Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 22-01-2022
Executado por Marcela (administrador) em LAPTOP-MARCELA (SAMSUNG ELECTRONICS CO., LTD. 300E5M/300E5L) (23-01-2022 18:28:11)
Executando a partir de C:\Users\Marcela\Desktop
Perfis Carregados: Marcela
Plataforma: Microsoft Windows 10 Home Single Language Versão 21H1 19043.1469 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityCmdServer.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Service.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Status.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpansionPack.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpansionUI.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpLauncher.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUService.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe
(Samsung Electronics CO., LTD. -> Samsung) C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242208 2017-08-18] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-01-18] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Nenhum Arquivo)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-12-08] (Intel Corporation -> Intel)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-3950624871-1828029806-417802440-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3950624871-1828029806-417802440-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-27] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-18\...\RunOnce: [Application Restart #3] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-27] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-18\...\RunOnce: [Application Restart #4] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-27] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-18\...\RunOnce: [Application Restart #2] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-27] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-27] (Samsung Electronics CO., LTD. -> Samsung)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-10] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> "C:\Program Files (x86)\AVG\Browser\Application\86.1.6937.200\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {07CEAF2F-1937-42BE-9E40-CAD2A7B6C590} - System32\Tasks\Samsung\SamsungSecurity\SamsungSecurityPatternLoginAccountMonitor => C:\Program Files (x86)\Samsung\SamsungSecurity\SMessage.exe [507624 2017-06-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {0EDC2C07-1707-4E4E-89C3-AEE9DA2D64E7} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1174C0A9-E9F2-4151-A039-2A23D3E495E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-29] (Google Inc -> Google Inc.)
Task: {1B9915C0-63D2-4D74-8553-D5ADB05D7414} - System32\Tasks\Samsung\Wifi Camera\WiFi Camera Agent => C:\Program Files\Samsung\WiFiCamera\WiFiCameraAgent.exe [382696 2016-11-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd)
Task: {4ED0C996-24C0-4030-88AA-B424322122FF} - System32\Tasks\DPICustomized => C:\ProgramData\Samsung\DPICustomizing\FontCustomizing.exe [25760 2017-05-24] (Samsung Electronics CO., LTD. -> )
Task: {547FEE5E-8237-4198-8B4C-97563FF1B5EC} - System32\Tasks\Opera scheduled assistant Autoupdate 1556237765 => C:\Users\Marcela\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Marcela\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {58B42CD8-6A91-44CC-AC95-C16EA411A1B1} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-12-05] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {5C957511-B0C6-479C-AF8D-C2D81263D19C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6D4230AD-F10E-4E77-A091-DAE252EB646E} - System32\Tasks\Samsung\SamsungPCCleaner\SecurityCheck => C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\SecurityAppChecker.exe [4664568 2021-03-10] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {8C0D326F-B9EB-4F1C-B7AB-8DE7E86EFE81} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [956920 2019-12-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8D621C82-3338-4F03-816C-F4B249E85ADC} - \Samsung\Settings\SettingsHibernateMonitor -> Nenhum Arquivo <==== ATENÇÃO
Task: {92C99916-62C4-4050-93B7-6A302C5037D6} - System32\Tasks\SamsungUpdateServiceUpdate => C:\ProgramData\Samsung\SamsungUpdate3\data\SelfUpdate\SUInst.exe [2115392 2017-11-08] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {98E3DB25-DD7C-4028-A02A-F63EE1A8CF0C} - System32\Tasks\Samsung\SamsungUpdate\UserModeWorker => C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe [22904 2021-12-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {AC438D87-3F7F-4E32-A935-1C8F1B3D90A6} - System32\Tasks\Samsung\SamsungSecurity\SamsungSecurityPatternLoginMonitor => C:\Program Files (x86)\Samsung\SamsungSecurity\SMessage.exe [507624 2017-06-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {ADBC9246-90C2-4B79-92E5-16DD151D11DD} - System32\Tasks\ColorEngine => C:\Program Files\Samsung\ColorEngine\ColorEngine.exe (Nenhum Arquivo)
Task: {B6A257B4-892C-41C2-BB9A-CD30DBED0F2D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {BBD1E0CA-DC5F-4724-A3B0-FCE16C6A369E} - System32\Tasks\Opera scheduled Autoupdate 1554093684 => C:\Users\Marcela\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo)
Task: {BDC982B1-3B6B-4369-910C-ADDE26C2E185} - System32\Tasks\CCleanerSkipUAC - Marcela => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DF2143A7-38EA-4A5E-B70F-2DCC0E78C91D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {E4436D11-78D8-4AE4-9FB5-52E3E1EDBCE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-29] (Google Inc -> Google Inc.)
