Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 30-01-2022
Executado por pryar (administrador) em HARMONIZADOENER (SAMSUNG ELECTRONICS CO., LTD. 300E4C/300E5C/300E7C) (30-01-2022 16:10:04)
Executando a partir de C:\Users\pryar\Desktop
Perfis Carregados: pryar
Plataforma: Microsoft Windows 10 Home Single Language Versão 20H2 19042.1466 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKU\S-1-5-21-1663057799-4257141489-1272137286-1001\...\Run: [MicrosoftEdgeAutoLaunch_E649B40B24C8AA7BE16D5127D72BD2D4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-30] (Google LLC -> Google LLC)

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {3F3646E7-028A-47D5-8389-2CAA7CCE163C} - System32\Tasks\GoogleUpdateTaskMachineUA{466D8EA5-C9D3-4E41-A72E-A2EB55630E30} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-30] (Google LLC -> Google LLC)
Task: {46B8538F-996A-409C-A622-94ED3EA9C02A} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\pryar\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-01-30] (ESET, spol. s r.o. -> ESET)
Task: {6ECAA6E7-07B7-4C75-9495-13DB9BAA7907} - System32\Tasks\GoogleUpdateTaskMachineCore{8F6AE5B3-569C-4E10-AB21-A29DF4959CF2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-30] (Google LLC -> Google LLC)
Task: {8959097A-936E-420B-B565-645E1BBFF86B} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\pryar\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-01-30] (ESET, spol. s r.o. -> ESET)
Task: {D18F8218-9D1D-4D09-A5E4-419AFEAC5DFF} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b08ef574-2425-40eb-a099-7ac9fae54e67}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\pryar\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-30]
Edge DownloadDir: Default -> C:\Users\pryar\Desktop
Edge Extension: (Kaspersky Protection) - C:\Users\pryar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-28]
Edge HKU\S-1-5-21-1663057799-4257141489-1272137286-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)

Chrome: 
=======
CHR Profile: C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default [2022-01-30]
CHR Extension: (Apresentações) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-30]
CHR Extension: (Documentos) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-30]
CHR Extension: (Google Drive) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-30]
CHR Extension: (YouTube) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-30]
CHR Extension: (Planilhas) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-30]
CHR Extension: (Documentos Google off-line) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-30]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-30]
CHR Extension: (Gmail) - C:\Users\pryar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-30]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-01-28] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375440 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-01-28] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-28] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2022-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2022-01-28] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [287904 2022-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [319720 2022-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115968 2022-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [229248 2022-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 npf; C:\Users\pryar\AppData\Local\Temp\HouseCall\tmase\nmap\npf\x64\npf.sys [36600 2014-08-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) <==== ATENÇÃO
R3 RadioHIDMini; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-28] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-28] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-01-30 16:10 - 2022-01-30 16:10 - 000013183 _____ C:\Users\pryar\Desktop\FRST.txt
2022-01-30 16:09 - 2022-01-30 16:09 - 000000000 ____D C:\Users\pryar\Desktop\FRST-OlderVersion
2022-01-30 16:01 - 2022-01-30 16:07 - 000300828 _____ C:\Users\pryar\Desktop\TDSSKiller.3.1.0.28_30.01.2022_16.01.38_log.txt
2022-01-30 15:57 - 2022-01-30 15:58 - 005054744 _____ (AO Kaspersky Lab) C:\Users\pryar\Desktop\tdsskiller.exe
2022-01-30 15:30 - 2022-01-30 15:32 - 000001636 _____ C:\Users\pryar\Desktop\Malwarebytes Análise.txt
2022-01-30 15:15 - 2022-01-30 15:15 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-30 02:24 - 2022-01-30 02:24 - 000000000 ____D C:\Users\pryar\AppData\Roaming\LibreOffice
2022-01-30 02:22 - 2022-01-30 02:22 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2022-01-30 02:21 - 2022-01-30 02:21 - 000000000 ____D C:\Program Files\LibreOffice
