Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 14-11-2021 Executado por celoc (administrador) em LAPTOP-M5U7U45Q (SAMSUNG ELECTRONICS CO., LTD. 550XDA) (21-11-2021 12:22:35) Executando a partir de C:\Users\celoc\Desktop Perfis Carregados: celoc Plataforma: Microsoft Windows 11 Home Single Language Versão 21H2 22000.318 (X64) Idioma: Português (Brasil) Navegador padrão: Opera Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) () [Arquivo não assinado] C:\Tweaks\RoundedTB_R3\RoundedTB.exe () [Arquivo não assinado] C:\Windows\System\KMSAuto_Files\bin\driver\x64WDV\FakeClient.exe (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj\TranslucentTB.exe (Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <22> (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxCUIServiceN.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxEMN.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxextN.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_3d2488852c7b45a0\OneApp.IGCC.WinService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_802e12c7b23d9947\IntelCpHDCPSvc.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\dptf_helper.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.53\msedgewebview2.exe <6> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12da6ad5ef67a6ed\RtkAudUService64.exe <2> (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\ColorEngine\ColorEngine.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Quick Search Service\QuickSearchService.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Recovery\BulletService.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceKeyMonitor.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1a667ff5c9ffbbd3\SamsungSecuritySupporter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1a667ff5c9ffbbd3\SamsungSecuritySupportService.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\sfourswcomp.inf_amd64_bc90c19221c12130\SamsungSystemSupportEngine.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\sfourswcomp.inf_amd64_bc90c19221c12130\SamsungSystemSupportService.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\systemplatformenginecomp.inf_amd64_8dedf0dff241649f\SystemPlatformEngine.exe (Smart Sound Technology -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_12fcf13c64a54761\AS\IAS\IntelAudioService.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.53\Installer\setup.exe [2846112 2021-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-19] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\celoc\AppData\Local\slack\slack.exe [309568 2021-07-26] (Slack Technologies, Inc. -> Slack Technologies Inc.) HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\Run: [Amazon Music Helper] => C:\Users\celoc\AppData\Local\Amazon Music\Amazon Music Helper.exe [2356312 2021-09-17] (Amazon.com Services LLC -> Amazon.com Services LLC) HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\Run: [Opera Browser Assistant] => C:\Users\celoc\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software) HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\celoc\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\celoc\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-3942932795-2033351287-3184112979-1001\...\RunOnce: [Uninstall 21.205.1003.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\celoc\AppData\Local\Microsoft\OneDrive\21.205.1003.0005" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2021-10-08] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) Startup: C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RoundedTB.lnk [2021-11-07] ShortcutTarget: RoundedTB.lnk -> C:\Tweaks\RoundedTB_R3\RoundedTB.exe () [Arquivo não assinado] ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {01DBA4AF-9164-4028-9765-6B5B41CAF347} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {1C85D2B2-6A38-49BF-969A-1033088CF04E} - System32\Tasks\ColorEngine => C:\Program Files\Samsung\ColorEngine\ColorEngine.exe [604328 2020-12-09] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) Task: {1D69F20F-D98B-45D6-9FFF-A01EA0206F76} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-15] (Google LLC -> Google LLC) Task: {2C5C405F-A0D5-4A73-A727-54BE107A018B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {3792B5EA-AA35-4BB6-B4F4-7A7B55DBD929} - System32\Tasks\ColorSettings => C:\Program Files\Samsung\ColorEngine\SetParam3264.exe [40608 2020-12-09] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) Task: {384DBA9E-A42B-4BBB-B75D-97EB8526B1D3} - System32\Tasks\Samsung\Recovery8\BulletUserModeWorker => C:\Program Files\Samsung\Recovery\BulletUserModeWorker.exe [352496 2020-11-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) Task: {68360A62-ACDD-4ABD-B4DA-7334BA2005D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-15] (Google LLC -> Google LLC) Task: {6D0E24B9-75D4-4772-A1FD-E3F9FB51CE9A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {8FA35790-0933-4770-8137-B0AB04B0EBD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {92CCACB8-936E-4BC7-B45E-BBE3651669D2} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12da6ad5ef67a6ed\RtkAudUService64.exe [1262168 2021-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {94F0BB4F-A5E1-48C8-A83E-FF0AB6243378} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9BAABB17-99AB-40A6-8D70-0372D18FEF77} - System32\Tasks\Opera scheduled Autoupdate 1633808216 => C:\Users\celoc\AppData\Local\Programs\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software) Task: {A7BC5A1D-9A90-40AE-A821-C661748C1BB2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {C9CE8B71-8581-4D97-8DE0-25CC750BF069} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CA53AEBC-2ECF-4D3E-8FC9-2545F0F53C61} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Nenhum Arquivo) Task: {D9BDD173-2D8B-4289-A5D2-EAF05CBCE848} - System32\Tasks\Samsung\SamsungPCCleaner\SecurityCheck => C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\SecurityAppChecker.exe [4664568 2020-10-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) Task: {E39C1726-F227-4E22-82C3-F4CECBCB066C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {EC6ED0A1-DADA-4DF5-A5C5-019AE5927385} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {FCD7C5A1-14D6-481D-B228-F596BCC9E8C9} - System32\Tasks\Opera scheduled assistant Autoupdate 1633808223 => C:\Users\celoc\AppData\Local\Programs\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\celoc\AppData\Local\Programs\Opera\assistant" $(Arg0) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 170.84.29.154 8.8.4.4 Tcpip\..\Interfaces\{d4a64125-ad98-4cc4-b411-e82e6730f01b}: [DhcpNameServer] 170.84.29.154 8.8.4.4 Edge: ======= Edge Profile: C:\Users\celoc\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-21] Edge Extension: (BetterTTV) - C:\Users\celoc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2021-07-15] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default [2021-11-21] CHR Notifications: Default -> hxxps://pomofocus.io CHR HomePage: Default -> hxxp://www.google.com.br/ CHR StartupUrls: Default -> "hxxp://www.google.com.br/" CHR NewTab: Default -> Active:"chrome-extension://hdpcadigjkbcpnlcpbcohpafiaefanki/index.html" CHR Extension: (Google Translate) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-11-20] CHR Extension: (Slides) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-15] CHR Extension: (Just Black) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-07-15] CHR Extension: (BetterTTV) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-10-16] CHR Extension: (Sheets) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-15] CHR Extension: (Google Docs Offline) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-14] CHR Extension: (Vysor) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2021-07-15] CHR Extension: (AdBlock — best ad blocker) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-19] CHR Extension: (nightTab) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdpcadigjkbcpnlcpbcohpafiaefanki [2021-11-19] CHR Extension: (Méliuz: Cashback e cupons em suas compras) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdcfmebflppkljibgpdlboifpcaalolg [2021-11-19] CHR Extension: (Volume Master) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2021-08-02] CHR Extension: (Chrome Web Store Payments) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-15] CHR Extension: (Enhancer for YouTube™) - C:\Users\celoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2021-11-19] Opera: ======= OPR Profile: C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable [2021-11-19] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Google Tradutor) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-11-10] OPR Extension: (BetterTTV) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-10-18] OPR Extension: (Rich Hints Agent) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-11-19] OPR Extension: (Amazon Assistant Promotion) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-09] OPR Extension: (Install Chrome Extensions) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2021-10-09] OPR Extension: (Enhancer for YouTube™) - C:\Users\celoc\AppData\Roaming\Opera Software\Opera