Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 05-07-2023
Executado por Rayan (administrador) em DESKTOP-QMHADIC (Hewlett-Packard HP ProBook 4530s) (06-07-2023 13:17:53)
Executando a partir de C:\Users\Ryan\Desktop\FRST64.exe
Perfis Carregados: Rayan
Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.3086 (X64) Idioma: Português (Brasil)
Navegador padrão: Opera
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ryan\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(explorer.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Banco Bradesco SA -> Banco Bradesco S.A.) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(services.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2>
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [GlobalProtect] => C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe [6064456 2018-06-08] (Palo Alto Networks -> Palo Alto Networks)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3421984 2020-12-07] (Valve -> Valve Corporation)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe [8076384 2023-06-14] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Spotify] => C:\Users\Ryan\AppData\Roaming\Spotify\Spotify.exe [25901288 2021-10-31] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Microsoft Edge Update] => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\MicrosoftEdgeUpdateCore.exe [263640 2023-06-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [ut] => C:\Users\Ryan\AppData\Roaming\utorrent\uTorrent.exe [2065928 2023-06-15] (Rainberry Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [MicrosoftEdgeAutoLaunch_A1884CE163E77702D1A38CD41B0BBD34] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
==================== Tarefas Agendadas (Whitelisted) =================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {08EA3F32-06E6-47B1-9BE4-51D29A3C10AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (Nenhum Arquivo)
Task: {0C0CF28F-1EFF-42D0-B86E-A42B4878ACC5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c5d76875-7467-4009-b38a-f81ffc669eb5" --version "6.13.10517" --silent
Task: {1470CDDD-1D66-47B2-8E6F-9E47F7BD2C8B} - System32\Tasks\CCleanerSkipUAC - Rayan => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {17EF9957-EDBF-4A68-802C-32EB8BE6A19D} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {23938F87-B8BF-4638-BE12-DEB38A7BA6DB} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {273A643F-E70E-4EC7-9DB3-FD1CB6AAF7F6} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files (x86)\iTop Screen Recorder\iScrInit.exe [952832 2021-07-16] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {28D1F88E-1C63-49C4-8C05-D120DC7EB11B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F04A8ED-3E6B-4417-A5EC-937AB07DC030} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-HFSL4.tmp\corefixer.exe /norerun (Nenhum Arquivo) <==== ATENÇÃO
Task: {495187EF-3EBE-408F-B5C9-C96AC614CD82} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files (x86)\iTop Screen Recorder\AutoUpdate.exe [2815488 2021-07-01] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {53956262-2AA2-46C3-995C-586582643ABD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5465E8A4-F79B-400E-AFDF-1A243F8A0DA7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {55F3BFE7-4C93-4987-95F9-95692FD290FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {6DD5C986-BB7B-470C-AD10-4BB4C7DE0009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7CB7E373-141E-4E80-B560-EDA05E2CF3FC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {84FFB943-317E-4471-B6DF-992FB6C9B3E8} - System32\Tasks\R@1n-KMS\Office16ProPlus => C:\Windows\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
Task: {85C9888C-34EE-48F8-B58F-EB9E6010143D} - System32\Tasks\Opera scheduled Autoupdate 1662508779 => C:\Users\Ryan\AppData\Local\Programs\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software)
Task: {8A2B3E88-86C7-4968-99F6-9A69FD984176} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [714568 2023-07-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {984F4BA1-8D80-413F-B01B-D7A603450B14} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3995016 2022-08-16] (Easeware Technology Limited -> Easeware)
Task: {99A69C17-77B2-43B1-931C-6F14C2368402} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Nenhum Arquivo)
Task: {A4E55F28-FD00-4D84-83C2-1003D3E1163B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A5D83AB6-5108-4BB6-925C-D9F40A226A47} - System32\Tasks\iTop Screen Recorder SkipUAC (Rayan) => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {A7A9BF3F-D216-434D-B024-FC53BB6E9B52} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001UA => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {AABAEF7F-E893-4BF8-AE34-7FBF9DEBD976} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m (Nenhum Arquivo)
Task: {AB77BBB9-27CA-4696-9CE0-86F088F75D87} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {B27EA1DB-21B2-4562-9EA8-C83DD138B12E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308576 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
Task: {BDA5AE72-F422-485F-89F9-7507C8FF27AE} - System32\Tasks\R@1n-KMS\Windows64Professional => C:\Windows\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {C4E29930-3A3A-40F6-AF82-482B3D7DE1D0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Nenhum Arquivo)
Task: {C6DA3E11-720B-4A24-B580-241C45821C4C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [670536 2023-07-05] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C72DF2FC-42DC-4BEA-BBA2-F5657BE5D54E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFB8739A-219B-411A-894F-F4C5D178947D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {D4AF90DB-E93E-42E8-A904-889F94F7B2EB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r (Nenhum Arquivo)
Task: {E0BAC2F2-32C5-44A1-9687-41BC6FCAC523} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E275BEF3-D92F-4C35-8120-483B63FC3241} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (Nenhum Arquivo)
Task: {E28F510F-7456-4A04-B129-21A25197D009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6256156-9B77-48DB-9B7B-30BF70A9CA44} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001Core => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {EAB04FD6-1D67-4C08-8C2D-68D9B49EA838} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1013A20-F755-4E0A-A818-1112D78B2AB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {FA8282C6-B9D6-42DE-8848-78AD5CFB4831} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Nenhum Arquivo)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{029a535e-69d2-45d0-8eaf-dc8dcb2ddb15}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{14a8caea-a005-4100-b28c-20623d280765}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{e1c73067-c15f-4b2f-b8c0-ef48c576261d}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e1c73067-c15f-4b2f-b8c0-ef48c576261d}: [DhcpNameServer] 192.168.100.1
