não consigo Remover o FIND.IT PRO

[alexestudante]

Pessoal bom dia,

 

Preciso saber como remover esse Find.it pro do meu navegador Opera.

Tentei o usar o SPYBOT SEARCH AND DESTROY, que realmente localizou e eliminou muito lixo que eu nem sabia que existia, porém esse Find.it Pro,  que esta no Opera, ele nem sequer encontrou.

Se alguém puder me ajudar, desde já agradeço e fico no aguardo.

 

Att. Alexander Cunha

[Lusitano]

2 horas atrás, Alexander Cunha disse:

Se alguém puder me ajudar, desde já agradeço e fico no aguardo.

@Alexander Cunha

Sem dúvida que pudemos ajudar, mas para isso é necessário você colocar o resultado das análises solicitadas:

 

[alexestudante]

Boa tarde,

Conforme conversamos, estou com o malware FIND.IT PRO alojado no browser Opera.

Segui todas as recomendações do tópico.

Seguem os logs conforme solicitado.

 

 

AdwCleaner

# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build:    11-18-2021
# Database: 2022-02-03.4 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    02-25-2022
# Duration: 00:00:23
# OS:       Windows 7 Ultimate
# Scanned:  32044
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

AdwCleaner[S01].txt - [1531 octets] - [04/02/2022 15:56:45]
AdwCleaner[S00].txt - [1470 octets] - [13/02/2022 18:23:56]
AdwCleaner[S02].txt - [2343 octets] - [24/02/2022 22:02:53]
AdwCleaner[C02].txt - [2405 octets] - [24/02/2022 22:03:14]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########

 

FARBAR SCAN

 

Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 24-02-2022
Executado por Icebrave (administrador) em ICEBRAVE-PC (25-02-2022 14:53:40)
Executando a partir de C:\Users\Icebrave\Desktop
Perfis Carregados: Icebrave & Net & Administrador
Plataforma: Microsoft Windows 7 Ultimate  Service Pack 1 (X64) Idioma: Português (Brasil)
Navegador padrão: FF
Modo da Inicialização: Normal

==================== Processos (Todos) =================
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\explorer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\csrss.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smss.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wininit.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\winlogon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
(services.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\Ares\net_updater32.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitPhantomPDFUpdateService.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnetwk.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spoolsv.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\svchost.exe <13>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskhost.exe <2>
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dwm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe <2>
(wininit.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\lsass.exe
(wininit.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\lsm.exe
(wininit.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\services.exe

==================== Registro (Todos) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-07-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2240288 2019-02-04] (voidtools -> voidtools)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3230720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [2973184 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\ DisallowedCertificates: 1916A2AF346D399F50313C393200F14140456616 (U)
HKLM\ DisallowedCertificates: 2A83E9020591A55FC6DDAD3FB102794C52B24E70 (U)
HKLM\ DisallowedCertificates: 2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 (U)
HKLM\ DisallowedCertificates: 305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 (U)
HKLM\ DisallowedCertificates: 367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB (U)
HKLM\ DisallowedCertificates: 3A850044D8A195CD401A680C012CB0A3B5F8DC08 (U)
HKLM\ DisallowedCertificates: 40AA38731BD189F9CDB5B9DC35E2136F38777AF4 (U)
HKLM\ DisallowedCertificates: 43D9BCB568E039D073A74A71D8511F7476089CC3 (U)
HKLM\ DisallowedCertificates: 471C949A8143DB5AD5CDF1C972864A2504FA23C9 (U)
HKLM\ DisallowedCertificates: 51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 (U)
HKLM\ DisallowedCertificates: 5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 (U)
HKLM\ DisallowedCertificates: 61793FCBFA4F9008309BBA5FF12D2CB29CD4151A (U)
HKLM\ DisallowedCertificates: 637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 (U)
HKLM\ DisallowedCertificates: 63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 (U)
HKLM\ DisallowedCertificates: 6431723036FD26DEA502792FA595922493030F97 (U)
HKLM\ DisallowedCertificates: 7D7F4414CCEF168ADF6BF40753B5BECD78375931 (U)
HKLM\ DisallowedCertificates: 80962AE4D6C5B442894E95A13E4A699E07D694CF (U)
HKLM\ DisallowedCertificates: 86E817C81A5CA672FE000F36F878C19518D6F844 (U)
HKLM\ DisallowedCertificates: 8E5BD50D6AE686D65252F843A9D4B96D197730AB (U)
HKLM\ DisallowedCertificates: 9845A431D51959CAF225322B4A4FE9F223CE6D15 (U)
HKLM\ DisallowedCertificates: B533345D06F64516403C00DA03187D3BFEF59156 (U)
HKLM\ DisallowedCertificates: B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 (U)
HKLM\ DisallowedCertificates: C060ED44CBD881BD0EF86C0BA287DDCF8167478C (U)
HKLM\ DisallowedCertificates: CEA586B2CE593EC7D939898337C57814708AB2BE (U)
HKLM\ DisallowedCertificates: D018B62DC518907247DF50925BB09ACF4A5CB3AD (U)
HKLM\ DisallowedCertificates: F8A54E03AADC5692B850496A4C4630FFEAA29D83 (U)
HKLM\ DisallowedCertificates: FA6660A94AB45F6A88C0D7874D89A863D74DEE97 (U)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [7388304 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Policies\system: [disableregistrytools] 0
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Policies\Explorer: [NoSimpleNetIDList] 1
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Software\Policies\...\system: [disablecmd] 0
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\MountPoints2: {c62dcd8d-19dd-11ec-9f50-0862669877e8} - G:\LG_PC_Programs.exe
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Run: [DAEMON Tools Lite Automount] => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun (Nenhum Arquivo)
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\MountPoints2: {18e3c50c-8f3d-11ec-9c2e-0862669877e8} - H:\SETUP.EXE -autorun
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\MountPoints2: {3679d0fc-35d2-11ec-b056-0862669877e8} - H:\START.EXE
HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [166400 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [756736 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [38912 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP DeskJet 3630 series): C:\Windows\system32\HPDiscoPME311.dll [840096 2019-03-19] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-13] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\Windows\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [966144 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\Windows\system32\FXSMON.DLL [41984 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [195072 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [45568 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\WSDMon.dll [225280 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\system32\unregmp2.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{26923b43-4d38-484f-9b9e-de460746276c}] -> C:\Windows\System32\ie4uinit.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] -> C:\Windows\System32\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Windows Mail\WinMail.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\system32\unregmp2.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> regsvr32.exe /s /n /i:U shell32.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\system32\mscories.dll [2015-06-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\91.1.25.72\Installer\chrmstp.exe [2021-06-11] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\unregmp2.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{26923b43-4d38-484f-9b9e-de460746276c}] -> C:\Windows\SysWOW64\ie4uinit.exe [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] -> C:\Windows\SysWOW64\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{853B2BB3-0161-45B2-AFAF-A0ECE6EA62A7}] -> C:\Windows\SysWOW64\IEDKCS32.DLL [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files (x86)\Windows Mail\WinMail.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\SysWOW64\unregmp2.exe [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> regsvr32.exe /s /n /i:U shell32.dll
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\SysWOW64\ie4uinit.exe [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\mscories.dll [2015-06-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\authui.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\authui.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> C:\Windows\System32\VaultCredProvider.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{6f45dc1e-5384-457a-bc13-2cd81b0d28ed}] -> C:\Windows\system32\authui.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8bf9a910-a8ff-457f-999f-a5ca10b4a885}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{AC3AC249-E820-4343-A65B-377AC634DC09}] -> C:\Windows\System32\BioCredProv.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\authui.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\PLAP Providers: [{5537E283-B1E7-4EF8-9C6E-7AB0AFE5056D}] -> C:\Windows\system32\rasplap.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\system32\wlgpclnt.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0E28E245-9368-4853-AD84-6DA3BA35BB75}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{17D89FEC-5C44-4972-B12D-241CAEF74509}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{1A6364EB-776B-4120-ADE1-B63A406A76B5}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\system32\fdeploy.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{3610eda5-77ef-11d2-8dc5-00c04fa31a66}] -> C:\Windows\System32\dskquota.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{3A0DBA37-F8B2-4356-83DE-3E90BD5C261F}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\system32\gptext.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{42B5FAAE-6536-11d2-AE5A-0000F87571E3}] -> C:\Windows\system32\gpscript.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4bcd6cde-777b-48b6-9804-43568e23545d}] -> C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}] -> C:\Windows\System32\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{5794DAFD-BE60-433f-88A2-1A31939AC01F}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6232C319-91AC-4931-9385-E70C2B099F0E}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6A4C88C6-C502-4f74-8F60-2CB23EDC24E2}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7150F9BF-48AD-4da4-A49C-29EF4A8369BA}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{728EE579-943C-4519-9EF7-AB56765798ED}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{74EE6C03-5363-4554-B161-627540339CAB}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7933F41E-56F8-41d6-A31C-4148A711EE93}] -> C:\Windows\System32\srchadmin.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7B849a69-220F-451E-B3FE-2CB811AF94AE}] -> C:\Windows\System32\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\system32\scecli.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{8A28E2C5-8D06-49A4-A08C-632DAA493E17}] -> C:\Windows\system32\gpprnext.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{91FBB303-0CD5-4055-BF42-E512A681B325}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}] -> C:\Windows\System32\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{A3F3E39B-5D83-4940-B954-28315B82F0A8}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{AADCED64-746C-4633-A97C-D61349046527}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B087BE9D-ED37-454f-AF9C-04291E351182}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\system32\dot3gpclnt.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BC75B1ED-5833-4858-9BB8-CBF0B166DF9D}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C418DD9D-0D14-4efb-8FBF-CFE535C8FAC7}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\Windows\System32\cscobj.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> C:\Windows\system32\appmgmts.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\system32\gptext.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}] -> C:\Windows\System32\iedkcs32.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{e437bc1c-aa7d-11d2-a382-00c04f991e27}] -> C:\Windows\System32\polstore.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E47248BA-94CC-49c4-BBB5-9EB7F05183D0}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E4F48E54-F38D-4884-BFB9-D4D2E5729C18}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E5094040-C46C-4115-B030-04FB2E545B00}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E62688F0-25FD-4c90-BFF5-F508B9D2E31F}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> C:\Windows\system32\auditcse.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{F9C77450-3A41-477E-9310-9ACD617BD9E3}] -> C:\Windows\system32\gpprefcl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\system32\gptext.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\system32\gptext.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
Startup: C:\Users\Administrador.Icebrave-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar627.lnk [2021-11-10]
ShortcutTarget: Sidebar627.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\Icebrave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar412.lnk [2021-12-26]
ShortcutTarget: Sidebar412.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows -> Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
AlternateShell: cmd.exe
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0C38B869-6562-4D09-BB59-925CC0AD38AD} - System32\Tasks\Opera scheduled assistant Autoupdate 1594826419 => C:\Users\Net\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Net\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {14EE36AF-0698-4AFB-89A2-6B42D6F80F2D} - System32\Tasks\Christmas Task (One-Time) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\xmas.exe /xr (Nenhum Arquivo)
Task: {1B9BAB01-6F0C-45E9-8FFC-2ECEBFE1A537} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-16] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {20F11E05-B766-4243-988D-50AC8468C383} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {2EA30CBB-46A3-4134-B1B0-0FB3C0FFA770} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-16] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {34AF32D8-0F79-491A-83D6-CD6F72B34DCC} - System32\Tasks\{43DB6FCE-A204-4053-937D-0E17A81F88CD} => C:\Windows\system32\pcalua.exe -a C:\Users\Icebrave\Downloads\ares-fix-1-0-en-win.exe -d C:\Users\Icebrave\Downloads
Task: {5BEFD3FE-255B-41AF-9A2B-86F9BD891F9E} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\IObit Uninstaller\sump.exe /sup2 (Nenhum Arquivo)
Task: {7AB03B08-91B2-456E-B4A4-CA36134B47EE} - System32\Tasks\Cybertron\Privacy Eraser\SkipUAC_Icebrave => C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser64.exe [8402272 2021-11-01] (Shenzhen Saiboen Software Technology Co., Ltd. -> Cybertron Software, Co., Ltd.)
Task: {8C82C6DB-99D4-40CB-9D01-FAE099AD766B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6189624 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {8F201E05-ECB1-4731-9E3A-5FED86B4243C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-08] () [Arquivo não assinado]
Task: {A10C413A-7669-4C50-9BC0-896C0F599478} - System32\Tasks\Opera scheduled Autoupdate 1594826418 => C:\Users\Net\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software)
Task: {A7970E6F-1784-4BD5-9575-B30B56D8B695} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {B07ED793-BD7A-456F-9002-3027448DC510} - System32\Tasks\HPCustPartic.exe_{FCC466AE-3F1D-418E-A531-F5F2CA8CB8EA} => C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPCustPartic.exe /installoptin 1628182718 /installreport yes (Nenhum Arquivo)
Task: {B086DA04-0F28-41A2-872C-AB5D2F56161E} - System32\Tasks\WpsExternal_Net_20220126152527 => C:\Users\Net\AppData\Local\Kingsoft\WPS Office\11.2.0.10463\office6\wpscloudsvr.exe [1060552 2022-01-26] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {BDD6191E-3E54-45E5-8CC8-844C5E36D884} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5723640 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {D2112DE7-5F36-4925-B40C-35869E23D777} - System32\Tasks\HPCustParticipation HP DeskJet 2130 series => C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPCustPartic.exe /UA 15.0 (Nenhum Arquivo)
Task: {DCF26CC8-FE70-44A0-86DE-EB07CFB54A67} - System32\Tasks\WpsUpdateTask_Net => C:\Users\Net\AppData\Local\Kingsoft\WPS Office\11.2.0.10463\office6\wpsupdate.exe [168648 2022-01-26] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {E087FF33-611E-457A-8104-143D1A1B6D27} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [7177168 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {E695A86A-FB62-4CD4-A29A-A6902872BBCC} - System32\Tasks\WpsUpdateTask_Icebrave => C:\Users\Icebrave\AppData\Local\Kingsoft\WPS Office\11.2.0.9453\office6\wpsupdate.exe -from=task (Nenhum Arquivo)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\Icebrave\Desktop\adwcleaner_8.3.0.exe

