
Z-Analyse V1.0.0.6 Updated 03-May-2018(Online Version)
Tool run by ari on 25/04/2021 at 12:52:13,54.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ari\Desktop\Z-Analyse.exe [Deep Scan]

==== System Restore Info ======================

25/04/2021 12:58:46 Zoek.exe System Restore Point Created Successfully.

==== Running Processes ======================

C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Bitdefender Agent\ProductAgentService.exe
C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
C:\Windows\TEMP\bd_B78B.tmp\hftB7BB.tmp
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==== Drivers(whitelist) ======================
Powered by [url=http://www.antimalwarehelp.be/EDev/]E Dev[/url]

R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
R0 - [vlflt] - vlflt - C:\Windows\system32\Drivers\vlflt.sys
R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
R3 - [srv] - Driver SMB 1.xxx do Servidor - C:\Windows\system32\Drivers\srv.sys
R3 - [srv2] - Driver SMB 2.xxx do Servidor - C:\Windows\system32\Drivers\srv2.sys
R0 - [ACPI] - Microsoft ACPI Driver - C:\Windows\system32\Drivers\ACPI.sys
R0 - [amdxata] - amdxata - C:\Windows\system32\Drivers\amdxata.sys
R0 - [atapi] - Canal de IDE - C:\Windows\system32\Drivers\atapi.sys
R0 - [CLFS] - Log Comum (CLFS) - C:\Windows\system32\Drivers\CLFS.sys [x]
R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
R0 - [Compbatt] - Microsoft Composite Battery Driver - C:\Windows\system32\Drivers\Compbatt.sys
R0 - [Disk] - Driver de disco - C:\Windows\system32\Drivers\Disk.sys
R0 - [fvevol] - Driver de Filtro de Criptografia de Unidade de Disco BitLocker - C:\Windows\system32\Drivers\fvevol.sys
R0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
R0 - [mountmgr] - Gerenciador de Pontos de Montagem - C:\Windows\system32\Drivers\mountmgr.sys
R0 - [msahci] - msahci - C:\Windows\system32\Drivers\msahci.sys
R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
R0 - [NDIS] - Driver do Sistema NDIS - C:\Windows\system32\Drivers\NDIS.sys
R0 - [partmgr] - Gerenciador de PartiÃ§Ãµes - C:\Windows\system32\Drivers\partmgr.sys
R0 - [pci] - PCI Bus Driver - C:\Windows\system32\Drivers\pci.sys
R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
R0 - [spldr] - Security Processor Loader Driver - C:\Windows\system32\Drivers\spldr.sys
R0 - [storflt] - Driver de Filtro de AceleraÃ§Ã£o do Barramento da MÃ¡quina Virtual do Disco - C:\Windows\system32\Drivers\storflt.sys [x]
R0 - [Tcpip] - Driver de Protocolo TCP/IP - C:\Windows\system32\Drivers\Tcpip.sys
R0 - [vdrvroot] - Driver de enumerador da unidade virtual Microsoft - C:\Windows\system32\Drivers\vdrvroot.sys
R0 - [volmgr] - Volume Manager Driver - C:\Windows\system32\Drivers\volmgr.sys
R0 - [volmgrx] - Gerenciador de Volume DinÃ¢mico - C:\Windows\system32\Drivers\volmgrx.sys
R0 - [volsnap] - Volumes de armazenamento - C:\Windows\system32\Drivers\volsnap.sys
R0 - [Wdf01000] - ServiÃ§o de Estruturas de Driver em Modo Kernel - C:\Windows\system32\Drivers\Wdf01000.sys
R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
R1 - [tdx] - Driver de Suporte a TDI Herdado de NetIO - C:\Windows\system32\Drivers\tdx.sys
R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys

==== System Specs ======================

Windows: Windows 7 Ultimate (64-bit) Service Pack 1,  (Build 7601)
Memory (RAM): 3798 MB
CPU Info: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
CPU Speed: 2490,0 MHz
Sound Card: Alto-falantes (Realtek High Def | 
Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Monitor Genérico PnP | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Microsoft Virtual WiFi Miniport Adapter #2 | Atheros AR9485WB-EG Wireless Network Adapter | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208DN
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  348,6GB | D:  115,9GB
Hard Disks - Free: C:  140,6GB | D:  82,0GB
Manufacturer *: Phoenix Technologies Ltd.
BIOS Info: AT/AT COMPATIBLE | 06/21/13 | SECCSD - 2
Time Zone: Hora oficial do Brasil
Motherboard *: SAMSUNG ELECTRONICS CO., LTD. NP300E4C-AD5BR
Country: Brasil 
Language: PTB 

==== System Specs (Software) ======================

Anti-Spyware: Windows Defender disabled (Outdated)
Internet Explorer Version: 11.0.9600.19596 
Google Chrome version: 90.0.4430.85