Edge:
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-06]
Edge Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-06-16]
Edge Extension: (Edge relevant text changes) - C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge HKU\S-1-5-21-3099771516-75551853-2221469084-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx
FireFox:
========
FF DefaultProfile: 3zwvqqwi.default
FF ProfilePath: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\3zwvqqwi.default [2023-07-06]
FF Homepage: Mozilla\Firefox\Profiles\3zwvqqwi.default -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF NewTab: Mozilla\Firefox\Profiles\3zwvqqwi.default -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF SearchPlugin: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\3zwvqqwi.default\searchplugins\bing-lavasoft-ff59.xml [2020-09-04]
FF ProfilePath: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release [2023-07-06]
FF NewTab: Mozilla\Firefox\Profiles\nfm54phi.default-release -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF Notifications: Mozilla\Firefox\Profiles\nfm54phi.default-release -> hxxps://www.tiktok.com
FF Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release\Extensions\{7be2ba16-0f1e-4d93-9ebc-5164397477a9}.xpi [2021-11-04]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-05]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-06-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2023-07-06]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default [2023-07-06]
CHR Notifications: Default -> hxxps://br.pinterest.com; hxxps://carrinho.casasbahia.com.br; hxxps://cursos.anbima.com.br; hxxps://meet.google.com; hxxps://meuspedidos.casasbahia.com.br; hxxps://piercinghumanizadometodoaryann.club.hotmart.com; hxxps://pt.aliexpress.com; hxxps://push.getbeamer.com; hxxps://teams.microsoft.com; hxxps://web.telegram.org; hxxps://www.band.uol.com.br; hxxps://www.dentalcremer.com.br; hxxps://www.efacil.com.br; hxxps://www.facebook.com; hxxps://www.gympass.com; hxxps://www.hurb.com; hxxps://www.netflix.com; hxxps://www.reclameaqui.com.br; hxxps://www.youtube.com
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-06-17]
CHR Extension: (Video Downloader for Vimeo) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgmcdpfpkoildicgacgldinemhgmcbgp [2022-06-16]
CHR Extension: (DanfeOnline - Gerador de DANFE,DACTE e CC-E) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbkeidknbomdipncehmlhppailiggmab [2022-12-30]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2022-07-23]
CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-03]
CHR Extension: (Reclame AQUI) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhamhppabjaafimidmelnmpfangjdnhj [2023-07-05]
CHR Extension: (Gerar DANFe/DACTe) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnalonmlenogoaknbeikifdbaokkhmjj [2021-10-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-06]
CHR Extension: (Excel Online) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2020-07-05]
CHR Extension: (Video DownloadHelper) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-11-19]
CHR Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2022-10-25]
CHR Extension: (YouTube NonStop) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2021-10-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Page Monitor) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogeebjpdeabhncjpfhgdibjajcajepgg [2021-03-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-06]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-06-04]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-06-04]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-14]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4 [2023-07-06]
CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-14]
CHR Extension: (Documentos Google off-line) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-14]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-05-18]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-05-18]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-01-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-01-12]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-03]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-01-12]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-27]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8 [2023-07-06]
CHR Extension: (Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-01]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-07-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-05]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-12]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\System Profile [2023-07-06]
CHR HKU\S-1-5-21-3099771516-75551853-2221469084-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.25.0.8302\BVDChromeExt.crx [2022-10-21]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Profile: C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable [2023-07-06]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-13]
OPR Extension: (Opera Wallet) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-09-06]
OPR Extension: (Opera AI Prompts) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-06-09]
OPR Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2022-10-25]
OPR Extension: (YouTube NonStop) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2022-10-02]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2023-06-26]
StartMenuInternet: (HKU\S-1-5-21-3099771516-75551853-2221469084-1001) OperaStable - "C:\Users\Ryan\AppData\Local\Programs\Opera\Launcher.exe"
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [756216 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [753184 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 PanGPS; C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe [3590472 2018-06-08] (Palo Alto Networks -> Palo Alto Networks)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2284400 2022-09-26] (Banco Bradesco SA -> Banco Bradesco S.A.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [1012024 2023-01-13] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-02-21] (LAVASOFT SOFTWARE CANADA INC -> ) <==== ATENÇÃO
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
R3 HPMoA407; C:\Windows\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\Windows\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
