Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-05-2021
Executado por Robson (administrador) em PIERRECARDOSO (Dell Inc. Inspiron 3647) (18-05-2021 11:43:27)
Executando a partir de C:\Users\Robson\Desktop
Perfis Carregados: Robson
Platform: Windows 10 Home Single Language Versão 20H2 19042.985 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc. -> SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe
(Dell Inc. -> SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(Dell Inc. -> SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\122.4.4867\QtWebEngineProcess.exe <2>
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiClient.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiTray.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Arquivo não assinado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf) C:\Program Files\Diebold\Warsaw\core.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172264 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\MountPoints2: {ccebac3a-14f7-11eb-82a8-707781fefb2c} - "E:\autorun.exe"
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\MountPoints2: {ccebac6b-14f7-11eb-82a8-707781fefb2c} - "F:\autorun.exe"
HKLM\...\Print\Monitors\DTC1250e Language Monitor: C:\WINDOWS\system32\DTC1250eLM.DLL [262560 2019-07-26] (Microsoft Windows Hardware Compatibility Publisher -> FARGO)
HKLM\...\Print\Monitors\DTC1250e TCP/IP Card Printer Port: C:\WINDOWS\system32\DTC1250ePort.dll [75776 2019-07-29] (Microplex Systems Ltd.) [Arquivo não assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Arquivo não assinado]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Arquivo não assinado]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {06AB26C2-A59D-4BC0-AD3B-7EE9832A88F7} - \SystemToolsDailyTest -> Nenhum Arquivo <==== ATENÇÃO
Task: {0FA88BD0-39F7-4E40-9CE9-5A740F069F11} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {32D13173-20C2-4DF9-BAD2-41E573720D23} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3FFBC4F8-90E4-4EA9-97BA-2B699C177C97} - \PCDEventLauncherTask -> Nenhum Arquivo <==== ATENÇÃO
Task: {4077F1FA-904D-4B0C-9D5E-42F86BD0207C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {430EC537-7FBF-4E50-9D97-44D072EC165F} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\WINDOWS\TEMP\is-84NR2.tmp\corefixer.exe <==== ATENÇÃO
Task: {5FFBB97D-C547-4839-93C3-EB909C69DD39} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {6A692393-AB55-4D1B-B577-CED5FAB55D1A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {6BF32412-AAE7-40A7-AB20-88FFB4B310FF} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\Windows\TEMP\DeleteFolderTask.exe <==== ATENÇÃO
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {70DB8218-2306-46F0-B438-735D3739E493} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {7D5D642A-CC13-43CA-B79D-B8235BEBCB7C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-20] (Google Inc -> Google Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {88444DD7-2B6F-4A33-80AF-657B5B2C86CD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8FE38877-2448-41AD-87A3-A9E546D0085A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9566E8E2-0E37-412F-A1C5-5675E432B282} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-20] (Google Inc -> Google Inc.)
Task: {A31277B3-FD24-48A3-91EF-A9D6A25B5E10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {AC942929-B8B7-499A-88E5-432A076DEC66} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink Corp. -> CyberLink)
Task: {AFA8A1E2-D811-4199-8B0E-ED991B0C921A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C7EA19F1-5CF4-43DF-9A1B-DD38DCA929D8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {C9851E9D-6DB4-4AB4-BA08-346ADBE18A23} - \PCDoctorBackgroundMonitorTask -> Nenhum Arquivo <==== ATENÇÃO
Task: {CBBC45FF-7C88-45BF-9481-07BDB13F37D1} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [340440 2013-03-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {DD705E67-167F-4A30-89FB-AE64BCDDF7CD} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E4A72E62-353B-4734-AA79-EA425E7FA9AE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E97E8CE1-F358-4E03-80A2-237D0F7FD9BE} - \Microsoft\Windows\Setup\gwx\runappraiser -> Nenhum Arquivo <==== ATENÇÃO
Task: {ED1FC5A7-524B-460D-AA8E-05CE6DA31357} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157248 2014-04-01] (Leader Technologies Inc -> Aviata Inc)
Task: {EDB1562F-0585-46A0-BA1B-FBDA8B879A6B} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157248 2014-04-01] (Leader Technologies Inc -> Aviata Inc)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{08cf89ec-af83-48f2-82f7-d89fd7cacecb}: [NameServer] 10.1.4.54,10.1.4.217
Tcpip\..\Interfaces\{5385B637-B2F7-4B98-BF20-593B17E97E20}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{683B0A5B-3F13-47FE-B96C-B2034F75F611}: [DhcpNameServer] 192.168.15.1
Edge:
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\cId=128000000001363769&path= [2021-05-16] <==== ATENÇÃO