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2021-04-18 06:32:20	4C6EC4F62E6A05E90CE631DF81182CDC	39664	----a-w-	C:\Windows\scudding.exe
====== C:\Users\ari\AppData\Local\Temp ====
2021-04-25 15:52:07	75375C22C72F1BEB76BEA39C22A1ED68	167936	----a-w-	C:\Users\ari\AppData\Local\Temp\unzip.exe
2021-04-25 15:52:07	3304FDFB4F7424B385C308B812FB019C	71680	----a-w-	C:\Users\ari\AppData\Local\Temp\ZAScan.exe
2021-04-25 15:52:07	1A3F82F420340222F13C5633AEB716D6	533851	----a-w-	C:\Users\ari\AppData\Local\Temp\sr.exe
2021-04-25 15:51:15	E0A885BD680EF09966A3C00A455CA854	1604024	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\gemma.exe
2021-04-25 15:51:15	8504C3E32B1CEA04D973DDEA7A3E59B5	16550352	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\atc.exe
2021-04-25 15:51:15	225F55EBF605528DE54CF87CE24329E0	2194352	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\eventcorrelator.exe
2021-04-25 15:51:14	7509DD9D9896B7F19768F6951481BCE4	11827880	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\bddci.exe
2021-04-25 15:51:14	562C732C92CA80F9205FE3CE9260FDFA	929264	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\trafficscan_bddci.exe
2021-04-25 15:51:14	48D4B361C0D7B4BCBF0450FEF9A5799D	39004272	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\pretrain.exe
2021-04-25 15:51:14	4105079AB14F68B60C215E83C34A3DAF	6343536	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\bdagent.exe
2021-04-25 15:51:14	26D3ADC41DCE4A1A95310070F102B3DA	5365160	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\antiphishing_bddci.exe
2021-04-25 15:51:13	EA1CDCD2DDDE8664050EBE82FEB8F938	5208160	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\cstsdk.exe
2021-04-25 15:51:13	CD1AB0450B2D1D1796E6AF87BD393BDE	608792	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\onaccess.exe
2021-04-25 15:51:13	C2279BD23F1412525B8640C5BF509C64	1078080	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\carantina.exe
2021-04-25 15:51:13	AF10FA56128D3C34A658C05FC7793127	16807680	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\baza.exe
2021-04-25 15:51:13	9873F2509DEED6C3E53C3C3D1407DFA5	854640	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\ondemand.exe
2021-04-25 15:51:13	789575051464CD5993DCC4FBDFCDB19D	5555112	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\scan.exe
2021-04-25 15:51:13	4504EA07EF143B4094EFBF44FEAF7908	3839840	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\epsservice.exe
2021-04-25 15:51:13	377A2D7171D3C2D321CF2182A36D5499	6426080	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\update.exe
2021-04-25 15:51:13	0953FD4A4DE2768E4F3A08B63AE4676B	1559048	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\vlflt.exe
2021-04-25 15:51:13	06E1929219101B29D7D5F6F1530BDAAA	526264	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\selfpr.exe
2021-04-25 15:51:12	F6EAD2E47C6EFF306BF236607836A6C6	379304	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vccorlib140_app.dll
2021-04-25 15:51:12	F5B51147EC8976E7A2D5BF35C09F0077	512296	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vcamp140.dll
2021-04-25 15:51:12	F3A6E8C6916C8D6461087874B1E85883	367416	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vccorlib140.dll
2021-04-25 15:51:12	D33D9EC1486E319526F893FD9B1D9C12	195888	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\msvcp140_2.dll
2021-04-25 15:51:12	C51C76EFB18CDF34361F306DE9734D87	32048	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\msvcp140_1.dll
2021-04-25 15:51:12	C1986D58421BA6CA3050D7D5A01F8929	87864	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vcruntime140.dll
2021-04-25 15:51:12	BCF85F55392240E2110B0608D0CEF70A	675112	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\msvcp140.dll
2021-04-25 15:51:12	A238D3DC03B1839349DA976B11A951EA	5756000	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\sciter.dll
2021-04-25 15:51:12	89909E189303F0D46195593B9E4AFD94	618440	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\msvcp140_app.dll
2021-04-25 15:51:12	84B663DF5C5BDEBA5BAE74809E97F961	102696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\mfcm140u.dll
2021-04-25 15:51:12	3EC8692D8A22B0969E2C0E5DA6F2B17A	80264	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vcruntime140_app.dll
2021-04-25 15:51:12	3D4CB9F0FF4F89F6408273420B6CA546	261465696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\archives\plugins64.exe
2021-04-25 15:51:12	342A966D92BC08D8A7C1C899967BC540	153232	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\vcomp140.dll
2021-04-25 15:51:12	0EB16F0FDD2806CD64B9966336B1CB42	666720	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\bdec.dll
2021-04-25 15:51:12	0E0BAC3D1DCC1833EAE4E3E4CF83C4EF	1016584	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\ucrtbase.dll
2021-04-25 15:51:11	F9E20DD3B07766307FCCF463AB26E3CA	19720	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-heap-l1-1-0.dll
2021-04-25 15:51:11	F599C89369BD54EBA9F72168B429426F	1449568	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\bdreinit.exe
2021-04-25 15:51:11	F0D507DE92851A8C0404AC78C383C5CD	20744	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-filesystem-l1-1-0.dll
2021-04-25 15:51:11	EAD73498B7A987FED5063A436DC22279	594528	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\LanguageManager.dll
