Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 28-02-2021
Executado por Ivan (administrador) em IVAN-PC (DIGIMIX System Product Name) (28-02-2021 19:29:43)
Executando a partir de C:\Users\Ana\Desktop\FRST-OlderVersion
Perfis Carregados: Ivan
Platform: Windows 10 Home Versão 2004 19041.804 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrServicesUpdater.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ivan\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ivan\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Gaijin Network LTD -> Gaijin) C:\Users\Ivan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Ivan\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
(Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.) C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\updater-ws.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\ws.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\CMUpdater.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\UIMain.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1702400 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [Discord] => C:\Users\Ivan\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Ivan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-08] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [CiscoMeetingDaemon] => C:\Users\Ivan\AppData\Local\WebEx\ciscowebexstart.exe [2499800 2021-02-25] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\MountPoints2: {25bb5ae4-8632-11ea-bc0c-00158307c667} - "E:\Windows/AutoRun.exe"
HKU\S-1-5-21-1793361252-1642306814-3946400002-1004\...\MountPoints2: {25bb5ae4-8632-11ea-bc0c-00158307c667} - "E:\Windows/AutoRun.exe"
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2020-07-09] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-23] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-07-02]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {166C390A-1AC0-4A57-9FB9-89C3C873F4D9} - \Adobe Flash Player Updater -> Nenhum Arquivo <==== ATENÇÃO
Task: {17EFD284-B69B-4663-B8D2-5B5B212BB84C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {22873C70-DD5F-44D5-9523-C6682743AB7A} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {29D101D5-4320-49A2-8BAD-E3D109B47D97} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => "%Systemdrive%\Office Activation Technologies\Install.cmd" 0
Task: {399496DF-4A9D-4DB9-9967-B40A8406BCD8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B5FA745-3699-406C-837F-277A50A51F0C} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {3D0D76BE-F18D-421A-BB4D-DC831BB21CDB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D18F3A0-ED29-4926-923A-699E777E0C88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-03-03] (Google Inc -> Google Inc.)
Task: {757ECD4A-C651-4AA6-9D88-1432C07EC8E5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {77CA8609-CFE0-4842-82C5-7902F10F1A2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {828B8736-EDB0-4ED3-A914-A0C290E7BB69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8AD6C99A-8C93-417E-BF89-DE88A826A538} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {8C03A7E5-0A04-42F8-B57D-F5B94FB62A75} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D53B8DF-DCC9-4E1D-B698-475A0BFE5F21} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {919B0086-DD6F-4990-BA32-1A62275C171D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {980EE0CD-D914-434B-A054-DB8FB70F5E6F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {BB6ABFDC-23CE-4D2C-AC9D-825EF8E5E4D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [694752 2021-02-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {C52970C2-F62C-4459-9137-675E212B4A28} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {D36AC41E-4056-4C76-A92A-BEE7ACC5CC7C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {DEDA977A-9542-4D64-B7FB-2B2173896147} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {FE102559-7EF3-4CBE-972A-1C35C52D31C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-03-03] (Google Inc -> Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{2169fa6c-e9a1-4828-bb07-f8a30a53dcb0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3092C8E7-720E-420C-81C7-F35BE11DDF1B}: [NameServer] 200.169.119.222 200.169.119.221
Tcpip\..\Interfaces\{93A0A655-D494-41E5-95C8-F12F4AC856FE}: [NameServer] 200.169.117.221 200.169.117.222
Tcpip\..\Interfaces\{a9e65425-7fff-449f-b6b5-cc1a3cb5ee48}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ivan\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-28]
Edge Notifications: Default -> hxxps://www.claro.com.br
FireFox:
========
FF DefaultProfile: 7o4tf2wc.default
FF DefaultProfile: x8vtgoej.default
FF ProfilePath: C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default [2021-02-26]
FF Homepage: Mozilla\Firefox\Profiles\7o4tf2wc.default -> about:newtab
FF Extension: (Video DownloadHelper) - C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-14]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-01-25]