2022-01-30 02:10 - 2022-01-30 02:17 - 341024768 _____ C:\Users\pryar\Desktop\LibreOffice_7.2.5_Win_x64.msi
2022-01-30 01:39 - 2022-01-30 01:43 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-30 01:39 - 2022-01-30 01:43 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-01-30 01:39 - 2022-01-30 01:39 - 000000000 ____D C:\Users\pryar\AppData\Local\Google
2022-01-30 01:39 - 2022-01-30 01:39 - 000000000 ____D C:\Program Files\Google
2022-01-30 01:38 - 2022-01-30 15:59 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-30 01:38 - 2022-01-30 01:38 - 001343320 _____ (Google LLC) C:\Users\pryar\Desktop\ChromeSetup.exe
2022-01-30 01:38 - 2022-01-30 01:38 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{466D8EA5-C9D3-4E41-A72E-A2EB55630E30}
2022-01-30 01:38 - 2022-01-30 01:38 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{8F6AE5B3-569C-4E10-AB21-A29DF4959CF2}
2022-01-30 01:27 - 2022-01-30 01:42 - 000001276 _____ C:\Users\pryar\Desktop\ESET Online Scanner.lnk
2022-01-30 01:21 - 2022-01-30 01:21 - 000000000 ____D C:\Users\pryar\AppData\Local\OneDrive
2022-01-29 16:35 - 2022-01-29 16:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-01-29 16:30 - 2022-01-29 16:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-29 16:30 - 2022-01-29 16:30 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-01-29 16:30 - 2022-01-29 16:30 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-01-29 15:00 - 2022-01-29 15:04 - 000012558 _____ C:\Users\pryar\Desktop\Addition 3.txt
2022-01-29 14:49 - 2022-01-29 15:04 - 000037980 _____ C:\Users\pryar\Desktop\FRST 3.txt
2022-01-29 08:04 - 2022-01-29 08:05 - 113271808 _____ (AO Kaspersky Lab) C:\Users\pryar\Desktop\KVRT.exe
2022-01-29 03:58 - 2022-01-29 03:59 - 003333936 _____ (Trend Micro Inc.) C:\Users\pryar\Desktop\HousecallLauncher64.exe
2022-01-29 03:52 - 2022-01-29 03:54 - 000012289 _____ C:\Users\pryar\Desktop\Addition Resposta 2.txt
2022-01-29 03:47 - 2022-01-29 03:54 - 000038679 _____ C:\Users\pryar\Desktop\FRST Resposta 2.txt
2022-01-29 03:46 - 2022-01-30 16:09 - 002311680 _____ (Farbar) C:\Users\pryar\Desktop\FRST64.exe
2022-01-29 03:44 - 2022-01-29 03:45 - 000002405 _____ C:\Users\pryar\Desktop\ADW Cleaner Resposta 2.txt
2022-01-29 03:43 - 2022-01-29 03:43 - 008540344 _____ (Malwarebytes) C:\Users\pryar\Desktop\adwcleaner_8.3.1.exe
2022-01-29 03:30 - 2022-01-29 03:30 - 000003858 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-01-29 03:30 - 2022-01-29 03:30 - 000003416 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-01-29 03:29 - 2022-01-29 03:29 - 000002688 _____ C:\Users\pryar\Desktop\ESETScan.txt
2022-01-29 01:51 - 2022-01-30 01:42 - 000001382 _____ C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-01-29 01:51 - 2022-01-29 01:51 - 000000000 ____D C:\Users\pryar\AppData\Local\ESET
2022-01-29 01:42 - 2022-01-29 01:42 - 015274968 _____ (ESET) C:\Users\pryar\Desktop\esetonlinescanner.exe
2022-01-28 22:38 - 2022-01-29 20:13 - 000000000 ____D C:\KVRT2020_Data
2022-01-28 22:27 - 2022-01-29 19:07 - 002184939 _____ C:\Users\pryar\AppData\Local\census.cache
2022-01-28 22:26 - 2022-01-29 19:05 - 000326662 _____ C:\Users\pryar\AppData\Local\ars.cache
2022-01-28 18:03 - 2022-01-29 04:06 - 000000010 _____ C:\Users\pryar\AppData\Local\sponge.last.runtime.cache
2022-01-28 18:00 - 2022-01-28 18:00 - 000000000 ____D C:\WINDOWS\Trend Micro
2022-01-28 18:00 - 2022-01-28 18:00 - 000000000 ____D C:\ProgramData\Trend Micro
2022-01-28 17:58 - 2022-01-28 17:58 - 000000036 _____ C:\Users\pryar\AppData\Local\housecall.guid.cache
2022-01-28 15:51 - 2022-01-28 15:54 - 000011970 _____ C:\Users\pryar\Desktop\Addition Resposta 1.txt
2022-01-28 15:40 - 2022-01-28 15:54 - 000035401 _____ C:\Users\pryar\Desktop\FRST Resposta 1.txt
2022-01-28 15:40 - 2022-01-28 15:40 - 000002283 _____ C:\Users\pryar\Desktop\ADW Cleaner Resposta 1.txt
2022-01-28 14:49 - 2022-01-30 16:10 - 000000000 ____D C:\FRST
2022-01-28 06:59 - 2022-01-28 06:59 - 000319720 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-01-28 06:59 - 2022-01-28 06:59 - 000000000 ____D C:\Users\pryar\AppData\Local\D3DSCache
2022-01-28 06:52 - 2022-01-28 06:52 - 000001227 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2022-01-28 06:51 - 2022-01-28 06:51 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2022-01-28 06:49 - 2022-01-28 06:49 - 000287904 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-01-28 06:49 - 2022-01-28 06:49 - 000229248 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-01-28 06:49 - 2022-01-28 06:49 - 000115968 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-01-28 06:49 - 2022-01-28 06:49 - 000000000 ____D C:\Program Files\Common Files\AV
2022-01-28 06:48 - 2022-01-28 06:48 - 000001155 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk
2022-01-28 06:48 - 2022-01-28 06:47 - 000002170 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk
2022-01-28 06:47 - 2022-01-28 06:50 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-01-28 06:47 - 2022-01-28 06:50 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2022-01-28 06:47 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2022-01-28 06:47 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2022-01-28 06:47 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2022-01-28 06:33 - 2022-01-28 06:33 - 002763088 _____ (Kaspersky) C:\Users\pryar\Downloads\ks4.021.3.10.391en_25092.exe
2022-01-28 06:21 - 2022-01-28 06:21 - 000000000 ____D C:\Users\pryar\AppData\Local\Comms
2022-01-28 06:11 - 2022-01-28 06:11 - 000000000 ____D C:\Users\pryar\AppData\Local\mbam
2022-01-28 06:08 - 2022-01-29 03:44 - 000000000 ____D C:\Users\pryar\AppData\Local\PlaceholderTileLogoFolder
2022-01-28 06:06 - 2022-01-29 07:07 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1663057799-4257141489-1272137286-1001
2022-01-28 06:05 - 2022-01-29 07:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1663057799-4257141489-1272137286-1001
2022-01-28 06:05 - 2022-01-28 06:05 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-01-28 06:03 - 2022-01-28 06:23 - 000000000 ____D C:\ProgramData\Packages
2022-01-28 06:03 - 2022-01-28 06:03 - 000000000 ____D C:\Users\pryar\AppData\Local\Publishers
2022-01-28 06:02 - 2022-01-28 16:00 - 000000000 ____D C:\Users\pryar\AppData\Local\Packages
2022-01-28 06:02 - 2022-01-28 06:35 - 000000000 ____D C:\Users\pryar\AppData\Local\ConnectedDevicesPlatform
2022-01-28 06:02 - 2022-01-28 06:02 - 000000020 ___SH C:\Users\pryar\ntuser.ini
2022-01-28 06:02 - 2022-01-28 06:02 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Synaptics
2022-01-28 06:02 - 2022-01-28 06:02 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Adobe
2022-01-28 06:02 - 2022-01-28 06:02 - 000000000 ____D C:\Users\pryar\AppData\Local\VirtualStore
2022-01-28 06:02 - 2022-01-28 06:02 - 000000000 ____D C:\ProgramData\Synaptics
2022-01-28 05:53 - 2022-01-30 15:40 - 001651882 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Users\Usuário Padrão
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Users\Todos os Usuários
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\ProgramData\Modelos
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\ProgramData\Menu Iniciar
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\ProgramData\Documentos
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Program Files\Common Files\Sistema
2022-01-28 05:53 - 2022-01-28 05:53 - 000000000 _SHDL C:\Program Files\Arquivos Comuns
2022-01-28 05:51 - 2022-01-28 05:51 - 000010970 _____ C:\Users\pryar\Desktop\Aplicativos Removidos.html
2022-01-28 05:45 - 2022-01-30 15:34 - 000000000 ____D C:\Users\pryar
2022-01-28 05:45 - 2022-01-29 07:07 - 000002389 _____ C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Modelos
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Meus Documentos
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Menu Iniciar
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Documents\Minhas Músicas
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Documents\Minhas Imagens
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Documents\Meus Vídeos
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Dados de Aplicativos
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Configurações Locais
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\AppData\Local\Histórico
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\AppData\Local\Dados de Aplicativos
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Ambiente de Rede
2022-01-28 05:45 - 2022-01-28 05:45 - 000000000 _SHDL C:\Users\pryar\Ambiente de Impressão
2022-01-28 05:42 - 2022-01-28 05:42 - 000003194 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2022-01-28 05:42 - 2022-01-28 05:42 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2022-01-28 05:42 - 2022-01-28 05:42 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-01-28 05:41 - 2022-01-29 13:01 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-28 05:41 - 2022-01-28 15:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-01-28 05:41 - 2022-01-28 05:55 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 05:41 - 2022-01-28 05:55 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-28 05:41 - 2022-01-28 05:41 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2022-01-28 05:41 - 2022-01-28 05:41 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2022-01-28 05:41 - 2022-01-28 05:41 - 000000000 ____D C:\Program Files\Realtek