S3 MpKslc26557df; C:\Windows\system32\MpEngineStore\MpKslDrv.sys [211208 2023-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 PanGpd; C:\Windows\system32\DRIVERS\pangpd.sys [36352 2018-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Palo Alto Networks)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174536 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [47800 2023-07-06] (Gas Informatica Ltda -> GAS Tecnologia)
R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [38816 2023-02-27] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-07-06 13:17 - 2023-07-06 13:19 - 000035809 _____ C:\Users\Ryan\Desktop\FRST.txt
2023-07-06 13:17 - 2023-07-06 13:16 - 002383360 _____ (Farbar) C:\Users\Ryan\Desktop\FRST64.exe
2023-07-06 13:16 - 2023-07-06 13:16 - 002383360 _____ (Farbar) C:\Users\Ryan\Downloads\FRST64.exe
2023-07-06 08:20 - 2023-07-06 08:20 - 000166391 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-07-06 at 08.18.56.jpeg
2023-07-06 08:20 - 2023-07-06 08:20 - 000131034 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-07-06 at 08.18.55.jpeg
2023-07-05 14:46 - 2023-07-05 14:46 - 000012345 _____ C:\Users\Ryan\Downloads\ventilador.pdf
2023-07-01 16:43 - 2023-07-01 16:44 - 000148386 _____ C:\Users\Ryan\Downloads\SonoClin.pdf
2023-06-30 10:27 - 2023-06-30 10:27 - 006059301 _____ C:\Users\Ryan\Downloads\BB0122_TAC_13062023_AGENTE_COMERCIAL.pdf
2023-06-29 19:10 - 2023-06-29 19:10 - 001380054 _____ C:\Users\Ryan\Downloads\NO GOD, PLEASE NO!.mp4
2023-06-29 18:56 - 2023-06-29 18:56 - 000162495 _____ C:\Users\Ryan\Downloads\2023-06-29_185505.pdf
2023-06-29 06:52 - 2023-06-29 06:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-06-28 16:10 - 2023-06-28 16:10 - 000288634 _____ C:\Users\Ryan\Downloads\patosdeminas.mg.gov.br-edital-06-23.pdf
2023-06-27 10:25 - 2023-06-27 10:25 - 000001195 _____ C:\Users\Ryan\Desktop\EVEREST Ultimate Edition.lnk
2023-06-27 10:25 - 2023-06-27 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2023-06-27 10:25 - 2023-06-27 10:25 - 000000000 ____D C:\Program Files (x86)\Lavalys
2023-06-27 10:24 - 2023-06-27 10:24 - 008461992 _____ (Lavalys, Inc. ) C:\Users\Ryan\Downloads\everest-ultimate-edition-4.60.exe
2023-06-24 16:54 - 2023-06-24 16:54 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2023-06-24 09:29 - 2023-06-24 09:29 - 000012484 _____ C:\Users\Ryan\Downloads\42220708584116000984550080005277901243144232.pdf
2023-06-23 18:44 - 2023-06-23 18:44 - 000027751 _____ C:\Users\Ryan\Downloads\segundaViaBoletoRedirecionar.pdf
2023-06-23 11:52 - 2023-06-23 11:52 - 000040764 _____ C:\Users\Ryan\Downloads\servicosDetran (1).pdf
2023-06-23 08:58 - 2023-06-23 08:58 - 001383989 _____ C:\Users\Ryan\Downloads\DOCUMENTOS_ASSINADOS.zip
2023-06-22 18:12 - 2023-06-22 18:12 - 009075969 _____ C:\Users\Ryan\Downloads\videoplayback (1).mp4
2023-06-21 17:01 - 2023-06-21 17:01 - 000056068 _____ C:\Users\Ryan\Downloads\comprovante.rar
2023-06-21 17:00 - 2023-06-21 17:00 - 000071616 _____ C:\Users\Ryan\Downloads\comprovante.jpeg
2023-06-21 13:20 - 2023-06-21 13:20 - 000203480 _____ C:\Users\Ryan\Downloads\2VIA3.pdf
2023-06-21 13:19 - 2023-06-21 13:19 - 000234609 _____ C:\Users\Ryan\Downloads\2VIA.pdf
2023-06-21 10:02 - 2023-06-21 10:02 - 000149333 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-06-20 at 12.40.01.jpeg
2023-06-20 16:57 - 2023-06-20 16:57 - 000133435 _____ C:\Users\Ryan\Downloads\questionario.do.sono.pdf
2023-06-20 16:57 - 2023-06-20 16:57 - 000061946 _____ C:\Users\Ryan\Downloads\DOC-20230320-WA0019..pdf
2023-06-15 11:00 - 2023-06-15 11:00 - 001297422 _____ C:\Users\Ryan\Downloads\bb0122_edital (1).pdf
2023-06-14 21:51 - 2023-06-14 21:51 - 000000000 ___HD C:\$WinREAgent
2023-06-14 18:36 - 2023-06-14 18:36 - 000000000 ____D C:\Users\Ryan\AppData\Local\DropboxUpdate
2023-06-05 17:56 - 2023-06-05 17:56 - 000017262 _____ C:\Users\Ryan\Downloads\Fabrícia Maria Caixeta .xlsx
2023-06-01 18:53 - 2023-06-01 18:53 - 000150625 _____ C:\Users\Ryan\Downloads\CTPSDigital_11541421671_01-06-2023.pdf
2023-05-30 20:09 - 2023-05-30 20:09 - 000027882 _____ C:\Users\Ryan\Downloads\MyPDF (1).PDF
2023-05-30 17:15 - 2023-05-30 17:15 - 000099790 _____ C:\Users\Ryan\Downloads\fatura-de-maio.pdf
2023-05-30 17:02 - 2023-05-30 17:02 - 000202681 _____ C:\Users\Ryan\Downloads\5341d6e89562a79fb5dcdc59e814407c_2VIA.pdf
2023-05-23 19:38 - 2023-05-23 19:38 - 000000000 ____D C:\ProgramData\PLUG
2023-05-20 17:48 - 2023-05-20 17:48 - 043147605 _____ C:\Users\Ryan\Downloads\X2Download.app-Clássico dos Anos 70_ Soul Train - USA - 1973-(480p) (online-video-cutter.com).mp4
2023-05-20 17:42 - 2023-05-20 17:43 - 039706078 _____ C:\Users\Ryan\Downloads\X2Download.app-Clássico dos Anos 70_ Soul Train - USA - 1973-(480p).mp4
2023-05-18 19:08 - 2023-05-18 19:08 - 000004406 _____ C:\Users\Ryan\Downloads\Certificado -Fabricia.pfx
2023-05-18 19:05 - 2023-05-18 19:05 - 001494503 _____ C:\Users\Ryan\Downloads\Manual Certificado Digital.pdf
2023-05-18 19:02 - 2023-05-18 19:02 - 000001649 _____ C:\Windows\system32\asssinatura.cer
2023-05-18 19:00 - 2023-05-18 19:00 - 000288101 _____ C:\Users\Ryan\Desktop\fffffff.pdf
2023-05-18 17:00 - 2023-05-18 17:00 - 000253452 _____ C:\Users\Ryan\Desktop\ABRIL MAIO FABRICIA MARIA.pdf
2023-05-16 20:59 - 2023-05-16 20:59 - 000000000 ____D C:\Users\Ryan\Downloads\Ant-Man.And_.The_.Wasp_.Quantumania.2023.WEBRip.WEB-DL_UP2
2023-05-16 20:43 - 2023-05-16 20:59 - 000000000 ____D C:\Users\Ryan\Downloads\Ant-Man.and.the.Wasp.Quantumania.2023.1080p.WEBRip.x264-RARBG
2023-05-09 20:06 - 2023-05-09 20:06 - 000053984 _____ C:\Users\Ryan\Downloads\MyPDF.PDF
2023-05-09 19:57 - 2023-05-09 19:57 - 000201748 _____ C:\Users\Ryan\Downloads\83d2f263c5aa92af6fd24899ff215760_2VIA.pdf
2023-04-25 21:08 - 2023-04-25 21:08 - 000875105 _____ C:\Users\Ryan\Downloads\edital_fhemig2023.pdf
2023-04-24 20:48 - 2023-04-24 20:48 - 001297422 _____ C:\Users\Ryan\Downloads\bb0122_edital.pdf
2023-04-24 18:45 - 2023-04-24 18:45 - 000206478 _____ C:\Users\Ryan\Downloads\eed0f611c8803e75caff8d062c64dba9_2VIA.pdf
2023-04-19 19:57 - 2023-04-19 19:57 - 000132715 _____ C:\Users\Ryan\Desktop\Fundação Cesgranrio.pdf
2023-04-14 17:29 - 2023-04-14 17:29 - 000000000 ____D C:\Users\Ryan\Desktop\Nova pasta
2023-04-13 19:49 - 2023-04-13 19:49 - 006226739 _____ C:\Users\Ryan\Downloads\gggggg.mp4
2023-04-12 20:50 - 2023-04-12 20:50 - 000000000 ____D C:\Windows\system32\Drivers\mde
2023-04-12 17:47 - 2023-04-12 17:47 - 000214450 _____ C:\Users\Ryan\Desktop\RG.pdf
2023-04-12 17:36 - 2023-04-12 17:36 - 000186902 _____ C:\Users\Ryan\Desktop\Compr End Rayan.pdf
