Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 09-01-2023 Executado por pc (administrador) em DESKTOP-AP76TOC (ASUSTeK Computer Inc. K42F) (09-01-2023 18:42:38) Executando a partir de C:\Users\pc\Downloads Perfis Carregados: pc Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.2364 (X64) Idioma: Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekidsui.exe (C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe ->) (Qustodio Technologies SL -> ) C:\Program Files (x86)\Qustodio\qapp\crashpad_handler.exe <3> (C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (explorer.exe ->) (Meltytech, LLC -> Meltytech, LLC) C:\Program Files\Shotcut\shotcut.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <17> (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qapp\QAppTray.exe (services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe (services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe (services.exe ->) (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qproxy\qengine.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM-x32\...\Run: [QAppTray] => C:\Program Files (x86)\Qustodio\qapp\QAppTray.exe [5817888 2022-09-23] (Qustodio Technologies SL -> Qustodio Technologies) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO HKU\S-1-5-21-2273827914-2714859868-4238975439-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [49496 2022-07-03] (Glarysoft LTD -> Glarysoft Ltd) HKU\S-1-5-21-2273827914-2714859868-4238975439-1001\...\Run: [MicrosoftEdgeAutoLaunch_72FC07CE8FBC282A90F28F3BD5668C8E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879368 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe [2022-12-15] (Google LLC -> Google LLC) BootExecute: autocheck autochk * ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {026AD9E6-54FD-4CD1-B9AF-E9E6F99A791B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8509392 2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {058218E7-3F5B-4BEF-9744-C7CA2D251CFB} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [21165096 2023-01-08] (Goversoft LLC -> Goversoft LLC) Task: {0F76141C-6D76-43E3-ABA1-336ED9572CA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1040AA2A-788E-4C62-AD25-9C89E9757BE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1EB41696-B5C4-4BCD-BB8C-5103BC999BE5} - System32\Tasks\GoogleUpdateTaskMachineCore{5C3CD016-EE44-448E-9401-AD24FFE2FE78} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-20] (Google LLC -> Google LLC) Task: {22C6D670-41C5-4C78-9B6D-1ED77A2FB0A2} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\pc\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Nenhum Arquivo) Task: {244C291A-B79F-48F9-808D-BCB97C1E7E09} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {32073318-7465-4B11-9113-A7DB001B85CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) Task: {523D9FC6-236C-44AB-943D-09ECB0861026} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) Task: {68F450C7-139F-4466-A0CF-9EDA355D1792} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144344 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) Task: {7B9C8965-C49F-4EE9-A328-37B984E29220} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144344 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) Task: {7F1D972C-D2CD-419E-BC80-36EA469D38CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {880CDDCC-CDA9-4792-8F5E-ECED44E31A72} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [146816 2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {9FEF0A77-D9A6-44E4-AFA8-58BD226544EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8509392 2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {BB75B137-1334-49CD-A4DA-723384850C83} - System32\Tasks\GoogleUpdateTaskMachineUA{CF8B9B22-D8E7-4C0D-9C17-412BCDE47C85} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-20] (Google LLC -> Google LLC) Task: {CC58A4B2-BF0E-4131-A59F-111B2DD4498B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {ECB257DB-145F-46D9-8F2A-C4F3FCF101B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Update => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F41C7D5A-CD7B-4FF1-B6D4-F11CC046D033} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\pc\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Nenhum Arquivo) Task: {FDC94B91-44FC-4656-97DD-A5F1C9B47D07} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.18.1 8.8.8.8 Tcpip\..\Interfaces\{57f0de33-819b-4008-adc0-fdebdd94c86e}: [DhcpNameServer] 192.168.18.1 8.8.8.8 Tcpip\..\Interfaces\{6a920497-7d54-4ce0-8a9c-6d2f55142cc9}: [NameServer] 185.228.168.10,185.228.169.11 Tcpip\..