FF ProfilePath: C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default [2020-10-24]
FF Homepage: Comodo\IceDragon\Profiles\x8vtgoej.default -> about:newtab
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2020-08-24]
FF Extension: (Brazilian Portuguese Checker (New Spelling)) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\pt-BR@dictionaries.addons.mozilla.org.xpi [2020-08-24]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-09-09]
FF HKLM\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 7 Creator) - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi [2019-10-02]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 6
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-10-05]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-03-03]
CHR HomePage: Profile 1 -> hxxp://www.netvibes.com/ivansc
CHR StartupUrls: Profile 1 -> "hxxp://www.netvibes.com/ivansc", "hxxp://app.webinspector.com/public/tasks/7510752#", "hxxp://help.comodo.com/topic-120-1-279-2573-enabling-disabling-the-translate-bar.html"
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6 [2021-02-28]
CHR Extension: (Apresentações) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-03]
CHR Extension: (Documentos) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-03]
CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31]
CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-03]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-31]
CHR Extension: (Planilhas) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-03]
CHR Extension: (Documentos Google off-line) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Video DownloadHelper) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-02-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-31]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7 [2020-10-05]
CHR HomePage: Profile 7 -> hxxp://www.netvibes.com/ivansc
CHR StartupUrls: Profile 7 -> "hxxp://www.netvibes.com/ivansc","hxxp://app.webinspector.com/public/tasks/7510752#","hxxp://help.comodo.com/topic-120-1-279-2573-enabling-disabling-the-translate-bar.html"
CHR Extension: (Apresentações) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-05]
CHR Extension: (Documentos) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-05]
CHR Extension: (Lucidchart Diagrams) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apboafhkiegglekeafbckfjldecefkhn [2020-04-05]
CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-05]
CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-05]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-05]
CHR Extension: (Chromebleed) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\eeoekjnjgppnaegdjbcafdggilajhpic [2020-04-05]
CHR Extension: (Planilhas) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-05]
CHR Extension: (Documentos Google off-line) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-05]
CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-05]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-05]
CHR HKU\S-1-5-21-1793361252-1642306814-3946400002-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3668944 2020-08-08] (philandro Software GmbH -> philandro Software GmbH)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 PDF Architect 7; C:\Program Files\PDF Architect 7\ws.exe [2579752 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 7 Creator; C:\Program Files\PDF Architect 7\creator\common\creator-ws.exe [692008 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 7 Update Service; C:\Program Files\PDF Architect 7\updater-ws.exe [1832232 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13086224 2020-07-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
S3 hwdatacard; C:\WINDOWS\System32\drivers\ewusbmdm.sys [112512 2007-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [11776 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> MBB Incorporated)
S3 MODEMCSA; C:\WINDOWS\system32\drivers\MODEMCSA.sys [28160 2021-01-16] (Microsoft Windows -> Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
S3 smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [1202688 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [33376 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 ZTEusbmdm6k; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbnmea; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbser6k; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-02-26 22:40 - 2021-02-26 22:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-26 21:26 - 2021-02-26 22:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-02-23 09:09 - 2021-02-23 09:14 - 000786988 _____ C:\WINDOWS\Minidump\022321-55625-01.dmp
2021-02-21 13:23 - 2021-02-21 13:23 - 000030540 _____ C:\Users\Ivan\Documents\matriz.xlsx
