Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2022 01 Executado por kleber silva (administrador) em RESIDENCIALSOLI (LENOVO 80JE) (02-06-2022 19:09:41) Executando a partir de C:\Users\kleber silva\OneDrive\Área de Trabalho Perfis Carregados: kleber silva Plataforma: Microsoft Windows 10 Home Single Language Versão 21H2 19044.1706 (X64) Idioma: Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\setup\instup.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe (C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (svchost.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Users\kleber silva\OneDrive\Área de Trabalho\adwcleaner.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UtcDecoderHost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe Falha ao acessar processo -> Cortana.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [4060376 2014-10-23] (Realtek Semiconductor Corp -> Realtek semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [212816 2022-05-30] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1994423857-2244162675-3190174977-1001\...\Run: [MicrosoftEdgeAutoLaunch_62AAF1FE25C09BB5B74E0CB4170BDF63] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595192 2022-05-31] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\hpfpp083: C:\Windows\System32\spool\prtprocs\x64\hpfpp083.dll [254464 2008-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\shn3mPC: C:\Windows\System32\spool\prtprocs\x64\shn3mpc.dll [94064 2022-01-22] (HP Inc. -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Print\Monitors\hpf3l083.dll: C:\WINDOWS\system32\hpf3l083.dll [134144 2008-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\...\Print\Monitors\shn3m Langmon: C:\WINDOWS\system32\shn3mlm.dll [64656 2021-11-16] (HP Inc. -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-05-30] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {023CF415-224B-4DEC-8F69-847C536B1095} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {0DE29099-98D1-4516-924A-180531622B7E} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Nenhum Arquivo <==== ATENÇÃO Task: {327575EF-0CD1-4893-B193-E7BA1E3B4912} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Nenhum Arquivo <==== ATENÇÃO Task: {35ACAE5B-9A03-43DE-8635-E21C716226AB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3CC7946E-17A0-48EF-AE55-A428C61AF2AE} - \Lenovo\ImController\TimeBasedEvents\34215183-9d66-4ed1-a346-57f3214d837d -> Nenhum Arquivo <==== ATENÇÃO Task: {662D159D-0541-43A3-B94C-189874FE426F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-12] (Google LLC -> Google LLC) Task: {6BCD62DC-8ACE-4EE0-8C81-7BB8C4B84DB2} - \Lenovo\ImController\TimeBasedEvents\8fadf67d-48e6-447f-84cb-e741421fef19 -> Nenhum Arquivo <==== ATENÇÃO Task: {6FB8226C-C713-4925-8239-3EB81700F23D} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Nenhum Arquivo <==== ATENÇÃO Task: {7956BF35-7EA5-4AFA-94F8-C4CAB903742B} - System32\Tasks\AdwCleaner_onReboot => C:\Users\kleber silva\OneDrive\Área de Trabalho\adwcleaner.exe [8551608 2022-06-02] (Malwarebytes Inc -> Malwarebytes) Task: {7CD93D25-26BF-40C6-9C8D-E148388D6EE3} - \Lenovo\ImController\TimeBasedEvents\7afb0bb5-2567-456b-bc4f-179285ccbd14 -> Nenhum Arquivo <==== ATENÇÃO Task: {8A5BA3DE-C831-4D8E-8917-74382F70D36A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {B3259F09-ABFB-405A-976C-ABFEF3B6A95F} - \Lenovo\ImController\TimeBasedEvents\43d8aa6e-8a5c-4f1b-a945-339b63bc8e13 -> Nenhum Arquivo <==== ATENÇÃO Task: {BDBB9ED4-CF36-4793-BDD8-0E1D1FADBDE1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-30] (Avast Software s.r.o. -> Avast Software) Task: {C0761B03-6A33-44D3-8C15-BCB30451DD75} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4925264 2022-05-30] (Avast Software s.r.o. -> AVAST Software) Task: {DB1083D7-C9EE-4C76-AF9E-26E5C35C0229} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-12] (Google LLC -> Google LLC) Task: {F440DD53-D538-4175-9008-499D83722385} - \Lenovo\ImController\TimeBasedEvents\fef10064-eb00-4604-b122-ce5b4f855060 -> Nenhum Arquivo <==== ATENÇÃO Task: {FC4539EC-9548-4483-9306-C76A7CAD560E} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{6693e0d8-ae2e-4f8f-9096-ac9c7db0a594}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{6b4fb6ae-66ca-4463-a966-f1835f4e6a4f}: [DhcpNameServer] 172.25.0.1 Tcpip\..\Interfaces\{86ca664c-0ad1-4281-b18c-629a694680b1}: [DhcpNameServer] 192.168.42.129 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\kleber silva\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-02] Edge Notifications: Default -> hxxps://outlook.office365.com; hxxps://web.whatsapp.com FireFox: ======== FF DefaultProfile: 5vibp5lx.default FF ProfilePath: C:\Users\kleber silva\AppData\Roaming\Mozilla\Firefox\Profiles\5vibp5lx.default [2021-08-16] FF ProfilePath: C:\Users\kleber silva\AppData\Roaming\Mozilla\Firefox\Profiles\ssakg4g2.default-release [2022-06-02] FF Session Restore: Mozilla\Firefox\Profiles\ssakg4g2.default-release -> está habilitado. FF Extension: (Gamer TIme) - C:\Users\kleber silva\AppData\Roaming\Mozilla\Firefox\Profiles\ssakg4g2.default-release\Extensions\{3afd3680-7dda-4412-be2c-1494d8162531}.xpi [2022-01-21] FF Plugin: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\kleber silva\AppData\Local\Google\Chrome\User Data\Default [2022-06-02] CHR DownloadDir: C:\Users\kleber silva\OneDrive\Área de Trabalho CHR HomePage: Default -> hxxp://www.folha.uol.com.br/ CHR Extension: (Documentos Google off-line) - C:\Users\kleber silva\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-19] CHR Extension: (Excel Online) - C:\Users\kleber silva\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2021-08-12] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\kleber silva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-12] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8434824 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [576336 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1990480 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [576336 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-05-30] (Malwarebytes Inc. -> Malwarebytes) R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2269056 2021-08-16] (Banco Bradesco S.A. -> Scopus Soluções em TI Ltda) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [38936 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [381616 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255144 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102568 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2022-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [44568 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271592 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548976 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [558768 2022-05-30] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218088 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317832 2022-05-30] (Avast Software s.r.o. -> AVAST Software) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [103888 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-11-22] (Sony Mobile Communications AB -> Sony Mobile Communications) S3 KMDFVirtualKbd; C:\WINDOWS\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] (Lenovo (Beijing) Limited -> ) S3 KMDFVirtualMouse; C:\WINDOWS\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] (Lenovo (Beijing) Limited -> ) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194512 2022-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1039bus; C:\WINDOWS\System32\drivers\s1039bus.sys [127600 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation) S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation) S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation) S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation) S3 smsbda; C:\WINDOWS\system32\drivers\smsbda.sys [63648 2009-09-29] (Siano Mobile Silicon -> Siano) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-04-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-12] (Microsoft Windows -> Microsoft Corporation) U1 aswbdisk; não ImagePath ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-06-02 18:57 - 2022-06-02 19:10 - 000000000 ____D C:\FRST 2022-06-02 18:49 - 2022-06-02 18:49 - 000194512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-06-02 18:44 - 2022-06-02 18:44 - 000003210 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot 2022-06-02 18:40 - 2022-06-02 18:44 - 000000000 ____D C:\AdwCleaner 2022-06-02 14:49 - 2022-06-02 14:49 - 000000000 ____D C:\Users\kleber silva\AppData\Local\CrashDumps 2022-06-02 14:15 - 2022-06-02 14:31 - 000000000 ____D C:\Users\kleber silva\AppData\Local\NPE 2022-06-02 14:15 - 2022-06-02 14:15 - 000000000 ____D C:\ProgramData\Norton 2022-06-01 19:32 - 2022-06-02 14:10 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-05-30 14:20 - 2022-05-30 14:20 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-05-30 14:12 - 2022-05-30 14:35 - 000000000 ____D C:\Users\kleber silva\AppData\Local\Avast Software 2022-05-30 14:09 - 2022-05-30 14:09 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2022-05-30 14:09 - 2022-05-30 14:09 - 000000000 ____D C:\Users\kleber silva\AppData\Roaming\Avast Software 2022-05-30 14:05 - 2022-05-30 14:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-05-30 14:04 - 2022-06-02 15:52 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-05-30 14:04 - 2022-05-30 14:04 - 000381616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-05-30 14:04 - 2022-05-30 14:04 - 000317832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000857488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000558768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000548976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000287056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-05-30 14:04 - 2022-05-30 14:03 - 000271592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000255144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000232648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000218088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000111056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000102568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000086120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000044568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000038936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2022-05-30 14:04 - 2022-05-30 14:03 - 000021936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-05-30 14:03 - 2022-05-30 14:03 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2022-05-30 14:02 - 2022-05-30 14:02 - 000000000 ____D C:\Program Files\Avast Software 2022-05-30 14:01 - 2022-06-02 18:49 - 000000000 ____D