\Interfaces\{6a920497-7d54-4ce0-8a9c-6d2f55142cc9}: [DhcpNameServer] 192.168.18.1 8.8.8.8 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-09] Edge Notifications: Default -> hxxps://guiadoestudante.abril.com.br; hxxps://meet.google.com Edge Extension: (TeraBox Download Assistant) - C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dpadflhmiohjfhhaehelneimpllfbpcg [2023-01-08] Edge Extension: (Absolute Enable Right Click & Copy) - C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\enkbbdhdmbpfohfkfmdmjkpmolkbelgl [2022-10-20] Edge Extension: (PiP - Picture in Picture Plus) - C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gokdpnhaggoioddclnnlpjfnkdinjjcc [2022-09-19] Edge Extension: (Limpar histórico e cache da Web) - C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ojilnhojiihncgjnnpphppnmflflhbcg [2022-07-25] Edge Extension: (Bloqueador de anúncio do AdGuard) - C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2022-12-22] Edge HKU\S-1-5-21-2273827914-2714859868-4238975439-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - C:\Users\pc\AppData\Roaming\TeraBox\terabox_ext_chrome.crx [2022-12-09] Edge HKU\S-1-5-21-2273827914-2714859868-4238975439-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx FireFox: ======== FF DefaultProfile: nth1jcd1.default FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nth1jcd1.default [2023-01-07] FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\vrlqoe5i.default-release [2023-01-09] FF Extension: (Bloqueador de anúncio do AdGuard) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\vrlqoe5i.default-release\Extensions\adguardadblocker@adguard.com.xpi [2023-01-07] FF Extension: (Video DownloadHelper) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\vrlqoe5i.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-01-08] FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\vrlqoe5i.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-01-07] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2023-01-08] <==== ATENÇÃO (Aponta para arquivo *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2023-01-08] <==== ATENÇÃO Chrome: ======= CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2023-01-08] CHR Extension: (Bloqueador de anúncio do AdGuard) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-12-30] CHR Extension: (Limpar histórico, cache e cookies do Chrome ™) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cakkgjilijphcjidigenbhegiajbaocp [2022-08-20] CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-30] CHR Extension: (TeraBox Download Assistant) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpadflhmiohjfhhaehelneimpllfbpcg [2022-12-30] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-21] CHR HKU\S-1-5-21-2273827914-2714859868-4238975439-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - C:\Users\pc\AppData\Roaming\TeraBox\terabox_ext_chrome.crx [2022-12-09] CHR HKLM-x32\...\Chrome\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - C:\Users\pc\AppData\Roaming\TeraBox\terabox_ext_chrome.crx [2022-12-09] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12540928 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [883544 2022-07-03] (Glarysoft LTD -> Glarysoft Ltd) S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [74064 2022-07-03] (Glarysoft LTD -> Glarysoft Ltd) R2 qengine; C:\Program Files (x86)\Qustodio\qproxy\qengine.exe [5621288 2022-09-22] (Qustodio Technologies SL -> Qustodio Technologies) R2 qupdate; C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe [2348064 2022-09-23] (Qustodio Technologies SL -> Qustodio Technologies) R2 SafeKids1.0.5; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe [599240 2022-11-30] (AO Kaspersky Lab -> AO Kaspersky Lab) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation) S3 TeraBoxUtility; C:\Users\pc\AppData\Roaming\TeraBox\YunUtilityService.exe [113520 2023-01-03] (FLEXTECH INC. -> Flextech Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) S2 DpsiBSvc; c:\program files\snba\nbhss.exe [X] S2 SL2Svc; c:\program files\snba\nbmss.exe [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [44032 2019-12-07] (Microsoft Windows -> Microsoft Corporation) [Arquivo não assinado] S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2022-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd) R1 klfltks; C:\Windows\system32\DRIVERS\klfltks.sys [553336 2022-11-30] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIFKS; C:\Windows\System32\DRIVERS\klifks.sys [1083256 2022-11-30] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtpks; C:\Windows\system32\DRIVERS\klwtpks.sys [418160 2022-11-30] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 NETJME; C:\Windows\System32\drivers\NETJME.sys [137728 2019-12-07] (Microsoft Windows -> JMicron Technology Corp.) R1 qwdf64; C:\Windows\system32\Drivers\qwdf64.sys [41872 2022-06-28] (Qustodio Technologies, SL -> Qustodio Technologies) R1 qwdr64; C:\Windows\system32\Drivers\qwdr64.sys [55696 2022-06-28] (Qustodio Technologies, SL -> Qustodio Technologies) R2 qwfp; C:\Windows\system32\Drivers\qwfp64.sys [47640 2022-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Qustodio Technologies) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-09 18:42 - 2023-01-09 18:44 - 000020066 _____ C:\Users\pc\Downloads\FRST.txt 2023-01-09 18:42 - 2023-01-09 18:42 - 000000000 ____D C:\Users\pc\Downloads\FRST-OlderVersion 2023-01-09 18:14 - 2023-01-09 18:42 - 026768203 _____ C:\Users\pc\Desktop\Homenagem Saúde Cel.mp4 2023-01-09 17:06 - 2023-01-09 17:06 - 000604358 _____ C:\Users\pc\Downloads\Rumo a Esmeraldas.jpeg 2023-01-09 17:05 - 2023-01-09 17:05 - 000122834 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-09 at 14.44.56.jpeg 2023-01-09 17:04 - 2023-01-09 17:04 - 000556679 _____ C:\Users\pc\Downloads\Agentes do bem.jpeg 2023-01-09 17:02 - 2023-01-09 17:02 - 000496529 _____ C:\Users\pc\Downloads\Unção da cura.jpeg 2023-01-09 17:02 - 2023-01-09 17:02 - 000109663 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-09 at 16.57.16.jpeg 2023-01-09 16:58 - 2023-01-09 16:58 - 000111015 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-09 at 16.57.43.jpeg 2023-01-09 15:41 - 2023-01-09 15:41 - 000087947 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 18.08.37 (1).jpeg 2023-01-09 15:27 - 2023-01-09 15:27 - 000069727 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 14.25.59.jpeg 2023-01-09 15:04 - 2023-01-09 14:55 - 000089008 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.38.07.jpeg 2023-01-09 15:04 - 2023-01-09 14:55 - 000062554 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.33.25.jpeg 2023-01-09 15:04 - 2023-01-09 14:55 - 000049838 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.33.58.jpeg 2023-01-09 15:04 - 2023-01-09 14:55 - 000046488 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.37.12.jpeg 2023-01-09 15:03 - 2023-01-09 15:06 - 000555190 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.54.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000205333 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.33.57.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000197273 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.56.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000195752 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.55.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000181838 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.57.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000173202 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.56 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000167765 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.56 (3).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000166310 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.56 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000145730 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.57 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000145720 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.57 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000137189 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.53 (3).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000135990 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.53.57 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000133255 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.57.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000133132 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.53 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000131274 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.57 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000120466 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.56.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000118358 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.31 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000117238 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.58.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000115828 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.00.03.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000114588 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.54 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000107573 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.53 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000106505 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.29.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000106207 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.55.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000100002 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.52.