2021-04-25 15:51:11	D53637EAB49FE1FE1BD45D12F8E69C1F	22792	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-convert-l1-1-0.dll
2021-04-25 15:51:11	CDF44256303BBBC0E12B28858D42DCCC	272992	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\txmlutil.dll
2021-04-25 15:51:11	C712515D052A385991D30B9C6AFC767F	19208	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-environment-l1-1-0.dll
2021-04-25 15:51:11	C30696C58CA44E351E2DF3257FFE63C0	32864	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\libReq.dll
2021-04-25 15:51:11	B77D184EB9F803E4B9431E136495F45B	1719912	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\BPInstaller.exe
2021-04-25 15:51:11	AB206F2943977256CA3A59E5961E3A4F	19208	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-locale-l1-1-0.dll
2021-04-25 15:51:11	96DA689947C6E215A009B9C1ECA5AEC2	24840	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-string-l1-1-0.dll
2021-04-25 15:51:11	9210C2F91546B2768610232DA7A654E8	321752	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\unrar64.dll
2021-04-25 15:51:11	8B9B0D1C8B0E9D4B576D42C66980977A	23304	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-runtime-l1-1-0.dll
2021-04-25 15:51:11	896963C9B1734714AFE55386E5A092AD	2389088	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\bdnc.dll
2021-04-25 15:51:11	76E0A89C91A28CF7657779D998E679E5	24840	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-stdio-l1-1-0.dll
2021-04-25 15:51:11	6C88D0006CF852F2D8462DFA4E9CA8D1	19720	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-conio-l1-1-0.dll
2021-04-25 15:51:11	6B33B34888CCECCA636971FBEA5E3DE0	21256	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-time-l1-1-0.dll
2021-04-25 15:51:11	63F32671B2207E0EDE9B813353657BB9	5865760	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\mfc140u.dll
2021-04-25 15:51:11	5E9734326E80661BF554A95D129ABC04	257640	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\AgentCtrl.exe
2021-04-25 15:51:11	595D79870970565BE93DB076AFBE73B5	19720	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-process-l1-1-0.dll
2021-04-25 15:51:11	54F27114EB0FDA1588362BB6B5567979	19208	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-utility-l1-1-0.dll
2021-04-25 15:51:11	50740F0BC326F0637C4166698298D218	71432	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-private-l1-1-0.dll
2021-04-25 15:51:11	4E033CFEE32EDF6BE7847E80A5114894	26888	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-multibyte-l1-1-0.dll
2021-04-25 15:51:11	4DD7A61590D07500704E7E775255CB00	27912	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\api-ms-win-crt-math-l1-1-0.dll
2021-04-25 15:51:11	4839BF50E1613E45E4B82091EA2584C5	3232864	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\bdch.dll
2021-04-25 15:51:11	3822DB6C664F09C649B117353DCAA471	334640	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\concrt140.dll
2021-04-25 15:51:11	1FBA734B4505B3A65A6929685DB38D2B	5834016	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\mfc140.dll
2021-04-25 15:51:11	087934DAF94596EEEE3D24BB2CAA4F6A	569960	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX3\ConnectAgent.dll
2021-04-25 15:45:47	E8E9AAA3F62FF60713F50C3C8984C828	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\pt-BR.dll
2021-04-25 15:45:47	E332695C7BD1629DD8ED11EC65D2E6AB	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\hu-HU.dll
2021-04-25 15:45:47	DD77C5EAD52525733DECDB387C1452C4	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\cs-CZ.dll
2021-04-25 15:45:47	DA52121924CE38A408716545913BD631	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\pt-PT.dll
2021-04-25 15:45:47	C7D5E436C8B90D233A15BADEABCDA8F9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\nl-NL.dll
2021-04-25 15:45:47	C6BAE9E792730109AF8D49151A95993D	1209856	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\installer.exe
2021-04-25 15:45:47	B12CC9FDCCD76F28DE9BAF993D97DFC0	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\en-US.dll
2021-04-25 15:45:47	B0B5B4962437B7C92E40A1586B7B9B26	108392	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ar-SA.dll
2021-04-25 15:45:47	AE9C5338D8495EEA829E79799CEA0357	268504	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\unrar.dll
2021-04-25 15:45:47	AE26B3A6DB8DE0310557FB6CBFD5845C	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\it-IT.dll
2021-04-25 15:45:47	A404969E2138BD0549F733A7EC88533E	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ja-JP.dll
2021-04-25 15:45:47	9607F2236E20915D55F4EEBB6550A837	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\sv-SE.dll
2021-04-25 15:45:47	7D2FD8AAEBCCD28A242120FC54EE5AEC	22688	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\fr-FR.dll
2021-04-25 15:45:47	7AD4AAD18EC0256C4433175574A52E99	105832	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ltr\resources.dll
2021-04-25 15:45:47	7A8AFACF6CC99E0759B3F8C6A5AC4260	486712	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\bdec.dll
2021-04-25 15:45:47	74DA6ABFCA4E60271A371A695FCDB3CE	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ru-RU.dll
2021-04-25 15:45:47	5D71CC7E148C87593106A824BB7B5FF7	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\pl-PL.dll
2021-04-25 15:45:47	5C78F5FF3DA68D2E183AB0A70732A603	1924176	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\bdnc.dll
2021-04-25 15:45:47	574677C1B69378A6628184941B55A68F	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\tr-TR.dll
