Ir ao conteúdo
  • Cadastre-se
Vascaino_1726

Remoção do Win:32 Notebook

Posts recomendados

Hoje ao usar o notebook notei diferença nele, vi que tinha sido adicionado extensão sem minha permissão (Já Removi) Resolvi rodar o Avast e foi constatado o seguinte Virus: Win32:MalwareX-gen[Trj] , Movi o mesmo para quarentena. 

Segue o Log em anexo do Za-scan

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Vascaino_1726

 

Recomendo que salve esse tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Antes de continuarmos é recomendável que leia as regras dessa área em Leia Antes de Postar!

 

Também temos Leiam nosso FAQs! para facilitar.

 

Note que, a partir do momento que dê continuidade com o tópico, assume-se que está de acordo com as regras.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Sempre antes de executar qualquer ferramenta passada aqui, tenha certeza que todos os programas estejam fechados.
  • Respeite a ordem das instruções passadas.

 

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Faça o download da Farbar Recovery Scan Tool e salve-a em seu Desktop (Área de Trabalho).

 

Nota1 : Você precisa executar a versão compatível com o seu sistema (32-Bit ou 64-Bit). Se você não tiver certeza de qual versão se aplica ao seu sistema, faça o download dos dois e tente executá-los. Apenas um deles será executado, que será a versão correta.

 

Nota2 : Lembre-se, a ferramenta deve ser executada diretamente do Desktop (Área de Trabalho).

 

  1. Clique com o botão direito em FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Quando a ferramenta abrir click em Yes para o termo de responsabilidade.
  3. Pressione o botão Scan (Examinar).
  4. Dois logs (relatórios) serão gerados: FRST.txt e Addition.txt no Desktop.
  5. Abra o FRST.txt e copie todo seu conteúdo e cole em sua próxima resposta.
  6. Anexe o log Addition.txt.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

  • Curtir 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

Obrigado pela atenção @diego_moicano ,Funcionou o de 64 bits.

Segue em anexo do FRST:

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2020
Executado por Note (administrador) em DESKTOP-C6DHB7B (SAMSUNG ELECTRONICS CO., LTD. 270E5G/270E5U) (03-06-2020 13:18:20)
Executando a partir de D:\Note\Desktop
Perfis Carregados: Note
Platform: Windows 10 Home Single Language Versão 1803 17134.1130 (X64) Idioma: Português (Brasil)
Navegador padrão: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(WZTeam -> MSFree Inc.) C:\ProgramData\KMSAutoS\bin\KMSSS.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108728 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [uTorrent] => C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe [1893104 2020-05-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\Installer\chrmstp.exe [2020-06-02] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eree2AaY.lnk [2019-11-21]
ShortcutTarget: eree2AaY.lnk -> C:\ProgramData\IVDlFgeFa7731H5528\Uy9Aio6b.exe (AutoIt Consulting Ltd -> AutoIt Team)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05B64C6F-50D4-45D4-8F02-99DC941A26A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {197D6925-9B6C-46EF-BB88-AF3C75434FAC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3339472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {29D4A072-B8A2-4CC4-9AA3-65575A958100} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-05-12] (Avast Software s.r.o. -> Avast Software)
Task: {3512CCF7-E0C3-41FC-B139-E3E0D2D67621} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3917F2D6-A810-4DAE-80AD-B6EB235DE68E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {39BFF5A6-3592-4E9E-83D5-4925B3405A9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {4FFE75B7-79D1-4114-A1EA-78A498344F2B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {69E20C9A-AF32-428F-8206-38BEC4C8B61A} - não caminho do arquivo
Task: {8A05458B-94CD-4085-8836-8C81D24F0079} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {9DB1D3E7-2175-4B2C-BAD2-D63D244100D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD7BED57-FECA-45D8-8324-9982BD00A512} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {BC825F53-CE5F-4894-9DCF-282C22051796} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {BD86081E-3BDB-4D25-BC4E-A41E28A4FFE6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE46B314-52C0-4EB6-A798-5AFFCE628752} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {C93796AA-1B46-4460-82D5-164F686BFD41} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D54F08EE-A805-45C5-99DD-DC281ED8B0F2} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {E0D2E930-4173-4F49-A8DF-7721833454DA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {EBE49C83-BBCA-451E-8E5E-B4AFC0152024} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {F5532731-7D4C-43E5-BB73-E1FB77970B50} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8991592 2017-10-31] (WZTeam -> MSFree Inc.)
Task: {F8F26CFC-62DC-4834-A362-FFA2C876B62F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC76B529-0E0F-4F4B-967D-F62CDA090DD8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 177.54.96.8 187.33.55.254
Tcpip\..\Interfaces\{91911968-ad3d-40b6-a054-df61525b40f0}: [DhcpNameServer] 192.168.254.254 0.0.0.0
Tcpip\..\Interfaces\{cccc3482-c739-4dc5-a35b-52a4ff475711}: [DhcpNameServer] 177.54.96.8 187.33.55.254