2023-04-12 17:26 - 2023-04-12 17:26 - 000206478 _____ C:\Users\Ryan\Desktop\da0a274e1b71771921b9f9c4431781b8_2VIA.pdf
2023-04-07 08:55 - 2023-04-07 08:55 - 000000000 ____D C:\Users\Ryan\Downloads\[ACESSE COMANDOTORRENTS.COM] John Wick 3 - Parabellum 2019 [1080p] [BluRay] [DUAL]
2023-04-07 08:46 - 2023-04-07 08:47 - 000000000 ____D C:\Users\Ryan\Downloads\Informe Rendimentos 2022
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-07-06 13:18 - 2022-05-13 19:58 - 000000000 ____D C:\FRST
2023-07-06 12:38 - 2020-07-04 15:02 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-06 12:25 - 2021-12-19 00:15 - 000000000 ____D C:\Windows\SystemTemp
2023-07-06 12:25 - 2020-07-04 15:16 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-06 10:44 - 2020-07-04 15:11 - 001651882 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-06 10:44 - 2019-12-07 11:53 - 000715722 _____ C:\Windows\system32\prfh0416.dat
2023-07-06 10:44 - 2019-12-07 11:53 - 000140878 _____ C:\Windows\system32\prfc0416.dat
2023-07-06 10:44 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF
2023-07-06 10:42 - 2023-02-25 21:27 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\utorrent
2023-07-06 10:42 - 2021-08-12 13:49 - 000000000 ____D C:\Program Files (x86)\iTop Screen Recorder
2023-07-06 10:38 - 2020-07-18 12:39 - 000000000 ____D C:\Users\Ryan\AppData\Local\BitTorrentHelper
2023-07-06 10:37 - 2021-10-31 18:30 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Spotify
2023-07-06 10:37 - 2021-06-04 16:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-07-06 10:37 - 2021-03-01 10:30 - 000047800 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2023-07-06 10:37 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-06 10:36 - 2020-07-04 15:02 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-06 10:36 - 2020-07-04 15:02 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-06 10:04 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-07-06 10:02 - 2020-07-07 16:17 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\MPC-HC
2023-07-06 10:02 - 2020-07-04 15:27 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\TeamViewer
2023-07-06 10:02 - 2020-07-04 15:27 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-07-06 10:00 - 2022-04-22 18:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-06 10:00 - 2020-07-05 04:33 - 000000000 ____D C:\Program Files\CCleaner
2023-07-06 08:35 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-06 08:29 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-06 08:04 - 2020-07-04 15:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-06 08:04 - 2020-07-04 15:09 - 000000000 ____D C:\Users\Ryan
2023-07-06 07:29 - 2020-07-05 14:25 - 000000000 ____D C:\Users\Ryan\AppData\LocalLow\Mozilla
2023-07-06 07:26 - 2021-09-21 14:37 - 000000000 ____D C:\Users\Ryan\AppData\Local\WebEx
2023-07-05 11:37 - 2022-02-07 21:04 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2023-07-05 11:37 - 2020-07-04 15:16 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-07-04 13:10 - 2020-07-30 09:47 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Microsoft\Word
2023-07-04 09:39 - 2020-08-11 15:57 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\vlc
2023-07-01 16:57 - 2020-11-07 11:36 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-01 16:57 - 2020-11-07 11:36 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-01 16:30 - 2020-07-04 15:11 - 000000000 ____D C:\Users\Ryan\AppData\Local\Packages
2023-07-01 16:13 - 2020-07-04 15:35 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-06-30 14:57 - 2021-12-12 20:04 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3099771516-75551853-2221469084-1001
2023-06-30 14:57 - 2020-07-04 15:13 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3099771516-75551853-2221469084-1001
2023-06-30 14:57 - 2020-07-04 15:09 - 000002382 _____ C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-29 16:12 - 2022-09-06 20:59 - 000004210 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1662508779
2023-06-29 16:12 - 2022-09-06 20:59 - 000001402 _____ C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2023-06-29 06:53 - 2020-07-05 10:03 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Dropbox
2023-06-29 06:53 - 2020-07-05 10:02 - 000000000 ____D C:\Users\Ryan\AppData\Local\Dropbox
2023-06-29 06:53 - 2020-07-05 10:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-06-29 06:49 - 2020-07-04 15:17 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-29 06:49 - 2020-07-04 15:17 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 09:23 - 2020-07-05 04:36 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-06-24 09:22 - 2023-03-23 12:06 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-06-24 09:22 - 2022-10-11 13:10 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-06-23 18:39 - 2022-10-13 13:11 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-06-22 11:02 - 2022-10-13 13:11 - 000003472 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-06-22 11:02 - 2020-07-05 04:33 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-06-16 08:20 - 2020-07-04 15:17 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-16 08:20 - 2020-07-04 15:17 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-06-15 08:30 - 2020-07-04 15:02 - 000443024 _____ C:\Windows\system32\FNTCACHE.DAT
2023-06-15 08:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr
2023-06-14 22:17 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp
2023-06-14 22:11 - 2020-07-04 15:04 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-06-14 18:40 - 2020-07-04 17:53 - 000000000 ____D C:\Windows\system32\MRT
2023-06-14 18:32 - 2020-07-04 17:53 - 170078616 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-06-14 16:37 - 2020-07-04 15:02 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-06-13 21:13 - 2022-07-02 17:36 - 000003928 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001UA
2023-06-13 21:13 - 2022-07-02 17:36 - 000003864 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001Core
2023-06-09 19:24 - 2020-11-03 17:20 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Allavsoft
2023-06-09 15:50 - 2020-11-07 11:36 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-09 15:50 - 2020-11-07 11:36 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Executado por Rayan (administrador) em DESKTOP-QMHADIC (Hewlett-Packard HP ProBook 4530s) (06-07-2023 13:17:53)
Executando a partir de C:\Users\Ryan\Desktop\FRST64.exe
Perfis Carregados: Rayan
Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.3086 (X64) Idioma: Português (Brasil)
Navegador padrão: Opera
Modo da Inicialização: Normal
