Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 16-06-2022
Executado por vitor_scpy35i (administrador) em DESKTOP-SO67P9J (Dell Inc. Inspiron 13-5378) (18-06-2022 18:26:25)
Executando a partir de C:\Users\vitor_scpy35i\OneDrive\Área de Trabalho
Perfis Carregados: vitor_scpy35i
Plataforma: Microsoft Windows 10 Home Single Language Versão 21H1 19043.1766 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(explorer.exe ->) (Dell Inc.) [Arquivo não assinado] C:\Program Files\Dell\QuickSet\quickset.exe
(explorer.exe ->) (Entertainment Experience LLC -> Entertainment Experience) C:\Program Files\TrueColor\TrueColorUI.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\59.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <36>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE <2>
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Entertainment Experience LLC -> ) C:\Program Files\TrueColor\TrueColorALS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(svchost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3910656 2017-05-03] (Dell Inc.) [Arquivo não assinado]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9229280 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488360 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TrueColor UI] => C:\Program Files\TrueColor\TrueColorUI.exe [19638160 2016-12-28] (Entertainment Experience LLC -> Entertainment Experience)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-01-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [976768 2017-05-08] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\Run: [com.squirrel.Teams.Teams] => C:\ProgramData\edumo\Microsoft\Teams\Update.exe [2492168 2022-03-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Uninstall 21.220.1024.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\amd64" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [Spotify] => C:\Users\vitor_scpy35i\AppData\Roaming\Spotify\Spotify.exe [19984872 2022-06-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\EPSON L3150 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBUNE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMI4E.DLL [120320 2014-07-29] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Arquivo não assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-10] (Google LLC -> Google LLC)
GroupPolicyScripts: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0A4CF145-A751-40C9-AEC0-A5BCB63F336E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {0DD2A6D0-C64A-419B-900E-78AFA4E13FB1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {273C6B27-9DD0-4740-8118-5A91EA05E53D} - System32\Tasks\EPSON L3150 Series Update {A8163EAC-D4BF-41E0-ADB0-41B222DE75C2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {53D73C9D-8817-4B10-AD0B-7F2E0BED5057} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.)
Task: {7D7E9D0F-B9D0-46E7-9A78-52A1115C9929} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-14] (Google Inc -> Google Inc.)
Task: {890F44A1-D529-4C21-8EE5-8A4ABF060E63} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {911386F3-1BC4-4CCC-8612-0B4AE538E562} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [688560 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {95486B4B-A690-4618-BC79-23249C74DD50} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115624 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {95E47F19-076E-405D-BED7-9A1507EA3E2F} - System32\Tasks\EPSON L3150 Series Update {3A361790-AFC0-4C41-A2EF-7BAF3A68E858} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {F6637296-484B-4509-966B-EAB55C875645} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-14] (Google Inc -> Google Inc.)
Task: {FCE9FC60-4A00-462D-BA02-CDA8AB5C6E9B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115624 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\EPSON L3150 Series Update {3A361790-AFC0-4C41-A2EF-7BAF3A68E858}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{3A361790-AFC0-4C41-A2EF-7BAF3A68E858} /F:UpdateWORKGROUP\DESKTOP-SO67P9J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L3150 Series Update {A8163EAC-D4BF-41E0-ADB0-41B222DE75C2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{A8163EAC-D4BF-41E0-ADB0-41B222DE75C2} /F:UpdateWORKGROUP\DESKTOP-SO67P9J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\RunDLC.job => cmd c sc start Dell Help SupportWORKGROUP DESKTOP SO67P9J
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{262e5d7e-9874-4a1c-92c6-70ff2363d6c9}: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{4183412b-748f-475b-b455-6de1ecff7a21}: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{c2e129e6-7037-49da-b497-4e659b23108a}: [DhcpNameServer] 10.8.8.8 10.7.7.7
Edge:
=======
DownloadDir: C:\Users\vitor_scpy35i\Downloads
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\vitor_scpy35i\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-01-28] [] [não assinado]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default [2022-06-18]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://web.telegram.org; hxxps://web.whatsapp.com
CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-15]
CHR Extension: (Documentos Google off-line) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-18]
CHR Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-06-08]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-06-17]
CHR HKU\S-1-5-21-1456881225-246396744-123056589-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988384 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [50888 2021-06-24] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [41008 2018-01-15] (Dell Inc -> Dell Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-04-01] (Dell Inc -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [96632 2021-05-26] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189288 2020-07-09] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.)