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
DownloadDir: D:\Diego\Downloads

FireFox:
========
FF DefaultProfile: qvlsgsd3.default
FF ProfilePath: C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default [2020-05-15]
FF Extension: (Avast SafePrice | Comparação, ofertas, cupons) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\sp@avast.com.xpi [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\wrc@avast.com.xpi [2020-04-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2020-06-03]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR Extension: (Apresentações) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-11]
CHR Extension: (Documentos) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-11]
CHR Extension: (Google Drive) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-19]
CHR Extension: (YouTube) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-11]
CHR Extension: (Planilhas) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-05-22]
CHR Extension: (Bloqueador de anúncios para o Youtube ™) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-10-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Gmail) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6350752 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\elevation_service.exe [1106528 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation - pGFX -> Intel Corporation)
R2 KMSEmulator; C:\ProgramData\KMSAutoS\bin\KMSSS.exe [38736 2017-10-19] (WZTeam -> MSFree Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256120 2016-01-31] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13255184 2020-05-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aftap0901; C:\Windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37136 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234560 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178760 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2020-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175704 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [501472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851592 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460992 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235488 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Generic USB smartcard reader)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; não ImagePath
U3 aswblog; não ImagePath
U4 dcpsvc; não ImagePath
U4 DiagTrack; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) ===================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:17 - 2020-06-03 13:19 - 000000000 ____D C:\FRST
2020-05-29 19:26 - 2020-05-29 19:26 - 000016918 _____ C:\ZA-Scan.txt
2020-05-29 19:20 - 2020-05-29 19:20 - 000000000 ____D C:\zoek_backup
2020-05-29 19:10 - 2020-06-02 19:53 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\uTorrent
2020-05-29 18:28 - 2020-05-29 18:28 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2020-05-29 14:51 - 2020-05-29 14:51 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Todos os Usuários\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 14:49 - 2020-05-29 14:49 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-29 14:49 - 2020-05-29 14:49 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-28 21:10 - 2020-05-28 21:10 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Foxit
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Todos os Usuários\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\ProgramData\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-05-23 13:28 - 2020-06-02 19:53 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Todos os Usuários\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\ProgramData\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Roaming\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Local\TeamViewer
2020-05-18 13:15 - 2020-05-18 13:15 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2020-05-12 18:17 - 2020-06-02 12:43 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Todos os Usuários\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-05-19 21:23 - 000003856 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-12 18:17 - 2020-05-19 21:23 - 000003272 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-12 18:15 - 2020-05-12 18:15 - 000003624 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2020-05-12 18:15 - 2020-05-12 18:15 - 000003500 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2020-05-12 18:15 - 2020-05-12 18:15 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-05-12 18:12 - 2020-05-12 18:12 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Todos os Usuários\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:10 - 2020-05-29 09:12 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-05-12 18:10 - 2020-05-28 12:40 - 000319112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-12 18:10 - 2020-05-28 12:35 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-12 18:10 - 2020-05-12 18:10 - 000501472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000460992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000235488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000175704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000016304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-05-12 18:10 - 2020-05-12 18:09 - 000851592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000337560 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-05-12 18:10 - 2020-05-12 18:09 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000178760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000037136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-05-12 18:07 - 2020-05-12 18:07 - 000000000 ____D C:\Program Files\Avast Software
2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 16:35 - 2020-05-12 16:35 - 000000000 ____D C:\Program Files (x86)\GUM79E2.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ C:\Program Files (x86)\GUTD245.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 000000000 ____D C:\Program Files (x86)\GUMD234.tmp
2020-05-04 19:41 - 2020-05-12 17:52 - 000000000 ____D C:\Program Files (x86)\MEGAMU