Edge Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\cId=128000000001363769&path=\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-06-15]
Edge Profile: C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-17]
Edge HomePage: Default -> about:home
Edge Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-04-23]
Edge Extension: (GrowSoci.al Connector) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\albpfdhioelibbmgpeppckpldppfmphp [2020-06-15]
Edge Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-03-09]
Edge HKU\S-1-5-21-3420095182-3288103807-331900730-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: u59qijzx.default
FF ProfilePath: C:\Users\Robson\AppData\Roaming\Mozilla\Firefox\Profiles\u59qijzx.default [2021-05-16]
FF Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Roaming\Mozilla\Firefox\Profiles\u59qijzx.default\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-04-21]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-09-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2021-05-16]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-01-28] <==== ATENÇÃO (Aponta para arquivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-01-28] <==== ATENÇÃO
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default [2021-05-18]
CHR HomePage: Default -> about:home
CHR Extension: (Apresentações) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-20]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-01-26]
CHR Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-18]
CHR Extension: (GrowSoci.al Connector) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\albpfdhioelibbmgpeppckpldppfmphp [2018-11-28]
CHR Extension: (Documentos) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-20]
CHR Extension: (Google Drive) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-20]
CHR Extension: (Adobe Acrobat) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-11]
CHR Extension: (Planilhas) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-14]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-05-02]
CHR Extension: (Acesso rápido a apps para o Drive (do Google)) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-22]
CHR Profile: C:\Users\Robson\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-22]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKU\S-1-5-21-3420095182-3288103807-331900730-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052944 2020-07-14] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> )
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-19] (Dell Inc -> )
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [293440 2014-04-01] (Leader Technologies Inc -> Aviata, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Arquivo não assinado]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2021-01-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink Corp. -> CyberLink)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2269056 2021-02-25] (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2065808 2016-01-04] (Dell Inc. -> SoftThinks SAS)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-03-01] (TeamViewer GmbH -> TeamViewer GmbH)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1141648 2020-08-10] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [27896 2021-05-17] (WDKTestCert Amit_K_Tiwari,132158070448517957 -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1439456 2021-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-04-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-26] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-14] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2021-01-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-18] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [47800 2021-05-16] (Gas Informatica Ltda -> GAS Tecnologia)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [61456 2020-08-11] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [44728 2019-04-15] (Gas Informatica Ltda -> GAS Tecnologia)
R3 wsddprm; C:\WINDOWS\system32\drivers\wsddprm.sys [43528 2020-07-23] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-05-18 11:43 - 2021-05-18 11:44 - 000033258 _____ C:\Users\Robson\Desktop\FRST.txt
2021-05-18 11:28 - 2021-05-18 11:44 - 000000000 ____D C:\FRST
2021-05-18 11:27 - 2021-05-18 11:27 - 002299392 _____ (Farbar) C:\Users\Robson\Desktop\FRST64 (1).exe
2021-05-18 11:08 - 2021-05-18 11:08 - 000080488 _____ C:\Users\Robson\Downloads\LEI Nº 6.975 - 2006 - Institui o PPP.pdf
2021-05-17 20:07 - 2021-05-17 20:07 - 000027896 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2021-05-13 20:03 - 2021-05-13 20:03 - 003422768 _____ C:\Users\Robson\Downloads\WhatsApp Audio 2021-05-13 at 20.03.17.mp4