2021-04-25 15:45:47	54F4801C9D3680C87EFC7DEDC117F5FF	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\de-DE.dll
2021-04-25 15:45:47	544C2EF53C8829B6BB7BF85B8E0B95A9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\es-ES.dll
2021-04-25 15:45:47	4B04A0844541FDE5983A746EAF83E5F4	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ko-KR.dll
2021-04-25 15:45:47	49BD8765F02C8F3F0C8E7652C18C647A	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\el-GR.dll
2021-04-25 15:45:47	3F0D0F2E9FBE0E7CE13C32BA5AB2D97F	4792328	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\sciter.dll
2021-04-25 15:45:47	2A2A7BC7D5D33401A1B6F298FD70CA45	21608	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\th-TH.dll
2021-04-25 15:45:47	23CB1D2B824319438EA5130C64E70EA5	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\ro-RO.dll
2021-04-25 15:45:47	15BF97F8068D55CF2E10D3AD4249ACAF	570344	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\ProductAgentDP.dll
2021-04-25 15:45:47	0A60C2D134320263CE60AB9AC37B0F3E	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\lang\vi-VN.dll
2021-04-25 15:45:47	025F39DFB155D7E1A284FBA5AFB0433D	1463368	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\additional.dll
2021-04-25 15:45:45	9897E1C9764CDF61E47CF6BE86AC7553	4999520	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\setuppackage.exe
2021-04-25 15:45:44	C6BB119F9E0BEE672FCECC1F8C20EE12	90808	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\deploy.dll
2021-04-25 15:45:44	9DF339B85C3B946D83478316F0498F0C	8288816	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\packages\agentpackage.exe
2021-04-25 15:45:44	83E5E7729D84DBA2334C136A661B8AEA	257504	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\agent_launcher.exe
2021-04-25 15:45:44	3A6B22D6B024C34D6C67CBE5E0227C01	737608	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX2\bddeploy.exe
2021-04-19 03:21:27	E8E9AAA3F62FF60713F50C3C8984C828	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\pt-BR.dll
2021-04-19 03:21:27	E332695C7BD1629DD8ED11EC65D2E6AB	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\hu-HU.dll
2021-04-19 03:21:27	DD77C5EAD52525733DECDB387C1452C4	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\cs-CZ.dll
2021-04-19 03:21:27	DA52121924CE38A408716545913BD631	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\pt-PT.dll
2021-04-19 03:21:27	C7D5E436C8B90D233A15BADEABCDA8F9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\nl-NL.dll
2021-04-19 03:21:27	C6BAE9E792730109AF8D49151A95993D	1209856	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\installer.exe
2021-04-19 03:21:27	B12CC9FDCCD76F28DE9BAF993D97DFC0	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\en-US.dll
2021-04-19 03:21:27	B0B5B4962437B7C92E40A1586B7B9B26	108392	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ar-SA.dll
2021-04-19 03:21:27	AE9C5338D8495EEA829E79799CEA0357	268504	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\unrar.dll
2021-04-19 03:21:27	AE26B3A6DB8DE0310557FB6CBFD5845C	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\it-IT.dll
2021-04-19 03:21:27	A404969E2138BD0549F733A7EC88533E	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ja-JP.dll
2021-04-19 03:21:27	9607F2236E20915D55F4EEBB6550A837	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\sv-SE.dll
2021-04-19 03:21:27	7D2FD8AAEBCCD28A242120FC54EE5AEC	22688	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\fr-FR.dll
2021-04-19 03:21:27	7AD4AAD18EC0256C4433175574A52E99	105832	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ltr\resources.dll
2021-04-19 03:21:27	7A8AFACF6CC99E0759B3F8C6A5AC4260	486712	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\bdec.dll
2021-04-19 03:21:27	74DA6ABFCA4E60271A371A695FCDB3CE	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ru-RU.dll
2021-04-19 03:21:27	5D71CC7E148C87593106A824BB7B5FF7	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\pl-PL.dll
2021-04-19 03:21:27	5C78F5FF3DA68D2E183AB0A70732A603	1924176	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\bdnc.dll
2021-04-19 03:21:27	574677C1B69378A6628184941B55A68F	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\tr-TR.dll
2021-04-19 03:21:27	54F4801C9D3680C87EFC7DEDC117F5FF	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\de-DE.dll
2021-04-19 03:21:27	544C2EF53C8829B6BB7BF85B8E0B95A9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\es-ES.dll
2021-04-19 03:21:27	4B04A0844541FDE5983A746EAF83E5F4	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ko-KR.dll
2021-04-19 03:21:27	49BD8765F02C8F3F0C8E7652C18C647A	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\el-GR.dll
2021-04-19 03:21:27	3F0D0F2E9FBE0E7CE13C32BA5AB2D97F	4792328	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\sciter.dll
2021-04-19 03:21:27	2A2A7BC7D5D33401A1B6F298FD70CA45	21608	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\th-TH.dll
2021-04-19 03:21:27	23CB1D2B824319438EA5130C64E70EA5	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\ro-RO.dll
2021-04-19 03:21:27	15BF97F8068D55CF2E10D3AD4249ACAF	570344	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\ProductAgentDP.dll
2021-04-19 03:21:27	0A60C2D134320263CE60AB9AC37B0F3E	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\lang\vi-VN.dll
2021-04-19 03:21:27	025F39DFB155D7E1A284FBA5AFB0433D	1463368	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\additional.dll