==================== Internet (Todos) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 01 C:\Windows\system32\NLAapi.dll [70656 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 02 C:\Windows\system32\napinsp.dll [68096 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [86016 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 04 C:\Windows\system32\pnrpnsp.dll [86016 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Windows\System32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 06 C:\Windows\System32\winrnr.dll [28672 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{9CC597A6-378D-48C9-A8D8-E56186596A65}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{FB8BC02B-DCFD-4D6D-AC5E-D44ABF05FC4E}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO

FireFox:
========
FF DefaultProfile: rx4ldpri.default
FF ProfilePath: C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default [2022-02-25]
FF DownloadDir: C:\Users\Alex\Downloads
FF NetworkProxy: Mozilla\Firefox\Profiles\rx4ldpri.default -> autoconfig_url", "hxxp://localhost:9000/proxy.pac"
FF Extension: (Flash vídeo Downloader - Full HD Download) - C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\Extensions\[email protected] [2021-01-19] [] [não assinado]
FF Extension: (Nimbus Screen Capture - editable screenshots.) - C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\Extensions\[email protected] [2014-03-22] [] [não assinado]
FF Extension: (FireShot) - C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2021-01-19] [] [não assinado]
FF Extension: (EPUBReader) - C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2021-01-19] [] [não assinado]
FF Extension: (DownloadHelper) - C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2021-01-19] [] [não assinado]
FF SearchPlugin: C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\searchplugins\4shared.xml [2013-07-09]
FF SearchPlugin: C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\rx4ldpri.default\searchplugins\aol-pesquisar.xml [2013-01-10]
FF ProfilePath: C:\Users\Icebrave\AppData\Roaming\Mozilla\Firefox\Profiles\aajvfzub.default-release [2022-02-25]
FF NewTab: Mozilla\Firefox\Profiles\aajvfzub.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170902&iDate=2020-11-08 08:27:29&bName=
FF Notifications: Mozilla\Firefox\Profiles\aajvfzub.default-release -> hxxps://yt1s.io; hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF Extension: (DoH Roll-Out) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2021-12-19] [não assinado]
FF Extension: (Form Autofill) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2021-12-19] [não assinado]
FF Extension: (Picture-In-Picture) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2021-12-19] [não assinado]
FF Extension: (Firefox Screenshots) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2022-02-11] [não assinado]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2021-12-19] [não assinado]
FF Extension: (Web Compatibility Interventions) - C:\Program Files\Mozilla Firefox\browser\features\[email protected] [2022-02-11] [não assinado]
FF Extension: (Google Sheets Offline) - C:\Program Files\Mozilla Firefox\browser\features\{9E4089DD-BC9D-4FF0-88B6-7CA5D03DF300}.xpi [2021-12-08] [não assinado]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2020-09-02] []
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected]
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected] [2020-09-02]
FF HKLM\...\Mozilla Firefox 97.0.1\Extensions: [Components] - C:\Program Files\Mozilla Firefox\components => não encontrado (a)
FF HKLM\...\Mozilla Firefox 97.0.1\Extensions: [Plugins] - C:\Program Files\Mozilla Firefox\plugins => não encontrado (a)
FF HKLM\...\Mozilla Thunderbird 91.6.1\Extensions: [Components] - C:\Program Files (x86)\Mozilla Thunderbird\components => não encontrado (a)
FF HKLM\...\Mozilla Thunderbird 91.6.1\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Thunderbird\plugins => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected]
FF HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Mozilla Firefox 97.0.1\Extensions: [Components] - C:\Program Files\Mozilla Firefox\components => não encontrado (a)
FF HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Mozilla Firefox 97.0.1\Extensions: [Plugins] - C:\Program Files\Mozilla Firefox\plugins => não encontrado (a)
FF HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Mozilla Thunderbird 91.6.1\Extensions: [Components] - C:\Program Files (x86)\Mozilla Thunderbird\components => não encontrado (a)
FF HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Mozilla Thunderbird 91.6.1\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Thunderbird\plugins => não encontrado (a)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Arquivo não assinado]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Arquivo não assinado]
StartMenuInternet: Firefox-308046B0AF4A39CB - "C:\Program Files\Mozilla Firefox\firefox.exe"
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\channel-prefs.js [2020-07-20]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2020-09-02]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2020-09-02]

Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003) Opera GXStable - "C:\Users\Net\AppData\Local\Programs\Opera GX\Launcher.exe"
StartMenuInternet: (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003) OperaStable - "C:\Users\Net\AppData\Local\Programs\Opera\Launcher.exe"

Brave:
=======
BRA Profile: C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-02-13]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2021-12-07]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-12-07]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-07-17]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-09-22]
BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese)) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\jpolmkeojnkicccihhepfbkhcbicimpa [2021-12-07]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Icebrave\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-12-07]
StartMenuInternet: Brave - "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe"