2021-02-19 23:09 - 2021-02-19 23:09 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-19 23:09 - 2021-02-19 23:09 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-19 23:08 - 2021-02-19 23:08 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-19 23:08 - 2021-02-19 23:08 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-19 23:07 - 2021-02-19 23:07 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-14 17:48 - 2021-02-14 17:48 - 002455656 _____ C:\Users\Ivan\Downloads\Boruto Episódio 186 Legendado PT BR - Tela Cheia - Vídeo Dai.mp4
2021-02-09 14:59 - 2021-02-09 14:59 - 000017614 _____ C:\Users\Ana\Desktop\Comprovante_de_Pagamento_Mensal_2020.pdf
2021-02-07 18:19 - 2021-02-07 18:19 - 001126549 _____ C:\Users\Ivan\Downloads\Boruto Episódio 185 Legendado PT - Ferramentas - Vídeo Daily(1).mp4
2021-02-07 18:15 - 2021-02-07 18:15 - 001209480 _____ C:\Users\Ivan\Downloads\Boruto Episódio 185 Legendado PT - Ferramentas - Vídeo Daily.mp4
2021-02-05 12:16 - 2021-02-05 12:16 - 000489756 _____ C:\Users\Ana\Desktop\Comprovante_de_Pagamento_Mensal_2019.pdf
2021-02-02 15:20 - 2021-02-02 15:20 - 000461419 _____ C:\Users\Ivan\Downloads\Ariana_Grande.htm
2021-02-02 13:29 - 2021-02-02 13:29 - 000129639 _____ C:\Users\Ivan\Downloads\matriz-curricular-administracao.pdf
2021-01-31 14:27 - 2021-01-31 14:27 - 000042341 _____ C:\Users\Ivan\Downloads\Banrisul_31012021_022800.pdf
==================== Um mês (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-02-28 19:37 - 2020-09-29 01:54 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1793361252-1642306814-3946400002-1000
2021-02-28 19:36 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-28 19:33 - 2020-09-29 01:14 - 000002370 _____ C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-28 19:33 - 2019-05-20 18:22 - 000000000 ____D C:\FRST
2021-02-28 19:33 - 2015-11-26 13:45 - 000000000 ___RD C:\Users\Ivan\OneDrive
2021-02-28 19:29 - 2020-10-05 16:14 - 000000000 ____D C:\Users\Ana\Desktop\FRST-OlderVersion
2021-02-28 19:29 - 2020-09-28 22:34 - 000000000 ____D C:\Users\Ivan\AppData\Local\WebEx
2021-02-28 19:28 - 2020-11-30 17:30 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-28 19:28 - 2020-09-28 22:34 - 000000000 ____D C:\Users\Ivan\AppData\LocalLow\WebEx
2021-02-28 19:22 - 2020-04-24 10:53 - 000000000 ____D C:\Program Files (x86)\Claro 3G
2021-02-26 22:50 - 2018-03-03 12:17 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-26 22:50 - 2016-11-16 18:25 - 000000000 ____D C:\Users\Ivan\AppData\LocalLow\Mozilla
2021-02-26 22:40 - 2018-03-03 12:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-26 22:39 - 2018-03-03 12:17 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-26 21:09 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-26 21:09 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-26 15:33 - 2020-09-29 01:54 - 000004164 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{37BA45BF-BFCF-4431-A92D-C5E9AB481B69}
2021-02-26 09:11 - 2016-12-13 19:06 - 000000000 ____D C:\Users\Ana\AppData\LocalLow\Mozilla
2021-02-26 09:04 - 2020-07-31 11:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-26 09:03 - 2020-09-29 01:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-26 09:03 - 2020-09-29 01:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-26 09:03 - 2020-09-29 01:06 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-25 08:51 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-24 12:40 - 2020-09-29 01:14 - 000000000 ____D C:\Users\Ana
2021-02-24 10:49 - 2021-01-25 21:41 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-24 10:49 - 2013-11-12 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-02-23 23:04 - 2018-09-29 18:21 - 000000000 ___RD C:\Users\Ivan\Documents\Famaqui
2021-02-23 22:44 - 2018-03-03 11:58 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-23 21:53 - 2018-02-26 11:59 - 000000000 ____D C:\Users\Ivan\AppData\Local\Packages
2021-02-23 21:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-23 10:31 - 2016-10-19 19:17 - 000000000 ____D C:\Users\Ana\AppData\LocalLow\Adobe
2021-02-23 09:16 - 2020-09-29 01:28 - 001741820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-23 09:16 - 2019-12-07 11:54 - 000752268 _____ C:\WINDOWS\system32\prfh0416.dat
2021-02-23 09:16 - 2019-12-07 11:54 - 000148382 _____ C:\WINDOWS\system32\prfc0416.dat
2021-02-23 09:16 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-23 09:15 - 2020-09-30 17:11 - 000000000 ____D C:\WINDOWS\Minidump
2021-02-23 09:09 - 2019-09-30 12:42 - 486494490 _____ C:\WINDOWS\MEMORY.DMP
2021-02-20 00:12 - 2020-09-29 01:07 - 000347392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-20 00:04 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-19 23:21 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-19 22:15 - 2018-03-03 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-19 21:58 - 2018-03-03 11:59 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-19 09:16 - 2020-06-10 20:28 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 09:02 - 2018-03-03 23:47 - 000000000 ____D C:\Users\Ana\AppData\Local\Packages