2022-01-28 05:40 - 2022-01-30 15:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-28 05:40 - 2022-01-30 14:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-28 05:40 - 2022-01-30 04:04 - 000456888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-28 05:39 - 2022-01-28 06:01 - 000000000 ____D C:\WINDOWS\Panther
2022-01-28 05:37 - 2022-01-28 06:01 - 000000000 ____D C:\Windows.old
2022-01-28 05:36 - 2022-01-28 05:36 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-01-28 05:34 - 2022-01-28 05:34 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-28 05:34 - 2022-01-28 05:34 - 000000000 ____D C:\ProgramData\ssh
2022-01-28 05:27 - 2022-01-28 05:27 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2022-01-28 05:26 - 2022-01-28 05:26 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2022-01-28 05:25 - 2022-01-28 05:25 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2022-01-28 05:25 - 2022-01-28 05:25 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-01-28 05:25 - 2022-01-28 05:25 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-01-28 05:25 - 2022-01-28 05:25 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-01-28 05:25 - 2022-01-28 05:25 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-28 05:25 - 2022-01-28 05:25 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2022-01-28 05:25 - 2022-01-28 05:25 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-28 05:24 - 2022-01-28 05:24 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-01-28 05:24 - 2022-01-28 05:24 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-28 05:23 - 2022-01-28 05:23 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2022-01-28 05:23 - 2022-01-28 05:23 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-01-28 05:23 - 2022-01-28 05:23 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2022-01-28 05:23 - 2022-01-28 05:23 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2022-01-28 05:22 - 2022-01-28 05:22 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-01-28 05:22 - 2022-01-28 05:22 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2022-01-28 05:22 - 2022-01-28 05:22 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-01-28 05:22 - 2022-01-28 05:22 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-01-28 05:22 - 2022-01-28 05:22 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2022-01-28 05:21 - 2022-01-28 05:21 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2022-01-28 05:21 - 2022-01-28 05:21 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-01-28 05:21 - 2022-01-28 05:21 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2022-01-28 05:21 - 2022-01-28 05:21 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2022-01-28 05:20 - 2022-01-28 05:20 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-01-28 05:20 - 2022-01-28 05:20 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-01-28 05:20 - 2022-01-28 05:20 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-01-28 05:19 - 2022-01-28 05:19 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2022-01-28 05:19 - 2022-01-28 05:19 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2022-01-28 05:19 - 2022-01-28 05:19 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2022-01-28 04:58 - 2022-01-28 04:58 - 000000000 ____D C:\Program Files\Synaptics
2022-01-28 04:56 - 2022-01-28 04:56 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-01-28 00:28 - 2022-01-28 00:28 - 000000000 ____D C:\Users\Public\Documents\sun
2022-01-28 00:27 - 2022-01-30 02:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.2
2022-01-27 18:17 - 2022-01-27 18:18 - 000000000 ____D C:\Users\pryar\Documents\yWriter Projects
2022-01-27 18:15 - 2022-01-28 05:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spacejock Software
2022-01-19 14:51 - 2022-01-19 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2022-01-19 13:53 - 2022-01-23 22:05 - 000000000 ____D C:\Users\pryar\Downloads\Universidade ATOM
2022-01-16 17:49 - 2022-01-16 17:49 - 000000000 ____D C:\Users\pryar\Downloads\favicon_package_v0.16
2022-01-11 17:35 - 2022-01-11 17:35 - 000000000 ___HD C:\$WinREAgent
2022-01-02 23:31 - 2022-01-02 23:31 - 000000000 ____D C:\Users\pryar\Documents\SYSTEMAX Software Development

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-01-30 15:41 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-30 15:40 - 2019-12-07 11:54 - 000715644 _____ C:\WINDOWS\system32\prfh0416.dat
2022-01-30 15:40 - 2019-12-07 11:54 - 000140800 _____ C:\WINDOWS\system32\prfc0416.dat
