Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 24-06-2019 Executado por Leandro (administrador) em LEANDRO-PC (Gigabyte Technology Co., Ltd. G31M-S2L) (26-06-2019 00:50:46) Executando a partir de C:\Users\Leandro\Downloads Perfis Carregados: Leandro (Perfis Disponíveis: Leandro) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil) Internet Explorer Versão 8 (Navegador padrão: IE) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Aladdin Knowledge Systems LTD -> Aladdin Knowledge Systems, Ltd.) C:\Program Files\Aladdin\eToken\PKIClient\x32\PKIMonitor.exe (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files\scpbrad\scpbradguard.exe (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files\scpbrad\scpbradserv.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Hewlett-Packard Co.) [Arquivo não assinado] C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard Co.) [Arquivo não assinado] C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) [Arquivo não assinado] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard) [Arquivo não assinado] C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (HP Inc. -> HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Users\Public\EOM.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Solvusoft Corporation -> Solvusoft Corporation) C:\Program Files\DriverDoc\DOCTray.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) [Arquivo não assinado] HKLM\...\Run: [eTMonitor] => C:\Program Files\Aladdin\eToken\PKIClient\x32\PKIMonitor.exe [230752 2009-12-31] (Aladdin Knowledge Systems LTD -> Aladdin Knowledge Systems, Ltd.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-2818870107-2189845543-3758814564-1001\...\Run: [McAfeeSafeConnect] => C:\Program Files\McAfee Safe Connect\McAfee Safe Connect.exe HKU\S-1-5-21-2818870107-2189845543-3758814564-1001\...\MountPoints2: {a2689067-65e3-11e7-a1cb-001fd0e5a0a7} - D:\Lenovo_Suite.exe HKU\S-1-5-21-2818870107-2189845543-3758814564-1001\...\MountPoints2: {a2689082-65e3-11e7-a1cb-001fd0e5a0a7} - E:\Lenovo_Suite.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-18] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-06-28] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) [Arquivo não assinado] Startup: C:\Users\Leandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOM.lnk [2019-02-23] ShortcutTarget: EOM.lnk -> C:\Users\Public\EOM.exe (Microsoft Windows -> Microsoft Corporation) CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {244ED007-6A66-427E-9F5B-1426906FEC88} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-01-31] (HP Inc. -> HP Inc.) Task: {256053AA-783C-4BD6-82D8-BC0BDFDBDA78} - System32\Tasks\DriverDoc automatic scan and new device notifications => C:\Program Files\DriverDoc\DOCTray.exe [1880296 2018-12-11] (Solvusoft Corporation -> Solvusoft Corporation) Task: {28354F2B-9952-45E3-8C37-F4EE303D17E2} - System32\Tasks\{2449C27D-7CCC-4339-B1C7-7B47586E65B3} => C:\Windows\system32\pcalua.exe -a C:\Users\Leandro\Downloads\B2CAppSetup.exe -d C:\Users\Leandro\Downloads Task: {4141CAF5-AA40-4861-BF21-D3DA8B540341} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [1447424 2018-06-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {5E891533-4FE5-4D51-A641-4E33D38AB94B} - System32\Tasks\{3EBEFA19-3CD9-4C05-9DCD-4124BD8CD295} => C:\Program Files\Origin\Origin.exe [3114256 2019-06-26] (Electronic Arts, Inc. -> Electronic Arts) Task: {71389263-A900-4466-9EDD-CE48CB5CC0C7} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> ) Task: {7296FA53-0E0E-4264-A060-59D636781657} - System32\Tasks\Driver Booster SkipUAC (Leandro) => C:\Program Files\IObit\Driver Booster\4.2.0\DriverBooster.exe Task: {75548E4A-53BA-4DB0-B871-C6EFAE01D409} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-12-27] (Google Inc -> Google Inc.) Task: {7B68A022-40BE-471D-97F8-61BA94E57746} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7027568 2018-02-08] (Reimage Limited -> Reimage®) <==== ATENÇÃO Task: {800F4F2A-9E37-463A-8265-B2B5D3F2740C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd -> Piriform Ltd) Task: {812EF501-8802-437C-BBD8-8248C203957A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-06-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {91D47606-7747-4690-A44C-E30DC254FE5B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [219512 2018-12-24] (HP Inc. -> HP Inc.) Task: {9A06BECE-E785-4611-9E99-3A710D09EE28} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [3976712 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) Task: {B37ABA71-FEB8-4CCD-8A2F-06A27550BD94} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.) Task: {C4FDC740-FF9B-4C75-8798-6CD283F7923F} - System32\Tasks\{FDDA4FC4-DF10-4D6A-94C9-CE410C7A778D} => C:\Program Files\Origin\Origin.exe [3114256 2019-06-26] (Electronic Arts, Inc. -> Electronic Arts) Task: {C7C76AA2-6B87-431A-A68D-9174BA481F0A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.) Task: {E8AF01A2-098D-45C1-9AE8-1EC7E8F8763A} - System32\Tasks\DllKitPRO => C:\Program Files\DllKitPRO\dllkitpro.exe <==== ATENÇÃO Task: {EC31106C-546B-4AEE-A80E-DCDA1D6D27B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.) Task: {EC7AFF63-151C-4A91-BA84-2043757BCAFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-12-27] (Google Inc -> Google Inc.) Task: {EE3C3D35-E5AA-41CB-9D5F-21DDE7D8A940} - System32\Tasks\HPCeeScheduleForLeandro => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [99392 2016-05-12] (Hewlett-Packard Company -> HP Development Company, L.P.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\HPCeeScheduleForLeandro.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{1E4A8337-D3E0-474A-A4D4-2AFE0D3FC286}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{976BA6A7-D1B9-4CE2-A8A8-001BC90B8DC8}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{C92DA415-AECC-488A-8291-899A1817224A}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{C92DA415-AECC-488A-8291-899A1817224A}: [DhcpNameServer] 192.168.15.1 Internet Explorer: ================== HKU\S-1-5-21-2818870107-2189845543-3758814564-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-02-10] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-10] (Oracle America, Inc. -> Oracle Corporation) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: 8ooj8hwc.default-1533849778558 FF ProfilePath: C:\Users\Leandro\AppData\Roaming\Mozilla\Firefox\Profiles\8ooj8hwc.default-1533849778558 [2019-06-25] FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-06-28] [Legacy] [não assinado] FF HKU\S-1-5-21-2818870107-2189845543-3758814564-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-07] (Adobe Systems Incorporated -> ) FF Plugin: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com.br/" CHR Profile: C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default [2019-06-26] CHR Extension: (Scroll Top 2 ) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\anegdgmmggcacpfjcacfjomhobobdiog [2019-04-20] CHR Extension: (Google Drive) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-27] CHR Extension: (YouTube) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-27] CHR Extension: (Grammarly for Chrome) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2019-06-14] CHR Extension: (AVG Secure Search) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2019-04-26] CHR Extension: (Pagamentos via Chrome Web Store) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-14] CHR Extension: (Gmail) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-18] CHR Extension: (Chrome Media Router) - C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-07] CHR Profile: C:\Users\Leandro\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-04-26] ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S4 eTSrv; C:\Program Files\Aladdin\eToken\PKIClient\x32\eTSrv.exe [12640 2009-12-31] (Aladdin Knowledge Systems LTD -> Aladdin Knowledge