Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 30-06-2022 01 Executado por USUARIO (administrador) em LEANDRO (Dell Inc. Inspiron 5547) (01-07-2022 18:04:38) Executando a partir de C:\Users\USUARIO\OneDrive\Área de Trabalho Perfis Carregados: USUARIO Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1806 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserSessionAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <26> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe (services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe (services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe (services.exe ->) (Intel(R) Corporation) [Arquivo não assinado] C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2> (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2> (svchost.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files (x86)\McAfee Security Scan\4.1.213\SSScheduler.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3955888 2015-09-01] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186440 2022-06-22] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [] => [X] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-91627358-3904473298-1015656328-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632072 2022-06-29] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-91627358-3904473298-1015656328-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116060056 2022-04-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-91627358-3904473298-1015656328-1001\...\Run: [MicrosoftEdgeAutoLaunch_657D13B79E546278A54182F01334410B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-91627358-3904473298-1015656328-1001\...\Run: [] => [X] HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\system32\hpzlllhn.dll [58112 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-29] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-04-25] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2022-06-01] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\4.1.213\SSScheduler.exe (McAfee, LLC -> McAfee, LLC) Startup: C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk [2022-06-28] ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {2B616C6A-03FD-48BE-9442-DBB8811976A4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-91627358-3904473298-1015656328-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214152 2022-06-29] (Microsoft Corporation -> Microsoft Corporation) Task: {2FD7E99C-6D7C-417D-A8FA-8ABDCC068E03} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {38297970-8695-435F-A465-7832E7D14A7B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {3C936034-CEE3-4737-ABF7-8BCDB1DD15D3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144800 2022-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {3CD52F59-0C8B-4FB1-A9B7-78D936A752EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2022-04-25] (Google LLC -> Google LLC) Task: {46001A85-0F2A-45BB-B6EF-7AB892CEBAA1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-04-25] (Dropbox, Inc -> Dropbox, Inc.) Task: {4CF2B884-BB4F-45B9-B4C6-459351E182CB} - System32\Tasks\SecurityScannerScheduler => C:\Program Files (x86)\McAfee Security Scan\4.1.213\SSScheduler.exe [786328 2022-03-25] (McAfee, LLC -> McAfee, LLC) Task: {5AA36648-5969-4B67-9670-0AAE8ED08FA7} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214152 2022-06-29] (Microsoft Corporation -> Microsoft Corporation) Task: {6B5CCA94-BD72-4AF3-9F61-C1B122F8BA21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2022-04-25] (Google LLC -> Google LLC) Task: {6DCDA345-0352-41B5-B745-FBAD0E670F1E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144800 2022-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {73A170C4-B284-4037-92D3-7E20DED505C3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [67472 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {7C093D13-A364-47B5-A3E3-DA49BA34DA70} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry Task: {7C093D13-A364-47B5-A3E3-DA49BA34DA70} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog Task: {7C093D13-A364-47B5-A3E3-DA49BA34DA70} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector Task: {7F23A2F1-512E-4F80-925B-7A92E86D7D21} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {8E9B5E88-661A-497D-98ED-C0CC9E74043F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23246768 2022-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {9F742AB8-2AC7-43E6-9571-11FA939FC479} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {B275C4BA-365B-4AD9-95D2-7C9A9315CC19} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [256848 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) Task: {BAA8C85D-CB82-4B49-A020-E74353473172} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-04-25] (Dropbox, Inc -> Dropbox, Inc.) Task: {E63EA082-8D37-41E8-B722-01AB05CB09BD} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [32819448 2022-06-27] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) Task: {E6C394F8-EA7A-4200-B1A6-9F19DC4B426E} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1643800 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{5729143f-35f9-4705-bc46-560c7157c114}: [DhcpNameServer] 192.168.15.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\USUARIO\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-30] Edge Extension: (Avira Password Manager) - C:\Users\USUARIO\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-06-30] Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip] Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle] FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-06-04] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-18] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-18] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-04-25] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default [2022-07-01] CHR Extension: (Avira Password Manager) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-06-27] CHR Extension: (Avira Safe Shopping) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-06-27] CHR Extension: (Segurança do navegador Avira) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-06-27] CHR Extension: (Documentos Google off-line) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-16] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-01] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-25] CHR Profile: C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-04-25] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743984 2022-04-25] (philandro Software GmbH -> philandro Software GmbH) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3000608 2022-03-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [264928 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [282992 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988384 2022-06-19] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-04-25] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-04-25] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46872 2022-06-22] (Dropbox, Inc -> Dropbox, Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2022-05-20] (Dell Inc -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [138448 2022-05-20] (Dell Inc -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2022-05-20] (Dell Inc -> Dell Technologies Inc.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [44448 2022-04-27] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [134560 2022-02-19] (Dell Inc -> Dell) R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [7452240 2022-06-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH) S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [7452240 2022-06-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.121.0605.0002\FileSyncHelper.exe [3374472 2022-06-29] (Microsoft Corporation -> Microsoft Corporation) R2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [150256 2015-04-27] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Arquivo não assinado] S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\4.1.213\McCHSvc.exe [317904 2022-03-25] (McAfee, LLC -> McAfee, LLC) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.121.0605.0002\OneDriveUpdaterService.exe [3812744 2022-06-29] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [137056 2022-06-21] (Dell Inc -> Dell Inc.) R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [1004448 2022-04-12] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R1 BdSentry; C:\Windows\System32\DRIVERS\BdSentry.sys [230520 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado] R3 DBUtilDrv2; C:\Windows\System32\drivers\DBUtilDrv2.sys [24968 2022-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [37808 2022-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R1 netprotection_network_filter; C:\Windows\System32\drivers\netprotection_network_filter.sys [100128 2022-06-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S0 rtp_elam; C:\Windows\System32\DRIVERS\rtp_elam.sys [24024 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH) R2 rtp_filesystem_filter; C:\Windows\System32\DRIVERS\rtp_filesystem_filter.sys [204416 2022-06-24] (Avira Operations GmbH -> Avira Operations GmbH) R1 rtp_process_monitor; C:\Windows\system32\DRIVERS\rtp_process_monitor.sys [194440 2022-06-24] (Avira Operations GmbH -> Avira Operations GmbH) R1 rtp_traverse; C:\Windows\system32\DRIVERS\rtp_traverse.sys [47560 2022-06-24] (Avira Operations GmbH -> Avira Operations GmbH) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [39488 2022-07-01] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [36768 2022-02-25] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-01 18:01 - 2022-07-01 18:04 - 000000000 ____D C:\FRST 2022-07-01 17:56 - 2022-07-01 17:56 - 001224292 _____ C:\Windows\Minidump\070122-7140-01.dmp 2022-07-01 17:42 - 2022-07-01 17:44 - 000000000 ____D C:\AdwCleaner 2022-07-01 16:19 - 2022-07-01 16:19 - 000000000 ____D C:\Users\USUARIO\AppData\Local\CrashDumps 2022-06-30 15:40 - 2022-06-30 15:40 - 000024968 _____ (Dell) C:\Windows\system32\Drivers\DBUtilDrv2.sys 2022-06-30 09:47 - 2022-06-30 09:47 - 000000000 ____D C:\Users\USUARIO\.ms-ad 2022-06-29 16:25 - 2022-06-29 16:25 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-06-29 16:25 - 2022-06-29 16:25 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-06-29 16:25 - 2022-06-29 16:25 - 000011801 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-06-29 16:24 - 2022-06-29 16:24 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-06-29 16:24 - 2022-06-29 16:24 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-06-29 16:24 - 2022-06-29 16:24 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-06-29 16:24 - 2022-06-29 16:24 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-06-29 16:14 - 2022-06-29 16:14 - 000000000 ___HD C:\$WinREAgent 2022-06-27 20:38 - 2022-06-30 15:22 - 000000000 ____D C:\Users\Public\Security Sessions 2022-06-27 20:37 - 2022-07-01 17:50 - 004662832 _____ C:\Windows\system32\rtp.db 2022-06-27 20:37 - 2022-06-27 20:37 - 000000000 ____D C:\Windows\SysWOW64\statReporter 2022-06-27 20:37 - 2022-06-27 20:37 - 000000000 ____D C:\Windows\SysWOW64\ncp 2022-06-27 20:37 - 2022-06-15 09:28 - 000100128 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\netprotection_network_filter.sys 2022-06-27 20:36 - 2022-06-27 20:39 - 000000000 ____D C:\Users\USUARIO\AppData\Local\Avira 2022-06-27 20:36 - 2022-06-27 20:36 - 000000000 ____D C:\Program Files\Avira 2022-06-27 20:36 - 2022-06-24 12:57 - 000204416 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_filesystem_filter.sys 2022-06-27 20:36 - 2022-06-24 12:57 - 000194440 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_process_monitor.sys 2022-06-27 20:36 - 2022-06-24 12:57 - 000047560 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_traverse.sys 2022-06-27 20:36 - 2022-06-24 12:57 - 000024024 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_elam.sys 2022-06-27 20:36 - 2022-06-21 17:57 - 000230520 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\BdSentry.sys 2022-06-27 20:35 - 2022-06-27 20:35 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance 2022-06-27 20:35 - 2022-06-27 20:35 - 000003766 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify 2022-06-27 20:35 - 2022-06-27 20:35 - 000003474 _____ C:\Windows\system32\Tasks\Avira_Security_Update 2022-06-27 20:35 - 2022-06-27 20:35 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog 2022-06-27 20:35 - 2022-06-27 20:35 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray 2022-06-27 20:35 - 2022-06-27 20:35 - 000000000 ____D C:\Users\Public\Speedup Sessions 2022-06-27 20:35 - 2022-06-27 20:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2022-06-27 20:35 - 2022-06-27 