2021-05-13 19:05 - 2021-05-13 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-05-12 05:06 - 2021-05-12 05:06 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 05:05 - 2021-05-12 05:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 05:05 - 2021-05-12 05:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 05:05 - 2021-05-12 05:05 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 05:05 - 2021-05-12 05:05 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 05:05 - 2021-05-12 05:05 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 05:05 - 2021-05-12 05:05 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 05:04 - 2021-05-12 05:04 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 05:04 - 2021-05-12 05:04 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 05:04 - 2021-05-12 05:04 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 05:04 - 2021-05-12 05:04 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 05:04 - 2021-05-12 05:04 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-05-08 08:02 - 2021-05-08 08:02 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-05-08 08:01 - 2021-05-08 08:02 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Zoom
2021-05-07 21:34 - 2021-05-07 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-07 17:56 - 2021-05-16 17:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-04-29 11:09 - 2021-04-29 11:09 - 000388608 _____ (Trend Micro Inc.) C:\Users\Robson\Downloads\HijackThis.exe
2021-04-29 11:01 - 2021-04-29 11:05 - 000000000 ____D C:\ProgramData\SecTaskMan
2021-04-29 10:10 - 2021-04-29 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2021-04-23 20:07 - 2021-04-23 20:07 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-04-19 18:11 - 2021-04-19 18:30 - 000000286 __RSH C:\ProgramData\ntuser.pol
2021-04-19 17:41 - 2021-04-19 17:41 - 000000000 ___HD C:\$Windows.~WS
2021-04-18 12:03 - 2021-04-18 12:03 - 000000000 ____D C:\$WINDOWS.~BT
2021-04-13 23:39 - 2021-04-13 23:39 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 06:07 - 2021-04-13 06:07 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2021-04-13 06:06 - 2021-04-14 09:29 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-04-13 06:06 - 2021-04-13 06:06 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2021-04-13 06:06 - 2021-04-13 06:06 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2021-04-10 11:13 - 2021-04-10 11:13 - 001949398 _____ C:\Users\Robson\Downloads\unidade05.pdf
2021-03-15 17:59 - 2021-03-15 17:59 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2021
2021-03-15 17:59 - 2021-03-15 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programas RFB2021
2021-03-10 00:11 - 2021-03-10 00:11 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-10 00:10 - 2021-03-10 00:10 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-10 00:10 - 2021-03-10 00:10 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-09 20:01 - 2021-04-29 11:00 - 000000000 ____D C:\Users\Robson\AppData\Local\Amazon
2021-03-08 12:15 - 2021-03-08 12:15 - 000000000 ____D C:\Users\Robson\AppData\Local\Kaspersky Lab
2021-03-08 12:15 - 2021-03-08 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2021-02-19 21:08 - 2021-02-19 21:08 - 000250032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys
2021-02-19 21:08 - 2021-02-19 21:08 - 000041656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klelam.sys
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-05-18 11:44 - 2020-05-13 09:21 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-05-18 11:43 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-18 11:22 - 2015-07-17 14:09 - 000000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2021-05-18 11:21 - 2018-09-21 00:13 - 000000000 ____D C:\Program Files\CCleaner
2021-05-18 10:46 - 2020-11-26 19:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-17 21:44 - 2020-03-19 11:12 - 000002256 ____H C:\Users\Robson\Documents\Default.rdp
2021-05-17 21:41 - 2018-09-19 19:48 - 000000000 ____D C:\Users\Robson\AppData\Local\Packages
2021-05-17 20:07 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-17 18:01 - 2019-02-02 02:47 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2021-05-16 17:49 - 2020-11-26 19:39 - 001743640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-16 17:49 - 2019-12-07 11:54 - 000752436 _____ C:\WINDOWS\system32\prfh0416.dat
2021-05-16 17:49 - 2019-12-07 11:54 - 000148550 _____ C:\WINDOWS\system32\prfc0416.dat
2021-05-16 17:44 - 2018-09-20 23:17 - 000000000 __SHD C:\Users\Robson\IntelGraphicsProfiles
2021-05-16 17:44 - 2018-09-20 23:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-05-16 17:43 - 2020-11-26 19:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-16 17:43 - 2020-11-26 19:28 - 000000000 ____D C:\Users\Robson
2021-05-16 17:43 - 2020-11-26 19:24 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-16 17:43 - 2018-09-26 19:55 - 000047800 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2021-05-15 13:48 - 2019-05-01 13:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-15 13:48 - 2018-09-23 23:06 - 000000000 ____D C:\Users\Robson\AppData\LocalLow\Mozilla