Stable\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2021-11-10] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) S2 GalaxyBookExperience; C:\WINDOWS\System32\DriverStore\FileRepository\gbexperiencecompdrv.inf_amd64_769ad2549bbe423c\GBExperience.exe [1166528 2021-04-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_12fcf13c64a54761\\AS\\IAS\\IntelAudioService.exe [537952 2021-02-18] (Smart Sound Technology -> Intel) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11162688 2021-11-19] (Logitech Inc -> Logitech, Inc.) S2 LiveWallpaperService; C:\Program Files\Samsung\Live Wallpaper Service\LiveWallpaperWindowsService.exe [442632 2021-09-29] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 Quick Search Service; C:\Program Files\Samsung\Quick Search Service\QuickSearchService.exe [139008 2021-06-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 Samsung PC Cleaner 2 Service; C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Service.exe [1147128 2020-10-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 SamsungPlatformEngine; C:\WINDOWS\System32\DriverStore\FileRepository\systemplatformenginecomp.inf_amd64_8dedf0dff241649f\SystemPlatformEngine.exe [1193688 2021-04-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 SamsungRecoveryService; C:\Program Files\Samsung\Recovery\BulletService.exe [546544 2020-11-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 SamsungSecuritySupportService; C:\WINDOWS\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1a667ff5c9ffbbd3\SamsungSecuritySupportService.exe [2784096 2021-08-29] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 SamsungSystemSupportService; C:\WINDOWS\System32\DriverStore\FileRepository\sfourswcomp.inf_amd64_bc90c19221c12130\SamsungSystemSupportService.exe [530736 2021-08-18] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 sService Agent Launcher; C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe [413424 2020-02-27] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 sServiceLoopBack; C:\Program Files\Samsung\sService\sServiceLoopBackSvc.exe [60632 2020-03-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [552960 2021-06-05] (Microsoft Windows -> Microsoft Corporation) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [135296 2020-04-30] (Alcorlink Corp. -> ) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-13] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-13] (Intel Corporation -> Intel Corporation) S3 iaLPSS2_SPI_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_tgl.inf_amd64_b6ea3d48ee329530\iaLPSS2_SPI_TGL.sys [155816 2020-08-13] (Intel Corporation -> Intel Corporation) S3 iaLPSS2_UART2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_tgl.inf_amd64_1a8e964d43720594\iaLPSS2_UART2_TGL.sys [310440 2020-08-13] (Intel Corporation -> Intel Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-12-14] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-10-14] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-10-14] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-10-14] (Logitech Inc -> Logitech) R3 SamsungEventController; C:\WINDOWS\System32\drivers\SamsungEventController.sys [34088 2021-05-26] (Samsung Electronics CO., LTD. -> Samsung) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-29] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-29] (Microsoft Windows -> Microsoft Corporation) R4 WinDivert1.3; C:\Windows\system\KMSAuto_Files\bin\driver\x64WDV\WinDivert64.sys [47560 2017-10-17] (Ars Nova Systems -> Basil) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-11-21 12:22 - 2021-11-21 12:23 - 000026256 _____ C:\Users\celoc\Desktop\FRST.txt 2021-11-21 12:22 - 2021-11-21 12:22 - 000000000 ____D C:\FRST 2021-11-21 12:21 - 2021-11-21 12:21 - 002311680 _____ (Farbar) C:\Users\celoc\Desktop\FRST64.exe 2021-11-20 23:17 - 2021-11-20 23:17 - 000010497 _____ C:\ZA-Scan.txt 2021-11-20 23:16 - 2021-11-20 23:16 - 000000000 ____D C:\zoek_backup 2021-11-20 23:15 - 2021-11-20 23:15 - 006102389 _____ C:\Users\celoc\Downloads\zoek.zip 2021-11-20 23:15 - 2018-04-19 22:18 - 002041445 _____ C:\Users\celoc\Downloads\Z-Analyse.exe 2021-11-20 23:15 - 2018-04-18 00:39 - 002038755 _____ C:\Users\celoc\Downloads\zoek.exe 2021-11-20 23:15 - 2018-04-18 00:39 - 002038755 _____ C:\Users\celoc\Downloads\ZA-Scan.exe 2021-11-20 13:40 - 2021-11-20 13:40 - 000000000 ____D C:\Users\celoc\Documents\Modelos Personalizados do Office 2021-11-20 13:16 - 2021-11-20 13:18 - 000002045 _____ C:\Users\celoc\Downloads\KMSAuto++.ini 2021-11-20 13:16 - 2021-10-11 22:38 - 000102432 _____ C:\Users\celoc\Downloads\KMS VL AIO_crackshash.com.zip 2021-11-20 13:16 - 2021-10-11 09:23 - 018116016 _____ C:\Users\celoc\Downloads\KMSAuto++.exe 2021-11-20 13:16 - 2021-10-11 09:21 - 000007035 _____ C:\Users\celoc\Downloads\readme_en.txt 2021-11-20 13:15 - 2021-11-20 13:16 - 017752199 _____ C:\Users\celoc\Downloads\KMS.rar 2021-11-20 00:05 - 2021-11-20 00:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-11-20 00:05 - 2021-11-20 00:05 - 000000000 ____D C:\Program Files\LGHUB 2021-11-18 22:58 - 2021-11-18 22:58 - 000000000 ___HD C:\$WinREAgent 2021-11-17 16:20 - 2021-11-17 16:20 - 000003524 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7c67ec5ade437 2021-11-14 12:06 - 2021-11-14 12:25 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2021-11-14 12:06 - 2021-11-14 12:06 - 000000000 ___HD C:\WINDOWS\msdownld.tmp 2021-11-14 12:06 - 2021-11-14 12:06 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2021-11-14 12:06 - 2021-11-14 12:06 - 000000000 ____D C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2021-11-14 12:06 - 2021-11-14 12:06 - 000000000 ____D C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2021-11-14 12:05 - 2021-11-14 12:25 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2021-11-14 12:05 - 2021-11-14 12:05 - 054304214 _____ C:\Users\celoc\Downloads\MSIAfterburnerSetup.zip 2021-11-14 12:05 - 2021-11-14 12:05 - 000000000 ____D C:\Users\celoc\Downloads\MSIAfterburnerSetup 2021-11-13 14:00 - 2021-11-13 14:00 - 000000000 ____D C:\Program Files\Epic Games 2021-11-13 13:57 - 2021-11-13 14:14 - 000000000 ____D C:\Users\celoc\AppData\Local\Epic Games 2021-11-13 13:57 - 2021-11-13 13:57 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2021-11-13 13:56 - 2021-11-13 13:56 - 157548544 _____ C:\Users\celoc\Downloads\EpicInstaller-13.0.0.msi 2021-11-13 13:28 - 2021-11-13 14:14 - 000000000 ____D C:\Users\celoc\Documents\My Games 2021-11-13 13:28 - 2021-11-13 14:14 - 000000000 ____D C:\Users\celoc\AppData\Roaming\FiraxisLive 2021-11-13 13:26 - 2021-11-13 14:13 - 000000000 ____D C:\Users\celoc\AppData\Roaming\T2GP Launcher 2021-11-13 13:26 - 2021-11-13 14:13 - 000000000 ____D C:\Users\celoc\AppData\Local\T2GP Launcher 2021-11-13 12:16 - 2021-11-13 12:16 - 000000000 ____D C:\Users\celoc\AppData\LocalLow\Aquiris 2021-11-13 11:51 - 2021-11-13 11:54 - 062890022 _____ C:\Users\celoc\Downloads\Last_Day_On_Earth_Survival_v1_18_9_MOD_signed.apk 2021-11-09 21:26 - 2021-11-09 21:26 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe 2021-11-09 21:26 - 2021-11-09 21:26 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll 2021-11-09 21:26 - 2021-11-09 21:26 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2021-11-09 21:26 - 2021-11-09 21:26 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll 2021-11-09 21:26 - 2021-11-09 21:26 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-09 21:26 - 2021-11-09 21:26 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-09 21:26 - 2021-11-09 21:26 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-09 21:26 - 2021-11-09 21:26 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll 2021-11-09 21:26 - 2021-11-09 21:26 - 000014756 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-09 21:26 - 2021-11-09 21:26 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll 2021-11-03 13:19 - 2021-11-03 13:19 - 006421583 _____ C:\Users\celoc\Downloads\1635521518GAVIN_AULA_02_Aluno_DECOLANDO_PDF.pdf 2021-10-27 16:58 - 2021-10-27 16:58 - 000000000 ____D C:\Users\celoc\Downloads\mavis_hub-1.2.3-windows-20200924 2021-10-27 14:36 - 2021-10-27 14:36 - 050603575 _____ C:\Users\celoc\Downloads\mavis_hub-1.2.3-windows-20200924.zip 2021-10-27 13:29 - 2021-11-10 14:05 - 000000254 _____ C:\Users\celoc\AppData\Local\rtb.json 2021-10-27 13:28 - 2021-10-27 13:29 - 000000000 ____D C:\Tweaks ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-11-21 12:13 - 2021-07-15 19:03 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-21 10:01 - 2021-06-05 08:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-21 01:17 - 2021-07-17 15:11 - 000000000 ____D C:\Users\celoc\AppData\Local\LGHUB 2021-11-21 00:06 - 2021-07-17 15:07 - 000000000 ____D C:\ProgramData\LGHUB 2021-11-20 23:40 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-20 23:35 - 2021-06-05 08:10 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-20 23:35 - 2021-04-29 03:11 - 000000000 ____D C:\Users\celoc\AppData\Local\Packages 2021-11-20 23:35 - 2021-02-08 13:08 - 000000000 ____D C:\ProgramData\Packages 2021-11-20 23:33 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-11-20 22:55 - 2021-10-21 09:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-20 14:09 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\System 2021-11-20 12:49 - 