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000095969 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.52 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000094634 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.51.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000093930 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.31.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000090917 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.30 (2).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000090707 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.30.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000090571 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.54 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000089758 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.52 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000087626 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.58 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000075050 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.56 (1).jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000069214 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.35.53.jpeg 2023-01-09 15:03 - 2023-01-09 14:56 - 000063245 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.45.30 (1).jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000271099 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.51.37 (2).jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000170669 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.51.37.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000165368 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.51.37 (1).jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000122322 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.49.29.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000095889 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.45.26.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000095466 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.46.58.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000091065 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 14.00.05.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000084541 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.57.31.jpeg 2023-01-09 15:02 - 2023-01-09 14:54 - 000073472 ____N C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 14.00.40.jpeg 2023-01-09 14:58 - 2023-01-09 14:58 - 000161896 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 08.02.43.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000177002 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 08.07.08.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000131274 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.17.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000122283 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.16.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000119821 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 08.27.47.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000113084 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.17 (1).jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000094324 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.14.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000089127 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.13.jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000087839 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 19.48.14 (1).jpeg 2023-01-09 14:57 - 2023-01-09 14:57 - 000077341 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-05 at 08.17.15.jpeg 2023-01-09 14:56 - 2023-01-09 15:10 - 000065598 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.39.05.jpeg 2023-01-09 14:56 - 2023-01-09 15:00 - 000475513 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 11.16.21.jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000166077 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.18.19 (2).jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000138959 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.18.19 (1).jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000118726 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.29.28.jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000104790 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 11.11.54.jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000081090 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 10.18.19.jpeg 2023-01-09 14:56 - 2023-01-09 14:56 - 000047632 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 09.40.01.jpeg 2023-01-09 14:55 - 2023-01-09 15:25 - 000617289 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 13.22.03.