==================== Serviços (Todos) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [71680 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 AMD Crash Defender Service; C:\Windows\system32\amdfendrsr.exe [517536 2021-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S4 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [518944 2021-08-14] (Advanced Micro Devices, Inc. -> AMD)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [34816 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 Appinfo; C:\Windows\System32\appinfo.dll [70144 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [193536 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [149504 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 aspnet_state; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [54912 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [680448 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 AudioSrv; C:\Windows\System32\Audiosrv.dll [680448 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 BFE; C:\Windows\System32\bfe.dll [705024 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 BITS; C:\Windows\System32\qmgr.dll [849920 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-16] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-16] (Brave Software, Inc. -> BraveSoftware Inc.)
R3 Browser; C:\Windows\System32\browser.dll [135680 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 bthserv; C:\Windows\system32\bthserv.dll [83968 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [67224 2015-06-03] (Microsoft Corporation -> Microsoft Corporation)
S3 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2015-06-03] (Microsoft Corporation -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [132792 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [158912 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
S3 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [9728 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 COMSysApp; C:\Windows\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [7168 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [190976 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 CryptSvc; C:\Windows\SysWOW64\cryptsvc.dll [145920 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 CscService; C:\Windows\System32\cscsvc.dll [695808 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [512000 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [318976 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [256512 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 DiagTrack; C:\Windows\system32\diagtrack.dll [1390080 2015-07-22] (Microsoft Windows -> Microsoft Corporation)
S4 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [182272 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 dot3svc; C:\Windows\System32\dot3svc.dll [253952 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 DPS; C:\Windows\system32\dps.dll [162816 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 EFS; C:\Windows\System32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 eventlog; C:\Windows\System32\wevtsvc.dll [1659904 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\Windows\system32\es.dll [402944 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\Windows\SysWOW64\es.dll [271360 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 Everything; C:\Program Files\Everything\Everything.exe [2240288 2019-02-04] (voidtools -> voidtools)
S3 Fax; C:\Windows\system32\fxssvc.exe [689152 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 fdPHost; C:\Windows\system32\fdPHost.dll [16384 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 FDResPub; C:\Windows\system32\fdrespub.dll [34816 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 FontCache; C:\Windows\system32\FntCache.dll [1175552 2020-07-19] (Microsoft Windows -> Microsoft Corporation)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitPhantomPDFUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitPhantomPDFUpdateService.exe [2357864 2020-08-31] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S4 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 gpsvc; C:\Windows\System32\gpsvc.dll [791040 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 hidserv; C:\Windows\System32\hidserv.dll [38912 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [49152 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [90624 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [232448 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [187904 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [165376 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 idsvc; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [859288 2015-06-03] (Microsoft Corporation -> Microsoft Corporation)
R2 IKEEXT; C:\Windows\System32\ikeext.dll [863232 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [101888 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [571904 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 KeyIso; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [368640 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanServer; C:\Windows\System32\srvsvc.dll [235520 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [23040 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 luminati_net_updater_win_aresgalaxy_io; C:\Program Files (x86)\Ares\net_updater32.exe [7264464 2022-02-22] (Bright Data Ltd -> Bright Data Ltd.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-12-07] (Malwarebytes Inc -> Malwarebytes)
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [84992 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R2 MMCSS; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [227256 2022-02-18] (Mozilla Corporation -> Mozilla Foundation)
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [828416 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [156672 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\Windows\system32\msiexec.exe /V [128000 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe /V [73216 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 napagent; C:\Windows\system32\qagentRT.dll [476160 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
R3 netprofm; C:\Windows\System32\netprofm.dll [459264 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 netprofm; C:\Windows\SysWOW64\netprofm.dll [359936 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [303104 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 nsi; C:\Windows\system32\nsisvc.dll [26112 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 nvsvc; C:\Windows\system32\nvvsvc.exe [932728 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 p2psvc; C:\Windows\system32\p2psvc.dll [439296 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [187904 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [1361920 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 pla; C:\Windows\system32\pla.dll [1389056 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 pla; C:\Windows\SysWOW64\pla.dll [1508352 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [402944 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25088 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [327168 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [501248 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R2 Power; C:\Windows\system32\umpo.dll [164864 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 ProfSvc; C:\Windows\system32\profsvc.dll [225280 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\Windows\SysWOW64\qwave.dll [210944 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RasMan; C:\Windows\System32\rasmans.dll [344576 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [75264 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 RemoteRegistry; C:\Windows\system32\regsvc.dll [161280 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 RpcSs; C:\Windows\system32\rpcss.dll [512000 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 SamSs; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [195584 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 Schedule; C:\Windows\system32\schedsvc.dll [1110528 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 seclogon; C:\Windows\system32\seclogon.dll [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 SENS; C:\Windows\SysWOW64\sens.dll [49664 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [29184 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\Windows\system32\sessenv.dll [128000 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [119296 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 SharedAccess; C:\Windows\System32\ipnathlp.dll [358912 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [371712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [328704 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 Spooler; C:\Windows\System32\spoolsv.exe [559616 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S2 sppsvc; C:\Windows\system32\sppsvc.exe [4425728 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [65536 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [75264 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 Stereo Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [426040 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 stisvc; C:\Windows\System32\wiaservc.dll [582656 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 SU10Guard; C:\Program Files\HLOP\SU10Guard.exe [72776 2020-09-14] (Greatis Software LLC -> Greatis Software, LLC)
R3 swprv; C:\Windows\System32\swprv.dll [523776 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 SysMain; C:\Windows\system32\sysmain.dll [1742848 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [92160 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [316416 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [242176 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TermService; C:\Windows\System32\termsrv.dll [687104 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 THREADORDER; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 UmRdpService; C:\Windows\System32\umrdp.dll [214528 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 upnphost; C:\Windows\SysWOW64\upnphost.dll [266752 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 UxSms; C:\Windows\System32\uxsms.dll [38912 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 VaultSvc; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2020-04-09] (Oracle Corporation -> Oracle Corporation)
S3 vds; C:\Windows\System32\vds.exe [532992 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 VSS; C:\Windows\system32\vssvc.exe [1601536 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 W32Time; C:\Windows\system32\w32time.dll [381440 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 wbengine; C:\Windows\system32\wbengine.exe [1504768 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [201216 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 wcncsvc; C:\Windows\SysWOW64\wcncsvc.dll [276992 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [32768 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [90112 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [75776 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [90112 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [75776 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [263680 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [208896 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [237568 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66560 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [444416 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [351232 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [242688 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2022912 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [1177600 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Wlansvc; C:\Windows\System32\wlansvc.dll [886272 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [203264 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1525248 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [10752 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [121344 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 wpscloudsvr; C:\Program Files (x86)\Kingsoft\office6\wpscloudsvr.exe [1055944 2021-08-28] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 wscsvc; C:\Windows\system32\wscsvc.dll [97280 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [591872 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [427520 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 wuauserv; C:\Windows\system32\wuaueng.dll [2610688 2016-04-22] (Microsoft Windows -> Microsoft Corporation)
S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [84992 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [228864 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 VBoxGuest; VBoxGuest [X]
S4 VBoxMouse; VBoxMouse [X]
S4 VBoxService; VBoxService [X]
S4 VBoxSF; VBoxSF [X]
S4 VBoxVideo; VBoxVideo [X]
S4 VBoxWddm; VBoxWddm [X]