R2 TrueColorALS; C:\Program Files\TrueColor\TrueColorALS.exe [93072 2016-12-12] (Entertainment Experience LLC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Techporch Incorporated -> Dell Computer Corporation)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corporation -> Wistron Corp.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [225432 2017-04-01] (McAfee, Inc. -> McAfee, Inc.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [141088 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212768 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125728 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132384 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [111296 2020-11-23] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [152864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [102688 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [347424 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [353376 2021-05-25] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123168 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [327968 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [195872 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [23480 2021-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [171072 2021-06-09] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [216864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [148768 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [160544 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130336 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-05-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-05-12] (Microsoft Windows -> Microsoft Corporation)
S4 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2022-06-18 18:24 - 2022-06-18 18:28 - 000000000 ____D C:\FRST
2022-06-17 16:23 - 2019-02-20 02:31 - 000072984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2022-06-17 15:33 - 2022-06-17 15:33 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-17 15:32 - 2022-06-17 15:32 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-17 15:31 - 2022-06-17 15:31 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-17 15:30 - 2022-06-17 15:30 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-17 15:30 - 2022-06-17 15:30 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-15 19:46 - 2022-06-15 19:46 - 000000000 ___HD C:\$WinREAgent
2022-06-10 15:52 - 2022-06-10 15:52 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1456881225-246396744-123056589-1004
2022-06-10 15:52 - 2022-06-10 15:52 - 000002411 _____ C:\Users\vitor_scpy35i\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-05-26 15:19 - 2022-05-26 15:19 - 000194798 _____ C:\Users\vitor_scpy35i\Downloads\Passagem Aérea - Azul.pdf
2022-05-19 08:27 - 2022-05-19 08:27 - 000049052 _____ C:\Users\vitor_scpy35i\Downloads\Goodbye Lenin Szenen.pdf
2022-05-12 11:35 - 2022-05-12 11:35 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-12 11:35 - 2022-05-12 11:35 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-05-10 08:08 - 2022-05-10 08:09 - 000620468 _____ C:\Users\vitor_scpy35i\Downloads\Goodbye Lenin 2022.pdf
2022-05-04 15:49 - 2022-05-04 15:49 - 000015560 _____ C:\Users\vitor_scpy35i\Downloads\caixas-gabinetes-desembargadores.xlsx
2022-05-03 08:04 - 2022-05-03 08:04 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-04-27 15:52 - 2022-04-27 15:52 - 000042822 _____ C:\Users\vitor_scpy35i\Downloads\Profile.pdf
2022-04-25 18:05 - 2022-04-25 18:05 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-25 18:05 - 2022-04-25 18:05 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-20 14:46 - 2022-04-20 14:46 - 004760811 _____ C:\Users\vitor_scpy35i\Downloads\528.528.ca4fe4a087c5-diploma_digital.xml
2022-04-20 14:45 - 2022-04-20 14:45 - 003107967 _____ C:\Users\vitor_scpy35i\Downloads\528.528.ca4fe4a087c5_RVDD.pdf
2022-04-18 18:19 - 2022-04-18 18:19 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-18 18:19 - 2022-04-18 18:19 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-18 18:16 - 2022-04-18 18:16 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-18 16:25 - 2022-04-18 16:25 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2022-04-18 14:52 - 2020-12-02 07:21 - 000195872 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2022-04-18 14:51 - 2020-12-02 07:21 - 000160544 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2022-04-18 14:51 - 2020-12-02 07:21 - 000130336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000347424 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000327968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000212768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000152864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000141088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000135456 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000132384 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000125728 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000123168 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000102688 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspihsw.sys
2022-04-18 14:50 - 2021-07-23 00:54 - 000023480 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\psinelam.sys
