Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20-01-2023 Executado por User (administrador) em DESKTOP-8MSIH6J (Gigabyte Technology Co., Ltd. M68MT-S2P) (23-01-2023 18:40:29) Executando a partir de C:\Users\User\Desktop Perfis Carregados: User Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.2486 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.135\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.135\BraveCrashHandler64.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe (explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIYWE.EXE <4> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Seiko Epson Corporation) [Arquivo não assinado] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (services.exe ->) () [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\Common Files\FeelgoodDestroyaWH\FeelgoodDestroyaWH.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [215960 2023-01-22] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711328 2022-06-16] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [126403424 2022-03-21] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [Arquivo não assinado] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [2492128 2022-10-13] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32754128 2022-12-20] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149608 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000003] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [EPLTarget\P0000000000000004] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYWE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Discord] => C:\Users\User\AppData\Local\Discord\Update.exe [1525016 2022-10-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [Viewndow] => C:\Users\User\AppData\Local\Programs\Viewndow\Viewndow.exe (Nenhum Arquivo) HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\...\Run: [TaskbarSystem] => C:\Users\User\AppData\Local\Programs\TaskbarSystem\TaskbarSystem.exe (Nenhum Arquivo) HKLM\...\Print\Monitors\EPSON L3250 Series 64MonitorBE: C:\Windows\system32\E_YLMBYWE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Arquivo não assinado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-18] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\109.1.47.171\Installer\chrmstp.exe [2023-01-17] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {16993602-A237-4948-97E1-C47427691A66} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1000 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (Nenhum Arquivo) Task: {1CFAFA94-6A32-4E50-915E-08D9D5B94F9E} - System32\Tasks\GoogleUpdateTaskMachineCore{5E2287D9-A541-4FD2-B857-8CC3CB625FB7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-13] (Google LLC -> Google LLC) Task: {1F340ED1-96A5-42E7-9FED-3A94959EB0E8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2311576 2023-01-22] (Avast Software s.r.o. -> Avast Software) Task: {2C22999B-EC9B-4143-837F-F837463E4115} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {2EE19EDE-FB65-489A-AFA6-AB83A14BD44B} - System32\Tasks\EPSON L3250 Series Update {9C03390E-FB09-4550-AA79-82566BA37588} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {37773AA6-AD4E-456E-A9B9-ED79A4A80780} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck Task: {39129647-1F58-442A-885F-A1DFBCA4A973} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6624232 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {3979A585-B6F0-412E-BFC8-9CE765A87860} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3C88E902-15AD-4126-AE6F-F7B7A1E1067D} - System32\Tasks\AMD RELAUNCHER => C:\AMD\Win10-Radeon-Pro-Software-Enterprise-21.Q2.1\\Bin64\InstallManagerApp.exe [1714648 ] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {558873BA-299A-4E26-A0C2-FC1FDADE80F4} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{EDB9513D-9C9C-4E10-AE86-78F9E1A01ED2} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {6F29DC16-CCBD-43CA-81B1-87B4EC16E64E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {7A6C9C97-0C91-4D06-B914-9609381CF018} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {A7AA8EB3-75F7-4153-99F0-78F46246F398} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6624232 