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000205333 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 15.10.25.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000169617 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-07 at 00.04.34.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000133132 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 15.08.00.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000087947 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 18.08.37.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000084756 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 15.08.01.jpeg 2023-01-09 14:53 - 2023-01-09 14:53 - 000077341 _____ C:\Users\pc\Downloads\WhatsApp Image 2023-01-06 at 15.08.00 (1).jpeg 2023-01-09 12:25 - 2023-01-09 12:25 - 000001864 _____ C:\Users\pc\Desktop\uTorrent Web.lnk 2023-01-09 12:25 - 2023-01-09 12:25 - 000001850 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2023-01-09 11:16 - 2023-01-09 12:35 - 000000342 _____ C:\Users\pc\Desktop\Estudando inglês.txt 2023-01-09 06:33 - 2023-01-09 06:33 - 000304248 _____ C:\Windows\system32\FNTCACHE.DAT 2023-01-08 22:42 - 2023-01-08 22:43 - 000000055 _____ C:\Users\pc\Desktop\Novos Valores.txt 2023-01-08 22:21 - 2023-01-08 22:21 - 000000000 ____D C:\Users\pc\dwhelper 2023-01-08 22:21 - 2023-01-08 22:21 - 000000000 ____D C:\Program Files\net.downloadhelper.coapp 2023-01-08 20:13 - 2023-01-08 20:13 - 000003846 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn 2023-01-08 20:13 - 2023-01-08 20:13 - 000003770 _____ C:\Users\pc\Downloads\ESETScan.txt 2023-01-08 20:13 - 2023-01-08 20:13 - 000003404 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime 2023-01-08 20:12 - 2023-01-08 20:12 - 000000000 ____D C:\Program Files (x86)\PrivaZer 2023-01-08 19:24 - 2023-01-08 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Safe Kids 2023-01-08 19:24 - 2023-01-08 19:24 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2023-01-08 19:24 - 2023-01-08 19:24 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2023-01-08 18:01 - 2023-01-09 06:33 - 000000000 ____D C:\Users\pc\AppData\Local\ESET 2023-01-08 18:01 - 2023-01-08 18:01 - 000001379 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-01-08 18:01 - 2023-01-08 18:01 - 000001273 _____ C:\Users\pc\Desktop\ESET Online Scanner.lnk 2023-01-08 18:00 - 2023-01-08 18:00 - 015274968 _____ (ESET) C:\Users\pc\Downloads\esetonlinescanner.exe 2023-01-07 14:05 - 2023-01-07 14:05 - 000033155 _____ C:\Users\pc\Desktop\Conclusão concursos.pdf 2023-01-07 13:58 - 2023-01-07 13:58 - 000044576 _____ C:\Users\pc\Desktop\Desenvolvimento Concursos.pdf 2023-01-07 13:27 - 2023-01-07 14:17 - 000044265 _____ C:\Users\pc\Desktop\Introdução Concursos.pdf 2023-01-07 11:42 - 2023-01-09 12:53 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla 2023-01-07 11:42 - 2023-01-09 12:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-01-07 11:42 - 2023-01-07 11:43 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-01-07 11:42 - 2023-01-07 11:42 - 000002050 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navegação privativa do Firefox.lnk 2023-01-07 11:42 - 2023-01-07 11:42 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-07 11:42 - 2023-01-07 11:42 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk 2023-01-07 11:42 - 2023-01-07 11:42 - 000000000 ____D C:\Users\pc\AppData\Roaming\Mozilla 2023-01-07 11:42 - 2023-01-07 11:42 - 000000000 ____D C:\Users\pc\AppData\Local\Mozilla 2023-01-07 11:42 - 2023-01-07 11:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-07 11:41 - 2023-01-08 19:29 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-01-07 11:40 - 2023-01-07 11:40 - 000000000 ____D C:\Users\pc\AppData\Roaming\Opera Software 2023-01-07 10:07 - 2023-01-07 11:29 - 000371919 _____ C:\Users\pc\Downloads\Fixlog.txt 2023-01-07 10:05 - 2023-01-09 18:42 - 002376704 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe 2023-01-05 11:09 - 2023-01-09 18:43 - 000000000 ____D C:\FRST 2023-01-05 10:35 - 2023-01-05 10:35 - 000000000 ____D C:\Users\pc\AppData\Local\GUI 2023-01-05 09:35 - 2023-01-05 11:05 - 000000000 ____D C:\AdwCleaner 2023-01-01 20:07 - 2023-01-01 20:07 - 050927071 _____ C:\Users\pc\Downloads\MABOM - APH.pdf 2022-12-30 23:07 - 2022-12-30 23:07 - 000000000 ____D C:\TeraBoxDownload 2022-12-30 23:06 - 2022-12-30 23:06 - 000000913 _____ C:\Users\pc\Desktop\TeraBox.lnk 2022-12-30 23:06 - 2022-12-30 23:06 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeraBox 2022-12-30 23:05 - 2023-01-04 21:38 - 000000000 ____D C:\Users\pc\AppData\Roaming\TeraBox 2022-12-19 19:54 - 2022-12-19 19:54 - 000000000 ____D C:\Users\pc\Downloads\Originals 2022-12-19 16:15 - 2022-12-19 16:15 - 000902312 _____ C:\Users\pc\Downloads\MARTINS, M. Z. - A INFLUÊNCIA DO USO DA