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ryan\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(explorer.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Banco Bradesco SA -> Banco Bradesco S.A.) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(services.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2>
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [GlobalProtect] => C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe [6064456 2018-06-08] (Palo Alto Networks -> Palo Alto Networks)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3421984 2020-12-07] (Valve -> Valve Corporation)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Ryan\AppData\Local\WebEx\WebexHost.exe [8076384 2023-06-14] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Spotify] => C:\Users\Ryan\AppData\Roaming\Spotify\Spotify.exe [25901288 2021-10-31] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [Microsoft Edge Update] => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\MicrosoftEdgeUpdateCore.exe [263640 2023-06-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [ut] => C:\Users\Ryan\AppData\Roaming\utorrent\uTorrent.exe [2065928 2023-06-15] (Rainberry Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3099771516-75551853-2221469084-1001\...\Run: [MicrosoftEdgeAutoLaunch_A1884CE163E77702D1A38CD41B0BBD34] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
==================== Tarefas Agendadas (Whitelisted) =================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {08EA3F32-06E6-47B1-9BE4-51D29A3C10AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (Nenhum Arquivo)
Task: {0C0CF28F-1EFF-42D0-B86E-A42B4878ACC5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c5d76875-7467-4009-b38a-f81ffc669eb5" --version "6.13.10517" --silent
Task: {1470CDDD-1D66-47B2-8E6F-9E47F7BD2C8B} - System32\Tasks\CCleanerSkipUAC - Rayan => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {17EF9957-EDBF-4A68-802C-32EB8BE6A19D} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {23938F87-B8BF-4638-BE12-DEB38A7BA6DB} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {273A643F-E70E-4EC7-9DB3-FD1CB6AAF7F6} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files (x86)\iTop Screen Recorder\iScrInit.exe [952832 2021-07-16] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {28D1F88E-1C63-49C4-8C05-D120DC7EB11B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F04A8ED-3E6B-4417-A5EC-937AB07DC030} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-HFSL4.tmp\corefixer.exe /norerun (Nenhum Arquivo) <==== ATENÇÃO
Task: {495187EF-3EBE-408F-B5C9-C96AC614CD82} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files (x86)\iTop Screen Recorder\AutoUpdate.exe [2815488 2021-07-01] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {53956262-2AA2-46C3-995C-586582643ABD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5465E8A4-F79B-400E-AFDF-1A243F8A0DA7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {55F3BFE7-4C93-4987-95F9-95692FD290FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {6DD5C986-BB7B-470C-AD10-4BB4C7DE0009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7CB7E373-141E-4E80-B560-EDA05E2CF3FC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {84FFB943-317E-4471-B6DF-992FB6C9B3E8} - System32\Tasks\R@1n-KMS\Office16ProPlus => C:\Windows\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
Task: {85C9888C-34EE-48F8-B58F-EB9E6010143D} - System32\Tasks\Opera scheduled Autoupdate 1662508779 => C:\Users\Ryan\AppData\Local\Programs\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software)
Task: {8A2B3E88-86C7-4968-99F6-9A69FD984176} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [714568 2023-07-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {984F4BA1-8D80-413F-B01B-D7A603450B14} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3995016 2022-08-16] (Easeware Technology Limited -> Easeware)
Task: {99A69C17-77B2-43B1-931C-6F14C2368402} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Nenhum Arquivo)
Task: {A4E55F28-FD00-4D84-83C2-1003D3E1163B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A5D83AB6-5108-4BB6-925C-D9F40A226A47} - System32\Tasks\iTop Screen Recorder SkipUAC (Rayan) => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {A7A9BF3F-D216-434D-B024-FC53BB6E9B52} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001UA => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {AABAEF7F-E893-4BF8-AE34-7FBF9DEBD976} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m (Nenhum Arquivo)
Task: {AB77BBB9-27CA-4696-9CE0-86F088F75D87} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {B27EA1DB-21B2-4562-9EA8-C83DD138B12E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308576 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
Task: {BDA5AE72-F422-485F-89F9-7507C8FF27AE} - System32\Tasks\R@1n-KMS\Windows64Professional => C:\Windows\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {C4E29930-3A3A-40F6-AF82-482B3D7DE1D0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Nenhum Arquivo)
Task: {C6DA3E11-720B-4A24-B580-241C45821C4C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [670536 2023-07-05] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C72DF2FC-42DC-4BEA-BBA2-F5657BE5D54E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFB8739A-219B-411A-894F-F4C5D178947D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {D4AF90DB-E93E-42E8-A904-889F94F7B2EB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r (Nenhum Arquivo)
Task: {E0BAC2F2-32C5-44A1-9687-41BC6FCAC523} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E275BEF3-D92F-4C35-8120-483B63FC3241} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (Nenhum Arquivo)
Task: {E28F510F-7456-4A04-B129-21A25197D009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6256156-9B77-48DB-9B7B-30BF70A9CA44} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001Core => C:\Users\Ryan\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {EAB04FD6-1D67-4C08-8C2D-68D9B49EA838} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1013A20-F755-4E0A-A818-1112D78B2AB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {FA8282C6-B9D6-42DE-8848-78AD5CFB4831} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Nenhum Arquivo)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\..\Interfaces\{029a535e-69d2-45d0-8eaf-dc8dcb2ddb15}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{14a8caea-a005-4100-b28c-20623d280765}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{e1c73067-c15f-4b2f-b8c0-ef48c576261d}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e1c73067-c15f-4b2f-b8c0-ef48c576261d}: [DhcpNameServer] 192.168.100.1