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:13 - 2018-05-20 08:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-03 09:36 - 2018-10-11 17:02 - 000000000 ___HD C:\Users\Diego\MicrosoftEdgeBackups
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-02 19:54 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Diego\AppData\Roaming\uTorrent
2020-06-02 19:52 - 2018-05-20 08:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-02 19:52 - 2018-04-11 18:04 - 000262144 _____ C:\Windows\system32\config\BBI
2020-06-02 12:46 - 2020-04-15 21:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Todos os Usuários\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2018-10-11 19:08 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-02 12:46 - 2018-10-11 19:08 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-02 12:33 - 2019-06-04 19:14 - 000000000 ____D C:\Users\Diego\AppData\Local\BitTorrentHelper
2020-05-29 19:11 - 2018-10-19 21:28 - 000000000 ____D C:\Users\Diego\AppData\Local\CrashDumps
2020-05-29 18:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-29 18:38 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\VirtualStore
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\Users\Todos os Usuários\IVDlFgeFa7731H5528
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\ProgramData\IVDlFgeFa7731H5528
2020-05-29 14:51 - 2018-10-11 19:03 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-29 14:47 - 2018-05-20 08:24 - 000413136 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-29 09:12 - 2018-10-11 19:08 - 000002218 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-29 09:12 - 2018-10-11 17:16 - 000003108 _____ C:\Windows\system32\Tasks\KMSAutoNet
2020-05-29 09:12 - 2018-10-11 16:57 - 000002280 _____ C:\Windows\system32\Tasks\RTKCPL
2020-05-26 18:07 - 2018-10-11 17:02 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\Users\Todos os Usuários\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\ProgramData\Foxit Software
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\Users\Todos os Usuários\KMSAutoS
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\ProgramData\KMSAutoS
2020-05-25 18:42 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\Packages
2020-05-22 14:00 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\AppReadiness
2020-05-22 13:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\system32\NDF
2020-05-20 05:11 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-18 13:15 - 2018-10-11 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2020-05-18 13:15 - 2018-10-11 16:47 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-15 15:08 - 2018-10-11 19:09 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Mozilla
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Program Files\WinRAR
2020-05-12 18:17 - 2018-10-13 16:46 - 000000000 ____D C:\Users\Diego\AppData\Local\AVAST Software
2020-05-12 18:12 - 2019-09-30 12:56 - 000000000 ____D C:\Users\Diego\AppData\Roaming\AVAST Software
2020-05-12 18:10 - 2018-04-11 20:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-12 17:44 - 2018-10-11 16:41 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-05-12 14:37 - 2018-10-11 17:12 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 14:25 - 2018-10-11 17:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 09:33 - 2018-04-11 20:30 - 000000000 ____D C:\Windows\CbsTemp

==================== Arquivos na raiz de alguns diretórios ========

2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ () C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ () C:\Program Files (x86)\GUTD245.tmp
2018-10-11 17:13 - 2018-10-11 17:13 - 000000042 _____ () C:\Program Files (x86)\Common Files\MSTAInfo.ini

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano Obrigado pela atenção. 

Funcionou o de 64 bits.

Segue em anexo do FRST:

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2020
Executado por Note (administrador) em DESKTOP-C6DHB7B (SAMSUNG ELECTRONICS CO., LTD. 270E5G/270E5U) (03-06-2020 13:18:20)
Executando a partir de D:\Note\Desktop
Perfis Carregados: Note
Platform: Windows 10 Home Single Language Versão 1803 17134.1130 (X64) Idioma: Português (Brasil)
Navegador padrão: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(WZTeam -> MSFree Inc.) C:\ProgramData\KMSAutoS\bin\KMSSS.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108728 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [uTorrent] => C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe [1893104 2020-05-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\Installer\chrmstp.exe [2020-06-02] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eree2AaY.lnk [2019-11-21]
ShortcutTarget: eree2AaY.lnk -> C:\ProgramData\IVDlFgeFa7731H5528\Uy9Aio6b.exe (AutoIt Consulting Ltd -> AutoIt Team)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05B64C6F-50D4-45D4-8F02-99DC941A26A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {197D6925-9B6C-46EF-BB88-AF3C75434FAC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3339472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {29D4A072-B8A2-4CC4-9AA3-65575A958100} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-05-12] (Avast Software s.r.o. -> Avast Software)
Task: {3512CCF7-E0C3-41FC-B139-E3E0D2D67621} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3917F2D6-A810-4DAE-80AD-B6EB235DE68E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {39BFF5A6-3592-4E9E-83D5-4925B3405A9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {4FFE75B7-79D1-4114-A1EA-78A498344F2B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {69E20C9A-AF32-428F-8206-38BEC4C8B61A} - não caminho do arquivo
Task: {8A05458B-94CD-4085-8836-8C81D24F0079} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {9DB1D3E7-2175-4B2C-BAD2-D63D244100D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD7BED57-FECA-45D8-8324-9982BD00A512} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {BC825F53-CE5F-4894-9DCF-282C22051796} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {BD86081E-3BDB-4D25-BC4E-A41E28A4FFE6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE46B314-52C0-4EB6-A798-5AFFCE628752} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {C93796AA-1B46-4460-82D5-164F686BFD41} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D54F08EE-A805-45C5-99DD-DC281ED8B0F2} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {E0D2E930-4173-4F49-A8DF-7721833454DA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {EBE49C83-BBCA-451E-8E5E-B4AFC0152024} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {F5532731-7D4C-43E5-BB73-E1FB77970B50} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8991592 2017-10-31] (WZTeam -> MSFree Inc.)
Task: {F8F26CFC-62DC-4834-A362-FFA2C876B62F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC76B529-0E0F-4F4B-967D-F62CDA090DD8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 177.54.96.8 187.33.55.254
Tcpip\..\Interfaces\{91911968-ad3d-40b6-a054-df61525b40f0}: [DhcpNameServer] 192.168.254.254 0.0.0.0
Tcpip\..\Interfaces\{cccc3482-c739-4dc5-a35b-52a4ff475711}: [DhcpNameServer] 177.54.96.8 187.33.55.254

