Resultado do anÃ¡lise da Farbar Recovery Scan Tool (FRST) (x64) VersÃ£o: 03-12-2023
Executado por Marcbon2008 (administrador) em MARCBON2008 (LENOVO 80JE) (05-12-2023 11:00:26)
Executando a partir de C:\Users\Marcbon2008\Desktop\FRST64.exe
Perfis Carregados: Marcbon2008
Plataforma: Microsoft Windows 10 Home Single Language VersÃ£o 22H2 19045.3758 (X64) Idioma: PortuguÃªs (Brasil)
Navegador padrÃ£o: Chrome
Modo da InicializaÃ§Ã£o: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluÃ­da na fixlist, o processo serÃ¡ fechado. O arquivo nÃ£o serÃ¡ movido.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(SmartDisplayAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe <2>
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe\Solitaire.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe <9>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(cmd.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportHelper.exe
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Marcbon2008\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(E96FA30E-7CF5-4C27-B4D8-959575FD2E0C -> BlueMail) C:\Program Files\WindowsApps\BlueMail.BlueMailEmail_1.137.3.0_x64__t08282y3j4hc4\app\BlueMail.exe <4>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <21>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (IBM Canada Limited -> International Business Machines Corporation) C:\Program Files (x86)\IBM\SQLLIB\BIN\db2mgmtsvc.exe
(services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\updater-ws.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\ws.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2>
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe\Solitaire.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2310.8.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, o Ã­tem no Registro serÃ¡ restaurado para o padrÃ£o ou removido. O arquivo nÃ£o serÃ¡ movido.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3805928 2016-08-15] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] RestriÃ§Ã£o <==== ATENÃÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] RestriÃ§Ã£o <==== ATENÃÃO
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44529568 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRQE.EXE [417776 2014-11-13] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Run: [BlueMail] => C:\WINDOWS\explorer.exe me.blueone.win:noopt:hidden (Nenhum Arquivo) <==== ATENÃÃO
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Run: [MicrosoftEdgeAutoLaunch_F2BC4AA6EA9A9FD41E94FE11774AECC7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --no-default-browser-check --no-displaying-insecure-content --no-first-run --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\Common (a entrada de dados tem 77 mais caracteres). [2680608 2023-11-27] (Google LLC -> Google LLC)
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3961797726-2345694949-454076703-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [154624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON L380 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRQE.DLL [187392 2018-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-01-09] (pdfforge GmbH) [Arquivo nÃ£o assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)

==================== Tarefas Agendadas (Whitelisted) =================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