===================== Drivers (Todos) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [229888 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334568 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [12800 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 adp94xx; C:\Windows\system32\drivers\adp94xx.sys [491088 2009-07-13] (Microsoft Windows -> Adaptec, Inc.)
S3 adpahci; C:\Windows\system32\drivers\adpahci.sys [339536 2009-07-13] (Microsoft Windows -> Adaptec, Inc.)
S3 adpu320; C:\Windows\system32\drivers\adpu320.sys [182864 2009-07-13] (Microsoft Windows -> Adaptec, Inc.)
R1 AFD; C:\Windows\system32\drivers\afd.sys [496128 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 agp440; C:\Windows\system32\drivers\agp440.sys [60648 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 aliide; C:\Windows\system32\drivers\aliide.sys [15080 2016-03-25] (Microsoft Windows -> Acer Laboratories Inc.)
R3 amdfendr; C:\Windows\System32\DRIVERS\amdfendr.sys [117448 2021-08-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdide; C:\Windows\system32\drivers\amdide.sys [15080 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [64512 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 amdkmdag; C:\Windows\System32\DRIVERS\amdkmdag.sys [82678560 2021-08-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [582840 2020-07-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AmdPPM; C:\Windows\System32\DRIVERS\amdppm.sys [60928 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 amdsata; C:\Windows\system32\drivers\amdsata.sys [107752 2016-03-25] (Microsoft Windows -> Advanced Micro Devices)
S3 amdsbs; C:\Windows\system32\drivers\amdsbs.sys [194128 2009-07-13] (Microsoft Windows -> AMD Technologies Inc.)
R0 amdxata; C:\Windows\System32\drivers\amdxata.sys [26856 2016-03-25] (Microsoft Windows -> Advanced Micro Devices)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [85704 2020-07-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [43720 2020-07-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [30208 2016-08-31] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AppID; C:\Windows\system32\drivers\appid.sys [62464 2016-03-25] (Microsoft Windows -> Microsoft Windows)
S3 arc; C:\Windows\system32\drivers\arc.sys [87632 2009-07-13] (Microsoft Windows -> Adaptec, Inc.)
S3 arcsas; C:\Windows\system32\drivers\arcsas.sys [97856 2009-07-13] (Microsoft Windows -> Adaptec, Inc.)
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 atapi; C:\Windows\System32\drivers\atapi.sys [23784 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [279464 2021-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 b06bdrv; C:\Windows\system32\drivers\bxvbda.sys [468480 2009-06-10] (Microsoft Windows -> Broadcom Corporation)
S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Microsoft Windows -> Broadcom Corporation)
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [28240 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 BazisVirtualCDBus; C:\Windows\System32\DRIVERS\BazisVirtualCDBus.sys [172376 2015-09-28] (Sysprogs OU -> Sysprogs OU)
R1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [45056 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [18432 2009-06-10] (Microsoft Windows -> Brother Industries, Ltd.)
S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [8704 2009-06-10] (Microsoft Windows -> Brother Industries, Ltd.)
S3 BridgeMP; C:\Windows\System32\DRIVERS\bridge.sys [95232 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-13] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 BTHMODEM; C:\Windows\system32\drivers\bthmodem.sys [72192 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [150016 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 circlass; C:\Windows\system32\drivers\circlass.sys [45568 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 CLFS; C:\Windows\System32\CLFS.sys [367336 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 CmBatt; C:\Windows\system32\drivers\CmBatt.sys [17664 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [17128 2016-03-25] (Microsoft Windows -> CMD Technology, Inc.)
R0 CNG; C:\Windows\System32\Drivers\cng.sys [459344 2015-09-23] (Microsoft Windows -> Microsoft Corporation)
R0 Compbatt; C:\Windows\System32\drivers\compbatt.sys [21584 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DRIVERS\CompositeBus.sys [38912 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S4 crcdisk; C:\Windows\system32\drivers\crcdisk.sys [24144 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 CSC; C:\Windows\System32\drivers\csc.sys [516096 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2020-07-26] (NCH Software -> )
R1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [105472 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 discache; C:\Windows\System32\drivers\discache.sys [40960 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 Disk; C:\Windows\System32\drivers\disk.sys [73448 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 dmvsc; C:\Windows\system32\drivers\dmvsc.sys [71168 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [5632 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [31576 2020-04-24] (DEV47 APPS -> Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [229432 2020-03-16] (DEV47 APPS -> Dev47Apps)
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [986344 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 E1G60; C:\Windows\System32\DRIVERS\E1G6032E.sys [145792 2009-06-10] (Microsoft Windows -> Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Microsoft Windows -> Broadcom Corporation)
S3 elxstor; C:\Windows\system32\drivers\elxstor.sys [530496 2009-07-13] (Microsoft Windows -> Emulex)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [195072 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [204800 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 fdc; C:\Windows\system32\drivers\fdc.sys [29696 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 flpydisk; C:\Windows\system32\drivers\flpydisk.sys [24576 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [288488 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23272 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [196976 2015-06-03] (Microsoft Windows -> Microsoft Corporation)
S3 gagp30kx; C:\Windows\system32\drivers\gagp30kx.sys [65088 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] (Microsoft Windows -> Hauppauge Computer Works, Inc.)
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [350208 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [122368 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 HidBatt; C:\Windows\system32\drivers\HidBatt.sys [26624 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [100864 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 HidIr; C:\Windows\system32\drivers\hidir.sys [46592 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [78720 2010-11-20] (Microsoft Windows -> Hewlett-Packard Company)
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [754688 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-07-15] (Martin Malik - REALiX -> REALiX(tm))
R0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 i8042prt; C:\Windows\System32\DRIVERS\i8042prt.sys [105472 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [410344 2016-03-25] (Microsoft Windows -> Intel Corporation)
S3 iirsp; C:\Windows\system32\drivers\iirsp.sys [44112 2009-07-13] (Microsoft Windows -> Intel Corp./ICP vortex GmbH)
R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHD64.sys [6886992 2020-07-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 intelide; C:\Windows\system32\drivers\intelide.sys [16616 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 intelppm; C:\Windows\system32\drivers\intelppm.sys [62464 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [78848 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 isapnp; C:\Windows\system32\drivers\isapnp.sys [20200 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 iScsiPrt; C:\Windows\system32\drivers\msiscsi.sys [275176 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [50408 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [33280 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95464 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [154344 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [20992 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 LSI_FC; C:\Windows\system32\drivers\lsi_fc.sys [114752 2009-07-13] (Microsoft Windows -> LSI Corporation)
S3 LSI_SAS; C:\Windows\system32\drivers\lsi_sas.sys [106560 2009-07-13] (Microsoft Windows -> LSI Corporation)
S3 LSI_SAS2; C:\Windows\system32\drivers\lsi_sas2.sys [65600 2009-07-13] (Microsoft Windows -> LSI Corporation)
S3 LSI_SCSI; C:\Windows\system32\drivers\lsi_scsi.sys [115776 2009-07-13] (Microsoft Windows -> LSI Corporation)
R2 luafv; C:\Windows\system32\drivers\luafv.sys [113152 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2022-02-13] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-12-26] (Malwarebytes Inc -> Malwarebytes)
S3 megasas; C:\Windows\system32\drivers\megasas.sys [35392 2009-07-13] (Microsoft Windows -> LSI Corporation)
S3 MegaSR; C:\Windows\system32\drivers\MegaSR.sys [284736 2009-07-13] (Microsoft Windows -> LSI Corporation, Inc.)
S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94440 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 mpio; C:\Windows\system32\drivers\mpio.sys [165096 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [142336 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [159744 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [291328 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [129536 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 msahci; C:\Windows\System32\drivers\msahci.sys [30952 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 msdsm; C:\Windows\system32\drivers\msdsm.sys [143080 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15080 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R1 mssmbios; C:\Windows\system32\drivers\mssmbios.sys [31976 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 MTConfig; C:\Windows\system32\drivers\MTConfig.sys [15360 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 Mup; C:\Windows\System32\Drivers\mup.sys [108776 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [324096 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [948968 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [58368 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 nfrd960; C:\Windows\system32\drivers\nfrd960.sys [51264 2009-07-13] (Microsoft Windows -> IBM Corporation)
R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1683688 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [206128 2021-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [12905016 2020-07-15] (NVIDIA Corporation -> NVIDIA Corporation)
S4 NvModuleTracker; C:\Windows\System32\DRIVERS\NvModuleTracker.sys [43416 2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvraid; C:\Windows\system32\drivers\nvraid.sys [148200 2016-03-25] (Microsoft Windows -> NVIDIA Corporation)
S3 nvstor; C:\Windows\system32\drivers\nvstor.sys [166120 2016-03-25] (Microsoft Windows -> NVIDIA Corporation)
S4 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nv_agp; C:\Windows\system32\drivers\nv_agp.sys [122600 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [72832 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Parport; C:\Windows\system32\drivers\parport.sys [97280 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [74984 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 pci; C:\Windows\System32\drivers\pci.sys [185064 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 pciide; C:\Windows\system32\drivers\pciide.sys [12520 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 pcmcia; C:\Windows\system32\drivers\pcmcia.sys [220752 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663552 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Processor; C:\Windows\system32\drivers\processr.sys [60416 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 ql2300; C:\Windows\system32\drivers\ql2300.sys [1524816 2009-07-13] (Microsoft Windows -> QLogic Corporation)
S3 ql40xx; C:\Windows\system32\drivers\ql40xx.sys [128592 2009-07-13] (Microsoft Windows -> QLogic Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [46592 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [316928 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 rdpbus; C:\Windows\System32\DRIVERS\rdpbus.sys [24064 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [166400 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [20992 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [212992 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213736 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [1127912 2021-08-06] (Realtek Semiconductor Corp. -> Realtek)
S3 s3cap; C:\Windows\system32\drivers\vms3cap.sys [6656 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 sbp2port; C:\Windows\system32\drivers\sbp2port.sys [103808 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Microsoft Windows -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R3 Serenum; C:\Windows\system32\drivers\serenum.sys [23552 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 Serial; C:\Windows\system32\drivers\serial.sys [94208 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 sermouse; C:\Windows\system32\drivers\sermouse.sys [26624 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14848 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 sfloppy; C:\Windows\system32\drivers\sfloppy.sys [16896 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 SiSRaid2; C:\Windows\system32\drivers\SiSRaid2.sys [43584 2009-07-13] (Microsoft Windows -> Silicon Integrated Systems Corp.)
S3 SiSRaid4; C:\Windows\system32\drivers\sisraid4.sys [80464 2009-07-13] (Microsoft Windows -> Silicon Integrated Systems)
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 srv; C:\Windows\System32\DRIVERS\srv.sys [466944 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [406016 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [167936 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 stexstor; C:\Windows\system32\drivers\stexstor.sys [24656 2009-07-13] (Microsoft Windows -> Promise Technology)
R0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [46464 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 storvsc; C:\Windows\system32\drivers\storvsc.sys [34688 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 swenum; C:\Windows\system32\drivers\swenum.sys [12136 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Synth3dVsc; C:\Windows\system32\drivers\Synth3dVsc.sys [88808 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [37360 2019-04-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapprotonvpn; C:\Windows\System32\DRIVERS\tapprotonvpn.sys [39864 2020-08-19] (ProtonVPN AG -> The OpenVPN Project)
S3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1895656 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1895656 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45568 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [16384 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [117760 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 TermDD; C:\Windows\system32\drivers\termdd.sys [63208 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 terminpt; C:\Windows\system32\drivers\terminpt.sys [34816 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39936 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbGD; C:\Windows\system32\drivers\TsUsbGD.sys [31232 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [117248 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 uagp35; C:\Windows\system32\drivers\uagp35.sys [64080 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 uliagpkx; C:\Windows\system32\drivers\uliagpkx.sys [64232 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [48640 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 UmPass; C:\Windows\system32\drivers\umpass.sys [9728 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [109952 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [99840 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100864 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 usbehci; C:\Windows\system32\drivers\usbehci.sys [56320 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 usbhub; C:\Windows\system32\drivers\usbhub.sys [343552 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [25088 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [42496 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [185344 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 VBoxDRV; C:\Windows\System32\DRIVERS\VBoxDrv.sys [1024864 2020-04-09] (Oracle Corporation -> Oracle Corporation)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [237384 2020-04-09] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [248264 2020-04-09] (Oracle Corporation -> Oracle Corporation)
R1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [188088 2020-04-09] (Oracle Corporation -> Oracle Corporation)
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36072 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 VGA; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 VgaSave; C:\Windows\System32\drivers\VGA.sys [29184 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 vhdmp; C:\Windows\system32\drivers\vhdmp.sys [214248 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 viaide; C:\Windows\system32\drivers\viaide.sys [17128 2016-03-25] (Microsoft Windows -> VIA Technologies, Inc.)
S3 vmbus; C:\Windows\system32\drivers\vmbus.sys [199400 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [21760 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [68328 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363752 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [297192 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 vsmraid; C:\Windows\system32\drivers\vsmraid.sys [161872 2009-07-13] (Microsoft Windows -> VIA Technologies Inc.,Ltd)
S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [25088 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WacomPen; C:\Windows\system32\drivers\wacompen.sys [27776 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 Wd; C:\Windows\system32\drivers\wd.sys [21056 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [785624 2015-06-03] (Microsoft Windows -> Microsoft Corporation)
R0 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [19688 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Windows\SysWOW64\drivers\wimmount.sys [19008 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
U3 Winsock; não ImagePath
S3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [42496 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2015-06-03] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2015-06-03] (Microsoft Windows -> Microsoft Corporation)
S3 andnetadb; System32\Drivers\lgandnetadb.sys [X]
U4 dmwappushservice; não ImagePath
S3 hsstap; system32\DRIVERS\hsstap.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
U4 USOSVC; não ImagePath
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U4 WaasMedicSvc; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