2021-06-05 08:10 - 000000000 ____D C:\Program Files\Windows NT 2021-11-20 00:06 - 2021-07-17 15:11 - 000000000 ____D C:\Users\celoc\AppData\Roaming\LGHUB 2021-11-20 00:06 - 2021-06-05 08:09 - 000000000 ____D C:\WINDOWS\INF 2021-11-19 20:17 - 2021-04-29 03:11 - 000000000 ____D C:\Users\celoc\AppData\Local\D3DSCache 2021-11-19 01:15 - 2021-07-15 20:14 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-11-18 08:45 - 2021-10-21 09:25 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3942932795-2033351287-3184112979-1001 2021-11-18 08:45 - 2021-04-29 03:07 - 000002389 _____ C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-11-17 16:20 - 2021-10-21 09:25 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-16 20:14 - 2021-07-15 19:04 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-14 12:21 - 2021-02-08 13:07 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-14 12:06 - 2021-06-05 08:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-11-14 11:35 - 2021-07-24 19:24 - 000000000 ____D C:\Program Files (x86)\Steam 2021-11-13 15:32 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-11-13 13:57 - 2021-07-24 19:35 - 000000000 ____D C:\Program Files (x86)\Epic Games 2021-11-13 13:28 - 2021-02-08 13:17 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-13 05:15 - 2021-02-08 13:27 - 000000000 ____D C:\Program Files\Microsoft Office 2021-11-13 00:28 - 2021-07-24 10:48 - 000000000 ____D C:\Users\celoc\AppData\Roaming\WhatsApp 2021-11-12 19:21 - 2021-07-23 21:38 - 000000000 ____D C:\Users\celoc\AppData\Roaming\Telegram Desktop 2021-11-10 02:05 - 2021-10-21 09:25 - 001769330 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-10 02:05 - 2021-06-05 13:54 - 000768176 _____ C:\WINDOWS\system32\prfh0416.dat 2021-11-10 02:05 - 2021-06-05 13:54 - 000154354 _____ C:\WINDOWS\system32\prfc0416.dat 2021-11-10 02:02 - 2021-04-29 03:11 - 000000000 __SHD C:\Users\celoc\IntelGraphicsProfiles 2021-11-10 02:01 - 2021-10-21 09:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-10 02:01 - 2021-10-21 09:22 - 000482368 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-10 02:01 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-10 02:01 - 2021-06-05 08:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-11-10 02:01 - 2021-02-08 13:12 - 000000000 ____D C:\Intel 2021-11-10 02:01 - 2021-02-08 13:05 - 000012288 ___SH C:\DumpStack.log.tmp 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-10 02:00 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-10 02:00 - 2021-06-05 08:01 - 000000000 ____D C:\WINDOWS\servicing 2021-11-09 21:27 - 2021-06-05 08:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-09 21:22 - 2021-07-15 20:10 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-09 21:21 - 2021-07-15 20:10 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-08 11:40 - 2021-10-06 00:16 - 000000000 ____D C:\Users\celoc\Downloads\Telegram Desktop 2021-11-04 05:20 - 2021-07-15 18:51 - 000000000 ___RD C:\Users\celoc\OneDrive 2021-11-01 18:01 - 2021-10-21 08:33 - 000000000 ___DC C:\WINDOWS\Panther 2021-10-29 12:33 - 2021-02-08 13:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-10-29 00:56 - 2021-07-15 18:52 - 000000000 ____D C:\Users\celoc\AppData\Local\PlaceholderTileLogoFolder 2021-10-27 15:25 - 2021-10-21 13:58 - 000000000 ____D C:\Users\celoc\Documents\LIVROS 2021-10-26 00:10 - 2021-10-19 14:13 - 000000000 ____D C:\Users\celoc\Documents\APOSTILAS 2021-10-26 00:07 - 2021-10-18 13:36 - 000000000 ____D C:\Users\celoc\AppData\Roaming\Anki2 2021-10-26 00:07 - 2021-10-16 20:51 - 000682344 _____ C:\Users\celoc\Documents\plano de estudos pós edital.xlsx 2021-10-25 21:43 - 2021-07-15 20:14 - 000508240 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-10-25 21:43 - 2021-07-15 20:14 - 000500048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-10-22 15:37 - 2021-07-25 20:47 - 000000000 ____D C:\Users\celoc\AppData\Roaming\discord 2021-10-22 15:36 - 2021-07-25 20:47 - 000000000 ____D C:\Users\celoc\AppData\Local\Discord 2021-10-22 12:36 - 2021-10-21 09:25 - 000004212 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1633808216 2021-10-22 12:36 - 2021-10-09 15:36 - 000001409 _____ C:\Users\celoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk 2021-10-22 08:17 - 2021-06-05 08:10 - 000000000 ____D C:\WINDOWS\appcompat ==================== Arquivos na raiz de alguns diretórios ======== 2021-10-27 13:29 - 2021-11-10 14:05 - 000000254 _____ () C:\Users\celoc\AppData\Local\rtb.json 2021-10-27 13:29 - 2021-11-21 12:23 - 000926808 _____ () C:\Users\celoc\AppData\Local\rtb.log ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================