Task: {147EA221-1E41-46E6-8975-EDC47B5C303E} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Nenhum Arquivo <==== ATENÃÃO
Task: {27FD38BF-F084-4C0B-B0EB-55172C889968} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Nenhum Arquivo <==== ATENÃÃO
Task: {5C92DBED-1E7A-4F3F-BCB0-BD47B89DEC0B} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Nenhum Arquivo <==== ATENÃÃO
Task: {617FCE02-B511-4C01-8EDA-8B49B135E580} - nÃ£o caminho do arquivo. <==== ATENÃÃO
Task: {677519A0-88C1-4F73-8FE2-705A2682C9A4} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÃÃO
Task: {AE4D08F2-98CA-46A5-9DB6-B427C6EB29E7} - nÃ£o caminho do arquivo. <==== ATENÃÃO
Task: {CD7B0C0D-6225-4437-B55E-65986E71D82D} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Nenhum Arquivo <==== ATENÃÃO
Task: {E1884E4C-6D72-4AB5-AE0D-5717842F0E27} - nÃ£o caminho do arquivo. <==== ATENÃÃO
Task: {57CED8DA-A6C5-4084-9B74-4DD04B64CBE5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {A89C6040-6EE2-4AEC-AA41-2F4D2946FA77} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7F59B877-D970-4ED5-BAB4-820C58605A4C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "4ecdd687-3d53-420c-a047-d1adc196f6f9" --version "6.18.10838" --silent
Task: {D8956F9B-BD0E-433E-8E95-F4D45D27DC49} - System32\Tasks\CCleanerSkipUAC - Marcbon2008 => C:\Program Files\CCleaner\CCleaner.exe [37546912 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F3ABF62A-84BF-4150-B84F-740F11BE971B} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe  backgroundagent (Nenhum Arquivo)
Task: {66E7E0E2-F7EE-4A28-A8B6-C40C33F92154} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Marcbon2008\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe  LOGON (Nenhum Arquivo)
Task: {D090C198-6C9C-4D1C-A0EA-69D7340FDF69} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Marcbon2008\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe  SCHED (Nenhum Arquivo)
Task: {6D80575F-304A-4F5B-BEAC-6CE5654F4592} - System32\Tasks\EPSON L380 Series Update {6D5F8A1D-F71E-4E2C-8703-03E40033B180} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRQE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {E00CF717-8787-4F13-8C1B-A764616B542B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-11] (Google Inc -> Google Inc.)
Task: {78D19F09-D5EA-4B29-8223-1486E12BC478} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-11] (Google Inc -> Google Inc.)
Task: {1BFB3A47-88B5-4991-8ACE-1ACF786D4A90} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe  -task -source HPSA (Nenhum Arquivo)
Task: {83D5B0ED-95B3-4424-9F8D-DA01B18B045A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe  /taskrestart (Nenhum Arquivo)
Task: {E54461A9-0B1C-4BA0-948E-F21CBDC00ED1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe  /send (Nenhum Arquivo)
Task: {D31927BC-F0EE-4A65-9547-AFA7127DA2A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe  /u (Nenhum Arquivo)
Task: {F74DEE06-873A-411D-B713-794C894901E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe  /r /m (Nenhum Arquivo)
Task: {7CEF46E7-A7C1-4008-99E0-D6E991259A1A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe  /L Analysis (Nenhum Arquivo)
Task: {F2C6C9B1-6AF6-436B-BB95-548654F5A2C9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\90137d0c-d407-4593-bf11-c31200d9652c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {148EB046-1C1F-4225-B5E0-8983D9B42943} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bdc7e789-a604-4810-a51b-d6ad16f67839 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {994BDAD0-A152-42BB-9CE5-449BE33900FC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cb3c79f1-c58c-4557-ad21-86831d5136fe => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {A026F211-282D-4E71-8143-CDA36E91B5F9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e21246d3-2d6a-400e-b768-3d1451af3564 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {B57E4D55-EC61-49B9-BEF5-CDDBA13909EF} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {B8E0B274-4237-4CE1-BA58-6DB4086949A0} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3961797726-2345694949-454076703-1001 => C:\Users\Marcbon2008\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {3AA160E3-E5E5-4293-A200-9E7400B05784} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe  UpdateStatus (Nenhum Arquivo)
Task: {03D627D0-09D1-4429-A10D-7719BA8DFA3C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe  /show (Nenhum Arquivo)
Task: {4E4CB35D-3363-4DEC-8344-D4A6B0566F2C} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe"  -diag HWScan (Nenhum Arquivo)
Task: {D1CB85C3-535B-4F43-B411-ADF55A295308} - System32\Tasks\Lenovo\REACHit Agent Startup => "C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe"  /nobrowser (Nenhum Arquivo)
Task: {1175024D-AC6A-45BC-B015-23841B052CD7} - System32\Tasks\Lenovo\REACHit Agent Update => "C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe"  -update (Nenhum Arquivo)
Task: {FF370027-2ABC-4A7D-82A1-8A075D2353C8} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {F075A4D1-4936-41BE-A160-0C030B01BB32} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {C82A34C3-6225-4D4E-B77F-D1CD8E2150DF} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2B2B4679-0FB7-40DF-94E6-F41C4909B720} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {6DF83D53-F2FB-4A37-8CD9-D6FD9838E38C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {28A055A0-64B8-4E9D-88D3-946388D2194B} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {D46732D5-DBF8-48C4-A856-8CAB27257E57} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {9B5CD509-4200-45B9-ACF6-B4DB27799E21} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B3A63EF2-5AD5-40E1-95E5-732D50664E69} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {F573EE4C-9287-4F5B-8202-E75B93EDD500} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {9CF638C6-1F14-43CF-8286-3F3FEEDADDF4} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B711CF5F-6311-43AA-923C-DE3ADB2FC2D9} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {E6006BFE-1DFD-49D1-BB70-440EA752561A} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {8979D22F-F16D-4DFA-8D0E-3102786C8302} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {DA9819FB-7772-4F08-A17D-4BD59CA4133B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {1325A9F0-B5E9-484C-B6E4-5BA77C5FD853} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [282112 2023-12-01] (Microsoft Windows -> Microsoft Corporation)
Task: {CD1232F5-A3EB-4CDA-AA13-BA5749D90E78} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe [71680 2023-10-27] (Microsoft Windows -> Microsoft Corporation) -> C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {F760854E-11CF-4E3A-B507-6FDDBCE78F32} - System32\Tasks\Microsoft\Windows\rempl\shell => %ProgramFiles%\rempl\sedlauncher.exe  (Nenhum Arquivo)
Task: {40C88CDD-E31F-486D-9102-718361C281C8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [256512 2023-12-01] (Microsoft Windows -> Microsoft Corporation)
Task: {0EDCD359-5E10-4723-97F2-B063BAB2865F} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\WINDOWS\TEMP\is-IPQM7.tmp\corefixer.exe  /norerun (Nenhum Arquivo) <==== ATENÃÃO
Task: {A7F733D9-1BDF-4515-A85A-044066350063} - System32\Tasks\TVT\TVSUUpdateTask => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe"  /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Nenhum Arquivo)
Task: {563F8E3E-B8B3-4839-B3C0-85466B5AA836} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe"  PendingTask (Nenhum Arquivo)