2021-02-18 14:26 - 2020-12-15 00:04 - 000000000 ____D C:\Users\Ana\Desktop\SEAD_NOV_2020
2021-02-16 20:48 - 2020-09-29 01:14 - 000000000 ____D C:\Users\Ivan
2021-02-14 18:14 - 2013-12-26 22:34 - 000000000 ____D C:\Users\Ivan\dwhelper
2021-02-12 13:20 - 2018-03-02 18:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-02-10 11:34 - 2020-11-30 17:32 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-09 13:11 - 2020-09-29 01:54 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1793361252-1642306814-3946400002-1004
2021-02-09 13:11 - 2020-09-29 01:14 - 000002367 _____ C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-09 13:11 - 2016-01-30 15:05 - 000000000 ___RD C:\Users\Ana\OneDrive
2021-02-09 13:10 - 2020-09-29 01:54 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-09 13:10 - 2020-09-29 01:54 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-05 20:04 - 2021-01-25 21:41 - 000734016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 20:03 - 2021-01-25 21:41 - 000470848 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-05 09:36 - 2020-09-29 01:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 09:36 - 2020-09-29 01:54 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-02 11:31 - 2018-02-13 13:19 - 000030540 _____ C:\Users\Ivan\Documents\Orçamento.xlsx
2021-01-31 18:53 - 2018-03-09 00:07 - 000000000 ____D C:\Program Files (x86)\Java
2021-01-31 18:53 - 2014-02-15 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-01-31 18:52 - 2018-03-09 00:08 - 000165032 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
==================== Arquivos na raiz de alguns diretórios ========
2018-03-03 11:42 - 2015-03-30 13:35 - 000000600 _____ () C:\Users\Ivan\AppData\Local\PUTTY.RND
2018-03-03 11:42 - 2016-09-13 17:48 - 000001456 _____ () C:\Users\Ivan\AppData\Local\recently-used.xbel
2018-03-03 11:42 - 2017-07-24 22:12 - 000007614 _____ () C:\Users\Ivan\AppData\Local\resmon.resmoncfg
2018-05-31 19:53 - 2018-12-19 22:25 - 000002429 _____ () C:\Users\Ivan\AppData\Local\Temptoast_image.png
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Executado por Ivan (administrador) em IVAN-PC (DIGIMIX System Product Name) (28-02-2021 19:29:43)
Executando a partir de C:\Users\Ana\Desktop\FRST-OlderVersion
Perfis Carregados: Ivan
Platform: Windows 10 Home Versão 2004 19041.804 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrServicesUpdater.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ivan\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ivan\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Gaijin Network LTD -> Gaijin) C:\Users\Ivan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Ivan\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
(Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.) C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\updater-ws.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\ws.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\CMUpdater.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\UIMain.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1702400 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [Discord] => C:\Users\Ivan\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Ivan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-08] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\Run: [CiscoMeetingDaemon] => C:\Users\Ivan\AppData\Local\WebEx\ciscowebexstart.exe [2499800 2021-02-25] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1793361252-1642306814-3946400002-1000\...\MountPoints2: {25bb5ae4-8632-11ea-bc0c-00158307c667} - "E:\Windows/AutoRun.exe"
HKU\S-1-5-21-1793361252-1642306814-3946400002-1004\...\MountPoints2: {25bb5ae4-8632-11ea-bc0c-00158307c667} - "E:\Windows/AutoRun.exe"
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2020-07-09] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-23] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-07-02]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {166C390A-1AC0-4A57-9FB9-89C3C873F4D9} - \Adobe Flash Player Updater -> Nenhum Arquivo <==== ATENÇÃO
Task: {17EFD284-B69B-4663-B8D2-5B5B212BB84C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {22873C70-DD5F-44D5-9523-C6682743AB7A} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {29D101D5-4320-49A2-8BAD-E3D109B47D97} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => "%Systemdrive%\Office Activation Technologies\Install.cmd" 0
Task: {399496DF-4A9D-4DB9-9967-B40A8406BCD8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B5FA745-3699-406C-837F-277A50A51F0C} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {3D0D76BE-F18D-421A-BB4D-DC831BB21CDB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D18F3A0-ED29-4926-923A-699E777E0C88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-03-03] (Google Inc -> Google Inc.)