2022-04-18 14:50 - 2021-06-09 19:27 - 000171072 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2022-04-18 14:50 - 2021-05-25 00:01 - 000353376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2022-04-18 14:50 - 2020-12-27 07:35 - 000148768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2022-04-18 14:50 - 2020-12-02 07:21 - 000216864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2022-04-18 14:47 - 2022-04-18 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2022-04-14 15:06 - 2022-04-14 15:06 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-04-14 15:03 - 2022-04-14 15:03 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-03-31 13:01 - 2022-03-24 07:54 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys
2022-03-31 12:00 - 2022-05-12 10:34 - 000000000 ____D C:\Program Files\dotnet
2022-03-24 16:16 - 2022-03-24 16:16 - 005169491 _____ C:\Users\vitor_scpy35i\Downloads\Guia Monumento Estácio de Sá 2022.pdf
2022-03-24 16:16 - 2022-03-24 16:16 - 001574866 _____ C:\Users\vitor_scpy35i\Downloads\Dúvidas Frequentes 2022.pdf
2022-03-22 15:56 - 2022-03-22 15:56 - 000000000 ____D C:\Users\vitor_scpy35i\OneDrive\Documentos\Dell
2022-03-22 08:02 - 2022-03-22 08:02 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\Zoom
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2022-06-18 18:21 - 2020-09-15 19:33 - 000004196 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{DD5059BA-5E63-4571-856B-41664FB823A2}
2022-06-18 18:11 - 2017-07-27 17:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-06-18 18:10 - 2020-08-25 18:51 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Roaming\Spotify
2022-06-18 18:10 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-18 17:54 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-18 17:54 - 2017-10-14 18:15 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-18 17:50 - 2020-09-15 18:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-18 17:50 - 2019-09-03 15:37 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2022-06-17 16:39 - 2018-03-30 12:06 - 000000000 ___RD C:\Users\vitor_scpy35i\Google Drive
2022-06-17 16:38 - 2020-08-25 18:52 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\Spotify
2022-06-17 16:37 - 2017-10-14 20:54 - 000000000 ___RD C:\Users\vitor_scpy35i\OneDrive
2022-06-17 16:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-17 16:27 - 2017-10-14 20:45 - 000000000 __SHD C:\Users\vitor_scpy35i\IntelGraphicsProfiles
2022-06-17 16:22 - 2021-09-20 15:37 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-17 16:22 - 2020-09-15 19:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-17 16:22 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-06-17 16:20 - 2020-09-15 19:03 - 001743640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-17 16:20 - 2019-12-07 11:54 - 000754118 _____ C:\WINDOWS\system32\prfh0416.dat
2022-06-17 16:20 - 2019-12-07 11:54 - 000149216 _____ C:\WINDOWS\system32\prfc0416.dat
2022-06-17 16:20 - 2019-12-07 06:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-06-17 16:16 - 2020-12-11 18:43 - 000437584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-17 16:03 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-17 15:55 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-17 15:29 - 2020-09-15 18:52 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-17 15:09 - 2020-06-18 00:48 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-17 15:09 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-17 14:44 - 2020-09-15 19:33 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-17 14:44 - 2020-09-15 19:33 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-15 19:43 - 2017-10-15 17:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-15 19:38 - 2017-10-15 17:32 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-15 16:02 - 2018-09-30 13:14 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\D3DSCache
2022-06-13 16:00 - 2021-08-31 21:08 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-06-10 16:05 - 2019-09-22 12:16 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-06-10 15:52 - 2021-12-11 16:26 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1456881225-246396744-123056589-1004
2022-06-01 15:44 - 2018-06-21 19:54 - 000000000 ____D C:\ProgramData\Packages
2022-05-19 08:27 - 2020-03-28 09:53 - 000000000 ____D C:\Users\vitor_scpy35i\OneDrive\Documentos\Zoom
==================== Arquivos na raiz de alguns diretórios ========
2020-04-10 13:34 - 2020-04-10 13:34 - 000007666 _____ () C:\Users\vitor_scpy35i\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Executado por vitor_scpy35i (administrador) em DESKTOP-SO67P9J (Dell Inc. Inspiron 13-5378) (18-06-2022 18:26:25)
Executando a partir de C:\Users\vitor_scpy35i\OneDrive\Área de Trabalho
Perfis Carregados: vitor_scpy35i
Plataforma: Microsoft Windows 10 Home Single Language Versão 21H1 19043.1766 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(explorer.exe ->) (Dell Inc.) [Arquivo não assinado] C:\Program Files\Dell\QuickSet\quickset.exe
(explorer.exe ->) (Entertainment Experience LLC -> Entertainment Experience) C:\Program Files\TrueColor\TrueColorUI.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\59.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <36>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE <2>