Task: {FBBC151B-0402-45F7-A383-A80DE1127865} - System32\Tasks\PowerManagement => C:\Program Files (x86)\Samsung\PowerCtrlManager\PowerCtrlClient.exe [2760552 2017-05-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {FFDEAC9C-9C56-4E51-8907-02037382AB4C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{462dc09b-5237-4f35-8566-cb5e1710913e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{588c34ff-ef1b-4aad-a58f-941150b752fe}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{f0f9cbd9-5980-4c11-b6c3-b949abde252a}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge HomeButtonPage: HKU\S-1-5-21-3950624871-1828029806-417802440-1002 -> hxxp://www.search-br.com/
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marcela\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-23]
Edge HomePage: Default -> hxxp://www.search-br.com/
Edge StartupUrls: Default -> "hxxp://www.search-br.com/"
Edge DefaultSearchURL: Default -> hxxp://www.search-br.com/search?q={searchTerms}
Edge DefaultSearchKeyword: Default -> search-br.com
Edge Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-19]
Edge HKU\S-1-5-21-3950624871-1828029806-417802440-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Profile 9
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-23]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-01-23]
CHR HomePage: Profile 1 -> hxxps://agendaservico.pcdf.df.gov.br/
CHR StartupUrls: Profile 1 -> "hxxps://www.google.com.br/"
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-28]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-02]
CHR Extension: (Documentos) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-28]
CHR Extension: (Google Drive) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-28]
CHR Extension: (YouTube) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-28]
CHR Extension: (Honey) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2022-01-13]
CHR Extension: (Adobe Acrobat) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-17]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-23]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-28]
CHR Extension: (Gmail) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-28]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-01-18]
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-13]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-16]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-13]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-16]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-13]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5 [2021-11-27]
CHR Notifications: Profile 5 -> hxxps://meet.google.com
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-14]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-14]
CHR Extension: (Documentos) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-14]
CHR Extension: (Google Drive) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-14]
CHR Extension: (YouTube) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-14]
CHR Extension: (Turkey) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\dedlepgejadijllkcfbkoooojhdlifog [2021-11-19]
CHR Extension: (Adobe Acrobat) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-18]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-14]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-14]
CHR Extension: (Adblock - No More Ads) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\mblbcmmhijbfhblohmfjopjjlagmkgem [2021-11-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-14]
CHR Extension: (Gmail) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-14]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6 [2021-11-20]
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-29]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-29]
CHR Extension: (Documentos) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-29]
CHR Extension: (Google Drive) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-29]
CHR Extension: (YouTube) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-29]
CHR Extension: (Adobe Acrobat) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-19]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-29]
CHR Extension: (AVG SafePrice | Comparação, ofertas, cupons) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2021-10-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-29]
CHR Extension: (tTab) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe [2021-10-29]
CHR Extension: (Gmail) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-29]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8 [2022-01-09]
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-05]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-05]
CHR Extension: (Documentos) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-05]
CHR Extension: (Google Drive) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-05]
CHR Extension: (YouTube) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-05]
CHR Extension: (Adobe Acrobat) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-05]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-05]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-05]
CHR Extension: (AVG SafePrice | Comparação, ofertas, cupons) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2022-01-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-05]