==================== Um mês (criados) (Todos) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-02-25 14:51 - 2022-02-25 14:53 - 000032308 _____ C:\Users\Icebrave\Desktop\Addition.txt
2022-02-25 14:50 - 2022-02-25 14:53 - 000101747 _____ C:\Users\Icebrave\Desktop\FRST.txt
2022-02-25 14:44 - 2022-02-25 14:44 - 002312192 _____ (Farbar) C:\Users\Icebrave\Desktop\FRST64.exe
2022-02-25 14:43 - 2022-02-25 14:44 - 008540344 _____ (Malwarebytes) C:\Users\Icebrave\Desktop\adwcleaner_8.3.1.exe
2022-02-25 14:31 - 2022-02-25 14:31 - 000004184 ____N C:\bootsqm.dat
2022-02-25 12:36 - 2022-02-25 12:36 - 000212852 _____ C:\Windows\ntbtlog.txt
2022-02-25 10:45 - 2022-02-25 10:45 - 000083987 _____ C:\Users\Net\Downloads\Shortcut.txt
2022-02-25 10:40 - 2022-02-25 10:45 - 000052999 _____ C:\Users\Net\Downloads\Addition.txt
2022-02-25 10:36 - 2022-02-25 14:53 - 000000000 ____D C:\FRST
2022-02-25 10:36 - 2022-02-25 10:45 - 000057127 _____ C:\Users\Net\Downloads\FRST.txt
2022-02-25 10:35 - 2022-02-25 10:35 - 002312192 _____ (Farbar) C:\Users\Net\Downloads\FRST64.exe
2022-02-25 10:33 - 2022-02-25 10:33 - 002811112 _____ (kernel-panik) C:\Users\Net\Downloads\kprm_2.9.3.exe
2022-02-25 09:36 - 2022-02-25 09:36 - 000000016 _____ C:\ProgramData\mntemp
2022-02-24 23:55 - 2022-02-24 23:55 - 000030544 _____ C:\Users\Icebrave\Desktop\ZHPCleaner (S).html
2022-02-24 23:55 - 2022-02-24 23:55 - 000018121 _____ C:\Users\Icebrave\Desktop\ZHPCleaner (S).txt
2022-02-24 22:41 - 2022-02-24 22:41 - 002419896 _____ (Malwarebytes) C:\Users\Icebrave\Downloads\MBSetup.exe
2022-02-24 22:31 - 2022-02-24 22:32 - 000000000 ____D C:\Qoobox
2022-02-24 15:39 - 2022-02-24 16:37 - 000000000 ____D C:\Program Files (x86)\Enigma Software Group
2022-02-24 15:39 - 2022-02-24 16:36 - 000000000 ____D C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2022-02-24 15:39 - 2022-02-24 15:39 - 000000000 _____ C:\autoexec.bat
2022-02-24 15:24 - 2022-02-24 15:24 - 000000000 ____D C:\Users\Net\AppData\Roaming\confer
2022-02-24 15:20 - 2022-02-24 15:20 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\confer
2022-02-24 15:19 - 2022-02-24 15:19 - 000000000 ____D C:\Users\Public\rx4ldpri.default
2022-02-24 15:19 - 2022-02-24 15:19 - 000000000 ____D C:\Users\Public\aajvfzub.default-release
2022-02-24 15:19 - 2022-02-24 15:19 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\Green
2022-02-24 13:28 - 2022-02-24 13:28 - 006705440 _____ (EnigmaSoft Limited) C:\Users\Net\Downloads\SpyHunter-Installer.exe
2022-02-24 13:07 - 2022-02-24 13:16 - 000008192 _____ C:\Windows\system32\config\ELAM
2022-02-21 19:37 - 2022-02-21 19:37 - 000000000 ____D C:\Program Files\net.downloadhelper.coapp
2022-02-18 14:39 - 2022-02-18 14:39 - 000244072 _____ C:\Users\Net\Documents\Simulacao- Aposentadoria.pdf
2022-02-18 13:57 - 2022-02-18 13:58 - 000025505 _____ C:\Users\Net\Documents\NOTÍCIA LEGAL O Publicador se esforçou para ser o mais preciso e completo possível na criação desta publicação, apesar de ele não garantir ou representar a qualquer momento que o conteúdo contido seja preciso devido .pdf
2022-02-18 08:18 - 2022-02-18 08:18 - 000000000 ____D C:\Users\Icebrave\Documents\ProcAlyzer Dumps
2022-02-16 15:31 - 2022-02-16 15:31 - 000000000 ____D C:\Users\Net\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú
2022-02-16 14:26 - 2022-02-16 14:26 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2022-02-16 14:25 - 2022-02-16 14:26 - 000000227 _____ C:\Windows\PowerReg.dat
2022-02-16 14:25 - 2022-02-16 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasbro Interactive
2022-02-16 14:25 - 2022-02-16 14:25 - 000000000 ____D C:\Program Files (x86)\Hasbro Interactive
2022-02-16 14:25 - 2000-01-14 14:42 - 000045568 _____ C:\Windows\UniFish3.exe
2022-02-16 13:14 - 2022-02-16 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2022-02-16 13:14 - 2022-02-16 13:14 - 000000000 ____D C:\Program Files (x86)\WinCDEmu
2022-02-14 14:07 - 2021-12-07 21:17 - 000000000 _____ C:\Windows\system32\Drivers\etc\hosts.20220214-140754.backup
2022-02-14 14:01 - 2022-02-14 14:01 - 000000000 ____D C:\Users\Icebrave\AppData\Local\Safer-Networking Ltd
2022-02-14 13:19 - 2022-02-14 13:19 - 000000000 ____D C:\Users\Net\Documents\WPS Cloud Files
2022-02-14 08:49 - 2022-02-25 14:31 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-02-14 08:49 - 2022-02-14 14:03 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-02-14 08:49 - 2022-02-14 08:49 - 000001395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2022-02-14 08:49 - 2022-02-14 08:49 - 000001383 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2022-02-14 08:49 - 2022-02-14 08:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2022-02-14 08:49 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\Spybot3ELAM.sys
2022-02-14 08:49 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean64.exe
2022-02-13 18:25 - 2022-02-13 18:25 - 000003722 _____ C:\Users\Icebrave\Desktop\JRT.txt
2022-02-13 17:59 - 2022-02-13 17:59 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2022-02-12 16:21 - 2022-02-15 17:14 - 000001027 _____ C:\Users\Net\Desktop\GOLPE DA CLARO.txt
2022-02-11 21:41 - 2022-02-25 14:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-11 18:18 - 2022-02-11 18:18 - 000000000 __SHD C:\found.000
2022-02-09 10:04 - 2022-02-09 10:04 - 000000000 ____D C:\Users\Net\AppData\Local\Temp3008
2022-02-09 10:04 - 2022-02-09 10:04 - 000000000 ____D C:\Users\Net\AppData\Local\Temp2991
2022-02-09 09:58 - 2022-02-09 09:58 - 000000000 ____D C:\Users\Net\AppData\Local\Temp1770
2022-02-08 16:17 - 2022-02-08 16:17 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\tox
2022-01-30 23:49 - 2022-01-30 23:49 - 000000000 ____D C:\Users\Net\AppData\Local\Temp30124
2022-01-30 23:48 - 2022-01-30 23:48 - 000000000 ____D C:\Users\Net\AppData\Local\Temp29912
2022-01-30 23:44 - 2022-01-30 23:44 - 000000000 ____D C:\Users\Net\AppData\Local\Temp29170
2022-01-30 23:44 - 2022-01-30 23:44 - 000000000 ____D C:\Users\Net\AppData\Local\Temp29056
2022-01-30 23:42 - 2022-01-30 23:42 - 000000000 ____D C:\Users\Net\AppData\Local\Temp28707
2022-01-30 23:41 - 2022-01-30 23:41 - 000000000 ____D C:\Users\Net\AppData\Local\Temp28524
2022-01-30 23:41 - 2022-01-28 17:13 - 012055084 _____ C:\Users\Net\Documents\Files.rar
2022-01-30 23:38 - 2022-01-30 23:38 - 000000000 ____D C:\Users\Net\AppData\Local\Temp27916
2022-01-30 23:36 - 2022-01-30 23:36 - 000000000 ____D C:\Users\Net\AppData\Local\Temp27492
2022-01-30 12:31 - 2016-08-15 00:16 - 000401808 _____ (Alexander Roshal) C:\Windows\system32\UnRAR.exe
2022-01-30 08:55 - 2022-01-30 08:56 - 000000000 ____D C:\Users\Public\Documents\iMyFone
2022-01-30 08:55 - 2022-01-30 08:55 - 000000000 ____D C:\Program Files (x86)\imyfone_down
2022-01-30 07:54 - 2022-02-09 00:51 - 000000000 ____D C:\Users\Net\AppData\Roaming\tox
2022-01-30 07:54 - 2022-01-30 07:54 - 017849695 _____ (Tox) C:\Users\Net\Downloads\setup-qtox-x86_64-release.exe
2022-01-30 07:54 - 2022-01-30 07:54 - 000000838 _____ C:\Users\Public\Desktop\qTox.lnk
2022-01-30 07:54 - 2022-01-30 07:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qTox
2022-01-30 07:54 - 2022-01-30 07:54 - 000000000 ____D C:\Program Files\qTox
2022-01-29 14:41 - 2022-01-29 14:41 - 000026180 _____ C:\Users\Net\Downloads\winrar_unlock1_1.zip
2022-01-29 12:59 - 2016-09-23 13:16 - 000000109 _____ C:\Users\Icebrave\Desktop\Online PDF Tools.url
2022-01-27 17:24 - 2022-01-27 17:24 - 008157464 _____ (DataNumen, Inc.) C:\Users\Icebrave\Downloads\drar.exe
2022-01-27 17:24 - 2022-01-27 17:24 - 000000000 ____D C:\Users\Icebrave\AppData\Local\Downloaded Installations
2022-01-27 17:22 - 2022-01-27 17:23 - 117932216 _____ C:\Users\Icebrave\Downloads\isunshare-windows-password-genius-standard.exe
2022-01-27 17:21 - 2022-02-24 23:32 - 000000000 ____D C:\Users\Icebrave\Downloads\iSunshare RAR Password Genius 3.1.30
2022-01-27 17:20 - 2022-01-27 17:20 - 000689313 _____ C:\Users\Icebrave\Downloads\iSunshare RAR Password Genius 3.1.30.zip
2022-01-27 17:20 - 2022-01-27 17:20 - 000000162 _____ C:\Users\Icebrave\Downloads\iSunshare RAR Password Genius_3.1.30_Crack.txt
2022-01-27 17:17 - 2022-02-24 23:32 - 000000000 ____D C:\Users\Icebrave\Downloads\DataNumen RAR Repair 3.5.0.0
2022-01-27 17:16 - 2022-01-27 17:16 - 000689289 _____ C:\Users\Icebrave\Downloads\DataNumen RAR Repair 3.5.0.0.zip
2022-01-27 17:16 - 2022-01-27 17:16 - 000000154 _____ C:\Users\Icebrave\Downloads\DataNumen RAR Repair_3.5.0.0_Crack.txt
2022-01-27 16:19 - 2022-01-29 12:58 - 000000000 ____D C:\Program Files (x86)\PassFab for RAR
2022-01-27 15:45 - 2022-01-27 15:45 - 009540644 _____ C:\Users\Net\Downloads\Winrar_Brute_Force.rar
2022-01-27 15:32 - 2022-02-13 23:16 - 000000000 ____D C:\Users\Net\AppData\Roaming\balena-etcher
2022-01-27 15:32 - 2022-01-27 15:32 - 000002549 _____ C:\Users\Net\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\balenaEtcher.lnk
2022-01-27 15:32 - 2022-01-27 15:32 - 000002541 _____ C:\Users\Net\Desktop\balenaEtcher.lnk
2022-01-27 15:32 - 2022-01-27 15:32 - 000000000 ____D C:\Users\Net\AppData\Local\balena-etcher-updater
2022-01-26 15:25 - 2022-01-26 15:25 - 000004222 _____ C:\Windows\system32\Tasks\WpsExternal_Net_20220126152527