Edge:
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-06]
Edge Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-06-16]
Edge Extension: (Edge relevant text changes) - C:\Users\Ryan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge HKU\S-1-5-21-3099771516-75551853-2221469084-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx
FireFox:
========
FF DefaultProfile: 3zwvqqwi.default
FF ProfilePath: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\3zwvqqwi.default [2023-07-06]
FF Homepage: Mozilla\Firefox\Profiles\3zwvqqwi.default -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF NewTab: Mozilla\Firefox\Profiles\3zwvqqwi.default -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF SearchPlugin: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\3zwvqqwi.default\searchplugins\bing-lavasoft-ff59.xml [2020-09-04]
FF ProfilePath: C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release [2023-07-06]
FF NewTab: Mozilla\Firefox\Profiles\nfm54phi.default-release -> hxxps://defaultsearch.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-07-05 05:35:30&bName=
FF Notifications: Mozilla\Firefox\Profiles\nfm54phi.default-release -> hxxps://www.tiktok.com
FF Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release\Extensions\{7be2ba16-0f1e-4d93-9ebc-5164397477a9}.xpi [2021-11-04]
FF Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\nfm54phi.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-05]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-06-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2023-07-06]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default [2023-07-06]
CHR Notifications: Default -> hxxps://br.pinterest.com; hxxps://carrinho.casasbahia.com.br; hxxps://cursos.anbima.com.br; hxxps://meet.google.com; hxxps://meuspedidos.casasbahia.com.br; hxxps://piercinghumanizadometodoaryann.club.hotmart.com; hxxps://pt.aliexpress.com; hxxps://push.getbeamer.com; hxxps://teams.microsoft.com; hxxps://web.telegram.org; hxxps://www.band.uol.com.br; hxxps://www.dentalcremer.com.br; hxxps://www.efacil.com.br; hxxps://www.facebook.com; hxxps://www.gympass.com; hxxps://www.hurb.com; hxxps://www.netflix.com; hxxps://www.reclameaqui.com.br; hxxps://www.youtube.com
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-06-17]
CHR Extension: (Video Downloader for Vimeo) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgmcdpfpkoildicgacgldinemhgmcbgp [2022-06-16]
CHR Extension: (DanfeOnline - Gerador de DANFE,DACTE e CC-E) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbkeidknbomdipncehmlhppailiggmab [2022-12-30]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2022-07-23]
CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-03]
CHR Extension: (Reclame AQUI) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhamhppabjaafimidmelnmpfangjdnhj [2023-07-05]
CHR Extension: (Gerar DANFe/DACTe) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnalonmlenogoaknbeikifdbaokkhmjj [2021-10-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-06]
CHR Extension: (Excel Online) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2020-07-05]
CHR Extension: (Video DownloadHelper) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-11-19]
CHR Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2022-10-25]
CHR Extension: (YouTube NonStop) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2021-10-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Page Monitor) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogeebjpdeabhncjpfhgdibjajcajepgg [2021-03-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-06]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-06-04]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-06-04]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-14]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4 [2023-07-06]
CHR Extension: (Adobe Acrobat: ferramentas de edição, conversão e assinatura de PDFs) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-14]
CHR Extension: (Documentos Google off-line) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-14]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-05-18]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-05-18]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-01-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-01-12]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7 [2023-07-06]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-03]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-01-12]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-27]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8 [2023-07-06]
CHR Extension: (Torrent Scanner) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-01]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-07-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-05]
CHR Extension: (Google Docs Offline) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-12]
CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\System Profile [2023-07-06]
CHR HKU\S-1-5-21-3099771516-75551853-2221469084-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.25.0.8302\BVDChromeExt.crx [2022-10-21]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Profile: C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable [2023-07-06]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-13]
OPR Extension: (Opera Wallet) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-09-06]
OPR Extension: (Opera AI Prompts) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-06-09]
OPR Extension: (Video Speed Controller) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2022-10-25]
OPR Extension: (YouTube NonStop) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2022-10-02]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Ryan\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2023-06-26]
StartMenuInternet: (HKU\S-1-5-21-3099771516-75551853-2221469084-1001) OperaStable - "C:\Users\Ryan\AppData\Local\Programs\Opera\Launcher.exe"
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [756216 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [753184 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 PanGPS; C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe [3590472 2018-06-08] (Palo Alto Networks -> Palo Alto Networks)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2284400 2022-09-26] (Banco Bradesco SA -> Banco Bradesco S.A.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [1012024 2023-01-13] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-02-21] (LAVASOFT SOFTWARE CANADA INC -> ) <==== ATENÇÃO