CHR Extension: (tTab) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe [2022-01-05]
CHR Extension: (Gmail) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-05]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9 [2022-01-23]
CHR HomePage: Profile 9 -> hxxps://www.google.com.br/?gws_rd=ssl
CHR StartupUrls: Profile 9 -> "hxxps://www.google.com.br/?gws_rd=ssl"
CHR Extension: (Apresentações) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-23]
CHR Extension: (Kaspersky Protection) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-23]
CHR Extension: (Documentos) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-23]
CHR Extension: (Google Drive) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-23]
CHR Extension: (YouTube) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-23]
CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-23]
CHR Extension: (Kaspersky Protection 20.0) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2022-01-23]
CHR Extension: (Planilhas) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-23]
CHR Extension: (Favoritos do iCloud) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-01-23]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-23]
CHR Extension: (Google Meet Grid View) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\kklailfgofogmmdlhgmjgenehkjoioip [2022-01-23]
CHR Extension: (AVG SafePrice | Comparação, ofertas, cupons) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2022-01-23]
CHR Extension: (Meet Attendance) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nenibigflkdikhamlnekfppbganmojlg [2022-01-23]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-23]
CHR Extension: (tTab) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe [2022-01-23]
CHR Extension: (Gmail) - C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-23]
CHR Profile: C:\Users\Marcela\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-23]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKU\S-1-5-21-3950624871-1828029806-417802440-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKU\S-1-5-21-3950624871-1828029806-417802440-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]
CHR HKU\S-1-5-21-3950624871-1828029806-417802440-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM-x32\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-01-18] (Dropbox, Inc -> Dropbox, Inc.)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [39352 2021-12-08] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [177080 2021-12-08] (Intel Corporation -> Intel)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [357272 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 Samsung PC Cleaner 2 Service; C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Service.exe [1150200 2021-03-10] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 Samsung Settings Expansion Launcher; C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpLauncher.exe [229232 2020-05-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 SamsungRecoveryService; C:\Program Files\Samsung\Recovery\BulletService.exe [501480 2017-08-14] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 SamsungSecurity Launcher; C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityLauncher.exe [2019048 2017-06-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungUpdateService; C:\Program Files\Samsung\SamsungUpdate\SUService.exe [377208 2021-12-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 SecPowerCtrlService; C:\Program Files (x86)\Samsung\PowerCtrlManager\PowerCtrlService.exe [1652584 2017-05-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2022-01-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [287904 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [319720 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115968 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [229248 2022-01-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 SamsungEventController; C:\WINDOWS\System32\drivers\SamsungEventController.sys [41616 2018-05-16] (Samsung Electronics CO., LTD. -> Samsung)
R3 Shci; C:\WINDOWS\System32\drivers\Shci.sys [68096 2016-11-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 Snscr; C:\WINDOWS\System32\drivers\Snscr.sys [52224 2016-10-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2017-01-16] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2020-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-01-23 18:23 - 2022-01-23 18:27 - 000050935 _____ C:\Users\Marcela\Desktop\Addition.txt
2022-01-23 18:19 - 2022-01-23 18:29 - 000036201 _____ C:\Users\Marcela\Desktop\FRST.txt
2022-01-23 18:19 - 2022-01-23 18:28 - 000000000 ____D C:\FRST
2022-01-23 18:17 - 2022-01-23 18:15 - 000003885 _____ C:\Users\Marcela\Desktop\AdwCleaner[C14].txt
2022-01-23 18:17 - 2022-01-23 18:14 - 000003887 _____ C:\Users\Marcela\Desktop\AdwCleaner[S14].txt
2022-01-23 17:55 - 2022-01-23 17:55 - 002311680 _____ (Farbar) C:\Users\Marcela\Desktop\FRST64.exe
2022-01-23 17:47 - 2022-01-23 17:47 - 000011905 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-23 17:20 - 2022-01-23 17:20 - 000000000 ___HD C:\$WinREAgent
2022-01-23 16:45 - 2022-01-23 16:45 - 008540344 _____ (Malwarebytes) C:\Users\Marcela\Desktop\adwcleaner_8.3.1.exe