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {A922942D-5389-4BA5-AFF3-053FC5C25AC6} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4185008 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {AD8BFB3B-0DFC-4562-8DFE-610664DCDE78} - System32\Tasks\GoogleUpdateTaskMachineUA{326F73CC-F1D8-4E84-97C9-02838DA395A4} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-13] (Google LLC -> Google LLC) Task: {BD54A80F-FB71-4F77-8BE2-FDF214370A36} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4185008 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {CE4BBF4C-1C26-49CA-98E3-D76D89E25769} - System32\Tasks\EPSON L3250 Series Update {B12943C1-781E-4AF1-BC89-98EE39233F02} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {CF9AC3EC-7784-4B49-AC65-6EB16588C69F} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4954008 2023-01-22] (Avast Software s.r.o. -> AVAST Software) Task: {D5DC78B9-551B-49F3-B69D-57CC1638898D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116096 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {E3A1F830-2226-46E8-A3C5-54D3F666E2C5} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD10E9D6-AD60-4802-8595-DD4F8F445324} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {E55DC332-CE7B-4E11-8334-296D5828D084} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116096 2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Task: {EE7DF701-3F83-4BED-9F1B-C3D9DF0EF771} - System32\Tasks\Opera GX scheduled Autoupdate 1674061990 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo) Task: {F8A29D69-E481-4662-9233-DE5E5C49B724} - System32\Tasks\EPSON L3250 Series Update {AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {FBB7977C-99B3-4AC4-9EDC-70A996F71618} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\EPSON L3250 Series Update {9C03390E-FB09-4550-AA79-82566BA37588}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{9C03390E-FB09-4550-AA79-82566BA37588} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\EPSON L3250 Series Update {AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{AC512EB8-DDBD-4DBD-99D1-7AD5BAD56B30} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\EPSON L3250 Series Update {B12943C1-781E-4AF1-BC89-98EE39233F02}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYWE.EXE:/EXE:{B12943C1-781E-4AF1-BC89-98EE39233F02} /F:UpdateWORKGROUP\DESKTOP-8MSIH6J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6e87e3f9-9c83-48a4-bafa-232743692e5e}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-22] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: fwdwavai.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\fwdwavai.default [2023-01-23] FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\lbh391y4.default-release [2023-01-23] FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-10-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-13] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-01-23] CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Super AdBlock para Sites & YouTube™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehbcbdefgokbnkgnkecmlabccnfnodab [2023-01-10] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-12-22] CHR Extension: (Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2022-12-16] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-13] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-23] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-01-23] CHR Extension: (Dark Theme v3) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2023-01-17] CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-17] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-01-10] CHR Extension: (Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2022-12-22] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-17] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-23] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKU\S-1-5-21-1657209916-3698779994-3562846091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] Brave: ======= BRA Profile: C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-01-23] BRA Extension: (Brave Local Data Files Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-01-23] BRA Extension: (Brave NTP background images) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-01-17] BRA Extension: (Brave NTP sponsored images) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2023-01-23] BRA Extension: (Wallet Data Files Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-01-17] BRA Extension: (Brave Ads Resources) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\fbpmbjccnaaeogogeldlomcmlhllgaje [2023-01-18] BRA Extension: (Brave Ads Resources) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\fimpfhgllgkaekhbpkakjchdogecjflf [2023-01-17] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-01-17] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-01-23] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese (plaintext))) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\meimhmgfbckapkbbbdaoefgnbppmkodp [2023-01-23] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-01-17] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-01-17] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8553880 2023-01-22] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [597400 2023-01-22] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [597400 2023-01-22] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-01-22] (Avast Software s.r.o. -> AVAST Software) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-01-17] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477392 2022-09-22] (Microsoft Corporation -> Microsoft Corporation) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10032232 2023-01-19] (Electronic Arts, Inc. -> Electronic Arts) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2021-06-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 FeelgoodDestroyaWH; C:\Program Files (x86)\Common Files\FeelgoodDestroyaWH\FeelgoodDestroyaWH.exe [3218432 2023-01-12] () [Arquivo não assinado] [O arquivo está em uso] S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.002.0102.0004\FileSyncHelper.exe [3483024 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-10-11] (GOG Sp. z o.o. -> GOG.com) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.002.0102.0004\OneDriveUpdaterService.exe [3853232 2023-01-21] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16119104 2022-09-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\109.1.47.171\elevation_service.exe" [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31424 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229208 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [391272 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25576 2023-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39648 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [267888 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [555560 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105248 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80376 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [852000 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [695496 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [212632 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [318456 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2022-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [473376 2022-12-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-23 18:12 - 2023-01-23 18:12 - 000025319 _____ C:\Users\User\Desktop\Fixlog_23-01-2023 18.12.37.txt 2023-01-23 17:58 - 2023-01-23 18:12 - 000025319 _____ C:\Users\User\Desktop\Fixlog.txt 2023-01-23 16:15 - 2023-01-23 16:15 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2023-01-23 16:00 - 2022-09-30 05:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus2.sys 2023-01-23 12:03 - 2023-01-23 17:57 - 000051465 _____ C:\Users\User\Desktop\Addition.txt 2023-01-23 12:01 - 2023-01-23 18:41 - 000030556 _____ C:\Users\User\Desktop\FRST.txt 2023-01-23 11:51 - 2023-01-23 11:51 - 002376704 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2023-01-23 08:58 - 2023-01-23 08:58 - 000000000 ___HD C:\$AV_ASW 2023-01-22 19:52 - 2023-01-22 19:52 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2023-01-22 19:51 - 2023-01-22 19:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software 