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Entertainment Experience LLC -> ) C:\Program Files\TrueColor\TrueColorALS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(svchost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3910656 2017-05-03] (Dell Inc.) [Arquivo não assinado]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9229280 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488360 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TrueColor UI] => C:\Program Files\TrueColor\TrueColorUI.exe [19638160 2016-12-28] (Entertainment Experience LLC -> Entertainment Experience)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-01-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [976768 2017-05-08] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\Run: [com.squirrel.Teams.Teams] => C:\ProgramData\edumo\Microsoft\Teams\Update.exe [2492168 2022-03-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Uninstall 21.220.1024.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\amd64" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1001\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\edumo\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" (Nenhum Arquivo)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [Spotify] => C:\Users\vitor_scpy35i\AppData\Roaming\Spotify\Spotify.exe [19984872 2022-06-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1456881225-246396744-123056589-1004\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\59.0.3.0\GoogleDriveFS.exe [55420816 2022-06-08] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\EPSON L3150 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBUNE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMI4E.DLL [120320 2014-07-29] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Arquivo não assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-10] (Google LLC -> Google LLC)
GroupPolicyScripts: Restrição <==== ATENÇÃO
==================== Tarefas Agendadas (Whitelisted) ============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0A4CF145-A751-40C9-AEC0-A5BCB63F336E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {0DD2A6D0-C64A-419B-900E-78AFA4E13FB1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {273C6B27-9DD0-4740-8118-5A91EA05E53D} - System32\Tasks\EPSON L3150 Series Update {A8163EAC-D4BF-41E0-ADB0-41B222DE75C2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {53D73C9D-8817-4B10-AD0B-7F2E0BED5057} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.)
Task: {7D7E9D0F-B9D0-46E7-9A78-52A1115C9929} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-14] (Google Inc -> Google Inc.)
Task: {890F44A1-D529-4C21-8EE5-8A4ABF060E63} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {911386F3-1BC4-4CCC-8612-0B4AE538E562} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [688560 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {95486B4B-A690-4618-BC79-23249C74DD50} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115624 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {95E47F19-076E-405D-BED7-9A1507EA3E2F} - System32\Tasks\EPSON L3150 Series Update {3A361790-AFC0-4C41-A2EF-7BAF3A68E858} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {F6637296-484B-4509-966B-EAB55C875645} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-14] (Google Inc -> Google Inc.)
Task: {FCE9FC60-4A00-462D-BA02-CDA8AB5C6E9B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115624 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\EPSON L3150 Series Update {3A361790-AFC0-4C41-A2EF-7BAF3A68E858}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{3A361790-AFC0-4C41-A2EF-7BAF3A68E858} /F:UpdateWORKGROUP\DESKTOP-SO67P9J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L3150 Series Update {A8163EAC-D4BF-41E0-ADB0-41B222DE75C2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{A8163EAC-D4BF-41E0-ADB0-41B222DE75C2} /F:UpdateWORKGROUP\DESKTOP-SO67P9J$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\RunDLC.job => cmd c sc start Dell Help SupportWORKGROUP DESKTOP SO67P9J
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{262e5d7e-9874-4a1c-92c6-70ff2363d6c9}: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{4183412b-748f-475b-b455-6de1ecff7a21}: [DhcpNameServer] 181.213.132.4 181.213.132.5
Tcpip\..\Interfaces\{c2e129e6-7037-49da-b497-4e659b23108a}: [DhcpNameServer] 10.8.8.8 10.7.7.7
Edge:
=======
DownloadDir: C:\Users\vitor_scpy35i\Downloads
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\vitor_scpy35i\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-01-28] [] [não assinado]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default [2022-06-18]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://web.telegram.org; hxxps://web.whatsapp.com
CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-15]
CHR Extension: (Documentos Google off-line) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-18]
CHR Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-06-08]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\vitor_scpy35i\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-06-17]
CHR HKU\S-1-5-21-1456881225-246396744-123056589-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988384 2022-06-18] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [50888 2021-06-24] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [41008 2018-01-15] (Dell Inc -> Dell Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-04-01] (Dell Inc -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [96632 2021-05-26] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189288 2020-07-09] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.)