Systems, Ltd.) R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado] R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado] R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [694784 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado] R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [Arquivo não assinado] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [Arquivo não assinado] S4 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7027568 2018-02-08] (Reimage Limited -> Reimage®) R2 scpbradserv; C:\Program Files\scpbrad\scpbradserv.exe [2083264 2018-10-23] (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Windows -> Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [45528 2018-03-06] (AnchorFree Inc -> The OpenVPN Project) R3 AKSIFDH; C:\Windows\System32\DRIVERS\aksifdh.sys [48296 2008-07-29] (Aladdin Knowledge Systems Inc. -> Aladdin Knowledge Systems, Ltd.) R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [75416 2017-03-18] (AlcorMicro, Corp. -> Alcor Micro, Corp.) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109184 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-03-18] (Martin Malik - REALiX -> REALiX(tm)) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18944 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S3 qcusbnet; C:\Windows\System32\DRIVERS\qcusbnet.sys [366136 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [216632 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147072 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X] S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X] S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X] S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X] S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X] S3 usbbus; system32\DRIVERS\lgusbbus.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-06-26 00:50 - 2019-06-26 00:51 - 000020965 _____ C:\Users\Leandro\Downloads\FRST.txt 2019-06-26 00:50 - 2019-06-26 00:50 - 000000000 ____D C:\FRST 2019-06-26 00:49 - 2019-06-26 00:49 - 001770496 _____ (Farbar) C:\Users\Leandro\Downloads\FRST.exe 2019-06-26 00:45 - 2019-06-26 00:45 - 000000955 _____ C:\Users\Public\Desktop\Origin.lnk 2019-06-26 00:45 - 2019-06-26 00:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2019-06-26 00:45 - 2019-06-26 00:45 - 000000000 ____D C:\Program Files\Origin 2019-06-26 00:43 - 2019-06-26 00:45 - 000000000 ____D C:\Users\Todos os Usuários\Origin 2019-06-26 00:43 - 2019-06-26 00:45 - 000000000 ____D C:\ProgramData\Origin 2019-06-26 00:43 - 2019-06-26 00:43 - 000000000 ____D C:\Users\Leandro\AppData\Roaming\Origin 2019-06-26 00:43 - 2019-06-26 00:43 - 000000000 ____D C:\Users\Leandro\AppData\Local\Origin 2019-06-26 00:42 - 2019-06-26 00:43 - 063373944 _____ (Electronic Arts) C:\Users\Leandro\Downloads\OriginThinSetup (1).exe 2019-06-26 00:40 - 2019-06-26 00:40 - 031332760 _____ (Electronic Arts, Inc.) C:\Users\Leandro\Downloads\origin-9-10-2-multi-win.exe 2019-06-25 17:30 - 2019-06-25 17:30 - 003518434 _____ C:\Users\Leandro\Downloads\programaodin-v3.13.1-www.centralandroid.com.br.zip 2019-06-25 17:30 - 2019-06-25 17:30 - 003518434 _____ C:\Users\Leandro\Desktop\programaodin-v3.13.1-www.centralandroid.com.br.zip 2019-06-25 17:30 - 2018-05-28 06:15 - 000000000 ____D C:\Users\Leandro\Desktop\Odin3_v3.13.1 2019-06-25 17:27 - 2019-06-25 17:27 - 004743960 _____ (Solvusoft Corporation ) C:\Users\Leandro\Downloads\Setup_DriverDoc_2019 (2).exe 2019-06-25 11:29 - 2019-06-25 11:29 - 000002073 _____ C:\Users\Public\Desktop\Smart Switch.lnk 2019-06-25 11:29 - 2019-06-25 11:29 - 000000000 ____D C:\Users\Public\Documents\NativeFus_Log 2019-06-25 11:28 - 2017-01-16 03:26 - 000147072 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys 2019-06-25 11:28 - 2017-01-16 03:26 - 000109184 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus.sys 2019-06-25 11:25 - 2019-06-25 11:26 - 045609632 _____ (Samsung Electronics) C:\Users\Leandro\Downloads\SmartSwitchPC_setup.exe 2019-06-24 22:51 - 2019-06-24 22:54 - 000000000 ____D C:\Users\Leandro\Documents\LOLLA 2019-06-24 