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-02-25 14:50 - 2021-11-10 20:01 - 000000000 ____D C:\Users\Administrador.Icebrave-PC
2022-02-25 14:41 - 2020-07-15 11:22 - 000000000 ____D C:\Users\Icebrave\AppData\LocalLow\Mozilla
2022-02-25 14:39 - 2009-07-14 01:45 - 000027136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-02-25 14:39 - 2009-07-14 01:45 - 000027136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-02-25 14:32 - 2022-01-11 02:08 - 000000000 ____D C:\Program Files (x86)\Ares
2022-02-25 14:32 - 2020-07-15 12:11 - 000000000 ____D C:\Users\Net\AppData\Roaming\Everything
2022-02-25 14:32 - 2020-07-15 12:11 - 000000000 ____D C:\Users\Net\AppData\Local\Everything
2022-02-25 14:32 - 2020-07-15 11:05 - 000000000 ____D C:\Users\Icebrave
2022-02-25 14:31 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-02-25 10:51 - 2021-04-24 14:58 - 000000428 __RSH C:\ProgramData\ntuser.pol
2022-02-25 10:49 - 2020-07-15 12:13 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2022-02-25 10:47 - 2020-07-15 12:15 - 000000000 ____D C:\Users\Net\AppData\LocalLow\Mozilla
2022-02-25 09:36 - 2020-11-19 22:42 - 000000000 ____D C:\Users\Net\AppData\Roaming\Movavi vídeo Editor 15
2022-02-24 23:56 - 2021-08-14 22:28 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\ZHP
2022-02-24 23:33 - 2020-07-15 11:35 - 000000000 ____D C:\Users\Icebrave\AppData\Local\Everything
2022-02-24 23:32 - 2020-07-15 11:21 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\Everything
2022-02-24 22:15 - 2021-12-12 10:19 - 000000000 ____D C:\Users\Icebrave\Desktop\Anti Malware
2022-02-24 21:12 - 2020-07-15 11:21 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-24 17:40 - 2020-07-15 11:39 - 000000000 ____D C:\Users\Net
2022-02-24 15:25 - 2020-09-18 17:53 - 000000000 ____D C:\Users\Icebrave\AppData\Local\CrashDumps
2022-02-23 16:40 - 2021-02-14 15:11 - 000000000 ____D C:\Users\Net\dwhelper
2022-02-23 12:08 - 2009-07-14 02:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2022-02-22 22:06 - 2020-07-15 19:52 - 000000000 ____D C:\Users\Net\AppData\Roaming\qBittorrent
2022-02-22 18:20 - 2020-07-22 12:56 - 000000000 ____D C:\Users\Net\.VirtualBox
2022-02-22 18:02 - 2020-07-22 12:56 - 000000000 ____D C:\ProgramData\VirtualBox
2022-02-21 18:41 - 2019-08-19 19:06 - 000023219 _____ C:\Users\Net\Desktop\INFOS.txt
2022-02-18 17:32 - 2009-07-14 14:55 - 000004254 _____ C:\Windows\system32\prfh0416.dat
2022-02-18 17:32 - 2009-07-14 14:55 - 000004062 _____ C:\Windows\system32\prfc0416.dat
2022-02-18 17:32 - 2009-07-14 02:13 - 000781446 _____ C:\Windows\system32\PerfStringBackup.INI
2022-02-18 17:32 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2022-02-18 12:55 - 2021-07-19 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-02-18 10:32 - 2021-10-09 12:18 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 10:32 - 2020-07-15 11:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-18 08:57 - 2021-10-09 12:20 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-02-16 15:31 - 2020-07-15 22:20 - 000000000 ____D C:\Users\Net\AppData\Local\Aplicativo Itau
2022-02-16 14:39 - 2020-07-23 19:28 - 000000000 ____D C:\Users\Net\AppData\Local\CrashDumps
2022-02-16 14:26 - 2021-08-12 22:26 - 000000000 ____D C:\Users\Net\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2022-02-16 12:34 - 2020-07-15 12:20 - 000004062 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1594826418
2022-02-16 12:28 - 2021-09-07 16:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-02-13 23:06 - 2020-07-19 15:56 - 000000000 ___RD C:\Users\Net\Documents\Scanned Documents
2022-02-13 22:37 - 2021-12-26 18:15 - 000001641 _____ C:\Users\Icebrave\Desktop\ZHPCleaner (R).txt
2022-02-09 11:05 - 2022-01-19 11:33 - 000000000 ____D C:\Users\Icebrave\AppData\Local\Rufus
2022-02-09 00:42 - 2021-02-24 17:03 - 000000000 ____D C:\Users\Net\AppData\Roaming\Telegram Desktop
2022-02-08 23:32 - 2021-02-07 22:45 - 000002596 _____ C:\Users\Net\Desktop\DANDAPANI.txt
2022-02-08 14:53 - 2021-02-21 11:01 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2022-02-01 21:42 - 2021-02-24 17:08 - 000000000 ____D C:\Users\Net\Downloads\Telegram Desktop
2022-01-29 13:01 - 2022-01-22 17:17 - 000000000 ____D C:\ProgramData\Wondershare
2022-01-29 13:01 - 2022-01-22 17:17 - 000000000 ____D C:\Program Files (x86)\Wondershare
2022-01-29 12:56 - 2021-12-26 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced RAR Repair
2022-01-27 18:15 - 2022-01-11 02:08 - 000000000 ____D C:\Users\Icebrave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ares
2022-01-27 14:34 - 2021-10-25 18:31 - 000001134 _____ C:\Users\Icebrave\Desktop\USB Disk Storage Format Tool.lnk
2022-01-26 15:25 - 2021-12-08 08:19 - 000003930 _____ C:\Windows\system32\Tasks\WpsUpdateTask_Net

==================== Arquivos na raiz de alguns diretórios ========

2021-05-21 20:57 - 2021-05-24 16:59 - 000000000 _____ () C:\Program Files (x86)\temp_files
2021-05-21 20:36 - 2021-05-21 20:36 - 000001234 _____ () C:\Program Files (x86)\Common Files\Cedajelify.exe.config
2021-05-23 06:21 - 2021-05-24 17:18 - 000001810 _____ () C:\Program Files (x86)\Common Files\Windows Update.exe.config
2021-03-10 23:31 - 2021-03-10 23:31 - 000000927 _____ () C:\Users\Icebrave\AppData\Roaming\Favorite201201.dat
2021-03-10 23:31 - 2021-03-10 23:31 - 000002731 _____ () C:\Users\Icebrave\AppData\Roaming\Shortcut201201.dat
2021-03-10 23:31 - 2021-03-10 23:31 - 000002756 _____ () C:\Users\Icebrave\AppData\Roaming\system201201.dat
2020-07-26 21:14 - 2020-07-26 21:14 - 000001181 _____ () C:\Users\Icebrave\AppData\Roaming\trace_FilterInstaller.txt
2020-07-26 21:14 - 2020-07-26 21:14 - 000000000 _____ () C:\Users\Icebrave\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2021-12-07 22:15 - 2021-12-07 22:15 - 001697280 _____ (Igor Pavlov) C:\Users\Icebrave\AppData\Roaming\Microsoft\7z.dll
2021-12-07 22:15 - 2021-12-07 22:15 - 000534016 _____ (Igor Pavlov) C:\Users\Icebrave\AppData\Roaming\Microsoft\7z.exe
2021-12-07 22:15 - 2021-12-07 22:15 - 003127796 _____ () C:\Users\Icebrave\AppData\Roaming\Microsoft\RegData_Temp.zip
2021-12-07 22:15 - 2021-12-07 22:15 - 008103854 _____ () C:\Users\Icebrave\AppData\Roaming\Microsoft\RegHost_Temp.zip

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

LastRegBack: 2022-02-16 00:41
==================== Fim de FRST.txt ========================

 

 

 

Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 24-02-2022
Executado por Icebrave (25-02-2022 14:54:14)
Executando a partir de C:\Users\Icebrave\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X64) (2020-07-15 14:05:00)
Modo da Inicialização: Normal
==========================================================

==================== Contas: =============================

(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-3865174959-2909729186-1229652066-500 - Administrator - Disabled) => C:\Users\Administrador.Icebrave-PC
Convidado (S-1-5-21-3865174959-2909729186-1229652066-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3865174959-2909729186-1229652066-1002 - Limited - Enabled)
Icebrave (S-1-5-21-3865174959-2909729186-1229652066-1000 - Administrator - Enabled) => C:\Users\Icebrave
Net (S-1-5-21-3865174959-2909729186-1229652066-1003 - Limited - Enabled) => C:\Users\Net

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_0) (Version: 15.0 - Adobe Systems Incorporated)
Aplicativo Itaú (HKLM-x32\...\{A3D556CB-522D-4299-89AA-61C146AA1754}) (Version: 1.0.166 - Banco Itaú)
Ares (HKLM-x32\...\Ares) (Version: 2.5.7-Build#3083 - AresGalaxy)
Audacity 3.0.4 (HKLM\...\Audacity_is1) (Version: 3.0.4 - Audacity Team)
balenaEtcher 1.7.3 (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.7.3 - Balena Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 91.1.25.72 - Autores do Brave)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version:  - Progdigy Software S.A.R.L.)
Debut vídeo Capture Software (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Debut) (Version: 5.09 - NCH Software)
Discord (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Discord) (Version: 0.0.309 - Discord Inc.)
Doomsday 2.2.2.3313 (HKLM\...\{430A2118-B989-4183-B158-3D20102AB09D}) (Version: 2.2.2.3313 - dengine.net)
Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.1.0 - IObit)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.3.3 - Dev47apps)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version:  - DVD Shrink)
EaseUS Tools M Beta 0.7.1 (HKLM-x32\...\D72C2F7D-B75E-4641-AFBE-199B95066617_is1) (Version:  - EaseUS)
Everything 1.4.1.935 (x64) (HKLM\...\Everything) (Version: 1.4.1.935 - David Carpenter)
Express Zip File Compression (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\ExpressZip) (Version: 7.23 - NCH Software)
FastStone Image Viewer 7.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.5 - FastStone Soft)
FFmpeg v2.2.2 for Audacity - 64bit (HKLM\...\FFmpeg for Audacity_is1) (Version:  - )
FormatFactory 5.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 5.9.0.0 - Free Time)
Foxit PhantomPDF (HKLM-x32\...\{A28E6BDE-FE9C-11EA-90A8-54BF64A63C26}) (Version: 10.1.0.37527 - Foxit Software Inc.) Hidden
Foxit PhantomPDF (HKLM-x32\...\{a372b6e2-6c79-448e-aa3b-9b188856241a}) (Version: 10.1.0.37527 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.0.0.35798 - Foxit Software Inc.)
Free PC Audio Recorder 3.1 (HKLM-x32\...\Free PC Audio Recorder_is1) (Version: 3.1 - Cok Free Software)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
HandBrake 1.3.3 (HKLM-x32\...\HandBrake) (Version: 1.3.3 - )
kdenlive (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\kdenlive) (Version: 21.04.0 - KDE e.V.)
K-Lite Codec Pack 15.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
LG Mobile Driver (HKLM-x32\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.2.0 - LG Electronics)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Framework 4.7.2 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Monopoly Plus version 1.0 (HKLM\...\Monopoly Plus_is1) (Version: 1.0 - STEAMPUNKS)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 97.0.1 (x64 pt-BR)) (Version: 97.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.2.0 - Mozilla)
Mozilla Thunderbird (x64 pt-BR) (HKLM\...\Mozilla Thunderbird 91.6.1 (x64 pt-BR)) (Version: 91.6.1 - Mozilla)
Nexus Radio (HKLM-x32\...\{8763793B-4D7D-49C8-A859-5C582EC02640}) (Version: 5.7.1 - Talam Group, LLC)
NVIDIA Driver de áudio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Driver de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
oCam versão 520.0 (HKLM-x32\...\oCam_is1) (Version: 520.0 - hxxp://ohsoft.net/)
Opera GX Stable 71.0.3770.323 (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Opera GX 71.0.3770.323) (Version: 71.0.3770.323 - Opera Software)
Opera Stable 83.0.4254.62 (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Opera 83.0.4254.62) (Version: 83.0.4254.62 - Opera Software)
Oracle VM VirtualBox 6.0.20 (HKLM\...\{A083A77B-5541-4C84-B420-B37C312BFFCC}) (Version: 6.0.20 - Oracle Corporation)
Pacote de Driver do Windows - Realtek (RTL8167) Net  (06/17/2014 7.088.0617.2014) (HKLM\...\0799BE20795B454FEEF9FAFD8AAB2D57EB2A4757) (Version: 06/17/2014 7.088.0617.2014 - Realtek)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Pinball FX2 (HKLM-x32\...\Pinball FX2_is1) (Version:  - )
Privacy Eraser (HKLM\...\{CB5AC03C-B8AD-980F-998E-51969A6DFC9F}_is1) (Version: 5.17.0.4067 - Cybertron Software Co., Ltd.)
qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project)
qTox (HKLM\...\qTox) (Version: 1.17.4 - The qTox Project)
RadioSure (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\RadioSure) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
rebox.NET 2.9.9.3 (HKLM-x32\...\{02846029-D5BA-4504-96B2-2BD844FE3AAF}_is1) (Version: 2.9.9.3 - clone.AD)
Revo Uninstaller 2.3.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.8 - VS Revo Group, Ltd.)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version:  - )
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
Skype versão 8.80 (HKLM-x32\...\Skype_is1) (Version: 8.80 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Spotify) (Version: 1.1.61.583.gad060c66 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.8.68.0 - Safer-Networking Ltd.)
Telegram Desktop version 3.5 (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.5 - Telegram FZ-LLC)
USB Disk Storage Format Tool 6.0 (HKLM\...\USB Disk Storage Format Tool_is1) (Version:  - Authorsoft Corporation)
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
VideoPad vídeo Editor (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\VideoPad) (Version: 10.36 - NCH Software)
Watchtower Library - Português (HKLM-x32\...\{9B038C3F-3757-403F-9690-36950F22F609}) (Version: 19.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
WavePad Sound Editor (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\WavePad) (Version: 11.08 - NCH Software)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wise Auto Shutdown 1.7.4 (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 1.7.4 - WiseCleaner.com, Inc.)
WPS Office (11.2.0.10463) (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\Kingsoft Office) (Version: 11.2.0.10463 - Kingsoft Corp.)
Zoom (HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\ZoomUMX) (Version: 5.9.1 (2581) - Zoom vídeo Communications, Inc.)