2021-04-19 03:21:25	C6BB119F9E0BEE672FCECC1F8C20EE12	90808	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\deploy.dll
2021-04-19 03:21:25	9DF339B85C3B946D83478316F0498F0C	8288816	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\agentpackage.exe
2021-04-19 03:21:25	9897E1C9764CDF61E47CF6BE86AC7553	4999520	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\packages\setuppackage.exe
2021-04-19 03:21:25	83E5E7729D84DBA2334C136A661B8AEA	257504	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\agent_launcher.exe
2021-04-19 03:21:25	3A6B22D6B024C34D6C67CBE5E0227C01	737608	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX1\bddeploy.exe
2021-04-18 23:37:36	4DC28FD063C264B5614C5CFD65C75924	126976	----a-w-	C:\Users\ari\AppData\Local\Temp\{EEDD3C19-0341-457B-AA33-37294DEAAD08}\{28006915-2739-4EBE-B5E8-49B25D32EB33}\InstallHelper.dll
2021-04-18 23:10:22	AE9C5338D8495EEA829E79799CEA0357	268504	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\unrar.dll
2021-04-18 23:10:22	3F0D0F2E9FBE0E7CE13C32BA5AB2D97F	4792328	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\sciter.dll
2021-04-18 23:10:22	15BF97F8068D55CF2E10D3AD4249ACAF	570344	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\ProductAgentDP.dll
2021-04-18 23:10:22	0A60C2D134320263CE60AB9AC37B0F3E	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\vi-VN.dll
2021-04-18 23:10:21	E8E9AAA3F62FF60713F50C3C8984C828	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\pt-BR.dll
2021-04-18 23:10:21	E332695C7BD1629DD8ED11EC65D2E6AB	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\hu-HU.dll
2021-04-18 23:10:21	DD77C5EAD52525733DECDB387C1452C4	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\cs-CZ.dll
2021-04-18 23:10:21	DA52121924CE38A408716545913BD631	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\pt-PT.dll
2021-04-18 23:10:21	C7D5E436C8B90D233A15BADEABCDA8F9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\nl-NL.dll
2021-04-18 23:10:21	C6BAE9E792730109AF8D49151A95993D	1209856	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\installer.exe
2021-04-18 23:10:21	B12CC9FDCCD76F28DE9BAF993D97DFC0	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\en-US.dll
2021-04-18 23:10:21	B0B5B4962437B7C92E40A1586B7B9B26	108392	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ar-SA.dll
2021-04-18 23:10:21	AE26B3A6DB8DE0310557FB6CBFD5845C	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\it-IT.dll
2021-04-18 23:10:21	A404969E2138BD0549F733A7EC88533E	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ja-JP.dll
2021-04-18 23:10:21	9607F2236E20915D55F4EEBB6550A837	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\sv-SE.dll
2021-04-18 23:10:21	7D2FD8AAEBCCD28A242120FC54EE5AEC	22688	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\fr-FR.dll
2021-04-18 23:10:21	7AD4AAD18EC0256C4433175574A52E99	105832	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ltr\resources.dll
2021-04-18 23:10:21	7A8AFACF6CC99E0759B3F8C6A5AC4260	486712	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\bdec.dll
2021-04-18 23:10:21	74DA6ABFCA4E60271A371A695FCDB3CE	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ru-RU.dll
2021-04-18 23:10:21	5D71CC7E148C87593106A824BB7B5FF7	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\pl-PL.dll
2021-04-18 23:10:21	5C78F5FF3DA68D2E183AB0A70732A603	1924176	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\bdnc.dll
2021-04-18 23:10:21	574677C1B69378A6628184941B55A68F	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\tr-TR.dll
2021-04-18 23:10:21	54F4801C9D3680C87EFC7DEDC117F5FF	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\de-DE.dll
2021-04-18 23:10:21	544C2EF53C8829B6BB7BF85B8E0B95A9	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\es-ES.dll
2021-04-18 23:10:21	4B04A0844541FDE5983A746EAF83E5F4	21096	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ko-KR.dll
2021-04-18 23:10:21	49BD8765F02C8F3F0C8E7652C18C647A	22696	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\el-GR.dll
2021-04-18 23:10:21	2A2A7BC7D5D33401A1B6F298FD70CA45	21608	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\th-TH.dll
2021-04-18 23:10:21	23CB1D2B824319438EA5130C64E70EA5	22184	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\lang\ro-RO.dll
2021-04-18 23:10:21	025F39DFB155D7E1A284FBA5AFB0433D	1463368	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\additional.dll
2021-04-18 23:10:14	9897E1C9764CDF61E47CF6BE86AC7553	4999520	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\setuppackage.exe
2021-04-18 23:10:13	9DF339B85C3B946D83478316F0498F0C	8288816	----a-w-	C:\Users\ari\AppData\Local\Temp\RarSFX0\packages\agentpackage.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2021-04-19 00:33:59	A584AB936ABB0F876805AE28C606A691	6144	----a-w-	C:\Windows\Sysnative\66QTFNYJ81.tmp
2021-04-18 22:45:23	B0CB2FB7718F69D7D45B607D7D0DF1CF	58016	----a-w-	C:\Windows\Sysnative\GDIPFONTCACHEV1.DAT
====== C:\Windows\Sysnative\drivers =====
2021-04-25 15:52:31	880B8D82B3FD45BC25842B85AD64E352	641728	----a-w-	C:\Windows\Sysnative\drivers\trufos.sys
2021-04-25 15:52:15	17F1681EF884F919B87F8E3D654A3B92	309120	----a-w-	C:\Windows\Sysnative\drivers\edrsensor.sys
2021-04-25 15:51:56	01EABBD726B368280F251E5003980782	386800	----a-w-	C:\Windows\Sysnative\drivers\vlflt.sys