(Se uma entrada for incluÃ­da na fixlist, o arquivo da tarefa (.job) serÃ¡ movido. O arquivo que estÃ¡ sendo executado pela tarefa nÃ£o serÃ¡ movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON L380 Series Update {6D5F8A1D-F71E-4E2C-8703-03E40033B180}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRQE.EXE:/EXE:{6D5F8A1D-F71E-4E2C-8703-03E40033B180} /F:UpdateWORKGROUP\MARCBON2008$ÄSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\HPCeeScheduleForMarcbon2008.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Whitelisted) ====================

(Se um Ã­tem for incluÃ­do na fixlist, sendo um Ã­tem do Registro, serÃ¡ removido ou restaurado para o padrÃ£o.)

Tcpip\Parameters: [DhcpNameServer] 181.213.132.2 181.213.132.3
Tcpip\..\Interfaces\{0efb7f48-f414-4914-97db-fe76473afae6}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0efb7f48-f414-4914-97db-fe76473afae6}: [DhcpNameServer] 200.189.80.114 200.189.80.127
Tcpip\..\Interfaces\{45114bb2-f23d-43b0-8269-22cb730a3b2c}: [NameServer] 8.26.56.26,8.20.247.20
Tcpip\..\Interfaces\{45114bb2-f23d-43b0-8269-22cb730a3b2c}: [DhcpNameServer] 200.189.80.114 200.189.80.127
Tcpip\..\Interfaces\{9ab7d0f8-ed96-44c8-91cb-7ff7706cf226}: [DhcpNameServer] 181.213.132.2 181.213.132.3
Tcpip\..\Interfaces\{b00fdc0e-0d85-4919-b829-c121da6cbae2}: [DhcpNameServer] 181.213.132.2 181.213.132.3
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: RestriÃ§Ã£o <==== ATENÃÃO