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\Icebrave\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Arquivo não assinado]
CustomCLSID: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Icebrave\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Arquivo não assinado]
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Arquivo não assinado]
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Nenhum Arquivo
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Arquivo não assinado]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Arquivo não assinado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Arquivo não assinado]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Nenhum Arquivo
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-08-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Nenhum Arquivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Arquivo não assinado]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Arquivo não assinado]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [Arquivo não assinado]

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

2020-08-04 06:46 - 2020-08-04 06:46 - 000341504 _____ (Free Time) [Arquivo não assinado] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll
2017-02-11 21:28 - 2015-09-28 15:08 - 000255488 _____ (Sysprogs OU) [Arquivo não assinado] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Users\Icebrave\Downloads:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Icebrave\Downloads\Foxxit Reader:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Icebrave\Downloads\netver:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Icebrave\Downloads\temp:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Icebrave\Downloads\x64_5.4.Pt-br:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Net\Downloads:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Net\Downloads\Telegram Desktop:Shareaza.GUID [16]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Versão (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE11PTBR/MCM_WCP
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE11PTBR/MCM_WCP
HKU\S-1-5-21-3865174959-2909729186-1229652066-500\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
HKU\S-1-5-21-3865174959-2909729186-1229652066-500\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-3865174959-2909729186-1229652066-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-3865174959-2909729186-1229652066-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => Nenhum Arquivo
BHO: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin_x64.dll [2020-09-24] (FOXIT SOFTWARE INC. -> )
Toolbar: HKLM - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin_x64.dll [2020-09-24] (FOXIT SOFTWARE INC. -> )
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2009-07-13] (Microsoft Windows -> Microsoft Corporation)
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2016-03-25] (Microsoft Windows -> Microsoft Corporation)
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Existem ainda 7940 sites a mais.

IE trusted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\...\123simsen.com -> www.123simsen.com

Existem ainda 7940 sites a mais.

IE trusted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\...\123simsen.com -> www.123simsen.com

Existem ainda 7942 sites a mais.

IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3865174959-2909729186-1229652066-500\...\123simsen.com -> www.123simsen.com

Existem ainda 7942 sites a mais.

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2020-12-13 04:58 - 2022-02-14 14:07 - 000453884 ____N C:\Windows\system32\drivers\etc\hosts
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    123fporn.info
127.0.0.1    www.123fporn.info
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123haustiereundmehr.com
127.0.0.1    123moviedownload.com
127.0.0.1    www.123moviedownload.com

Existem ainda 15607 mais linhas.

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Python37\Scripts\;C:\Program Files\Python37\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-3865174959-2909729186-1229652066-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Icebrave\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3865174959-2909729186-1229652066-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Net\AppData\Roaming\FastStone\FSIV\FSViewerWallPaper.bmp
HKU\S-1-5-21-3865174959-2909729186-1229652066-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador.Icebrave-PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.15.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AMD Crash Defender Service => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: bravem => 3
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: wpscloudsvr => 3
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Prun => C:\Windows\PublicGaming\prun.exe
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: WinFlow => "C:\ProgramData\WinFlow.exe"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{41EEFE96-561B-4035-8D38-14E575014246}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AC19F8FA-1C0D-4F6D-9DB0-73D91776CDC1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{D424C4D1-733A-4D87-B577-80AFD53CC3C5}C:\users\net\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\net\appdata\local\vivaldi\application\vivaldi.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{E8FEBFB1-0C38-49E3-BE7F-00986E818677}C:\users\net\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\net\appdata\local\vivaldi\application\vivaldi.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{DFD131EA-E55B-47DA-B987-E9304079C72F}C:\program files\doomsday 2.2.2\bin\doomsday.exe] => (Allow) C:\program files\doomsday 2.2.2\bin\doomsday.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{19196FA5-6B6F-478E-ABAF-B17E5FEC187D}C:\program files\doomsday 2.2.2\bin\doomsday.exe] => (Allow) C:\program files\doomsday 2.2.2\bin\doomsday.exe () [Arquivo não assinado]
FirewallRules: [{5BB63B45-D723-4AC7-9FC1-74359B71A3E7}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{A6723C8F-68D2-42AB-9CA6-E9F8CC062F72}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{3A4F2431-0E71-4D70-A7CE-621BE54DE1F9}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{2354B358-7FC2-4A8C-A1E6-06145873F921}C:\windows.old\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\windows.old\program files\qbittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{F12C2B9A-3010-49F5-9192-67578CE75F8B}C:\windows.old\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\windows.old\program files\qbittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [TCP Query User{D3D63053-645E-4B5E-B4F7-96CC865504C3}C:\users\net\appdata\local\programs\opera gx\71.0.3770.323\opera.exe] => (Allow) C:\users\net\appdata\local\programs\opera gx\71.0.3770.323\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{70D20BA2-57B8-4430-AA3C-BB0E2BB2A503}C:\users\net\appdata\local\programs\opera gx\71.0.3770.323\opera.exe] => (Allow) C:\users\net\appdata\local\programs\opera gx\71.0.3770.323\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{40A85276-CE16-4B64-B397-18006E9BEB83}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [UDP Query User{8812AD3D-4B3C-4FC5-BD54-23D97A0A44DC}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{84BC2EE3-0C0F-4A44-B0C3-419AA809E136}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe => Nenhum Arquivo
FirewallRules: [{10AAFF52-1246-46FF-B9B2-705A3523D571}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{CBE3F9F4-A931-4898-9030-721B4B2998FA}] => (Allow) C:\Users\Icebrave\AppData\Local\Temp\7zS2A86\HP.EasyStart.exe => Nenhum Arquivo
FirewallRules: [{ACDFD83E-CA7A-49D7-A838-3915B8822500}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{871E839A-E4F9-42DF-8BA0-F6034A9F19A1}] => (Allow) LPort=3306
FirewallRules: [TCP Query User{0A0C7410-F0B0-4585-A16D-BD788E92EA36}C:\users\icebrave\appdata\roaming\winsupport\client32.exe] => (Allow) C:\users\icebrave\appdata\roaming\winsupport\client32.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [UDP Query User{65C05F0B-539B-4453-B439-DD4ADB3FEB8B}C:\users\icebrave\appdata\roaming\winsupport\client32.exe] => (Allow) C:\users\icebrave\appdata\roaming\winsupport\client32.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [{012763C8-0593-402B-9412-9C6E98E0B5D6}] => (Allow) C:\Users\Icebrave\AppData\Roaming\WinSupport\CLIENT32.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [{2EA5560A-D6CF-417F-BD28-27F5BD7BC522}] => (Allow) C:\Users\Icebrave\AppData\Roaming\WinSupport\CLIENT32.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [{BDA3FC57-A449-4782-917B-6D2838C778F9}] => (Allow) C:\Windows\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F2A9C8AA-52BE-41EE-B629-6566DD4D8A01}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{498A9DBC-5448-43CE-9C73-D268041AEF76}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{DB414B2E-C4AB-4ACE-9343-479D47915413}C:\program files\monopoly plus\monopoly.exe] => (Block) C:\program files\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [UDP Query User{B696A912-AB36-41E5-B44A-D30F125BC20F}C:\program files\monopoly plus\monopoly.exe] => (Block) C:\program files\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [{F296EE56-766C-4DDD-96A1-DF33297EE2C7}] => (Allow) LPort=5357
FirewallRules: [{A27F1C6F-D7BE-4D9A-823F-4A428B6EC0E6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{C42B6DFF-D50F-4883-B72A-7B0E346CC5E9}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{11FDF68B-452F-4876-A0C5-080BB9A89D90}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B4F53843-0404-4086-AFF0-178FD4FDD09A}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{C4F03504-6D95-40A9-B65A-E4DB9A373A35}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{E4D28B5B-E2BC-4292-87B2-56280E53A5AA}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe => Nenhum Arquivo
FirewallRules: [{8776C25C-7BF4-42A1-BD26-66001847E345}] => (Allow) C:\Users\Icebrave\AppData\Local\Temp\7zS61F4\HP.EasyStart.exe => Nenhum Arquivo
FirewallRules: [{47335132-B6B2-4A2B-8D8C-51A4DEF5DD99}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{5990C50A-1454-4EDF-8B3E-E2BFD0D4B64E}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{24A91CC1-0332-4A56-B419-A95313C962C0}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [TCP Query User{563ABA22-F2E7-4BA3-8A33-1B65E631ECAD}C:\windows\bfsvc.exe] => (Allow) C:\windows\bfsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{CE11B230-A411-45E6-8287-A7E868CE963A}C:\windows\bfsvc.exe] => (Allow) C:\windows\bfsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A0834D5A-2DD6-4C37-9902-9DFD9E3B5EA1}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{C5B34514-4A2F-48BC-AA7B-5E0DCC8E0E40}C:\users\net\downloads\bitmessage-0.6.1_64.exe] => (Allow) C:\users\net\downloads\bitmessage-0.6.1_64.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{1AE2C4F5-5CCE-4F53-8BA1-B30C59550347}C:\users\net\downloads\bitmessage-0.6.1_64.exe] => (Allow) C:\users\net\downloads\bitmessage-0.6.1_64.exe () [Arquivo não assinado]
FirewallRules: [TCP Query User{F5946736-822F-47BC-99A2-622791B263A6}C:\users\net\appdata\roaming\zoom\bin\zoom.exe] => (Allow) C:\users\net\appdata\roaming\zoom\bin\zoom.exe (Zoom vídeo Communications, Inc. -> Zoom vídeo Communications, Inc.)
FirewallRules: [UDP Query User{C6386420-EF3C-4DF4-B30A-C54577325EE6}C:\users\net\appdata\roaming\zoom\bin\zoom.exe] => (Allow) C:\users\net\appdata\roaming\zoom\bin\zoom.exe (Zoom vídeo Communications, Inc. -> Zoom vídeo Communications, Inc.)
FirewallRules: [{F5393592-9561-49EF-B773-E031452692B1}] => (Allow) C:\Users\Net\Downloads\simple_port_tester\Simple Port Tester\spt.exe => Nenhum Arquivo
FirewallRules: [{0B766447-BC1D-4A37-80EF-94259B0A2F25}] => (Allow) C:\Users\Net\Downloads\simple_port_tester\Simple Port Tester\spt.exe => Nenhum Arquivo
FirewallRules: [{1F2836CD-89CD-4E53-A8C0-EFCF2521CC71}] => (Allow) C:\Users\Net\Downloads\simple_port_forwarding\Simple Port Forwarding\spf.exe => Nenhum Arquivo
FirewallRules: [{EF5F5F1B-0AD7-478F-A730-79C8C84B78C8}] => (Allow) C:\Users\Net\Downloads\simple_port_forwarding\Simple Port Forwarding\spf.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{DB8EE0F2-09DE-4141-A63D-BCE941A0E36E}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Arquivo não assinado]
FirewallRules: [UDP Query User{C7794F55-19CF-496D-8996-E127E17278C4}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Arquivo não assinado]
FirewallRules: [TCP Query User{70B174D1-757A-408B-98D0-C6D7B5CFEC85}C:\program files\qtox\bin\qtox.exe] => (Allow) C:\program files\qtox\bin\qtox.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{F1370E64-9263-425E-8CF1-03CFFDFB8394}C:\program files\qtox\bin\qtox.exe] => (Allow) C:\program files\qtox\bin\qtox.exe () [Arquivo não assinado]
FirewallRules: [TCP Query User{55719ADD-9764-457E-930C-5F0E2F256672}C:\users\net\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\net\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{1941459C-E407-49D8-966F-29EAACB67A34}C:\users\net\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\net\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{9DE0138F-04BB-436E-A887-B2D4DBBF3DFB}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2398B552-0C28-43C5-9CA4-D1F62F0771EF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