2023-01-22 19:50 - 2023-01-22 19:50 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2023-01-22 19:50 - 2023-01-22 19:50 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2023-01-22 19:49 - 2023-01-23 16:52 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2023-01-22 19:49 - 2023-01-22 19:49 - 000273816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2023-01-22 19:49 - 2023-01-22 19:49 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2023-01-22 19:49 - 2023-01-22 19:49 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2023-01-22 19:48 - 2023-01-22 19:48 - 000000000 ____D C:\Program Files\Avast Software 2023-01-22 19:47 - 2023-01-22 19:47 - 000268488 _____ (AVAST Software) C:\Users\User\Downloads\avast_free_antivirus_setup_online (1).exe 2023-01-22 19:24 - 2023-01-23 18:41 - 000000000 ____D C:\FRST 2023-01-22 19:18 - 2023-01-22 19:19 - 000000000 ____D C:\AdwCleaner 2023-01-22 17:54 - 2023-01-22 17:54 - 000000000 ____D C:\ProgramData\Apple Computer 2023-01-22 17:54 - 2023-01-22 17:54 - 000000000 ____D C:\ProgramData\Apple 2023-01-22 16:13 - 2023-01-22 16:13 - 000002236 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegação privativa do Firefox.lnk 2023-01-22 16:12 - 2023-01-22 16:12 - 000000000 ____D C:\Users\User\AppData\Local\mbam 2023-01-22 16:10 - 2023-01-22 16:10 - 000000000 ____D C:\Program Files\Malwarebytes 2023-01-22 16:07 - 2023-01-22 16:07 - 002552184 _____ (Malwarebytes) C:\Users\User\Downloads\MBSetup (1).exe 2023-01-21 23:43 - 2023-01-21 23:43 - 000049530 _____ C:\Users\User\Downloads\FRST.txt 2023-01-21 23:23 - 2023-01-21 23:37 - 000000000 ____D C:\Program Files (x86)\Altruistic 2023-01-21 23:23 - 2023-01-21 23:23 - 000000000 ____D C:\Users\User\AppData\Local\AltruisticApp 2023-01-21 23:23 - 2023-01-21 23:23 - 000000000 ____D C:\Users\User\AppData\Local\Altruistic 2023-01-21 23:22 - 2023-01-21 23:22 - 000000000 _____ C:\Windows\AnimFax.INI 2023-01-21 20:53 - 2023-01-21 20:53 - 000059344 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrausbbus.sys 2023-01-21 20:53 - 2023-01-21 20:53 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrascsibus.sys 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\User\AppData\Local\Disc_Soft_Ltd 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2023-01-21 20:53 - 2023-01-21 20:53 - 000000000 ____D C:\Users\Public\Documents\Catch! 2023-01-21 20:52 - 2023-01-21 20:53 - 033313648 _____ (Disc Soft Ltd) C:\Users\User\Downloads\daemon-tools-5-7-0.exe 2023-01-21 09:48 - 2023-01-21 09:48 - 000069787 _____ C:\Users\User\Downloads\Midway.pdf 2023-01-18 17:08 - 2023-01-22 19:49 - 000000000 ____D C:\Program Files\Common Files\AV 2023-01-18 17:06 - 2023-01-23 15:28 - 000000000 ____D C:\Windows\system32\Drivers\Kaspersky4Win-21-8 2023-01-18 17:06 - 2023-01-18 17:06 - 000000000 ____D C:\Program Files (x86)\dotnet 2023-01-18 15:35 - 2023-01-18 15:35 - 000000000 ____D C:\Program Files\chrome_BITS_11508_648128638 2023-01-18 14:15 - 2023-01-18 14:15 - 000000000 ____D C:\Users\User\AppData\Local\Opera Software 2023-01-18 14:13 - 2023-01-18 14:13 - 000004220 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1674061990 2023-01-18 12:37 - 2023-01-18 12:37 - 000030252 _____ C:\Windows\system32\servers.def.lkg 2023-01-18 12:37 - 2023-01-18 12:37 - 000030252 _____ C:\Windows\system32\servers.def 2023-01-18 12:37 - 2023-01-18 12:37 - 000016822 _____ C:\Windows\system32\uat64.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000002454 _____ C:\Windows\system32\servers.def.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000000571 _____ C:\Windows\system32\prod-pgm.vpx 2023-01-18 12:37 - 2023-01-18 12:37 - 000000343 _____ C:\Windows\system32\prod-vps.vpx 2023-01-18 12:35 - 2023-01-18 12:35 - 000000000 ____D C:\Windows\system32\gf2engine 2023-01-18 12:33 - 2023-01-18 12:33 - 000000000 _____ C:\Windows\ExtenEmploy.INI 2023-01-18 12:19 - 2023-01-23 15:21 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software 2023-01-18 11:50 - 2023-01-18 12:49 - 000000000 ____D C:\Users\User\AppData\Local\Gh 2023-01-18 11:45 - 2023-01-18 11:45 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys 2023-01-18 11:44 - 2023-01-23 18:13 - 000000000 ____D