08:01 - 2022-12-07 11:22 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2023-01-18 17:07 - 2022-10-13 14:03 - 000000000 ____D C:\Users\User\Desktop\JFLM 2023-01-18 17:07 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2023-01-18 17:06 - 2022-10-15 13:51 - 000000000 ____D C:\ProgramData\Package Cache 2023-01-18 16:45 - 2022-10-22 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA 2023-01-18 09:38 - 2022-10-13 09:25 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc 2023-01-18 08:02 - 2022-10-13 08:45 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-18 08:02 - 2022-10-13 08:45 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-01-11 10:49 - 2022-10-13 14:20 - 000000000 ____D C:\Users\User\Desktop\JOANA 2023-01-10 23:14 - 2022-10-21 20:28 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-01-10 23:14 - 2022-10-13 09:00 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2023-01-10 22:58 - 2019-12-07 04:02 - 000446016 _____ C:\Windows\system32\FNTCACHE.DAT 2023-01-10 22:41 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2023-01-10 22:38 - 2019-12-07 04:07 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-01-10 22:29 - 2022-10-13 08:40 - 000000000 ____D C:\Windows\system32\MRT 2023-01-10 22:25 - 2022-10-13 08:40 - 150199536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-01-10 21:41 - 2022-10-15 20:58 - 000000000 ____D C:\Users\User\AppData\Local\Ubisoft Game Launcher 2023-01-09 19:05 - 2022-10-13 14:13 - 000000000 ____D C:\Users\User\Documents\My Games 2023-01-04 15:27 - 2019-12-07 04:03 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-04 15:27 - 2019-12-07 04:03 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-01-03 12:08 - 2022-10-13 09:24 - 000002196 _____ C:\Users\User\Desktop\WhatsApp.lnk 2022-12-28 11:40 - 2022-10-15 20:57 - 000000000 ____D C:\Program Files (x86)\Steam 2022-12-27 14:29 - 2022-10-15 19:52 - 000000000 ____D C:\ProgramData\Epson ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================