Edge: 
=======
Edge Profile: C:\Users\Marcbon2008\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-05]
Edge Extension: (Kaspersky Protection) - C:\Users\Marcbon2008\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-12-01]
Edge Extension: (Documentos Google off-line) - C:\Users\Marcbon2008\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-01]
Edge Extension: (Edge relevant text changes) - C:\Users\Marcbon2008\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-01]
Edge HKU\S-1-5-21-3961797726-2345694949-454076703-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKLM-x32\...\Edge\Extension: [kajikgogckeajjplomldcempamhidmcc]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2022-06-29] [] [nÃ£o assinado]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default [2023-12-05]
CHR DownloadDir: C:\Diversos
CHR Notifications: Default -> hxxps://api.contact2sale.com; hxxps://autopapo.uol.com.br; hxxps://blog.meifacil.com; hxxps://corretor.quintoandar.com.br; hxxps://far-cry.ubisoft.com; hxxps://forum.warthunder.com; hxxps://meet.google.com; hxxps://oisecret.com; hxxps://streamcraft.com; hxxps://web.meifacil.com; hxxps://www.chavesnamao.com.br; hxxps://www.estantevirtual.com.br; hxxps://www.fastshop.com.br; hxxps://www.foxsports.com.br; hxxps://www.instagram.com; hxxps://www.leroymerlin.com.br; hxxps://www.mercadopago.com.br; hxxps://www.paguemenos.com.br; hxxps://www.saopaulomania.com.br; hxxps://www.twitch.tv; hxxps://www.zapimoveis.com.br
CHR Extension: (IBM Security Rapport) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-02-19]
CHR Extension: (Adblock Plus - bloqueador de anÃºncios grÃ¡tis) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-12-01]
CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-25]
CHR Extension: (AdBlock â o melhor bloqueador de anÃºncios) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-01]
CHR Extension: (Video DownloadHelper) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-08-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Marcbon2008\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-30]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKU\S-1-5-21-3961797726-2345694949-454076703-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-3961797726-2345694949-454076703-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-3961797726-2345694949-454076703-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== ServiÃ§os (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-02-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1083808 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DB2MGMTSVC_DB2COPY1; C:\Program Files (x86)\IBM\SQLLIB\BIN\db2mgmtsvc.exe [38688 2007-10-03] (IBM Canada Limited -> International Business Machines Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-04-18] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 GameInputSvc; C:\WINDOWS\System32\GameInputSvc.exe [50168 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [118504 2022-10-31] (Panda Security S.L. -> Panda Security, S.L.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo nÃ£o assinado]
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R3 PDF Architect 6; C:\Program Files\PDF Architect 6\ws.exe [2569976 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 6 Creator; C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe [832248 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 6 Update Service; C:\Program Files\PDF Architect 6\updater-ws.exe [1665272 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo nÃ£o assinado]
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [78840 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3032400 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [999736 2023-09-21] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo nÃ£o assinado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo nÃ£o assinado]
S3 MpKslb5e9d942; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AE2EDC8E-A2B1-4FF0-9AFF-198DFB411BD6}\MpKslDrv.sys [263560 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [151152 2022-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [36552 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [451992 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
R1 RapportCerberus_2304045; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_2304045.sys [1453424 2023-10-16] (International Business Machines Corporation -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [544664 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [398744 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
S3 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [448880 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [557464 2023-06-19] (International Business Machines Corporation -> IBM Corp.)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1772008 2016-06-08] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-12-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55872 2023-09-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [574872 2023-09-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-12] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [55496 2023-12-01] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [41816 2023-05-05] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
R3 wsddprm; C:\WINDOWS\system32\drivers\wsddprm.sys [52104 2023-09-19] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)


==================== TrÃªs meses (criados) (Whitelisted) =========

(Se uma entrada for incluÃ­da na fixlist, o arquivo/pasta serÃ¡ movido.)

2023-12-05 11:00 - 2023-12-05 11:02 - 000042789 _____ C:\Users\Marcbon2008\Desktop\FRST.txt
2023-12-05 10:59 - 2023-12-05 11:01 - 000000000 ____D C:\FRST
2023-12-05 10:57 - 2023-12-05 10:57 - 002384384 _____ (Farbar) C:\Users\Marcbon2008\Desktop\FRST64.exe
2023-12-01 20:27 - 2023-12-01 20:27 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-01 13:19 - 2023-12-01 13:19 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-01 11:49 - 2023-12-01 11:49 - 000000000 ___HD C:\$WinREAgent
2023-10-18 07:14 - 2023-10-18 07:14 - 000000000 ____D C:\Users\Marcbon2008\AppData\Roaming\Sun
2023-10-18 07:08 - 2023-10-18 07:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-10-18 07:08 - 2023-10-18 07:08 - 000000000 ____D C:\Program Files (x86)\Java
2023-10-18 07:08 - 2023-10-04 08:31 - 000170624 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2023-10-06 06:41 - 2023-10-06 06:41 - 000000000 ____D C:\ProgramData\PLUG
2023-10-05 21:07 - 2023-10-05 21:07 - 000000000 ____D C:\Program Files\RUXIM
2023-09-12 10:43 - 2019-02-20 02:31 - 000072984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2023-09-12 10:39 - 2022-12-06 07:53 - 000211208 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsnhwfp.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000575720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000407264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000335064 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000215264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000164568 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000146664 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000146184 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000137960 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000128744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2023-09-12 10:39 - 2022-11-06 07:24 - 000125672 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000218856 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000198376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000176360 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000162536 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000150760 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2023-09-12 10:39 - 2022-11-02 20:33 - 000130280 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2023-09-12 10:38 - 2023-09-12 18:19 - 000002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2023-09-12 10:38 - 2023-09-12 18:19 - 000002248 _____ C:\Users\Public\Desktop\Panda Dome.lnk
2023-09-12 10:38 - 2023-09-12 10:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2023-09-12 10:34 - 2023-09-12 10:40 - 000000000 ____D C:\ProgramData\Panda Security

==================== TrÃªs meses (modificados) ==================

(Se uma entrada for incluÃ­da na fixlist, o arquivo/pasta serÃ¡ movido.)