C:\ProgramData\Avast Software 2023-01-18 11:43 - 2023-01-18 11:43 - 000000000 _____ C:\Windows\ThankJudge.INI 2023-01-18 11:40 - 2023-01-18 11:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Opera Software 2023-01-18 11:38 - 2023-01-18 11:38 - 000000000 ____D C:\Users\User\AppData\Roaming\7zip 2023-01-18 11:06 - 2023-01-18 11:36 - 018632606 _____ C:\Users\User\Downloads\setup_365135.zip 2023-01-18 09:34 - 2023-01-18 09:35 - 002127029 _____ (Fortrek ) C:\Users\User\Downloads\Fortrek_G_Pro_K7_PLUS_Setup_V1.0.exe 2023-01-17 22:44 - 2023-01-17 22:44 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-01-17 22:44 - 2023-01-17 22:44 - 000002397 _____ C:\Users\Public\Desktop\Brave.lnk 2023-01-17 22:44 - 2023-01-17 22:44 - 000000000 ____D C:\Program Files\BraveSoftware 2023-01-17 22:36 - 2023-01-17 22:44 - 000000000 ____D C:\Users\User\AppData\Local\BraveSoftware 2023-01-17 22:36 - 2023-01-17 22:36 - 000003688 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{EDB9513D-9C9C-4E10-AE86-78F9E1A01ED2} 2023-01-17 22:36 - 2023-01-17 22:36 - 000003564 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD10E9D6-AD60-4802-8595-DD4F8F445324} 2023-01-17 22:36 - 2023-01-17 22:36 - 000000000 ____D C:\Program Files (x86)\BraveSoftware 2023-01-17 22:34 - 2023-01-17 22:35 - 001367168 _____ (BraveSoftware Inc.) C:\Users\User\Downloads\BraveBrowserSetup (2).exe 2023-01-17 16:38 - 2023-01-18 15:27 - 000000000 ____D C:\Users\User\AppData\Local\BY-COMBO2 2023-01-17 16:38 - 2023-01-18 09:36 - 000001969 _____ C:\Users\User\Desktop\Fortrek G Pro K7 PLUS.lnk 2023-01-17 16:38 - 2023-01-18 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fortrek G Pro K7 PLUS 2023-01-17 16:38 - 2023-01-18 09:36 - 000000000 ____D C:\Program Files (x86)\Fortrek G Pro K7 PLUS 2023-01-17 14:54 - 2023-01-23 17:17 - 000000399 _____ C:\Users\User\Desktop\VISUALG.INI 2023-01-16 23:34 - 2023-01-21 06:34 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-01-12 07:21 - 2023-01-12 07:21 - 000239689 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.18.20 AM.jpeg 2023-01-12 07:20 - 2023-01-12 07:20 - 000187103 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.16.20 AM.jpeg 2023-01-12 07:20 - 2023-01-12 07:20 - 000135226 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-12 at 7.17.30 AM.jpeg 2023-01-11 21:20 - 2023-01-11 21:20 - 000151281 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 9.25.34 PM.jpeg 2023-01-11 21:19 - 2023-01-19 21:54 - 000000000 ____D C:\Users\User\Desktop\doc JF 2023-01-11 20:43 - 2023-01-11 20:48 - 000251416 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 8.43.52 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:47 - 000314719 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-11 at 8.42.46 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:47 - 000136844 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.26.32 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:45 - 000261423 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.21.58 PM.jpeg 2023-01-11 20:43 - 2023-01-11 20:44 - 000157960 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.27.28 PM.jpeg 2023-01-11 09:34 - 2023-01-11 09:34 - 000017636 _____ C:\Users\User\Downloads\download (8).pdf 2023-01-10 22:32 - 2023-01-10 22:35 - 000281271 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.31.41 PM.jpeg 2023-01-10 22:32 - 2023-01-10 22:34 - 000313930 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.37.02 PM.jpeg 2023-01-10 22:31 - 2023-01-10 22:38 - 000195745 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.20.14 PM.jpeg 2023-01-10 22:31 - 2023-01-10 22:33 - 000455748 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 10.31.23 PM.jpeg 2023-01-10 22:29 - 2023-01-10 22:29 - 000000000 ___HD C:\$WinREAgent 2023-01-10 22:16 - 2023-01-10 22:17 - 000359948 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.19.12 PM (1).jpeg 2023-01-10 22:07 - 2023-01-10 22:11 - 000307751 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.18.35 PM.jpeg 2023-01-10 22:07 - 2023-01-10 22:10 - 000264996 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.17.01 PM.jpeg 2023-01-10 22:07 - 2023-01-10 22:09 - 000369910 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.02.58 