20:35 - 000000000 ____D C:\Program Files (x86)\Avira 2022-06-27 20:34 - 2022-06-27 20:38 - 000000000 ____D C:\ProgramData\Avira 2022-06-27 20:34 - 2022-06-27 20:34 - 005601064 _____ (Avira Operations GmbH & Co. KG) C:\Users\USUARIO\Downloads\avira_pt-br_sptl1_922641749-1656372869__pavwws.exe 2022-06-27 15:32 - 2022-06-27 15:32 - 000000000 ____D C:\Windows\system32\gf2engine 2022-06-27 15:25 - 2022-06-29 16:46 - 000000000 ____D C:\ProgramData\Avast Software 2022-06-27 15:25 - 2022-06-27 15:25 - 000268536 _____ (AVAST Software) C:\Users\USUARIO\Downloads\avast_free_antivirus_setup_online.exe 2022-06-27 12:21 - 2022-07-01 17:45 - 098566144 _____ C:\Windows\system32\config\SOFTWARE 2022-06-27 12:20 - 2022-06-27 12:21 - 000000000 ____D C:\Windows\Microsoft Antimalware 2022-06-26 20:04 - 2022-06-26 20:04 - 000007605 _____ C:\Users\USUARIO\AppData\Local\Resmon.ResmonCfg 2022-06-24 09:50 - 2022-06-24 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-06-22 08:14 - 2022-06-22 08:14 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2022-06-22 08:14 - 2022-06-22 08:14 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2022-06-22 08:14 - 2022-06-22 08:14 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2022-06-22 08:14 - 2022-06-22 08:14 - 000046872 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2022-06-17 16:33 - 2022-06-17 16:34 - 002009132 _____ C:\Windows\Minidump\061722-5843-01.dmp 2022-06-15 17:44 - 2022-07-01 17:56 - 000039488 _____ (Topaz OFD) C:\Windows\system32\Drivers\wsddfac.sys 2022-06-15 17:44 - 2022-06-15 17:44 - 006199200 _____ (Banco do Brasil S.A.) C:\Users\USUARIO\Downloads\DiagnosticoBB.exe 2022-06-15 17:44 - 2022-06-15 17:44 - 000000000 ___HD C:\Program Files (x86)\Topaz OFD 2022-06-15 17:44 - 2022-06-15 17:44 - 000000000 ____D C:\ProgramData\Temp 2022-06-15 17:44 - 2022-06-15 17:44 - 000000000 ____D C:\Program Files\Topaz OFD 2022-06-15 17:44 - 2022-02-25 14:58 - 000036768 ____N (Topaz OFD) C:\Windows\system32\Drivers\wsddprm.sys 2022-06-15 17:44 - 2021-02-11 19:37 - 000051160 _____ (Topaz OFD) C:\Windows\system32\Drivers\wsddntf.sys 2022-06-15 17:44 - 2021-02-11 19:37 - 000034768 ____N (Topaz OFD) C:\Windows\system32\Drivers\wsddpp.sys 2022-06-15 17:44 - 2021-02-11 19:37 - 000010722 _____ C:\Windows\system32\Drivers\wsddntf.cat 2022-06-10 09:41 - 2022-06-10 09:41 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-06-10 09:41 - 2022-06-10 09:41 - 000479744 _____ C:\Windows\system32\AssignedAccessCsp.dll 2022-06-10 09:41 - 2022-06-10 09:41 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-06-10 09:41 - 2022-06-10 09:41 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll 2022-06-10 09:40 - 2022-06-10 09:40 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-06-09 00:16 - 2022-07-01 09:05 - 000000000 ____D C:\Users\USUARIO\AppData\Roaming\DropboxElectron 2022-06-01 16:06 - 2022-06-01 16:06 - 000003206 _____ C:\Windows\system32\Tasks\SecurityScannerScheduler 2022-06-01 16:06 - 2022-06-01 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2022-06-01 16:05 - 2022-06-01 16:05 - 000000000 ____D C:\ProgramData\McAfee Security Scan 2022-06-01 15:55 - 2022-06-01 15:55 - 000000000 ____D C:\Users\USUARIO\AppData\LocalLow\AMD 2022-06-01 15:44 - 2022-06-01 15:44 - 000000000 ____D C:\Users\USUARIO\AppData\Local\SolidDocuments 2022-06-01 15:35 - 2022-06-02 11:28 - 000000000 ____D C:\ProgramData\McAfee 2022-06-01 15:35 - 2022-06-01 16:06 - 000000000 ____D C:\Program Files (x86)\McAfee Security Scan 2022-06-01 15:34 - 2022-06-29 20:42 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-06-01 15:34 - 2022-06-29 20:42 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2022-07-01 18:00 - 2022-04-24 15:32 - 001655304 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-01 18:00 - 2019-12-07 11:53 - 000716776 _____ C:\Windows\system32\prfh0416.dat 2022-07-01 18:00 - 2019-12-07 11:53 - 000141430 _____ C:\Windows\system32\prfc0416.dat 2022-07-01 18:00 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2022-07-01 17:58 - 2022-04-25 10:29 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-01 17:58 - 2022-04-25 10:26 - 000000000 ____D C:\Program Files\CCleaner 2022-07-01 17:58 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-01 