2022-01-30 15:40 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-30 15:38 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-30 15:34 - 2020-08-29 20:05 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-30 15:34 - 2019-12-07 06:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-29 23:31 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-29 13:59 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-29 13:59 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-29 13:01 - 2020-08-31 01:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-29 04:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-01-28 15:44 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-28 06:57 - 2021-02-19 21:09 - 000096008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys
2022-01-28 06:51 - 2021-01-15 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2022-01-28 06:48 - 2021-04-25 01:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud
2022-01-28 06:48 - 2021-04-15 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2022-01-28 06:47 - 2019-12-07 06:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-28 06:22 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-28 06:19 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-01-28 06:05 - 2020-08-29 21:21 - 000000000 ___RD C:\Users\pryar\OneDrive
2022-01-28 06:03 - 2020-08-29 21:16 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-01-28 06:03 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-28 06:02 - 2020-08-29 21:16 - 000000000 ___RD C:\Users\pryar\3D Objects
2022-01-28 06:01 - 2019-12-07 11:55 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-01-28 06:01 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-01-28 06:01 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-28 06:01 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-01-28 05:53 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows NT
2022-01-28 05:50 - 2021-09-13 14:28 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-01-28 05:50 - 2021-02-01 00:17 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2022-01-28 05:50 - 2020-11-05 02:22 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2022-01-28 05:38 - 2019-12-07 06:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-01-28 05:37 - 2021-12-26 01:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2022-01-28 05:37 - 2021-12-26 01:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2022-01-28 05:37 - 2021-12-26 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-01-28 05:37 - 2021-12-21 00:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-28 05:37 - 2021-05-03 15:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scribus 1.4.8
2022-01-28 05:37 - 2021-05-03 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape
2022-01-28 05:37 - 2021-04-25 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2022-01-28 05:37 - 2021-02-04 23:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-01-28 05:37 - 2020-10-09 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2022-01-28 05:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-01-28 05:34 - 2019-12-07 11:57 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-01-28 05:34 - 2019-12-07 11:57 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-01-28 05:34 - 2019-12-07 11:55 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Com
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\IME
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-01-28 05:34 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-01-28 05:34 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2022-01-28 05:32 - 2019-12-07 11:57 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2022-01-28 05:32 - 2019-12-07 11:57 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2022-01-27 12:07 - 2021-12-26 15:28 - 000000000 ___RD C:\Users\pryar\iCloudDrive
2022-01-25 01:16 - 2021-01-31 11:56 - 000000000 ___RD C:\Users\pryar\Desktop\Ficheiro
2022-01-24 21:35 - 2021-06-23 19:37 - 000000000 ___RD C:\Users\pryar\Desktop\Cripto Legacy & Exp. Coins
2022-01-22 13:59 - 2020-08-29 21:55 - 000000000 ___RD C:\Users\pryar\Desktop\Amando
2022-01-05 22:35 - 2020-11-15 23:59 - 000000000 ____D C:\Users\pryar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2022-01-02 23:29 - 2021-01-31 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip

==================== Arquivos na raiz de alguns diretórios ========

2022-01-28 22:26 - 2022-01-29 19:05 - 000326662 _____ () C:\Users\pryar\AppData\Local\ars.cache
2022-01-28 22:27 - 2022-01-29 19:07 - 002184939 _____ () C:\Users\pryar\AppData\Local\census.cache
2022-01-28 17:58 - 2022-01-28 17:58 - 000000036 _____ () C:\Users\pryar\AppData\Local\housecall.guid.cache
2022-01-28 18:03 - 2022-01-29 04:06 - 000000010 _____ () C:\Users\pryar\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================