PM.jpeg 2023-01-10 21:50 - 2023-01-10 21:56 - 000334843 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.42.03 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:54 - 000286659 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.41.33 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:53 - 000321389 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.54 AM.jpeg 2023-01-10 21:50 - 2023-01-10 21:51 - 000361679 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.19 AM.jpeg 2023-01-10 21:35 - 2023-01-10 21:37 - 000374622 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.40.04 AM.jpeg 2023-01-10 21:21 - 2023-01-10 21:23 - 000351459 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.51 AM.jpeg 2023-01-10 21:17 - 2023-01-10 21:20 - 000402429 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.34 AM.jpeg 2023-01-10 20:54 - 2023-01-10 21:02 - 000350973 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 11.39.18 AM - Copia.jpeg 2023-01-10 09:53 - 2023-01-10 09:53 - 000152092 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-10 at 9.52.13 AM.jpeg 2023-01-09 22:50 - 2023-01-09 22:50 - 000102946 _____ C:\Users\User\Downloads\WhatsApp Image 2023-01-09 at 10.55.30 PM.jpeg 2023-01-09 18:42 - 2023-01-09 18:43 - 000000000 ____D C:\Users\User\Documents\Euro Truck Simulator 2 2023-01-09 11:14 - 2023-01-09 11:14 - 000294314 _____ C:\Users\User\Downloads\WebNewBoleto 01 2023.pdf 2023-01-09 10:59 - 2023-01-09 11:00 - 000017633 _____ C:\Users\User\Downloads\download (7).pdf 2023-01-09 10:30 - 2023-01-09 10:30 - 000609048 _____ C:\Users\User\Downloads\itaucard_•••• 5900_fatura_2023-01 (1).pdf 2023-01-09 10:30 - 2023-01-09 10:30 - 000371043 _____ C:\Users\User\Downloads\credicard_•••• 0571_fatura_2023-01.pdf 2023-01-09 10:29 - 2023-01-09 10:29 - 000609048 _____ C:\Users\User\Downloads\itaucard_•••• 5900_fatura_2023-01.pdf 2023-01-09 10:29 - 2023-01-09 10:29 - 000309035 _____ C:\Users\User\Downloads\itaucard_•••• 1072_fatura_2023-01.pdf 2023-01-04 11:41 - 2023-01-04 11:41 - 000000000 ____D C:\Users\User\AppData\LocalLow\505 Games 2023-01-02 09:34 - 2023-01-02 09:34 - 000000000 ___HD C:\OneDriveTemp 2022-12-30 15:14 - 2022-12-30 15:14 - 000000000 ____D C:\Users\User\AppData\LocalLow\Polyslash 2022-12-30 14:24 - 2023-01-11 23:26 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games 2022-12-30 14:24 - 2022-12-30 14:35 - 000000000 ____D C:\Users\User\AppData\Local\mslugx 2022-12-30 14:24 - 2022-12-30 14:24 - 000000000 ____D C:\Amazon Games 2022-12-30 14:23 - 2022-12-30 14:23 - 000001301 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games.lnk 2022-12-30 14:23 - 2022-12-30 14:23 - 000001293 _____ C:\Users\User\Desktop\Amazon Games.lnk 2022-12-30 14:23 - 2022-12-30 14:23 - 000000000 ____D C:\Users\User\AppData\Roaming\electron-platform 2022-12-30 14:21 - 2022-12-30 14:21 - 000000000 ____D C:\Users\User\AppData\Local\Amazon Games 2022-12-30 14:20 - 2022-12-30 14:20 - 001961368 _____ (Amazon) C:\Users\User\Downloads\AmazonGamesSetup.exe 2022-12-26 08:25 - 2022-12-26 08:25 - 000450006 _____ C:\Users\User\Downloads\TABELA DE FREQUENCIA.pdf ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-01-23 18:38 - 2022-11-15 19:30 - 000000000 ____D C:\Users\User\AppData\Roaming\discord 2023-01-23 18:36 - 2019-12-07 04:02 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-01-23 18:18 - 2019-12-07 11:53 - 000711688 _____ C:\Windows\system32\prfh0416.dat 2023-01-23 18:18 - 2019-12-07 11:53 - 000139644 _____ C:\Windows\system32\prfc0416.dat 2023-01-23 18:18 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2023-01-23 18:18 - 2019-12-07 04:09 - 001642474 _____ C:\Windows\system32\PerfStringBackup.INI 2023-01-23 18:15 - 2022-10-13 08:41 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-23 18:14 - 2022-11-15 19:30 - 000000000 ____D C:\Users\User\AppData\Local\Discord 2023-01-23 18:14 - 2022-10-13 08:37 - 000000000 ___RD C:\Users\User\OneDrive 2023-01-23 18:13 - 2022-10-13 08:40 - 000000000 ____D C:\Program Files\TeamViewer 2023-01-23 18:13 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-23 18:13 - 2019-12-07 04:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-01-23 18:13 - 