2021-05-15 12:45 - 2020-06-15 01:46 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-15 12:45 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-15 12:45 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-14 15:05 - 2020-04-13 16:44 - 000000000 ____D C:\Users\Robson\Desktop\CCT - Sicon
2021-05-13 19:05 - 2018-09-21 00:47 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-05-12 17:51 - 2018-09-20 19:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-12 12:43 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-12 12:39 - 2020-11-26 19:24 - 005012616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-12 12:39 - 2018-09-23 23:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-12 12:38 - 2019-12-07 06:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-12 12:36 - 2019-12-07 11:55 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-12 12:34 - 2018-09-21 22:16 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 05:22 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-12 05:11 - 2019-12-07 11:57 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-12 04:35 - 2018-09-21 00:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 04:31 - 2018-09-21 00:38 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-08 18:05 - 2019-06-13 08:09 - 000657696 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys
2021-05-08 18:05 - 2018-07-20 03:16 - 001439456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2021-05-08 17:57 - 2019-12-07 06:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-08 16:01 - 2018-09-21 00:55 - 000000000 ___RD C:\Users\Robson\Dropbox
2021-05-07 21:34 - 2018-09-23 23:05 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-06 16:55 - 2018-09-21 00:47 - 000001036 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-06 16:55 - 2018-09-21 00:47 - 000001032 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-04 21:15 - 2020-11-26 19:46 - 000004096 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-04 21:15 - 2020-11-26 19:46 - 000003864 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-04-29 11:21 - 2020-11-26 19:46 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-29 10:18 - 2020-10-28 22:00 - 000000000 ____D C:\Program Files (x86)\Mr DJ
2021-04-29 10:17 - 2020-10-27 22:59 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MAXIS
2021-04-29 10:14 - 2018-09-21 00:39 - 000000000 ____D C:\Program Files\Common Files\AV
2021-04-29 10:12 - 2018-09-21 00:38 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-04-29 10:12 - 2018-09-21 00:38 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2021-04-29 08:48 - 2020-09-29 21:02 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-26 02:39 - 2020-11-30 04:16 - 000003524 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c444817b2ca3
2021-04-26 02:39 - 2020-11-26 19:46 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-25 18:52 - 2019-03-07 20:30 - 000000000 ____D C:\Users\Robson\.receitanet
2021-04-25 18:28 - 2019-03-30 23:42 - 000000000 ____D C:\Users\Robson\.irpf
2021-04-23 16:20 - 2018-10-07 20:11 - 000164640 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-04-23 16:20 - 2018-10-07 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-04-23 16:20 - 2018-10-07 20:10 - 000000000 ____D C:\Program Files (x86)\Java
2021-04-22 18:07 - 2018-09-26 22:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2021-04-22 18:07 - 2018-09-26 22:21 - 000000000 _____ C:\end
2021-04-22 18:06 - 2020-04-28 22:28 - 000001520 _____ C:\nsispromotion_log.txt
2021-04-22 10:01 - 2020-10-21 21:54 - 000000000 ____D C:\Users\Robson\AppData\Roaming\uTorrent
2021-04-22 10:00 - 2020-11-24 21:36 - 000000000 ___DC C:\WINDOWS\Panther
2021-04-22 05:26 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-20 15:45 - 2020-11-26 19:46 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-20 15:45 - 2020-11-26 19:46 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-19 18:11 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-04-19 18:11 - 2013-08-22 12:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-04-19 18:06 - 2018-09-20 20:49 - 000000000 ____D C:\ESD
==================== Arquivos na raiz de alguns diretórios ========
2018-09-27 22:11 - 2018-09-27 22:11 - 000022572 _____ () C:\Users\Robson\AppData\Roaming\suplang.cfg
2020-05-13 09:50 - 2020-05-13 09:50 - 000000000 _____ () C:\Users\Robson\AppData\Local\oobelibMkey.log
2018-09-25 20:23 - 2018-09-25 20:23 - 000000017 _____ () C:\Users\Robson\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Executado por Robson (administrador) em PIERRECARDOSO (Dell Inc. Inspiron 3647) (18-05-2021 11:43:27)
Executando a partir de C:\Users\Robson\Desktop
Perfis Carregados: Robson
Platform: Windows 10 Home Single Language Versão 20H2 19042.985 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc. -> SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe
(Dell Inc. -> SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(Dell Inc. -> SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\122.4.4867\QtWebEngineProcess.exe <2>
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Inc.) [Arquivo não assinado] C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiClient.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiTray.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Arquivo não assinado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf) C:\Program Files\Diebold\Warsaw\core.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172264 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\MountPoints2: {ccebac3a-14f7-11eb-82a8-707781fefb2c} - "E:\autorun.exe"
HKU\S-1-5-21-3420095182-3288103807-331900730-1001\...\MountPoints2: {ccebac6b-14f7-11eb-82a8-707781fefb2c} - "F:\autorun.exe"
HKLM\...\Print\Monitors\DTC1250e Language Monitor: C:\WINDOWS\system32\DTC1250eLM.DLL [262560 2019-07-26] (Microsoft Windows Hardware Compatibility Publisher -> FARGO)
HKLM\...\Print\Monitors\DTC1250e TCP/IP Card Printer Port: C:\WINDOWS\system32\DTC1250ePort.dll [75776 2019-07-29] (Microplex Systems Ltd.) [Arquivo não assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Arquivo não assinado]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Arquivo não assinado]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {06AB26C2-A59D-4BC0-AD3B-7EE9832A88F7} - \SystemToolsDailyTest -> Nenhum Arquivo <==== ATENÇÃO
Task: {0FA88BD0-39F7-4E40-9CE9-5A740F069F11} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {32D13173-20C2-4DF9-BAD2-41E573720D23} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3FFBC4F8-90E4-4EA9-97BA-2B699C177C97} - \PCDEventLauncherTask -> Nenhum Arquivo <==== ATENÇÃO
Task: {4077F1FA-904D-4B0C-9D5E-42F86BD0207C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {430EC537-7FBF-4E50-9D97-44D072EC165F} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\WINDOWS\TEMP\is-84NR2.tmp\corefixer.exe <==== ATENÇÃO
Task: {5FFBB97D-C547-4839-93C3-EB909C69DD39} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {6A692393-AB55-4D1B-B577-CED5FAB55D1A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {6BF32412-AAE7-40A7-AB20-88FFB4B310FF} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\Windows\TEMP\DeleteFolderTask.exe <==== ATENÇÃO
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {70DB8218-2306-46F0-B438-735D3739E493} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {7D5D642A-CC13-43CA-B79D-B8235BEBCB7C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-20] (Google Inc -> Google Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {88444DD7-2B6F-4A33-80AF-657B5B2C86CD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8FE38877-2448-41AD-87A3-A9E546D0085A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9566E8E2-0E37-412F-A1C5-5675E432B282} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-20] (Google Inc -> Google Inc.)
Task: {A31277B3-FD24-48A3-91EF-A9D6A25B5E10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {AC942929-B8B7-499A-88E5-432A076DEC66} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink Corp. -> CyberLink)
Task: {AFA8A1E2-D811-4199-8B0E-ED991B0C921A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C7EA19F1-5CF4-43DF-9A1B-DD38DCA929D8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {C9851E9D-6DB4-4AB4-BA08-346ADBE18A23} - \PCDoctorBackgroundMonitorTask -> Nenhum Arquivo <==== ATENÇÃO
Task: {CBBC45FF-7C88-45BF-9481-07BDB13F37D1} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [340440 2013-03-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {DD705E67-167F-4A30-89FB-AE64BCDDF7CD} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E4A72E62-353B-4734-AA79-EA425E7FA9AE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E97E8CE1-F358-4E03-80A2-237D0F7FD9BE} - \Microsoft\Windows\Setup\gwx\runappraiser -> Nenhum Arquivo <==== ATENÇÃO
Task: {ED1FC5A7-524B-460D-AA8E-05CE6DA31357} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157248 2014-04-01] (Leader Technologies Inc -> Aviata Inc)
Task: {EDB1562F-0585-46A0-BA1B-FBDA8B879A6B} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157248 2014-04-01] (Leader Technologies Inc -> Aviata Inc)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{08cf89ec-af83-48f2-82f7-d89fd7cacecb}: [NameServer] 10.1.4.54,10.1.4.217
Tcpip\..\Interfaces\{5385B637-B2F7-4B98-BF20-593B17E97E20}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{683B0A5B-3F13-47FE-B96C-B2034F75F611}: [DhcpNameServer] 192.168.15.1
Edge:
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\cId=128000000001363769&path= [2021-05-16] <==== ATENÇÃO
Edge Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\cId=128000000001363769&path=\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-06-15]
Edge Profile: C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-17]
Edge HomePage: Default -> about:home