PORNOGRAFIA VIRTUAL NO DESEMPENHO SEXUAL E [...].pdf 2022-12-19 16:15 - 2022-12-19 16:15 - 000782477 _____ C:\Users\pc\Downloads\TCC Pornografia Oficial-Versão Final_Ana Luisa Pires Padu.pdf 2022-12-15 17:13 - 2022-12-15 17:15 - 1644087116 _____ C:\Users\pc\Downloads\Web Aula - Tratamento das Disfunções Sexuais Masculinas e Femininas - 2º Dia.mp4 2022-12-15 14:52 - 2022-12-15 14:54 - 1392862091 _____ C:\Users\pc\Downloads\Web Aula - Tratamento das Disfunções Sexuais Masculinas e Femininas - 1º Dia.mp4 2022-12-13 19:28 - 2022-12-13 19:28 - 000000000 ___HD C:\$WinREAgent 2022-12-12 11:31 - 2022-12-12 11:31 - 000374004 _____ C:\Users\pc\Downloads\Davidson Jones Guimarães_certificado (1).pdf 2022-12-12 11:29 - 2022-12-12 11:29 - 000659807 _____ C:\Users\pc\Downloads\Davidson Jones Guimarães_certificado.pdf 2022-12-10 08:16 - 2023-01-09 17:57 - 000000000 ____D C:\Users\pc\AppData\Local\CrashDumps ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-09 18:45 - 2022-07-25 08:02 - 000013104 _____ C:\Windows\SysWOW64\qengineOff.ini 2023-01-09 18:44 - 2022-07-25 08:02 - 000013104 _____ C:\Windows\system32\qengineOff.ini 2023-01-09 18:13 - 2022-07-20 17:43 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-09 17:57 - 2022-08-02 14:30 - 000000000 ____D C:\ProgramData\Qustodio 2023-01-09 15:34 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-09 15:15 - 2022-08-24 16:06 - 000443392 ____H C:\Users\pc\Downloads\photothumb.db 2023-01-09 14:32 - 2019-12-07 04:00 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-01-09 12:45 - 2019-12-07 11:53 - 000711886 _____ C:\Windows\system32\prfh0416.dat 2023-01-09 12:45 - 2019-12-07 11:53 - 000139842 _____ C:\Windows\system32\prfc0416.dat 2023-01-09 12:45 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2023-01-09 12:45 - 2019-12-07 04:09 - 001642474 _____ C:\Windows\system32\PerfStringBackup.INI 2023-01-09 12:38 - 2022-07-25 08:02 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-01-09 12:38 - 2019-12-07 04:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-01-09 12:37 - 2019-12-07 06:03 - 000262144 _____ C:\Windows\system32\config\BBI 2023-01-09 12:37 - 2019-12-07 04:00 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-09 12:30 - 2022-07-15 17:40 - 000000000 ____D C:\Users\pc\AppData\Roaming\uTorrent Web 2023-01-09 12:27 - 2022-08-16 18:47 - 000000000 ____D C:\Users\pc\AppData\Local\BitTorrentHelper 2023-01-09 11:51 - 2022-08-29 10:17 - 000000000 ____D C:\Users\pc\AppData\Roaming\vlc 2023-01-09 06:33 - 2022-06-20 09:32 - 000000000 ___HD C:\Program Files\snba 2023-01-08 22:44 - 2019-12-07 04:05 - 000000000 ____D C:\Users\pc 2023-01-08 21:57 - 2022-07-23 21:42 - 000000000 ____D C:\Users\pc\AppData\Local\PrivaZer 2023-01-08 20:32 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\NDF 2023-01-08 20:26 - 2022-06-24 20:06 - 000000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics 2023-01-08 17:57 - 2022-07-23 21:40 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5 2023-01-07 14:11 - 2019-12-07 04:05 - 000000000 ____D C:\Users\pc\AppData\Local\Packages 2023-01-07 10:13 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2023-01-07 10:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2023-01-07 10:08 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-07 10:04 - 2019-12-07 04:01 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-05 10:46 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-01-04 21:47 - 2019-12-07 04:01 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-04 21:47 - 2019-12-07 04:01 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-01-02 06:20 - 2022-06-20 09:29 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2023-01-02 06:20 - 2022-06-20 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2022-12-30 22:33 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-12-27 19:29 - 2022-07-20 17:43 - 000000000 ____D C:\Program Files\Google 2022-12-19 11:52 - 2022-08-25 18:38 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk 2022-12-18 09:43 - 2022-06-18 11:25 - 000000000 ____D C:\Program Files\Microsoft Office 2022-12-15 20:17 - 2022-07-20 17:44 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-12-14 23:41 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemApps 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\Provisioning 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-12-14 23:41 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-13 19:38 - 2019-12-07 04:05 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-12-13 19:11 - 2022-06-20 11:50 - 000000000 ____D C:\Windows\system32\MRT 2022-12-13 19:07 - 2022-06-20 11:50 - 148633544 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-12-10 14:08 - 2022-06-18 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================