2021-04-25 15:51:54	EB7C858E86859A4146F6C0234CF431A7	2718744	----a-w-	C:\Windows\Sysnative\drivers\atc.sys
2021-04-25 15:51:54	AA06AAC0583DD5158422D3915D10FC76	488592	----a-w-	C:\Windows\Sysnative\drivers\gemma.sys
2021-04-25 15:51:54	15C4EC8E6225331A2D0385A3A32E69E1	802976	----a-w-	C:\Windows\Sysnative\drivers\bddci.sys
====== C:\Windows\Tasks ======
2021-04-25 15:57:33	B4E5B471ACA154809BDBE8C487F4BC5F	3098	----a-w-	C:\Windows\Sysnative\Tasks\{67B927CA-31C5-41B8-8D0B-912F57867C51}
2021-04-25 14:55:01	FF8D82E3767C9CE88F7E16BA46E3C489	3508	----a-w-	C:\Windows\Sysnative\Tasks\BraveSoftwareUpdateTaskMachineUA
2021-04-25 14:54:59	94E637DB7ECB7D94815B32FA667FAE24	3380	----a-w-	C:\Windows\Sysnative\Tasks\BraveSoftwareUpdateTaskMachineCore
2021-04-18 23:12:46	2C00CAA14C5415B66B445CCE96996307	3648	----a-w-	C:\Windows\Sysnative\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
====== C:\Windows\Temp ======
======= C:\Program Files =====
2021-04-25 15:51:24	--------	d-----w-	C:\Program Files\Bitdefender Antivirus Free
2021-04-25 14:55:23	--------	d-----w-	C:\Program Files\BraveSoftware
2021-04-18 23:10:25	--------	d-----w-	C:\Program Files\Bitdefender Agent
2021-04-11 16:47:31	--------	d-----w-	C:\Program Files\DAEMON Tools Lite
2021-04-05 13:44:20	--------	d-----w-	C:\Program Files\dotnet
======= C:\PROGRA~2 =====
2021-04-25 14:54:56	--------	d-----w-	C:\PROGRA~2\BraveSoftware
2021-04-11 16:52:52	--------	d-----w-	C:\PROGRA~2\Hollow Knight Godmaster
======= C: =====
====== C:\Users\ari\AppData\Roaming ======
2021-04-22 16:57:11	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2021-04-18 23:20:38	--------	d-----w-	C:\Users\ari\AppData\Local\NPE
2021-04-18 23:20:07	--------	d-----w-	C:\Users\ari\AppData\Roaming\ZHP
2021-04-18 23:20:07	--------	d-----w-	C:\Users\ari\AppData\Local\ZHP
2021-04-18 06:32:20	4C6EC4F62E6A05E90CE631DF81182CDC	39664	----a-w-	C:\Users\ari\AppData\Local\scudding.exe
2021-04-13 22:48:44	--------	d-----w-	C:\Users\ari\AppData\Locallow\rpgames
2021-04-11 17:02:53	--------	d-----w-	C:\Users\ari\AppData\Locallow\Team Cherry
2021-04-11 16:51:58	--------	d-----w-	C:\Users\ari\AppData\Roaming\Disc-Soft
2021-04-05 14:16:28	--------	d-----w-	C:\Users\ari\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2021-04-03 02:32:24	--------	d-----w-	C:\Users\ari\AppData\Local\Diebold
2021-04-01 23:47:26	--------	d-----w-	C:\Users\ari\AppData\Roaming\Code
====== C:\Users\ari ======
2021-04-25 15:52:21	--------	d-----w-	C:\Users\TODOSO~1\Bitdefender
2021-04-25 15:52:21	--------	d-----w-	C:\ProgramData\Bitdefender
2021-04-25 15:51:30	C53B9428817F43D9DCBB85EFD5B5AA9D	2041445	----a-w-	C:\Users\ari\Desktop\Z-Analyse.exe
2021-04-25 15:51:30	294DBD73A55AF616B18771026B499B53	2038755	----a-w-	C:\Users\ari\Desktop\ZA-Scan.exe
2021-04-25 15:46:09	A4E8484E2C6E54FD0F8D5F030642C74F	85712	----a-w-	C:\Users\TODOSO~1\agent.update.1619365548.bdinstall.v2.bin
2021-04-25 15:46:09	A4E8484E2C6E54FD0F8D5F030642C74F	85712	----a-w-	C:\ProgramData\agent.update.1619365548.bdinstall.v2.bin
2021-04-25 15:43:00	2ED1A518F5711A6D76FD5E038BE96F9E	13543384	----a-w-	C:\Users\ari\Downloads\bitdefender_online (1).exe
2021-04-25 14:54:39	B8AA6D1533C6D79BCDD8FDE30A2F1FC0	1243504	----a-w-	C:\Users\ari\Downloads\BraveBrowserSetup.exe
2021-04-19 13:28:44	--------	d-----w-	C:\Users\TODOSO~1\Bitdefender Agent
2021-04-19 13:28:44	--------	d-----w-	C:\ProgramData\Bitdefender Agent
2021-04-18 23:19:56	AA522493D096695263515E4B68ADFD08	3326104	----a-w-	C:\Users\ari\Desktop\ZHPCleaner.exe
2021-04-18 23:17:16	1169A797ACA52C66DC28BE424359BDD8	8534696	----a-w-	C:\Users\ari\Downloads\adwcleaner_8.2.exe
2021-04-18 23:07:58	2ED1A518F5711A6D76FD5E038BE96F9E	13543384	----a-w-	C:\Users\ari\Downloads\bitdefender_online.exe
2021-04-18 22:47:01	F9915958835AD544B9C7A614B52E6AF4	1507058	----a-w-	C:\Users\ari\VrpiZyCXElBLmQGwITby
2021-04-18 22:46:01	D628EFDC6038382D8FD89BF72FF97CAC	98651	----a-w-	C:\Users\TODOSO~1\CQTdmlD28xlID\iphjManIMEPA.vbs
2021-04-18 22:46:01	9494DD0B2502B410B6ADC8764A712356	2636720	----a-w-	C:\Users\TODOSO~1\CQTdmlD28xlID\NIprUwIkiqLyAV.bat
2021-04-18 22:46:01	8F2A4BCEC8B156FB67B00AAC81A828D9	437	----a-w-	C:\Users\TODOSO~1\CQTdmlD28xlID\main.bat
2021-04-18 22:46:01	5DBDA5A185F8B9E33B6D7ECDB801988A	813	----a-w-	C:\Users\TODOSO~1\CQTdmlD28xlID\owmgfeiqFRNmDEL.bat
2021-04-18 22:46:00	--------	d-----w-	C:\Users\TODOSO~1\CQTdmlD28xlID
2021-04-18 22:46:00	--------	d-----w-	C:\ProgramData\CQTdmlD28xlID
2021-04-18 22:45:57	--------	d-----w-	C:\Users\TODOSO~1\ZGVI1EVLN2VKCBO0N7H7JS1Z3
2021-04-18 22:45:57	--------	d-----w-	C:\ProgramData\ZGVI1EVLN2VKCBO0N7H7JS1Z3
2021-04-13 22:06:54	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftnyxGame
2021-04-11 17:03:05	--------	d-----w-	C:\Users\Public\Documents\Steam
2021-04-11 17:00:52	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hollow Knight Godmaster
2021-04-11 16:52:08	--------	d-----w-	C:\Users\TODOSO~1\DAEMON Tools Lite
2021-04-11 16:52:08	--------	d-----w-	C:\ProgramData\DAEMON Tools Lite
2021-04-11 16:47:11	--------	d-----w-	C:\Users\TODOSO~1\Disc-Soft
2021-04-11 16:47:11	--------	d-----w-	C:\ProgramData\Disc-Soft
2021-04-05 13:47:38	--------	d-----w-	C:\Users\ari\.dotnet
2021-04-03 02:32:28	--------	d-----w-	C:\Users\TODOSO~1\Temp
2021-04-03 02:32:28	--------	d-----w-	C:\ProgramData\Temp
2021-04-01 23:47:26	--------	d-----w-	C:\Users\ari\.vscode