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
R3 HPMoA407; C:\Windows\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\Windows\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
S3 MpKslc26557df; C:\Windows\system32\MpEngineStore\MpKslDrv.sys [211208 2023-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 PanGpd; C:\Windows\system32\DRIVERS\pangpd.sys [36352 2018-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Palo Alto Networks)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174536 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [47800 2023-07-06] (Gas Informatica Ltda -> GAS Tecnologia)
R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [38816 2023-02-27] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três meses (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-07-06 13:17 - 2023-07-06 13:19 - 000035809 _____ C:\Users\Ryan\Desktop\FRST.txt
2023-07-06 13:17 - 2023-07-06 13:16 - 002383360 _____ (Farbar) C:\Users\Ryan\Desktop\FRST64.exe
2023-07-06 13:16 - 2023-07-06 13:16 - 002383360 _____ (Farbar) C:\Users\Ryan\Downloads\FRST64.exe
2023-07-06 08:20 - 2023-07-06 08:20 - 000166391 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-07-06 at 08.18.56.jpeg
2023-07-06 08:20 - 2023-07-06 08:20 - 000131034 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-07-06 at 08.18.55.jpeg
2023-07-05 14:46 - 2023-07-05 14:46 - 000012345 _____ C:\Users\Ryan\Downloads\ventilador.pdf
2023-07-01 16:43 - 2023-07-01 16:44 - 000148386 _____ C:\Users\Ryan\Downloads\SonoClin.pdf
2023-06-30 10:27 - 2023-06-30 10:27 - 006059301 _____ C:\Users\Ryan\Downloads\BB0122_TAC_13062023_AGENTE_COMERCIAL.pdf
2023-06-29 19:10 - 2023-06-29 19:10 - 001380054 _____ C:\Users\Ryan\Downloads\NO GOD, PLEASE NO!.mp4
2023-06-29 18:56 - 2023-06-29 18:56 - 000162495 _____ C:\Users\Ryan\Downloads\2023-06-29_185505.pdf
2023-06-29 06:52 - 2023-06-29 06:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-06-28 16:10 - 2023-06-28 16:10 - 000288634 _____ C:\Users\Ryan\Downloads\patosdeminas.mg.gov.br-edital-06-23.pdf
2023-06-27 10:25 - 2023-06-27 10:25 - 000001195 _____ C:\Users\Ryan\Desktop\EVEREST Ultimate Edition.lnk
2023-06-27 10:25 - 2023-06-27 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2023-06-27 10:25 - 2023-06-27 10:25 - 000000000 ____D C:\Program Files (x86)\Lavalys
2023-06-27 10:24 - 2023-06-27 10:24 - 008461992 _____ (Lavalys, Inc. ) C:\Users\Ryan\Downloads\everest-ultimate-edition-4.60.exe
2023-06-24 16:54 - 2023-06-24 16:54 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2023-06-24 09:29 - 2023-06-24 09:29 - 000012484 _____ C:\Users\Ryan\Downloads\42220708584116000984550080005277901243144232.pdf
2023-06-23 18:44 - 2023-06-23 18:44 - 000027751 _____ C:\Users\Ryan\Downloads\segundaViaBoletoRedirecionar.pdf
2023-06-23 11:52 - 2023-06-23 11:52 - 000040764 _____ C:\Users\Ryan\Downloads\servicosDetran (1).pdf
2023-06-23 08:58 - 2023-06-23 08:58 - 001383989 _____ C:\Users\Ryan\Downloads\DOCUMENTOS_ASSINADOS.zip
2023-06-22 18:12 - 2023-06-22 18:12 - 009075969 _____ C:\Users\Ryan\Downloads\videoplayback (1).mp4
2023-06-21 17:01 - 2023-06-21 17:01 - 000056068 _____ C:\Users\Ryan\Downloads\comprovante.rar
2023-06-21 17:00 - 2023-06-21 17:00 - 000071616 _____ C:\Users\Ryan\Downloads\comprovante.jpeg
2023-06-21 13:20 - 2023-06-21 13:20 - 000203480 _____ C:\Users\Ryan\Downloads\2VIA3.pdf
2023-06-21 13:19 - 2023-06-21 13:19 - 000234609 _____ C:\Users\Ryan\Downloads\2VIA.pdf
2023-06-21 10:02 - 2023-06-21 10:02 - 000149333 _____ C:\Users\Ryan\Downloads\WhatsApp Image 2023-06-20 at 12.40.01.jpeg
2023-06-20 16:57 - 2023-06-20 16:57 - 000133435 _____ C:\Users\Ryan\Downloads\questionario.do.sono.pdf
2023-06-20 16:57 - 2023-06-20 16:57 - 000061946 _____ C:\Users\Ryan\Downloads\DOC-20230320-WA0019..pdf
2023-06-15 11:00 - 2023-06-15 11:00 - 001297422 _____ C:\Users\Ryan\Downloads\bb0122_edital (1).pdf
2023-06-14 21:51 - 2023-06-14 21:51 - 000000000 ___HD C:\$WinREAgent
2023-06-14 18:36 - 2023-06-14 18:36 - 000000000 ____D C:\Users\Ryan\AppData\Local\DropboxUpdate
2023-06-05 17:56 - 2023-06-05 17:56 - 000017262 _____ C:\Users\Ryan\Downloads\Fabrícia Maria Caixeta .xlsx
2023-06-01 18:53 - 2023-06-01 18:53 - 000150625 _____ C:\Users\Ryan\Downloads\CTPSDigital_11541421671_01-06-2023.pdf
2023-05-30 20:09 - 2023-05-30 20:09 - 000027882 _____ C:\Users\Ryan\Downloads\MyPDF (1).PDF
2023-05-30 17:15 - 2023-05-30 17:15 - 000099790 _____ C:\Users\Ryan\Downloads\fatura-de-maio.pdf
2023-05-30 17:02 - 2023-05-30 17:02 - 000202681 _____ C:\Users\Ryan\Downloads\5341d6e89562a79fb5dcdc59e814407c_2VIA.pdf
2023-05-23 19:38 - 2023-05-23 19:38 - 000000000 ____D C:\ProgramData\PLUG
2023-05-20 17:48 - 2023-05-20 17:48 - 043147605 _____ C:\Users\Ryan\Downloads\X2Download.app-Clássico dos Anos 70_ Soul Train - USA - 1973-(480p) (online-video-cutter.com).mp4
2023-05-20 17:42 - 2023-05-20 17:43 - 039706078 _____ C:\Users\Ryan\Downloads\X2Download.app-Clássico dos Anos 70_ Soul Train - USA - 1973-(480p).mp4
2023-05-18 19:08 - 2023-05-18 19:08 - 000004406 _____ C:\Users\Ryan\Downloads\Certificado -Fabricia.pfx
2023-05-18 19:05 - 2023-05-18 19:05 - 001494503 _____ C:\Users\Ryan\Downloads\Manual Certificado Digital.pdf
2023-05-18 19:02 - 2023-05-18 19:02 - 000001649 _____ C:\Windows\system32\asssinatura.cer
2023-05-18 19:00 - 2023-05-18 19:00 - 000288101 _____ C:\Users\Ryan\Desktop\fffffff.pdf
2023-05-18 17:00 - 2023-05-18 17:00 - 000253452 _____ C:\Users\Ryan\Desktop\ABRIL MAIO FABRICIA MARIA.pdf
2023-05-16 20:59 - 2023-05-16 20:59 - 000000000 ____D C:\Users\Ryan\Downloads\Ant-Man.And_.The_.Wasp_.Quantumania.2023.WEBRip.WEB-DL_UP2
2023-05-16 20:43 - 2023-05-16 20:59 - 000000000 ____D C:\Users\Ryan\Downloads\Ant-Man.and.the.Wasp.Quantumania.2023.1080p.WEBRip.x264-RARBG
2023-05-09 20:06 - 2023-05-09 20:06 - 000053984 _____ C:\Users\Ryan\Downloads\MyPDF.PDF
2023-05-09 19:57 - 2023-05-09 19:57 - 000201748 _____ C:\Users\Ryan\Downloads\83d2f263c5aa92af6fd24899ff215760_2VIA.pdf
2023-04-25 21:08 - 2023-04-25 21:08 - 000875105 _____ C:\Users\Ryan\Downloads\edital_fhemig2023.pdf
2023-04-24 20:48 - 2023-04-24 20:48 - 001297422 _____ C:\Users\Ryan\Downloads\bb0122_edital.pdf
2023-04-24 18:45 - 2023-04-24 18:45 - 000206478 _____ C:\Users\Ryan\Downloads\eed0f611c8803e75caff8d062c64dba9_2VIA.pdf
2023-04-19 19:57 - 2023-04-19 19:57 - 000132715 _____ C:\Users\Ryan\Desktop\Fundação Cesgranrio.pdf
2023-04-14 17:29 - 2023-04-14 17:29 - 000000000 ____D C:\Users\Ryan\Desktop\Nova pasta
2023-04-13 19:49 - 2023-04-13 19:49 - 006226739 _____ C:\Users\Ryan\Downloads\gggggg.mp4
2023-04-12 20:50 - 2023-04-12 20:50 - 000000000 ____D C:\Windows\system32\Drivers\mde