Edge Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-04-23]
Edge Extension: (GrowSoci.al Connector) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\albpfdhioelibbmgpeppckpldppfmphp [2020-06-15]
Edge Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\Robson\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-03-09]
Edge HKU\S-1-5-21-3420095182-3288103807-331900730-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: u59qijzx.default
FF ProfilePath: C:\Users\Robson\AppData\Roaming\Mozilla\Firefox\Profiles\u59qijzx.default [2021-05-16]
FF Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Roaming\Mozilla\Firefox\Profiles\u59qijzx.default\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-04-21]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-09-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2021-05-16]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-01-28] <==== ATENÇÃO (Aponta para arquivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-01-28] <==== ATENÇÃO
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default [2021-05-18]
CHR HomePage: Default -> about:home
CHR Extension: (Apresentações) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-20]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-01-26]
CHR Extension: (Kaspersky Protection) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-18]
CHR Extension: (GrowSoci.al Connector) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\albpfdhioelibbmgpeppckpldppfmphp [2018-11-28]
CHR Extension: (Documentos) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-20]
CHR Extension: (Google Drive) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-20]
CHR Extension: (Adobe Acrobat) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-11]
CHR Extension: (Planilhas) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-14]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-05-02]
CHR Extension: (Acesso rápido a apps para o Drive (do Google)) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\Robson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-22]
CHR Profile: C:\Users\Robson\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-22]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKU\S-1-5-21-3420095182-3288103807-331900730-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052944 2020-07-14] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-21] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> )
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-19] (Dell Inc -> )
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [293440 2014-04-01] (Leader Technologies Inc -> Aviata, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Arquivo não assinado]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Arquivo não assinado]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2021-01-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink Corp. -> CyberLink)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2269056 2021-02-25] (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2065808 2016-01-04] (Dell Inc. -> SoftThinks SAS)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-03-01] (TeamViewer GmbH -> TeamViewer GmbH)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1141648 2020-08-10] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [27896 2021-05-17] (WDKTestCert Amit_K_Tiwari,132158070448517957 -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-10-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1439456 2021-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-04-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-26] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-14] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2021-01-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-18] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [47800 2021-05-16] (Gas Informatica Ltda -> GAS Tecnologia)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [61456 2020-08-11] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [44728 2019-04-15] (Gas Informatica Ltda -> GAS Tecnologia)
R3 wsddprm; C:\WINDOWS\system32\drivers\wsddprm.sys [43528 2020-07-23] (PROCOMP INDUSTRIA ELETRONICA LTDA -> Diebold Nixdorf)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-05-18 11:43 - 2021-05-18 11:44 - 000033258 _____ C:\Users\Robson\Desktop\FRST.txt
2021-05-18 11:28 - 2021-05-18 11:44 - 000000000 ____D C:\FRST
2021-05-18 11:27 - 2021-05-18 11:27 - 002299392 _____ (Farbar) C:\Users\Robson\Desktop\FRST64 (1).exe
2021-05-18 11:08 - 2021-05-18 11:08 - 000080488 _____ C:\Users\Robson\Downloads\LEI Nº 6.975 - 2006 - Institui o PPP.pdf
2021-05-17 20:07 - 2021-05-17 20:07 - 000027896 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2021-05-13 20:03 - 2021-05-13 20:03 - 003422768 _____ C:\Users\Robson\Downloads\WhatsApp Audio 2021-05-13 at 20.03.17.mp4