==================== Pontos de Restauração =========================

==================== Dispositivos Apresentando Falhas No Gerenciador ============

==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (02/25/2022 02:55:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0x3ac
Hora de início do aplicativo com falha: 0x01d82a70e7b07804
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: 261b8357-9664-11ec-be60-0862669877e8

Error: (02/25/2022 02:55:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0x140c
Hora de início do aplicativo com falha: 0x01d82a70ce205ce1
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: 0d47dd27-9664-11ec-be60-0862669877e8

Error: (02/25/2022 02:45:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0xc30
Hora de início do aplicativo com falha: 0x01d82a6f820f8887
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: c070f6c6-9662-11ec-be60-0862669877e8

Error: (02/25/2022 02:45:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0x988
Hora de início do aplicativo com falha: 0x01d82a6f686e7d35
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: a7a53ff4-9662-11ec-be60-0862669877e8

Error: (02/25/2022 02:35:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0x1298
Hora de início do aplicativo com falha: 0x01d82a6e1c6ac86b
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: 5acdbd50-9661-11ec-be60-0862669877e8

Error: (02/25/2022 02:35:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0xd4c
Hora de início do aplicativo com falha: 0x01d82a6e02ecfd0e
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: 477cffa9-9661-11ec-be60-0862669877e8

Error: (02/25/2022 10:49:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Nome do módulo de falhas: SDUpdate.exe, versão: 2.8.68.100, carimbo de hora: 0x5ea5e0d1
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00005c92
Identificação do processo com falha: 0x16f4
Hora de início do aplicativo com falha: 0x01d82a4e7522082c
Caminho do aplicativo com falha: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
FCaminho do módulo de falhas: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Identificação do Relatório: b893ec66-9641-11ec-9e97-0862669877e8

Error: (02/25/2022 10:48:50 AM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Falha do Windows Search Service ao processar a lista de locais incluídos e excluídos com o erro <30, 0x80040d07, "iehistory://{S-1-5-21-3865174959-2909729186-1229652066-1003}/">.

Erros de Sistema:
=============
Error: (02/25/2022 02:55:14 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: O servidor {BB6DF56B-CACE-11DC-9992-0019B93A3A84} não se registrou com o DCOM dentro do tempo limite requerido.

Error: (02/25/2022 02:33:51 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (02/25/2022 02:33:51 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 70. O estado do erro interno é 11.

Error: (02/25/2022 02:33:51 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (02/25/2022 02:33:50 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 70. O estado do erro interno é 11.

Error: (02/25/2022 02:33:50 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 70. O estado do erro interno é 11.

Error: (02/25/2022 02:33:50 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (02/25/2022 02:33:47 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 70. O estado do erro interno é 11.

==================== Informações da Memória ===========================

BIOS: American Megatrends Inc. 0701 06/23/2014
placa-mãe: ASUSTeK COMPUTER INC. A58M-A/BR
Processador: AMD A8-7650K Radeon R7, 10 Compute Cores 4C+6G
Percentagem de memória em uso: 54%
RAM física total: 7110.47 MB
RAM física disponível: 3249.09 MB
Virtual Total: 14219.13 MB
Virtual disponível: 9867.11 MB

==================== Drives ================================

Drive () (Fixed) (Total:292.87 GB) (Free:19.62 GB) NTFS
Drive d: (Files) (Fixed) (Total:345.57 GB) (Free:6.2 GB) NTFS
Drive f: () (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: DA5B27AC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=292.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=293 GB) - (Type=83)
Partition 4: (Not Active) - (Size=345.6 GB) - (Type=0F Extended)

==================== Fim de Addition.txt =======================

 

Fico no aguardo de mais orientaçoes e desde ja agradeço.

[Lusitano]

@Alexander CunhaOlá, algumas questões antes de podermos iniciar os procedimentos de remoção de malware:

 

Em 25/02/2022 às 17:01, Alexander Cunha disse:

Microsoft Windows 7 Ultimate  Service Pack 1

Qual a razão para estar a utilizar um sistema que deixou de ter suporte? Isto é um problema grave. Por gentileza, leia este tópico:

Windows 7 Ultimate  Service Pack 1Windows 7 Ultimate  Service Pack 1

 

Em 25/02/2022 às 17:01, Alexander Cunha disse:

==================== Central de Segurança ========================

AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}

Qual a razão para estar sem um antivirus em seu sistema?

 

Em 25/02/2022 às 17:01, Alexander Cunha disse:

qBittorrent

Este tipo de programa não é recomendado, porque são origem de muitos malware.

 

Na sua próxima resposta, por gentileza, informe o que pretende fazer quanto a:

• Windows 7
• Antivirus
• Bittorrent

 

[alexestudante]

Boa tarde.

 

Eu estou usando o Bit Torrent porque é o unico programa (sem anúncios de propaganda) que achei pra baixar filmes, mas se tiver alguma outra sugestão estou pronto pra ouvir.

Quanto ao Antivirus eu posso remover se for o caso.

Quanto ao Windows 7 é o sistema que eu uso, já que o Windows 10 possui coisas que rodam junto com o sistema que não consegui deixar desabilitadas e por isso deixam o sistema lento sem necessidade.

 

Fico no aguardo de mais procedimentos e desde já agradeço.

[alexestudante]

Quanto a instalar um Antivirus, tenho dificuldade em encontrar algum que seja eficiente e não deixe o sistema lento ao mesmo tempo

[Lusitano]

5 horas atrás, Alexander Cunha disse:

Eu estou usando o Bit Torrent porque é o unico programa (sem anúncios de propaganda) que achei pra baixar filmes, mas se tiver alguma outra sugestão estou pronto pra ouvir.

Muito simples a minha sugestão. Isso é ilegal e contras as regras do fórum:

Citação

2 - Conteúdos relacionados à pirataria ou que violem, de qualquer forma, direitos autorais, contratuais e/ou de propriedade intelectual/industrial. É expressamente proibida a discussão e/ou criação de tópicos relacionados a torrents, P2P e programas similares para o compartilhamento de arquivos ou streaming, independentemente da forma de expressão utilizada.

 

5 horas atrás, Alexander Cunha disse:

Quanto ao Windows 7 é o sistema que eu uso, já que o Windows 10 possui coisas que rodam junto com o sistema que não consegui deixar desabilitadas e por isso deixam o sistema lento sem necessidade.

Essa justificação não faz sentido:

Citação

placa-mãe: ASUSTeK COMPUTER INC. A58M-A/BR
Processador: AMD A8-7650K Radeon R7, 10 Compute Cores 4C+6G
Percentagem de memória em uso: 54%
RAM física total: 7110.47 MB
RAM física disponível: 3249.09 MB
Virtual Total: 14219.13 MB
Virtual disponível: 9867.11 MB

 

 

5 horas atrás, Alexander Cunha disse:

Quanto a instalar um Antivirus, tenho dificuldade em encontrar algum que seja eficiente e não deixe o sistema lento ao mesmo tempo

Windows Defender já vem junto e é tão bom quanto a tantos outros. Mas se você preferir usar outro, existem tantas outras boas opções.

A segurança não se resume em apenas utilizar antivirus. A segurança é feita de camadas e o antivirus é apenas uma dessas camadas.

 

Caro usuário, não faz sentido estar a usar meu tempo em limpar um sistema que já não tem suporte e que com isso se torna inseguro, ainda com a agravante de você recorrer a programas P2P que são fonte de malwares e de ilegalidades.

 

Recomendo que faça a atualização do seu sistema operacional para uma versão que seja ainda suportada.

 

Certo da sua compreensão. Estarei fechando este tópico.

 

[Lusitano]

Problema resolvido!

 

Caso o autor necessite, o mesmo será reaberto, para isso deverá entrar em contato com um Analista de Segurança ou Coordenador solicitando o desbloqueio.