2019-12-07 04:02 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-23 18:12 - 2022-10-13 09:17 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2023-01-23 18:12 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-01-23 18:08 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2023-01-23 17:54 - 2022-10-13 14:03 - 000000000 ____D C:\Users\User\Desktop\JFLM 2023-01-23 17:44 - 2022-10-13 08:44 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2023-01-23 16:12 - 2022-10-13 09:23 - 000000000 ____D C:\Users\User\AppData\Roaming\WhatsApp 2023-01-23 15:31 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache 2023-01-23 15:28 - 2022-10-13 08:44 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-01-23 15:28 - 2022-10-13 08:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-23 10:15 - 2022-11-05 19:16 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft 2023-01-22 19:49 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-01-22 19:49 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2023-01-22 19:41 - 2022-11-04 13:57 - 000000000 ____D C:\FFOutput 2023-01-22 19:41 - 2022-10-13 14:03 - 000000000 ____D C:\Users\User\Desktop\Estudos do visualg 2023-01-22 18:22 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2023-01-22 17:54 - 2022-10-13 08:37 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\Publishers 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2023-01-22 17:54 - 2019-12-07 04:11 - 000000000 ____D C:\ProgramData\Packages 2023-01-22 17:53 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-22 16:13 - 2022-10-13 08:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-01-22 16:12 - 2022-10-13 08:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-22 16:12 - 2022-10-13 08:44 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-01-21 23:39 - 2022-11-15 19:30 - 000002226 _____ C:\Users\User\Desktop\Discord.lnk 2023-01-21 23:37 - 2022-10-13 09:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-01-21 08:01 - 2022-10-13 08:56 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-01-21 08:01 - 2022-10-13 08:56 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-21 08:01 - 2022-10-13 08:38 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1657209916-3698779994-3562846091-1001 2023-01-21 06:34 - 2019-12-07 04:03 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-20 08:01 - 2022-12-07 11:22 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2023-01-18 17:06 - 2022-10-15 13:51 - 000000000 ____D C:\ProgramData\Package Cache 2023-01-18 16:45 - 2022-10-22 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA 2023-01-18 09:38 - 2022-10-13 09:25 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc 2023-01-18 08:02 - 2022-10-13 08:45 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-18 08:02 - 2022-10-13 08:45 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-01-11 10:49 - 2022-10-13 14:20 - 000000000 ____D C:\Users\User\Desktop\JOANA 2023-01-10 23:14 - 2022-10-21 20:28 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-01-10 23:14 - 2022-10-13 09:00 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-01-10 22:58 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2023-01-10 22:58 - 2019-12-07 04:02 - 000446016 _____ C:\Windows\system32\FNTCACHE.DAT 2023-01-10 22:38 - 2019-12-07 04:07 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-01-10 22:29 - 2022-10-13 08:40 - 000000000 ____D C:\Windows\system32\MRT 2023-01-10 22:25 - 2022-10-13 08:40 - 150199536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-01-10 21:41 - 2022-10-15 20:58 - 000000000 ____D C:\Users\User\AppData\Local\Ubisoft Game Launcher 2023-01-09 19:05 - 2022-10-13 14:13 - 000000000 ____D C:\Users\User\Documents\My Games 2023-01-04 15:27 - 2019-12-07 04:03 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-04 15:27 - 2019-12-07 04:03 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-01-03 12:08 - 2022-10-13 09:24 - 000002196 _____ C:\Users\User\Desktop\WhatsApp.lnk 2022-12-28 11:40 - 2022-10-15 20:57 - 000000000 ____D C:\Program Files (x86)\Steam 2022-12-27 14:29 - 2022-10-15 19:52 - 000000000 ____D C:\ProgramData\Epson ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================