2023-12-05 11:02 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-05 10:57 - 2016-08-24 17:36 - 000000000 ____D C:\Diversos
2023-12-05 10:45 - 2021-05-17 15:39 - 000000000 ____D C:\Program Files\CCleaner
2023-12-05 10:27 - 2021-03-13 17:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-05 10:25 - 2021-12-16 12:21 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-05 10:25 - 2017-05-11 12:14 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-05 07:51 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-05 07:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-05 06:53 - 2021-09-03 23:23 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-05 06:49 - 2017-08-16 14:26 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-12-05 06:49 - 2016-07-13 16:49 - 000000000 __SHD C:\Users\Marcbon2008\IntelGraphicsProfiles
2023-12-04 11:54 - 2016-07-14 18:38 - 000000000 ____D C:\Users\Marcbon2008\AppData\Roaming\Microsoft\Word
2023-12-02 15:10 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-02 15:08 - 2021-03-13 18:16 - 001743636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-02 15:08 - 2019-12-07 11:54 - 000752488 _____ C:\WINDOWS\system32\prfh0416.dat
2023-12-02 15:08 - 2019-12-07 11:54 - 000148602 _____ C:\WINDOWS\system32\prfc0416.dat
2023-12-01 20:38 - 2017-11-15 14:38 - 000000000 ____D C:\Users\Marcbon2008\AppData\Local\Packages
2023-12-01 20:34 - 2021-03-13 17:53 - 000463512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-01 20:33 - 2023-08-03 16:12 - 000055496 _____ (Topaz OFD) C:\WINDOWS\system32\Drivers\wsddfac.sys
2023-12-01 20:33 - 2022-10-15 16:21 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-01 20:33 - 2021-03-13 18:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-01 20:33 - 2021-03-13 17:52 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-01 20:33 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-01 20:32 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-01 20:27 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-01 20:27 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-01 13:34 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-01 13:32 - 2019-12-07 11:57 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-01 13:32 - 2019-12-07 11:57 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-01 07:18 - 2022-10-27 10:15 - 000003336 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-01 07:18 - 2021-05-17 15:39 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-30 19:10 - 2017-05-11 12:15 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-30 19:10 - 2017-05-11 12:15 - 000002225 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-11-30 19:04 - 2021-03-13 18:37 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-30 19:04 - 2021-03-13 18:37 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-20 18:06 - 2021-12-13 08:19 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3961797726-2345694949-454076703-1001
2023-11-20 18:06 - 2021-03-13 18:37 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3961797726-2345694949-454076703-1001
2023-11-20 18:06 - 2021-03-13 18:02 - 000002410 _____ C:\Users\Marcbon2008\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-16 07:30 - 2021-03-13 18:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-16 07:29 - 2022-10-12 23:03 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-11-16 07:29 - 2022-10-12 23:03 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-11-15 14:20 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 14:20 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 14:20 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 14:20 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 14:20 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 13:50 - 2021-03-13 17:57 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-15 07:13 - 2016-05-13 13:20 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-15 07:11 - 2022-09-09 14:54 - 000000000 ____D C:\Program Files (x86)\dotnet
2023-11-15 07:10 - 2016-07-13 17:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 06:52 - 2016-07-13 17:18 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-13 06:42 - 2020-08-13 21:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Arquivos na raiz de alguns diretÃ³rios ========

2018-07-01 10:25 - 2018-07-01 10:26 - 000000022 _____ () C:\Users\Marcbon2008\AppData\Roaming\langInstall.exe
2016-09-15 18:08 - 2016-08-25 06:22 - 002685216 _____ (COMODO) C:\Users\Marcbon2008\AppData\Roaming\temp~ccavstart.exe
2016-09-15 18:08 - 2016-08-25 06:23 - 003856040 _____ (Terra Informatica Software, Inc.) C:\Users\Marcbon2008\AppData\Roaming\temp~cmdhtml.dll
2021-05-17 11:58 - 2021-05-17 11:58 - 000000128 _____ () C:\Users\Marcbon2008\AppData\Local\PUTTY.RND

==================== SigCheck ============================

(NÃ£o hÃ¡ correÃ§Ã£o automÃ¡tica para arquivos que nÃ£o passaram na verificaÃ§Ã£o.)

==================== Fim de FRST.txt ========================