17:56 - 2022-04-26 15:35 - 749053981 _____ C:\Windows\MEMORY.DMP 2022-07-01 17:56 - 2022-04-26 15:35 - 000000000 ____D C:\Windows\Minidump 2022-07-01 17:56 - 2022-04-24 15:42 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-07-01 17:56 - 2022-04-24 15:42 - 000000000 __SHD C:\Users\USUARIO\IntelGraphicsProfiles 2022-07-01 17:56 - 2022-04-24 15:26 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-01 17:56 - 2022-04-24 15:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-01 17:56 - 2022-04-24 15:26 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-01 17:48 - 2022-04-25 10:26 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-07-01 17:48 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-07-01 17:48 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-01 17:45 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-07-01 17:44 - 2022-04-24 15:36 - 000000000 ____D C:\ProgramData\Dell 2022-07-01 09:05 - 2022-04-25 13:17 - 000000000 ____D C:\Users\USUARIO\AppData\Local\Dropbox 2022-07-01 08:39 - 2022-04-24 15:26 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-01 08:39 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-30 09:47 - 2022-04-24 15:32 - 000000000 ____D C:\Users\USUARIO 2022-06-29 20:41 - 2022-04-25 10:30 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-06-29 16:46 - 2022-04-26 19:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-06-29 16:46 - 2022-04-24 15:26 - 000441496 _____ C:\Windows\system32\FNTCACHE.DAT 2022-06-29 16:45 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2022-06-29 16:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2022-06-29 16:29 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2022-06-29 16:24 - 2022-04-24 15:30 - 003010048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-06-29 16:02 - 2022-04-25 13:16 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-06-29 16:02 - 2022-04-25 13:16 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-29 16:02 - 2022-04-24 15:37 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-91627358-3904473298-1015656328-1001 2022-06-27 20:37 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-06-27 11:15 - 2022-04-25 10:13 - 000000000 ____D C:\Users\USUARIO\AppData\Local\D3DSCache 2022-06-26 20:31 - 2022-04-24 15:39 - 000000000 ____D C:\ProgramData\Package Cache 2022-06-26 20:31 - 2022-04-24 15:39 - 000000000 ____D C:\Program Files\Dell 2022-06-25 17:33 - 2022-04-24 15:33 - 000000000 ____D C:\ProgramData\Packages 2022-06-24 09:50 - 2022-04-25 13:17 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-06-23 16:27 - 2022-04-24 15:33 - 000000000 ____D C:\Users\USUARIO\AppData\Local\Packages 2022-06-23 12:10 - 2022-04-24 15:26 - 000000000 ____D C:\Windows\system32\Drivers\wd 2022-06-22 10:07 - 2022-05-04 15:28 - 000000000 ____D C:\Users\USUARIO\OneDrive\Documents\Particular 2022-06-19 19:23 - 2022-05-02 10:37 - 000000000 ____D C:\Users\USUARIO\OneDrive\Documents\OHNE 2022-06-19 17:17 - 2022-04-25 13:10 - 000000000 ____D C:\Program Files\Microsoft Office 2022-06-17 09:19 - 2022-04-24 16:01 - 000000000 ____D C:\Windows\system32\MRT 2022-06-17 09:17 - 2022-04-24 16:01 - 145918784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-06-16 14:03 - 2022-04-24 15:26 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-06-16 14:03 - 2022-04-24 15:26 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2022-06-10 10:02 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-06-10 10:02 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\servicing 2022-06-03 09:01 - 2022-04-25 10:09 - 000000000 ____D C:\Users\USUARIO\AppData\Local\Adobe 2022-06-01 15:44 - 2022-05-11 11:21 - 000000000 ____D C:\Users\USUARIO\AppData\LocalLow\Adobe 2022-06-01 15:44 - 2022-04-25 10:09 - 000000000 ____D C:\ProgramData\Adobe 2022-06-01 15:44 - 2022-04-24 15:33 - 000000000 ____D C:\Users\USUARIO\AppData\Roaming\Adobe 2022-06-01 15:34 - 2022-04-25 10:13 - 000000000 ____D C:\Program Files\Adobe 2022-06-01 15:33 - 2022-04-25 10:14 - 000000000 ____D C:\Program Files\Common Files\Adobe ==================== Arquivos na raiz de alguns diretórios ======== 2022-06-26 20:04 - 2022-06-26 20:04 - 000007605 _____ () C:\Users\USUARIO\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================