R2 TrueColorALS; C:\Program Files\TrueColor\TrueColorALS.exe [93072 2016-12-12] (Entertainment Experience LLC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Techporch Incorporated -> Dell Computer Corporation)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corporation -> Wistron Corp.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [225432 2017-04-01] (McAfee, Inc. -> McAfee, Inc.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [141088 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212768 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125728 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132384 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [111296 2020-11-23] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [152864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [102688 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [347424 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [353376 2021-05-25] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123168 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [327968 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [195872 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [23480 2021-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [171072 2021-06-09] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [216864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [148768 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [160544 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130336 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-05-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-05-12] (Microsoft Windows -> Microsoft Corporation)
S4 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2022-06-18 18:24 - 2022-06-18 18:28 - 000000000 ____D C:\FRST
2022-06-17 16:23 - 2019-02-20 02:31 - 000072984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2022-06-17 15:33 - 2022-06-17 15:33 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-17 15:32 - 2022-06-17 15:32 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-17 15:31 - 2022-06-17 15:31 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-17 15:30 - 2022-06-17 15:30 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-17 15:30 - 2022-06-17 15:30 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-15 19:46 - 2022-06-15 19:46 - 000000000 ___HD C:\$WinREAgent
2022-06-10 15:52 - 2022-06-10 15:52 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1456881225-246396744-123056589-1004
2022-06-10 15:52 - 2022-06-10 15:52 - 000002411 _____ C:\Users\vitor_scpy35i\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-05-26 15:19 - 2022-05-26 15:19 - 000194798 _____ C:\Users\vitor_scpy35i\Downloads\Passagem Aérea - Azul.pdf
2022-05-19 08:27 - 2022-05-19 08:27 - 000049052 _____ C:\Users\vitor_scpy35i\Downloads\Goodbye Lenin Szenen.pdf
2022-05-12 11:35 - 2022-05-12 11:35 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-12 11:35 - 2022-05-12 11:35 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-05-10 08:08 - 2022-05-10 08:09 - 000620468 _____ C:\Users\vitor_scpy35i\Downloads\Goodbye Lenin 2022.pdf
2022-05-04 15:49 - 2022-05-04 15:49 - 000015560 _____ C:\Users\vitor_scpy35i\Downloads\caixas-gabinetes-desembargadores.xlsx
2022-05-03 08:04 - 2022-05-03 08:04 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-04-27 15:52 - 2022-04-27 15:52 - 000042822 _____ C:\Users\vitor_scpy35i\Downloads\Profile.pdf
2022-04-25 18:05 - 2022-04-25 18:05 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-25 18:05 - 2022-04-25 18:05 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-20 14:46 - 2022-04-20 14:46 - 004760811 _____ C:\Users\vitor_scpy35i\Downloads\528.528.ca4fe4a087c5-diploma_digital.xml
2022-04-20 14:45 - 2022-04-20 14:45 - 003107967 _____ C:\Users\vitor_scpy35i\Downloads\528.528.ca4fe4a087c5_RVDD.pdf
2022-04-18 18:19 - 2022-04-18 18:19 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-18 18:19 - 2022-04-18 18:19 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-18 18:16 - 2022-04-18 18:16 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-18 16:25 - 2022-04-18 16:25 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2022-04-18 14:52 - 2020-12-02 07:21 - 000195872 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2022-04-18 14:51 - 2020-12-02 07:21 - 000160544 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2022-04-18 14:51 - 2020-12-02 07:21 - 000130336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000347424 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000327968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000212768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000152864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000141088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000135456 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000132384 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000125728 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000123168 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2022-04-18 14:51 - 2020-12-02 07:20 - 000102688 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspihsw.sys