====== C: exe-files ==
2021-04-25 15:54:13	1AC4D5BAB22C64238C268EFAD8E9BB23	168688	----a-w-	C:\Program Files\Bitdefender Antivirus Free\redline_avfree_64\bdcheck.exe
2021-04-25 15:52:15	CA8A93CBA76DF8D7760AE4C414AFD88C	236128	----a-w-	C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
2021-04-25 15:52:15	B60A02DF7496E4976CB4059BA3BCF9DE	440928	----a-w-	C:\Program Files\Bitdefender Antivirus Free\installer\installer.exe
2021-04-25 15:52:15	8F5797782ED304A39D2FC506BE6E366C	1153120	----a-w-	C:\Program Files\Bitdefender Antivirus Free\testinitsigs.exe
2021-04-25 15:52:15	8A727BFD1003DC9C37FA64A58EAC764C	796256	----a-w-	C:\Program Files\Bitdefender Antivirus Free\installer\genptch.exe
2021-04-25 15:52:15	87E82C34F5652985C90A83DCE1D53AEC	1302112	----a-w-	C:\Program Files\Bitdefender Antivirus Free\downloader.exe
2021-04-25 15:52:15	048583643C8336A42BE535C1A46728F9	2461792	----a-w-	C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
2021-04-25 15:51:57	C4DA6AAE0C6C0C1AA9DAF11A568161BB	240352	----a-w-	C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
2021-04-25 15:51:57	C326767AC5F3439AC4B8E451BC5D0B2F	559200	----a-w-	C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
2021-04-25 15:51:56	99F5F75C6451EF9A91440D17AF425BCA	797280	----a-w-	C:\Program Files\Bitdefender Antivirus Free\ipm.exe
2021-04-25 15:51:56	5E9734326E80661BF554A95D129ABC04	257640	----a-w-	C:\Program Files\Bitdefender Antivirus Free\AgentCtrl.exe
2021-04-25 15:51:56	2B783189B90D7A1A9FFC44D43439FF18	281696	----a-w-	C:\Program Files\Bitdefender Antivirus Free\ProductActionCenterFix.exe
2021-04-25 15:51:55	C6EA8CC7CBCF8F7D91D554DB1F4BEB9C	1738848	----a-w-	C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
2021-04-25 15:51:54	77F378B2A3A8CA467857CEDB7A8FCB6E	7950944	----a-w-	C:\Program Files\Bitdefender Antivirus Free\mitm_install_tool_dci.exe
2021-04-25 15:51:54	6746A6531AA2188D17202AEFA5388D06	136288	----a-w-	C:\Program Files\Bitdefender Antivirus Free\mitm_tools\certutil.exe
2021-04-25 15:51:54	1DBA66DA7D6F3FC2D24C6D019EDFFC6E	1251936	----a-w-	C:\Program Files\Bitdefender Antivirus Free\SupportTool.exe
2021-04-25 15:51:53	F599C89369BD54EBA9F72168B429426F	1449568	----a-w-	C:\Program Files\Bitdefender Antivirus Free\bdreinit.exe
2021-04-25 15:51:53	F0731F0CFE0F2733509CDA6958CD0BC5	1473120	----a-w-	C:\Program Files\Bitdefender Antivirus Free\bsodhandler\AnalyseCrash.exe
2021-04-25 15:51:27	F599C89369BD54EBA9F72168B429426F	1449568	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\bdreinit.exe
2021-04-25 15:51:27	B77D184EB9F803E4B9431E136495F45B	1719912	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\BPInstaller.exe
2021-04-25 15:51:26	789575051464CD5993DCC4FBDFCDB19D	5555112	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\scan.exe
2021-04-25 15:51:26	562C732C92CA80F9205FE3CE9260FDFA	929264	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\trafficscan_bddci.exe
2021-04-25 15:51:26	377A2D7171D3C2D321CF2182A36D5499	6426080	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\update.exe
2021-04-25 15:51:26	0953FD4A4DE2768E4F3A08B63AE4676B	1559048	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\vlflt.exe
2021-04-25 15:51:26	06E1929219101B29D7D5F6F1530BDAAA	526264	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\selfpr.exe
2021-04-25 15:51:25	48D4B361C0D7B4BCBF0450FEF9A5799D	39004272	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\pretrain.exe
2021-04-25 15:51:24	EA1CDCD2DDDE8664050EBE82FEB8F938	5208160	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\cstsdk.exe
2021-04-25 15:51:24	E0A885BD680EF09966A3C00A455CA854	1604024	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\gemma.exe
2021-04-25 15:51:24	CD1AB0450B2D1D1796E6AF87BD393BDE	608792	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\onaccess.exe
2021-04-25 15:51:24	C2279BD23F1412525B8640C5BF509C64	1078080	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\carantina.exe
2021-04-25 15:51:24	AF10FA56128D3C34A658C05FC7793127	16807680	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\baza.exe
2021-04-25 15:51:24	9873F2509DEED6C3E53C3C3D1407DFA5	854640	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\ondemand.exe
2021-04-25 15:51:24	8504C3E32B1CEA04D973DDEA7A3E59B5	16550352	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\atc.exe
2021-04-25 15:51:24	7509DD9D9896B7F19768F6951481BCE4	11827880	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\bddci.exe
2021-04-25 15:51:24	5E9734326E80661BF554A95D129ABC04	257640	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\AgentCtrl.exe
2021-04-25 15:51:24	4504EA07EF143B4094EFBF44FEAF7908	3839840	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\epsservice.exe
2021-04-25 15:51:24	4105079AB14F68B60C215E83C34A3DAF	6343536	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\bdagent.exe
2021-04-25 15:51:24	3D4CB9F0FF4F89F6408273420B6CA546	261465696	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\plugins64.exe
2021-04-25 15:51:24	26D3ADC41DCE4A1A95310070F102B3DA	5365160	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\antiphishing_bddci.exe
2021-04-25 15:51:24	225F55EBF605528DE54CF87CE24329E0	2194352	----a-w-	C:\Program Files\Bitdefender Antivirus Free\kitinstaller\archives\eventcorrelator.exe
2021-04-25 14:55:59	ACF348F609ADECD3E8A55FDEA528D608	2209224	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe
2021-04-25 14:55:59	9D341920064A094591EADABFB992DDD0	2543560	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\90.1.23.73\Installer\setup.exe
2021-04-25 14:55:59	9D341920064A094591EADABFB992DDD0	2543560	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\90.1.23.73\Installer\chrmstp.exe
2021-04-25 14:55:59	759DE8AAB0D53885E23FC155B8AF5442	828872	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\chrome_proxy.exe
2021-04-25 14:55:43	B1CF67AEA1320B9EE7930C69A7847A98	1019336	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\90.1.23.73\notification_helper.exe
2021-04-25 14:55:36	9205486E1CC35BCEF97765D6ACD73C63	1375688	----a-w-	C:\Program Files\BraveSoftware\Brave-Browser\Application\90.1.23.73\chrome_pwa_launcher.exe
2021-04-19 03:32:12	392E6E8190973BE197968AF46D791E41	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$IH4LB1V.exe
2021-04-19 03:32:12	2F26B0042364661BFB9A7EE7627623E7	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$IKE6921.exe
2021-04-19 03:32:12	131B430BC0A83F81C6C7CF1D65EB2844	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$IYD2AXO.exe
2021-04-19 03:22:52	2AE1CA078F57125F90632382A6A5349E	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$IBSJAI2.exe
2021-04-19 03:22:52	2AA64996EAADE72A3695640E0704A6F1	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$I02G2DB.exe
2021-04-19 01:07:29	89B87F51D009464A9123986AF8A78B2D	876056	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$RBSJAI2.exe
2021-04-18 23:10:33	C6BAE9E792730109AF8D49151A95993D	1209856	----a-w-	C:\Program Files\Bitdefender Agent\installer\installer.exe
2021-04-18 23:10:33	9DF339B85C3B946D83478316F0498F0C	8288816	----a-w-	C:\Program Files\Bitdefender Agent\installer\agentpackage.exe
2021-04-18 23:10:33	9897E1C9764CDF61E47CF6BE86AC7553	4999520	----a-w-	C:\Program Files\Bitdefender Agent\installer\setuppackage.exe
2021-04-18 23:10:26	575B0E2CE823A29BFD5DD7FEC51B7752	895080	----a-w-	C:\Program Files\Bitdefender Agent\WatchDog.exe
2021-04-18 23:10:25	FFD1CB1343E02C6F0159622C912562EE	925712	----a-w-	C:\Program Files\Bitdefender Agent\bdreinit.exe
2021-04-18 23:10:25	AC20CE2E315BC5F4599BAABA3EB23BAD	794312	----a-w-	C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