2023-04-12 17:47 - 2023-04-12 17:47 - 000214450 _____ C:\Users\Ryan\Desktop\RG.pdf
2023-04-12 17:36 - 2023-04-12 17:36 - 000186902 _____ C:\Users\Ryan\Desktop\Compr End Rayan.pdf
2023-04-12 17:26 - 2023-04-12 17:26 - 000206478 _____ C:\Users\Ryan\Desktop\da0a274e1b71771921b9f9c4431781b8_2VIA.pdf
2023-04-07 08:55 - 2023-04-07 08:55 - 000000000 ____D C:\Users\Ryan\Downloads\[ACESSE COMANDOTORRENTS.COM] John Wick 3 - Parabellum 2019 [1080p] [BluRay] [DUAL]
2023-04-07 08:46 - 2023-04-07 08:47 - 000000000 ____D C:\Users\Ryan\Downloads\Informe Rendimentos 2022
==================== Três meses (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-07-06 13:18 - 2022-05-13 19:58 - 000000000 ____D C:\FRST
2023-07-06 12:38 - 2020-07-04 15:02 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-06 12:25 - 2021-12-19 00:15 - 000000000 ____D C:\Windows\SystemTemp
2023-07-06 12:25 - 2020-07-04 15:16 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-06 10:44 - 2020-07-04 15:11 - 001651882 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-06 10:44 - 2019-12-07 11:53 - 000715722 _____ C:\Windows\system32\prfh0416.dat
2023-07-06 10:44 - 2019-12-07 11:53 - 000140878 _____ C:\Windows\system32\prfc0416.dat
2023-07-06 10:44 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF
2023-07-06 10:42 - 2023-02-25 21:27 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\utorrent
2023-07-06 10:42 - 2021-08-12 13:49 - 000000000 ____D C:\Program Files (x86)\iTop Screen Recorder
2023-07-06 10:38 - 2020-07-18 12:39 - 000000000 ____D C:\Users\Ryan\AppData\Local\BitTorrentHelper
2023-07-06 10:37 - 2021-10-31 18:30 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Spotify
2023-07-06 10:37 - 2021-06-04 16:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-07-06 10:37 - 2021-03-01 10:30 - 000047800 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2023-07-06 10:37 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-06 10:36 - 2020-07-04 15:02 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-06 10:36 - 2020-07-04 15:02 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-06 10:04 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-07-06 10:02 - 2020-07-07 16:17 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\MPC-HC
2023-07-06 10:02 - 2020-07-04 15:27 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\TeamViewer
2023-07-06 10:02 - 2020-07-04 15:27 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-07-06 10:00 - 2022-04-22 18:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-06 10:00 - 2020-07-05 04:33 - 000000000 ____D C:\Program Files\CCleaner
2023-07-06 08:35 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-06 08:29 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-06 08:04 - 2020-07-04 15:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-06 08:04 - 2020-07-04 15:09 - 000000000 ____D C:\Users\Ryan
2023-07-06 07:29 - 2020-07-05 14:25 - 000000000 ____D C:\Users\Ryan\AppData\LocalLow\Mozilla
2023-07-06 07:26 - 2021-09-21 14:37 - 000000000 ____D C:\Users\Ryan\AppData\Local\WebEx
2023-07-05 11:37 - 2022-02-07 21:04 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2023-07-05 11:37 - 2020-07-04 15:16 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-07-04 13:10 - 2020-07-30 09:47 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Microsoft\Word
2023-07-04 09:39 - 2020-08-11 15:57 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\vlc
2023-07-01 16:57 - 2020-11-07 11:36 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-01 16:57 - 2020-11-07 11:36 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-01 16:30 - 2020-07-04 15:11 - 000000000 ____D C:\Users\Ryan\AppData\Local\Packages
2023-07-01 16:13 - 2020-07-04 15:35 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-06-30 14:57 - 2021-12-12 20:04 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3099771516-75551853-2221469084-1001
2023-06-30 14:57 - 2020-07-04 15:13 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3099771516-75551853-2221469084-1001
2023-06-30 14:57 - 2020-07-04 15:09 - 000002382 _____ C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-29 16:12 - 2022-09-06 20:59 - 000004210 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1662508779
2023-06-29 16:12 - 2022-09-06 20:59 - 000001402 _____ C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2023-06-29 06:53 - 2020-07-05 10:03 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Dropbox
2023-06-29 06:53 - 2020-07-05 10:02 - 000000000 ____D C:\Users\Ryan\AppData\Local\Dropbox
2023-06-29 06:53 - 2020-07-05 10:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-06-29 06:49 - 2020-07-04 15:17 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-29 06:49 - 2020-07-04 15:17 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 09:23 - 2020-07-05 04:36 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-06-24 09:22 - 2023-03-23 12:06 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-06-24 09:22 - 2022-10-11 13:10 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-06-23 18:39 - 2022-10-13 13:11 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-06-22 11:02 - 2022-10-13 13:11 - 000003472 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-06-22 11:02 - 2020-07-05 04:33 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-06-16 08:20 - 2020-07-04 15:17 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-16 08:20 - 2020-07-04 15:17 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-06-15 08:30 - 2020-07-04 15:02 - 000443024 _____ C:\Windows\system32\FNTCACHE.DAT
2023-06-15 08:29 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-06-15 08:29 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr
2023-06-14 22:17 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp
2023-06-14 22:11 - 2020-07-04 15:04 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-06-14 18:40 - 2020-07-04 17:53 - 000000000 ____D C:\Windows\system32\MRT
2023-06-14 18:32 - 2020-07-04 17:53 - 170078616 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-06-14 16:37 - 2020-07-04 15:02 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-06-13 21:13 - 2022-07-02 17:36 - 000003928 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001UA
2023-06-13 21:13 - 2022-07-02 17:36 - 000003864 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3099771516-75551853-2221469084-1001Core
2023-06-09 19:24 - 2020-11-03 17:20 - 000000000 ____D C:\Users\Ryan\AppData\Roaming\Allavsoft
2023-06-09 15:50 - 2020-11-07 11:36 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-09 15:50 - 2020-11-07 11:36 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================