15:50 - 2019-06-24 15:50 - 023920445 _____ C:\Users\Leandro\Downloads\USB_SAMSUNG_DRIVER_V_1_3_23.rar 2019-06-24 15:49 - 2019-06-24 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frp HiJacker by Hagard 2019-06-24 15:49 - 2019-06-24 15:58 - 000000000 ____D C:\Program Files\Frp HiJacker by Hagard 2019-06-24 15:48 - 2019-06-24 15:48 - 001208573 _____ (Gsmhagard ) C:\Users\Leandro\Downloads\Frp Hijacker.exe 2019-06-24 15:48 - 2019-06-24 15:48 - 000000126 _____ C:\Users\Leandro\Downloads\Senha de Instalação.txt 2019-06-24 15:43 - 2019-06-24 15:43 - 006439104 _____ (Cyclonis Limited) C:\Users\Leandro\Downloads\CyclonisPasswordManager-Installer.exe 2019-06-24 15:39 - 2019-06-24 15:39 - 001272932 _____ C:\Users\Leandro\Downloads\FRP Hijacker BY Gadgets Doctor (1).zip 2019-06-24 08:08 - 2016-05-17 23:49 - 004659712 _____ (Dmitry Streblechenko) C:\Windows\system32\Redemption.dll 2019-06-24 08:08 - 2016-05-17 23:49 - 000144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\system32\secman.dll 2019-06-24 08:07 - 2016-05-17 23:49 - 000821824 _____ (Devguru Co., Ltd.) C:\Windows\system32\dgderapi.dll 2019-06-24 08:04 - 2019-06-24 08:05 - 072040608 _____ (Samsung Electronics) C:\Users\Leandro\Downloads\KiesSetup.exe 2019-06-24 07:57 - 2019-06-24 07:58 - 002115037 _____ C:\Users\Leandro\Downloads\com.sika524.android.quickshortcut_2.4.0-20400_minAPI4(nodpi)_apkmirror.com.apk 2019-06-24 03:25 - 2019-06-25 11:29 - 000000000 ____D C:\Users\Leandro\AppData\Roaming\Samsung 2019-06-24 03:25 - 2019-06-24 03:25 - 000000000 ____D C:\Users\Leandro\Documents\SideSync 2019-06-24 00:07 - 2019-06-25 11:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2019-06-24 00:05 - 2019-06-25 11:27 - 000000000 ____D C:\Program Files\Samsung 2019-06-24 00:05 - 2019-06-24 15:39 - 000000000 ____D C:\Users\Todos os Usuários\Samsung 2019-06-24 00:05 - 2019-06-24 15:39 - 000000000 ____D C:\ProgramData\Samsung 2019-06-24 00:04 - 2019-06-24 00:04 - 049215520 _____ (Samsung) C:\Users\Leandro\Downloads\SideSync_4.7.5.203.exe 2019-06-20 19:43 - 2019-06-20 19:43 - 000827568 _____ C:\Users\Leandro\Downloads\apresentaçao da pre-feira.pptx 2019-06-18 17:27 - 2019-06-18 20:05 - 000140029 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.44.24.jpeg 2019-06-18 17:26 - 2019-06-18 18:26 - 000104111 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.37.25.jpeg 2019-06-18 17:26 - 2019-06-18 18:02 - 000221170 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.23 (1).jpeg 2019-06-18 17:26 - 2019-06-18 17:54 - 000111528 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.37.24.jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000134250 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.22 (1).jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000130363 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.22 (3).jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000130051 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.23.jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000122710 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.22 (2).jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000098603 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.41.22.jpeg 2019-06-18 17:26 - 2019-06-18 17:26 - 000087612 _____ C:\Users\Leandro\Downloads\WhatsApp Image 2019-06-18 at 14.36.15.jpeg 2019-06-14 12:27 - 2019-06-14 12:27 - 000149319 _____ C:\Users\Leandro\Downloads\Play Cell SA.txt 2019-06-11 20:19 - 2019-06-11 20:19 - 000260493 _____ C:\Users\Leandro\Desktop\stock-illustration-technology-innovation-man-complemented-virtual.html 2019-06-11 19:53 - 2019-06-25 21:54 - 000000328 _____ C:\Windows\Tasks\HPCeeScheduleForLeandro.job 2019-06-10 20:56 - 2019-06-10 20:57 - 000629006 _____ C:\Users\Leandro\Downloads\Windows6.1-KB2999226-x86 (1).msu 2019-06-10 20:54 - 2019-06-10 20:55 - 000629006 _____ C:\Users\Leandro\Downloads\Windows6.1-KB2999226-x86.msu 2019-06-07 23:03 - 2019-06-07 23:03 - 095095667 _____ C:\Users\Leandro\Downloads\sony_tvupdate_2012_2120_bra_auth.zip 2019-06-07 19:27 - 2019-06-07 19:28 - 001921632 _____ C:\Users\Leandro\Downloads\ee33fbae173eaesybcd23.exe 2019-06-07 19:21 - 2019-06-07 19:22 - 239126136 _____ C:\Users\Leandro\Downloads\Windows6.1-KB947821-v34-x86.msu 2019-06-03 16:53 - 2019-06-03 16:53 - 000015881 _____ C:\Users\Leandro\Downloads\Foi-se o tempo em que lâmpada acesa era sinal de boa ideia (1).pdf 2019-06-03 16:17 - 2019-06-03 16:17 - 000000000 ____D C:\Users\Leandro\Downloads\T-MST4IBRC_T-MSV4IBRC - Cópia 2019-06-03 16:17 - 2019-06-03 16:16 - 051222644 _____ C:\Users\Leandro\Downloads\T-MST4IBRC_T-MSV4IBRC - Cópia.exe 2019-06-03 16:16 - 2019-06-03 16:16 - 051222644 _____ C:\Users\Leandro\Downloads\T-MST4IBRC_T-MSV4IBRC.exe 2019-06-03 16:09 - 2019-06-03 16:09 - 000000000 ____D C:\Users\Leandro\AppData\Roaming\DriverDoc 2019-06-03 16:09 - 2019-06-03 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverDoc 2019-06-03 16:09 - 2019-06-03 16:09 - 000000000 ____D C:\Program Files\DriverDoc 2019-06-03 16:08 - 2019-06-03 16:08 - 004743960 _____ (Solvusoft Corporation ) C:\Users\Leandro\Downloads\Setup_DriverDoc_2019 (1).exe 2019-06-03 16:07 - 2019-06-03 16:07 - 004743960 _____ (Solvusoft Corporation ) C:\Users\Leandro\Downloads\Setup_DriverDoc_2019.exe 2019-06-03 16:00 - 2019-06-03 16:00 - 000015606 _____ C:\Users\Leandro\Downloads\Foi-se o tempo em que lâmpada acesa era sinal de boa ideia.pdf 2019-05-30 13:44 - 2019-05-30 13:44 - 000254519 _____ C:\Users\Leandro\Downloads\Boleto_06-2019.pdf ==================== Um mês (modificados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-06-26 00:51 - 2009-07-14 01:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-06-26 00:51 - 2009-07-14 01:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-06-26 00:38 - 2019-03-26 10:56 - 000000000 ____D C:\Users\Leandro\Documents\Trabalhos 101 2019-06-25 21:54 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-06-25 21:52 - 2017-03-22 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2019-06-25 21:51 - 2017-07-12 13:42 - 000000000 ____D C:\Users\Leandro\AppData\LocalLow\HPAppData 2019-06-25 11:28 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf 2019-06-25 11:27 - 2017-03-20 18:11 - 000000000 ___HD C:\Program Files\InstallShield Installation Information 2019-06-24 15:44 - 2017-03-18 17:38 - 000000000 ____D C:\Users\Leandro 2019-06-24 08:06 - 2018-02-15 20:13 - 000000000 ____D C:\Users\Leandro\AppData\Local\Downloaded Installations 2019-06-24 00:05 - 2017-03-24 16:14 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache 2019-06-24 00:05 - 2017-03-24 16:14 - 000000000 ____D C:\ProgramData\Package Cache 2019-06-18 11:11 - 2017-12-27 16:39 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-06-17 11:12 - 2017-03-18 17:43 - 001633534 _____ C:\Windows\system32\PerfStringBackup.INI 2019-06-17 11:12 - 2009-07-14 05:31 - 000705070 _____ C:\Windows\system32\prfh0416.dat 2019-06-17 11:12 - 2009-07-14 05:31 - 000146910 _____ C:\Windows\system32\prfc0416.dat 2019-06-12 03:07 - 2018-05-30 19:34 - 000000000 ____D C:\Windows\system32\MRT 2019-06-12 03:01 - 2018-05-30 19:33 - 132265168 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-06-05 09:45 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\system32\NDF 2019-06-04 10:21 - 2017-03-18 21:12 - 000000000 ____D C:\Users\Leandro\AppData\LocalLow\Mozilla ==================== Arquivos na raiz de alguns diretórios ================ 2019-02-23 09:50 - 2009-07-13 22:14 - 000044544 _____ (Microsoft Corporation) C:\Users\Public\EOM.exe 2019-02-23 09:50 - 2009-07-13 22:15 - 000040448 _____ (Microsoft Corporation) C:\Users\Public\mwg.dll 2018-06-04 21:53 - 2018-06-04 21:53 - 000870278 _____ (SQLite Development Team) C:\Users\Public\winx86.dll ==================== SigCheck =============================== (Não há correção automática para arquivos que não passaram na verificação.) LastRegBack: 2019-06-22 00:27 ==================== Fim de FRST.txt ============================