2022-01-21 20:19 - 2022-01-21 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-01-18 21:17 - 2022-01-18 21:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-01-18 21:17 - 2022-01-18 21:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-01-18 21:17 - 2022-01-18 21:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-01-18 21:17 - 2022-01-18 21:17 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-01-13 22:21 - 2022-01-13 22:21 - 000319720 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-01-13 22:19 - 2022-01-14 03:10 - 000229248 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-01-13 22:19 - 2022-01-13 22:19 - 000287904 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-01-13 22:19 - 2022-01-13 22:19 - 000115968 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-01-12 20:42 - 2022-01-12 20:42 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-12 20:41 - 2022-01-12 20:41 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-10 16:03 - 2022-01-10 16:04 - 000029873 _____ C:\Users\Marcela\Desktop\solicitarPassaporte.do.pdf
2022-01-10 16:03 - 2022-01-10 16:03 - 000000525 _____ C:\Users\Marcela\Downloads\solicitarPassaporte.do

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2022-01-23 18:27 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-23 18:15 - 2018-03-30 21:59 - 000000000 ____D C:\Program Files\CCleaner
2022-01-23 18:14 - 2020-06-21 00:44 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-01-23 18:04 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-23 18:04 - 2018-03-29 18:42 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-23 18:02 - 2018-01-28 23:06 - 000000000 __SHD C:\Users\Marcela\IntelGraphicsProfiles
2022-01-23 17:59 - 2020-09-24 07:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-23 17:59 - 2020-09-24 01:28 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-23 17:58 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-23 17:57 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-23 17:54 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-23 17:40 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-23 17:40 - 2018-03-30 12:41 - 000000000 ____D C:\Users\Marcela\AppData\Local\Packages
2022-01-23 17:15 - 2017-09-18 02:07 - 000000000 ____D C:\Program Files\Samsung
2022-01-23 17:06 - 2018-03-29 18:44 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-23 17:05 - 2020-07-17 12:14 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-23 17:04 - 2020-06-16 12:02 - 000000000 ____D C:\Users\Marcela\AppData\Local\D3DSCache
2022-01-23 17:03 - 2018-01-28 23:08 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-01-23 16:58 - 2019-12-07 06:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2022-01-23 16:57 - 2020-09-24 01:32 - 000000000 ____D C:\Users\Marcela
2022-01-23 16:23 - 2020-09-24 01:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-23 16:18 - 2021-05-06 18:45 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-23 16:04 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-23 16:00 - 2020-09-24 07:57 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-23 16:00 - 2020-09-24 07:57 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-21 20:21 - 2018-03-29 19:25 - 000000000 ____D C:\Users\Marcela\AppData\Local\Dropbox
2022-01-21 20:20 - 2018-03-29 19:25 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-01-21 19:38 - 2020-09-24 07:57 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 19:38 - 2020-09-24 07:57 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-14 20:08 - 2020-09-24 07:57 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3950624871-1828029806-417802440-1002
2022-01-14 20:08 - 2020-09-24 01:32 - 000002391 _____ C:\Users\Marcela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-14 17:04 - 2019-02-20 16:26 - 000000000 ____D C:\Users\Marcela\AppData\Local\Adobe
2022-01-14 15:23 - 2020-09-24 07:42 - 001741824 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-14 15:23 - 2019-12-07 11:54 - 000752646 _____ C:\WINDOWS\system32\prfh0416.dat
2022-01-14 15:23 - 2019-12-07 11:54 - 000148760 _____ C:\WINDOWS\system32\prfc0416.dat
2022-01-14 15:15 - 2020-09-24 01:29 - 000304744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-14 03:13 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-12 20:20 - 2020-09-24 07:57 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-12 20:19 - 2019-02-20 16:32 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-11 23:17 - 2018-03-29 22:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-11 23:09 - 2018-03-29 22:26 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-09 14:24 - 2019-04-03 19:05 - 000000000 ____D C:\stremio-cache

==================== Arquivos na raiz de alguns diretórios ========

2020-10-28 08:42 - 2020-10-28 08:42 - 010076160 _____ () C:\Program Files (x86)\GUT8FEE.tmp
2018-04-09 15:17 - 2019-02-01 04:33 - 000000324 _____ () C:\Users\Marcela\AppData\Roaming\WB.CFG
2020-06-21 00:42 - 2021-05-12 19:25 - 000000615 _____ () C:\Users\Marcela\AppData\Local\oobelibMkey.log
2021-05-12 21:02 - 2021-05-12 21:02 - 000007605 _____ () C:\Users\Marcela\AppData\Local\Resmon.ResmonCfg
2019-01-31 19:45 - 2019-01-31 19:45 - 000000153 _____ () C:\Users\Marcela\AppData\Local\{286E9E2B-29A3-4360-BA36-F91331073DE8}
2019-01-16 02:09 - 2019-01-16 02:09 - 000000000 _____ () C:\Users\Marcela\AppData\Local\{5D137A72-E85D-4A9A-9DD6-25FBB99533B0}

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================