2021-05-13 19:05 - 2021-05-13 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-05-12 05:06 - 2021-05-12 05:06 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 05:05 - 2021-05-12 05:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 05:05 - 2021-05-12 05:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 05:05 - 2021-05-12 05:05 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 05:05 - 2021-05-12 05:05 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 05:05 - 2021-05-12 05:05 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 05:05 - 2021-05-12 05:05 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 05:04 - 2021-05-12 05:04 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 05:04 - 2021-05-12 05:04 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 05:04 - 2021-05-12 05:04 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 05:04 - 2021-05-12 05:04 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 05:04 - 2021-05-12 05:04 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-05-11 18:25 - 2021-05-11 18:25 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-05-08 08:02 - 2021-05-08 08:02 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-05-08 08:01 - 2021-05-08 08:02 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Zoom
2021-05-07 21:34 - 2021-05-07 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-07 17:56 - 2021-05-16 17:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-04-29 11:09 - 2021-04-29 11:09 - 000388608 _____ (Trend Micro Inc.) C:\Users\Robson\Downloads\HijackThis.exe
2021-04-29 11:01 - 2021-04-29 11:05 - 000000000 ____D C:\ProgramData\SecTaskMan
2021-04-29 10:10 - 2021-04-29 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2021-04-23 20:07 - 2021-04-23 20:07 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-04-19 18:11 - 2021-04-19 18:30 - 000000286 __RSH C:\ProgramData\ntuser.pol
2021-04-19 17:41 - 2021-04-19 17:41 - 000000000 ___HD C:\$Windows.~WS
2021-04-18 12:03 - 2021-04-18 12:03 - 000000000 ____D C:\$WINDOWS.~BT
2021-04-13 23:39 - 2021-04-13 23:39 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 06:07 - 2021-04-13 06:07 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2021-04-13 06:06 - 2021-04-14 09:29 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-04-13 06:06 - 2021-04-13 06:06 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2021-04-13 06:06 - 2021-04-13 06:06 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2021-04-10 11:13 - 2021-04-10 11:13 - 001949398 _____ C:\Users\Robson\Downloads\unidade05.pdf
2021-03-15 17:59 - 2021-03-15 17:59 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2021
2021-03-15 17:59 - 2021-03-15 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programas RFB2021
2021-03-10 00:11 - 2021-03-10 00:11 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-10 00:10 - 2021-03-10 00:10 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-10 00:10 - 2021-03-10 00:10 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-09 20:01 - 2021-04-29 11:00 - 000000000 ____D C:\Users\Robson\AppData\Local\Amazon
2021-03-08 12:15 - 2021-03-08 12:15 - 000000000 ____D C:\Users\Robson\AppData\Local\Kaspersky Lab
2021-03-08 12:15 - 2021-03-08 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2021-02-19 21:08 - 2021-02-19 21:08 - 000250032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys
2021-02-19 21:08 - 2021-02-19 21:08 - 000041656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klelam.sys
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2021-05-18 11:44 - 2020-05-13 09:21 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-05-18 11:43 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-18 11:22 - 2015-07-17 14:09 - 000000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2021-05-18 11:21 - 2018-09-21 00:13 - 000000000 ____D C:\Program Files\CCleaner
2021-05-18 10:46 - 2020-11-26 19:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-17 21:44 - 2020-03-19 11:12 - 000002256 ____H C:\Users\Robson\Documents\Default.rdp
2021-05-17 21:41 - 2018-09-19 19:48 - 000000000 ____D C:\Users\Robson\AppData\Local\Packages
2021-05-17 20:07 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-17 18:01 - 2019-02-02 02:47 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2021-05-16 17:49 - 2020-11-26 19:39 - 001743640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-16 17:49 - 2019-12-07 11:54 - 000752436 _____ C:\WINDOWS\system32\prfh0416.dat
2021-05-16 17:49 - 2019-12-07 11:54 - 000148550 _____ C:\WINDOWS\system32\prfc0416.dat
2021-05-16 17:44 - 2018-09-20 23:17 - 000000000 __SHD C:\Users\Robson\IntelGraphicsProfiles
2021-05-16 17:44 - 2018-09-20 23:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-05-16 17:43 - 2020-11-26 19:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-16 17:43 - 2020-11-26 19:28 - 000000000 ____D C:\Users\Robson