2021-04-18 23:10:25	64A39F9314A0D1B8EC387EA2C81CAF83	1677952	----a-w-	C:\Program Files\Bitdefender Agent\ProductAgentUI.exe
2021-04-18 23:10:25	5A9220526894C7CDEF5A8D6A9B9B0BBA	1355768	----a-w-	C:\Program Files\Bitdefender Agent\ProductAgentService.exe
2021-04-18 23:10:25	28CB7B261F4EB97E8A4B3B0D32F8DEF1	950592	----a-w-	C:\Program Files\Bitdefender Agent\BDSubWiz.exe
2021-04-18 22:46:49	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$RKE6921.exe
2021-04-18 22:46:46	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$RH4LB1V.exe
2021-04-18 22:46:45	CA4BC9068FC68E54D5A9020064698BB6	103952	----a-w-	C:\$Recycle.Bin\S-1-5-21-1141835253-1798100564-4190333858-1000\$RYD2AXO.exe
=== C: other files ==
2021-04-25 15:52:15	A0ABD53A4EDFD4AD69430B5E1FB67B74	22976	----a-w-	C:\Program Files\Bitdefender Antivirus Free\bdelam.sys
2021-04-25 15:52:15	17F1681EF884F919B87F8E3D654A3B92	309120	----a-w-	C:\Program Files\Bitdefender Antivirus Free\edrsensor.sys
2021-04-25 15:51:57	880B8D82B3FD45BC25842B85AD64E352	641728	----a-w-	C:\Program Files\Bitdefender Antivirus Free\trufos.sys
2021-04-25 15:51:56	01EABBD726B368280F251E5003980782	386800	----a-w-	C:\Program Files\Bitdefender Antivirus Free\vlflt.sys
2021-04-25 15:51:54	EB7C858E86859A4146F6C0234CF431A7	2718744	----a-w-	C:\Program Files\Bitdefender Antivirus Free\atc.sys
2021-04-25 15:51:54	AA06AAC0583DD5158422D3915D10FC76	488592	----a-w-	C:\Program Files\Bitdefender Antivirus Free\gemma.sys
2021-04-25 15:51:54	15C4EC8E6225331A2D0385A3A32E69E1	802976	----a-w-	C:\Program Files\Bitdefender Antivirus Free\web\bddci.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1141835253-1798100564-4190333858-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"f.lux"="C:\Users\ari\AppData\Local\FluxSoftware\Flux\flux.exe /noshow"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB Gamepad"="C:\Windows\USB Vibration\dr100&110\USB Gamepad.exe -boot"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"f.lux"="C:\Users\ari\AppData\Local\FluxSoftware\Flux\flux.exe /noshow"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AthBtTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AthBtTray"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\athbttray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AtherosBtStack]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AtherosBtStack"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\btvstack.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Common Files\\Ahead\\Lib\\NMBgMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite Automount]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite Automount"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\DAEMON Tools Lite\\DTAgent.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Discord]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Discord"
"hkey"="HKCU"
"command"="C:\\Users\\ari\\AppData\\Local\\Discord\\app-0.0.306\\Discord.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HotKeysCmds"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\hkcmd.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogMeIn Hamachi Ui]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LogMeIn Hamachi Ui"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\LogMeIn Hamachi\\hamachi-2-ui.exe\" --auto-start"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Persistence"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\igfxpers.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RazerCortex]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RazerCortex"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Razer\\Razer Cortex\\CortexLauncher.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RtHDVCpl"
"hkey"="HKLM"
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Steam\\steam.exe\" -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^ari^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitorar alertas de tinta - HP Deskjet 1510 series.lnk]
"path"="C:\\Users\\ari\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Monitorar alertas de tinta - HP Deskjet 1510 series.lnk"
"backup"="C:\\Windows\\pss\\Monitorar alertas de tinta - HP Deskjet 1510 series.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Windows\\system32\\RunDll32.exe \"C:\\Program Files\\HP\\HP Deskjet 1510 series\\bin\\HPStatusBL.dll\",RunDLLEntry SERIALNUMBER=CN3B217KCR05XJ;CONNECTION=USB;MONITOR=1;"
"item"="Monitorar alertas de tinta - HP Deskjet 1510 series"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\GoogleChromeElevationService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LMIGuardianSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NBService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NMIndexingService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ProductAgentService]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" [C:\Program Files\Bitdefender Agent\WatchDog.exe]
"C:\Windows\SysNative\tasks\BraveSoftwareUpdateTaskMachineCore" [C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe]
"C:\Windows\SysNative\tasks\BraveSoftwareUpdateTaskMachineUA" [C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe]
"C:\Windows\SysNative\tasks\CCleaner Update" [C:\Program Files\CCleaner\CCUpdate.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" [C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe]
"C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" [C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe]
"C:\Windows\SysNative\tasks\Rerun Warsaw's CoreFixer" [C:\Windows\TEMP\is-6BH2A.tmp\corefixer.exe]

==== Chromium Look ======================

Google Chrome Version: 90.0.4430.85

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ihcjicgdanjaechkgeegckofjjedodee - No path found[]

Malwarebytes Browser Guard - ari\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee
Slides - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Sheets - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Dark - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Malwarebytes Browser Guard - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee
Chrome Web Store Payments - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - ari\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O4 - HKLM\..\Run: [USB Gamepad] C:\Windows\USB Vibration\dr100&110\USB Gamepad.exe -boot
O4 - HKCU\..\Run: [f.lux] "C:\Users\ari\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: bdredline - Bitdefender - C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (file missing)
O23 - Service: Serviço do Brave Update (brave) (brave) - BraveSoftware Inc. - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
O23 - Service: Serviço do Brave Update (bravem) (bravem) - BraveSoftware Inc. - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - Epic Games, Inc - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: Easy Anti-Cheat (Epic Online Services) (EasyAntiCheat_EOS) - Epic Games, Inc. - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.85\elevation_service.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProductAgentService - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Bitdefender Update Service (updatesrv) - Bitdefender - C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Security Service (vsserv) - Bitdefender - C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
O23 - Service: Bitdefender Correlation Service (vsservppl) - Bitdefender - C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on 25/04/2021 at 13:11:13,46 ======================