2022-04-18 14:50 - 2021-07-23 00:54 - 000023480 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\psinelam.sys
2022-04-18 14:50 - 2021-06-09 19:27 - 000171072 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2022-04-18 14:50 - 2021-05-25 00:01 - 000353376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2022-04-18 14:50 - 2020-12-27 07:35 - 000148768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2022-04-18 14:50 - 2020-12-02 07:21 - 000216864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2022-04-18 14:47 - 2022-04-18 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2022-04-14 15:06 - 2022-04-14 15:06 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-04-14 15:03 - 2022-04-14 15:03 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-03-31 13:01 - 2022-03-24 07:54 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys
2022-03-31 12:00 - 2022-05-12 10:34 - 000000000 ____D C:\Program Files\dotnet
2022-03-24 16:16 - 2022-03-24 16:16 - 005169491 _____ C:\Users\vitor_scpy35i\Downloads\Guia Monumento Estácio de Sá 2022.pdf
2022-03-24 16:16 - 2022-03-24 16:16 - 001574866 _____ C:\Users\vitor_scpy35i\Downloads\Dúvidas Frequentes 2022.pdf
2022-03-22 15:56 - 2022-03-22 15:56 - 000000000 ____D C:\Users\vitor_scpy35i\OneDrive\Documentos\Dell
2022-03-22 08:02 - 2022-03-22 08:02 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\Zoom
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2022-06-18 18:21 - 2020-09-15 19:33 - 000004196 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{DD5059BA-5E63-4571-856B-41664FB823A2}
2022-06-18 18:11 - 2017-07-27 17:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-06-18 18:10 - 2020-08-25 18:51 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Roaming\Spotify
2022-06-18 18:10 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-18 17:54 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-18 17:54 - 2017-10-14 18:15 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-18 17:50 - 2020-09-15 18:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-18 17:50 - 2019-09-03 15:37 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2022-06-17 16:39 - 2018-03-30 12:06 - 000000000 ___RD C:\Users\vitor_scpy35i\Google Drive
2022-06-17 16:38 - 2020-08-25 18:52 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\Spotify
2022-06-17 16:37 - 2017-10-14 20:54 - 000000000 ___RD C:\Users\vitor_scpy35i\OneDrive
2022-06-17 16:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-17 16:27 - 2017-10-14 20:45 - 000000000 __SHD C:\Users\vitor_scpy35i\IntelGraphicsProfiles
2022-06-17 16:22 - 2021-09-20 15:37 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-17 16:22 - 2020-09-15 19:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-17 16:22 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-06-17 16:20 - 2020-09-15 19:03 - 001743640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-17 16:20 - 2019-12-07 11:54 - 000754118 _____ C:\WINDOWS\system32\prfh0416.dat
2022-06-17 16:20 - 2019-12-07 11:54 - 000149216 _____ C:\WINDOWS\system32\prfc0416.dat
2022-06-17 16:20 - 2019-12-07 06:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-06-17 16:16 - 2020-12-11 18:43 - 000437584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-17 16:03 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-17 16:03 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-17 15:55 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-17 15:29 - 2020-09-15 18:52 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-17 15:09 - 2020-06-18 00:48 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-17 15:09 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-17 14:44 - 2020-09-15 19:33 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-17 14:44 - 2020-09-15 19:33 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-15 19:43 - 2017-10-15 17:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-15 19:38 - 2017-10-15 17:32 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-15 16:02 - 2018-09-30 13:14 - 000000000 ____D C:\Users\vitor_scpy35i\AppData\Local\D3DSCache
2022-06-13 16:00 - 2021-08-31 21:08 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-06-10 16:05 - 2019-09-22 12:16 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-06-10 15:52 - 2021-12-11 16:26 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1456881225-246396744-123056589-1004
2022-06-01 15:44 - 2018-06-21 19:54 - 000000000 ____D C:\ProgramData\Packages
2022-05-19 08:27 - 2020-03-28 09:53 - 000000000 ____D C:\Users\vitor_scpy35i\OneDrive\Documentos\Zoom
==================== Arquivos na raiz de alguns diretórios ========
2020-04-10 13:34 - 2020-04-10 13:34 - 000007666 _____ () C:\Users\vitor_scpy35i\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================