2021-05-16 17:43 - 2020-11-26 19:24 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-16 17:43 - 2018-09-26 19:55 - 000047800 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2021-05-15 13:48 - 2019-05-01 13:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-15 13:48 - 2018-09-23 23:06 - 000000000 ____D C:\Users\Robson\AppData\LocalLow\Mozilla
2021-05-15 12:45 - 2020-06-15 01:46 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-15 12:45 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-15 12:45 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-14 15:05 - 2020-04-13 16:44 - 000000000 ____D C:\Users\Robson\Desktop\CCT - Sicon
2021-05-13 19:05 - 2018-09-21 00:47 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-05-12 17:51 - 2018-09-20 19:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-12 12:43 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-12 12:39 - 2020-11-26 19:24 - 005012616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-12 12:39 - 2018-09-23 23:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-12 12:38 - 2019-12-07 06:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-12 12:37 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-12 12:36 - 2019-12-07 11:55 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-12 12:36 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-12 12:34 - 2018-09-21 22:16 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 05:22 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-12 05:11 - 2019-12-07 11:57 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-12 04:35 - 2018-09-21 00:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 04:31 - 2018-09-21 00:38 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-08 18:05 - 2019-06-13 08:09 - 000657696 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys
2021-05-08 18:05 - 2018-07-20 03:16 - 001439456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2021-05-08 17:57 - 2019-12-07 06:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-08 16:01 - 2018-09-21 00:55 - 000000000 ___RD C:\Users\Robson\Dropbox
2021-05-07 21:34 - 2018-09-23 23:05 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-06 16:55 - 2018-09-21 00:47 - 000001036 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-06 16:55 - 2018-09-21 00:47 - 000001032 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-04 21:15 - 2020-11-26 19:46 - 000004096 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-04 21:15 - 2020-11-26 19:46 - 000003864 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-04-29 11:21 - 2020-11-26 19:46 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-29 10:18 - 2020-10-28 22:00 - 000000000 ____D C:\Program Files (x86)\Mr DJ
2021-04-29 10:17 - 2020-10-27 22:59 - 000000000 ____D C:\Users\Robson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MAXIS
2021-04-29 10:14 - 2018-09-21 00:39 - 000000000 ____D C:\Program Files\Common Files\AV
2021-04-29 10:12 - 2018-09-21 00:38 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-04-29 10:12 - 2018-09-21 00:38 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2021-04-29 08:48 - 2020-09-29 21:02 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-26 02:39 - 2020-11-30 04:16 - 000003524 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c444817b2ca3
2021-04-26 02:39 - 2020-11-26 19:46 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-25 18:52 - 2019-03-07 20:30 - 000000000 ____D C:\Users\Robson\.receitanet
2021-04-25 18:28 - 2019-03-30 23:42 - 000000000 ____D C:\Users\Robson\.irpf
2021-04-23 16:20 - 2018-10-07 20:11 - 000164640 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-04-23 16:20 - 2018-10-07 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-04-23 16:20 - 2018-10-07 20:10 - 000000000 ____D C:\Program Files (x86)\Java
2021-04-22 18:07 - 2018-09-26 22:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2021-04-22 18:07 - 2018-09-26 22:21 - 000000000 _____ C:\end
2021-04-22 18:06 - 2020-04-28 22:28 - 000001520 _____ C:\nsispromotion_log.txt
2021-04-22 10:01 - 2020-10-21 21:54 - 000000000 ____D C:\Users\Robson\AppData\Roaming\uTorrent
2021-04-22 10:00 - 2020-11-24 21:36 - 000000000 ___DC C:\WINDOWS\Panther
2021-04-22 05:26 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-20 15:45 - 2020-11-26 19:46 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-20 15:45 - 2020-11-26 19:46 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-19 18:11 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-04-19 18:11 - 2013-08-22 12:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-04-19 18:06 - 2018-09-20 20:49 - 000000000 ____D C:\ESD
==================== Arquivos na raiz de alguns diretórios ========
2018-09-27 22:11 - 2018-09-27 22:11 - 000022572 _____ () C:\Users\Robson\AppData\Roaming\suplang.cfg
2020-05-13 09:50 - 2020-05-13 09:50 - 000000000 _____ () C:\Users\Robson\AppData\Local\oobelibMkey.log
2018-09-25 20:23 - 2018-09-25 20:23 - 000000017 _____ () C:\Users\Robson\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================