Task: {757ECD4A-C651-4AA6-9D88-1432C07EC8E5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {77CA8609-CFE0-4842-82C5-7902F10F1A2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {828B8736-EDB0-4ED3-A914-A0C290E7BB69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8AD6C99A-8C93-417E-BF89-DE88A826A538} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {8C03A7E5-0A04-42F8-B57D-F5B94FB62A75} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D53B8DF-DCC9-4E1D-B698-475A0BFE5F21} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {919B0086-DD6F-4990-BA32-1A62275C171D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {980EE0CD-D914-434B-A054-DB8FB70F5E6F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {BB6ABFDC-23CE-4D2C-AC9D-825EF8E5E4D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [694752 2021-02-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {C52970C2-F62C-4459-9137-675E212B4A28} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {D36AC41E-4056-4C76-A92A-BEE7ACC5CC7C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {DEDA977A-9542-4D64-B7FB-2B2173896147} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {FE102559-7EF3-4CBE-972A-1C35C52D31C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-03-03] (Google Inc -> Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{2169fa6c-e9a1-4828-bb07-f8a30a53dcb0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3092C8E7-720E-420C-81C7-F35BE11DDF1B}: [NameServer] 200.169.119.222 200.169.119.221
Tcpip\..\Interfaces\{93A0A655-D494-41E5-95C8-F12F4AC856FE}: [NameServer] 200.169.117.221 200.169.117.222
Tcpip\..\Interfaces\{a9e65425-7fff-449f-b6b5-cc1a3cb5ee48}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ivan\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-28]
Edge Notifications: Default -> hxxps://www.claro.com.br
FireFox:
========
FF DefaultProfile: 7o4tf2wc.default
FF DefaultProfile: x8vtgoej.default
FF ProfilePath: C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default [2021-02-26]
FF Homepage: Mozilla\Firefox\Profiles\7o4tf2wc.default -> about:newtab
FF Extension: (Video DownloadHelper) - C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-14]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\7o4tf2wc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-01-25]
FF ProfilePath: C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default [2020-10-24]
FF Homepage: Comodo\IceDragon\Profiles\x8vtgoej.default -> about:newtab
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2020-08-24]
FF Extension: (Brazilian Portuguese Checker (New Spelling)) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\pt-BR@dictionaries.addons.mozilla.org.xpi [2020-08-24]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Roaming\Comodo\IceDragon\Profiles\x8vtgoej.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-09-09]
FF HKLM\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 7 Creator) - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi [2019-10-02]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 6
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-10-05]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-03-03]
CHR HomePage: Profile 1 -> hxxp://www.netvibes.com/ivansc
CHR StartupUrls: Profile 1 -> "hxxp://www.netvibes.com/ivansc", "hxxp://app.webinspector.com/public/tasks/7510752#", "hxxp://help.comodo.com/topic-120-1-279-2573-enabling-disabling-the-translate-bar.html"
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6 [2021-02-28]
CHR Extension: (Apresentações) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-03]
CHR Extension: (Documentos) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-03]
CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31]
CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-03]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-31]
CHR Extension: (Planilhas) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-03]
CHR Extension: (Documentos Google off-line) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Video DownloadHelper) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-02-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-31]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7 [2020-10-05]
CHR HomePage: Profile 7 -> hxxp://www.netvibes.com/ivansc
CHR StartupUrls: Profile 7 -> "hxxp://www.netvibes.com/ivansc","hxxp://app.webinspector.com/public/tasks/7510752#","hxxp://help.comodo.com/topic-120-1-279-2573-enabling-disabling-the-translate-bar.html"
CHR Extension: (Apresentações) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-05]
CHR Extension: (Documentos) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-05]
CHR Extension: (Lucidchart Diagrams) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apboafhkiegglekeafbckfjldecefkhn [2020-04-05]
CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-05]
CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-05]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-05]
CHR Extension: (Chromebleed) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\eeoekjnjgppnaegdjbcafdggilajhpic [2020-04-05]
CHR Extension: (Planilhas) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-05]
CHR Extension: (Documentos Google off-line) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-05]
CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-05]
CHR Profile: C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-05]
CHR HKU\S-1-5-21-1793361252-1642306814-3946400002-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3668944 2020-08-08] (philandro Software GmbH -> philandro Software GmbH)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 PDF Architect 7; C:\Program Files\PDF Architect 7\ws.exe [2579752 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 7 Creator; C:\Program Files\PDF Architect 7\creator\common\creator-ws.exe [692008 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 7 Update Service; C:\Program Files\PDF Architect 7\updater-ws.exe [1832232 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13086224 2020-07-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
S3 hwdatacard; C:\WINDOWS\System32\drivers\ewusbmdm.sys [112512 2007-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [11776 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> MBB Incorporated)
S3 MODEMCSA; C:\WINDOWS\system32\drivers\MODEMCSA.sys [28160 2021-01-16] (Microsoft Windows -> Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
S3 smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [1202688 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [33376 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 ZTEusbmdm6k; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbnmea; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbser6k; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-02-26 22:40 - 2021-02-26 22:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-26 21:26 - 2021-02-26 22:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-02-23 09:09 - 2021-02-23 09:14 - 000786988 _____ C:\WINDOWS\Minidump\022321-55625-01.dmp
2021-02-21 13:23 - 2021-02-21 13:23 - 000030540 _____ C:\Users\Ivan\Documents\matriz.xlsx
2021-02-19 23:09 - 2021-02-19 23:09 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-19 23:09 - 2021-02-19 23:09 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-19 23:08 - 2021-02-19 23:08 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-19 23:08 - 2021-02-19 23:08 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-19 23:07 - 2021-02-19 23:07 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-14 17:48 - 2021-02-14 17:48 - 002455656 _____ C:\Users\Ivan\Downloads\Boruto Episódio 186 Legendado PT BR - Tela Cheia - Vídeo Dai.mp4
2021-02-09 14:59 - 2021-02-09 14:59 - 000017614 _____ C:\Users\Ana\Desktop\Comprovante_de_Pagamento_Mensal_2020.pdf
2021-02-07 18:19 - 2021-02-07 18:19 - 001126549 _____ C:\Users\Ivan\Downloads\Boruto Episódio 185 Legendado PT - Ferramentas - Vídeo Daily(1).mp4
2021-02-07 18:15 - 2021-02-07 18:15 - 001209480 _____ C:\Users\Ivan\Downloads\Boruto Episódio 185 Legendado PT - Ferramentas - Vídeo Daily.mp4
2021-02-05 12:16 - 2021-02-05 12:16 - 000489756 _____ C:\Users\Ana\Desktop\Comprovante_de_Pagamento_Mensal_2019.pdf
2021-02-02 15:20 - 2021-02-02 15:20 - 000461419 _____ C:\Users\Ivan\Downloads\Ariana_Grande.htm
2021-02-02 13:29 - 2021-02-02 13:29 - 000129639 _____ C:\Users\Ivan\Downloads\matriz-curricular-administracao.pdf
2021-01-31 14:27 - 2021-01-31 14:27 - 000042341 _____ C:\Users\Ivan\Downloads\Banrisul_31012021_022800.pdf
==================== Um mês (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-02-28 19:37 - 2020-09-29 01:54 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1793361252-1642306814-3946400002-1000
2021-02-28 19:36 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-28 19:33 - 2020-09-29 01:14 - 000002370 _____ C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-28 19:33 - 2019-05-20 18:22 - 000000000 ____D C:\FRST
2021-02-28 19:33 - 2015-11-26 13:45 - 000000000 ___RD C:\Users\Ivan\OneDrive
2021-02-28 19:29 - 2020-10-05 16:14 - 000000000 ____D C:\Users\Ana\Desktop\FRST-OlderVersion
2021-02-28 19:29 - 2020-09-28 22:34 - 000000000 ____D C:\Users\Ivan\AppData\Local\WebEx
2021-02-28 19:28 - 2020-11-30 17:30 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-28 19:28 - 2020-09-28 22:34 - 000000000 ____D C:\Users\Ivan\AppData\LocalLow\WebEx
2021-02-28 19:22 - 2020-04-24 10:53 - 000000000 ____D C:\Program Files (x86)\Claro 3G
2021-02-26 22:50 - 2018-03-03 12:17 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-26 22:50 - 2016-11-16 18:25 - 000000000 ____D C:\Users\Ivan\AppData\LocalLow\Mozilla