C:\ProgramData\Avast Software 2022-05-30 13:39 - 2022-05-30 13:39 - 000000000 ____D C:\Users\kleber silva\AppData\Local\mbam 2022-05-30 13:36 - 2022-05-30 13:36 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-05-30 13:36 - 2022-05-30 13:36 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-05-30 13:36 - 2022-05-30 13:36 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-05-30 13:36 - 2022-05-30 13:34 - 000103888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-05-30 13:36 - 2022-05-30 13:34 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-05-30 13:33 - 2022-05-30 13:33 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-05-30 13:32 - 2022-05-30 13:33 - 000000000 ____D C:\Program Files\Malwarebytes 2022-05-29 20:51 - 2022-05-29 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.3 2022-05-29 18:44 - 2022-05-29 18:45 - 001720332 _____ C:\WINDOWS\Minidump\052922-46656-01.dmp 2022-05-24 14:25 - 2022-05-29 18:44 - 699594275 _____ C:\WINDOWS\MEMORY.DMP 2022-05-24 14:25 - 2022-05-24 14:31 - 001910524 _____ C:\WINDOWS\Minidump\052422-61015-01.dmp 2022-05-24 14:25 - 2022-05-24 14:25 - 000000000 ____D C:\WINDOWS\Panther 2022-05-14 14:39 - 2022-06-02 18:46 - 078905344 _____ C:\WINDOWS\system32\config\SOFTWARE 2022-05-12 13:28 - 2022-05-12 13:28 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-05-12 12:48 - 2022-05-12 12:48 - 000000000 ___HD C:\$WinREAgent 2022-05-09 22:13 - 2022-05-30 19:53 - 000056869 _____ C:\Users\kleber silva\OneDrive\Documentos\Prospects Green Butantã.ods ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-06-02 19:11 - 2021-08-12 09:27 - 000000000 ____D C:\Program Files (x86)\Google 2022-06-02 19:05 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-02 18:56 - 2021-05-31 11:31 - 000000000 ____D C:\Users\kleber silva\AppData\Local\Lenovo 2022-06-02 18:51 - 2021-05-30 20:26 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-06-02 18:51 - 2015-07-14 18:44 - 000000000 __SHD C:\Users\kleber silva\IntelGraphicsProfiles 2022-06-02 18:48 - 2021-05-31 08:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-06-02 18:48 - 2021-05-31 08:21 - 000008192 ___SH C:\DumpStack.log.tmp 2022-06-02 18:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-06-02 18:46 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-06-02 18:44 - 2021-05-31 08:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2022-06-02 18:44 - 2015-05-19 17:34 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2022-06-02 17:35 - 2021-05-31 08:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-06-02 16:48 - 2016-11-18 21:45 - 000000000 ____D C:\Users\kleber silva\AppData\LocalLow\Mozilla 2022-06-02 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-06-02 14:44 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-02 14:36 - 2021-05-31 08:30 - 000000000 ____D C:\Users\kleber silva 2022-06-02 14:30 - 2020-03-15 20:14 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-02 14:10 - 2021-10-09 07:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-06-02 14:10 - 2021-06-08 09:00 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-06-02 14:10 - 2021-06-08 09:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-06-02 13:56 - 2021-05-31 08:47 - 001741820 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-06-02 13:56 - 2019-12-07 11:54 - 000752472 _____ C:\WINDOWS\system32\prfh0416.dat 2022-06-02 13:56 - 2019-12-07 11:54 - 000148586 _____ C:\WINDOWS\system32\prfc0416.dat 2022-06-02 13:56 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF 2022-06-01 16:04 - 2021-09-10 09:34 - 000001400 _____ C:\Users\kleber silva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-06-01 14:20 - 2022-02-10 16:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-05-30 21:11 - 2020-05-17 16:11 - 000000000 ___RD C:\Users\kleber silva\OneDrive\Documentos\Scanned Documents 2022-05-30 21:11 - 2015-07-14 18:47 - 000000000 ____D C:\Users\kleber silva\OneDrive\Documentos\Bluetooth Folder 2022-05-30 20:16 - 2021-09-03 18:42 - 000000000 ____D C:\Users\kleber silva\OneDrive\Documentos\PROSPECÇÃO IMOBILIARIA 2022-05-30 14:04 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-05-30 13:49 - 2021-08-12 09:29 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-29 21:01 - 2021-05-31 08:21 - 000456816 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-05-29 20:50 - 2022-01-19 13:03 - 000000000 ____D C:\Program Files\LibreOffice 2022-05-29 18:46 - 2021-07-04 00:44 - 000000000 ____D C:\WINDOWS\Minidump 2022-05-21 18:56 - 2021-12-14 18:18 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1994423857-2244162675-3190174977-1001 2022-05-21 18:56 - 2021-05-31 08:59 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1994423857-2244162675-3190174977-1001 2022-05-21 18:56 - 2021-05-31 08:30 - 000002421 _____ C:\Users\kleber silva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-05-14 14:39 - 2021-08-05 20:53 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2022-05-12 13:42 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-05-12 13:42 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-05-12 13:42 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-12 13:38 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-05-12 12:29 - 2021-05-31 02:27 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-05-12 12:24 - 2021-05-31 02:26 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================