2021-02-26 22:40 - 2018-03-03 12:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-26 22:39 - 2018-03-03 12:17 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-26 21:09 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-26 21:09 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-26 15:33 - 2020-09-29 01:54 - 000004164 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{37BA45BF-BFCF-4431-A92D-C5E9AB481B69}
2021-02-26 09:11 - 2016-12-13 19:06 - 000000000 ____D C:\Users\Ana\AppData\LocalLow\Mozilla
2021-02-26 09:04 - 2020-07-31 11:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-26 09:03 - 2020-09-29 01:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-26 09:03 - 2020-09-29 01:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-26 09:03 - 2020-09-29 01:06 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-25 08:51 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-24 12:40 - 2020-09-29 01:14 - 000000000 ____D C:\Users\Ana
2021-02-24 10:49 - 2021-01-25 21:41 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-24 10:49 - 2013-11-12 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-02-23 23:04 - 2018-09-29 18:21 - 000000000 ___RD C:\Users\Ivan\Documents\Famaqui
2021-02-23 22:44 - 2018-03-03 11:58 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-23 21:53 - 2018-02-26 11:59 - 000000000 ____D C:\Users\Ivan\AppData\Local\Packages
2021-02-23 21:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-23 10:31 - 2016-10-19 19:17 - 000000000 ____D C:\Users\Ana\AppData\LocalLow\Adobe
2021-02-23 09:16 - 2020-09-29 01:28 - 001741820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-23 09:16 - 2019-12-07 11:54 - 000752268 _____ C:\WINDOWS\system32\prfh0416.dat
2021-02-23 09:16 - 2019-12-07 11:54 - 000148382 _____ C:\WINDOWS\system32\prfc0416.dat
2021-02-23 09:16 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-23 09:15 - 2020-09-30 17:11 - 000000000 ____D C:\WINDOWS\Minidump
2021-02-23 09:09 - 2019-09-30 12:42 - 486494490 _____ C:\WINDOWS\MEMORY.DMP
2021-02-20 00:12 - 2020-09-29 01:07 - 000347392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-20 00:04 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-20 00:04 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-19 23:21 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-19 22:15 - 2018-03-03 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-19 21:58 - 2018-03-03 11:59 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-19 09:16 - 2020-06-10 20:28 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 09:02 - 2018-03-03 23:47 - 000000000 ____D C:\Users\Ana\AppData\Local\Packages
2021-02-18 14:26 - 2020-12-15 00:04 - 000000000 ____D C:\Users\Ana\Desktop\SEAD_NOV_2020
2021-02-16 20:48 - 2020-09-29 01:14 - 000000000 ____D C:\Users\Ivan
2021-02-14 18:14 - 2013-12-26 22:34 - 000000000 ____D C:\Users\Ivan\dwhelper
2021-02-12 13:20 - 2018-03-02 18:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-02-10 11:34 - 2020-11-30 17:32 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-09 13:11 - 2020-09-29 01:54 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1793361252-1642306814-3946400002-1004
2021-02-09 13:11 - 2020-09-29 01:14 - 000002367 _____ C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-09 13:11 - 2016-01-30 15:05 - 000000000 ___RD C:\Users\Ana\OneDrive
2021-02-09 13:10 - 2020-09-29 01:54 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-09 13:10 - 2020-09-29 01:54 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-05 20:04 - 2021-01-25 21:41 - 000734016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 20:03 - 2021-01-25 21:41 - 000470848 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-05 09:36 - 2020-09-29 01:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 09:36 - 2020-09-29 01:54 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-02 11:31 - 2018-02-13 13:19 - 000030540 _____ C:\Users\Ivan\Documents\Orçamento.xlsx
2021-01-31 18:53 - 2018-03-09 00:07 - 000000000 ____D C:\Program Files (x86)\Java
2021-01-31 18:53 - 2014-02-15 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-01-31 18:52 - 2018-03-09 00:08 - 000165032 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
==================== Arquivos na raiz de alguns diretórios ========
2018-03-03 11:42 - 2015-03-30 13:35 - 000000600 _____ () C:\Users\Ivan\AppData\Local\PUTTY.RND
2018-03-03 11:42 - 2016-09-13 17:48 - 000001456 _____ () C:\Users\Ivan\AppData\Local\recently-used.xbel
2018-03-03 11:42 - 2017-07-24 22:12 - 000007614 _____ () C:\Users\Ivan\AppData\Local\resmon.resmoncfg
2018-05-31 19:53 - 2018-12-19 22:25 - 000002429 _____ () C:\Users\Ivan\AppData\Local\Temptoast_image.png
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================