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
DownloadDir: D:\Diego\Downloads

FireFox:
========
FF DefaultProfile: qvlsgsd3.default
FF ProfilePath: C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default [2020-05-15]
FF Extension: (Avast SafePrice | Comparação, ofertas, cupons) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\sp@avast.com.xpi [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\wrc@avast.com.xpi [2020-04-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2020-06-03]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR Extension: (Apresentações) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-11]
CHR Extension: (Documentos) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-11]
CHR Extension: (Google Drive) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-19]
CHR Extension: (YouTube) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-11]
CHR Extension: (Planilhas) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-05-22]
CHR Extension: (Bloqueador de anúncios para o Youtube ™) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-10-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Gmail) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6350752 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\elevation_service.exe [1106528 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation - pGFX -> Intel Corporation)
R2 KMSEmulator; C:\ProgramData\KMSAutoS\bin\KMSSS.exe [38736 2017-10-19] (WZTeam -> MSFree Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256120 2016-01-31] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13255184 2020-05-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aftap0901; C:\Windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37136 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234560 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178760 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2020-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175704 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [501472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851592 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460992 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235488 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Generic USB smartcard reader)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; não ImagePath
U3 aswblog; não ImagePath
U4 dcpsvc; não ImagePath
U4 DiagTrack; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) ===================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:17 - 2020-06-03 13:19 - 000000000 ____D C:\FRST
2020-05-29 19:26 - 2020-05-29 19:26 - 000016918 _____ C:\ZA-Scan.txt
2020-05-29 19:20 - 2020-05-29 19:20 - 000000000 ____D C:\zoek_backup
2020-05-29 19:10 - 2020-06-02 19:53 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\uTorrent
2020-05-29 18:28 - 2020-05-29 18:28 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2020-05-29 14:51 - 2020-05-29 14:51 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Todos os Usuários\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 14:49 - 2020-05-29 14:49 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-29 14:49 - 2020-05-29 14:49 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-28 21:10 - 2020-05-28 21:10 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Foxit
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Todos os Usuários\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\ProgramData\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-05-23 13:28 - 2020-06-02 19:53 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Todos os Usuários\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\ProgramData\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Roaming\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Local\TeamViewer
2020-05-18 13:15 - 2020-05-18 13:15 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2020-05-12 18:17 - 2020-06-02 12:43 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Todos os Usuários\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-05-19 21:23 - 000003856 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-12 18:17 - 2020-05-19 21:23 - 000003272 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-12 18:15 - 2020-05-12 18:15 - 000003624 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2020-05-12 18:15 - 2020-05-12 18:15 - 000003500 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2020-05-12 18:15 - 2020-05-12 18:15 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-05-12 18:12 - 2020-05-12 18:12 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Todos os Usuários\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:10 - 2020-05-29 09:12 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-05-12 18:10 - 2020-05-28 12:40 - 000319112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-12 18:10 - 2020-05-28 12:35 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-12 18:10 - 2020-05-12 18:10 - 000501472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000460992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000235488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000175704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000016304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-05-12 18:10 - 2020-05-12 18:09 - 000851592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000337560 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-05-12 18:10 - 2020-05-12 18:09 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000178760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000037136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-05-12 18:07 - 2020-05-12 18:07 - 000000000 ____D C:\Program Files\Avast Software
2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 16:35 - 2020-05-12 16:35 - 000000000 ____D C:\Program Files (x86)\GUM79E2.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ C:\Program Files (x86)\GUTD245.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 000000000 ____D C:\Program Files (x86)\GUMD234.tmp
2020-05-04 19:41 - 2020-05-12 17:52 - 000000000 ____D C:\Program Files (x86)\MEGAMU

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:13 - 2018-05-20 08:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-03 09:36 - 2018-10-11 17:02 - 000000000 ___HD C:\Users\Diego\MicrosoftEdgeBackups
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-02 19:54 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Diego\AppData\Roaming\uTorrent
2020-06-02 19:52 - 2018-05-20 08:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-02 19:52 - 2018-04-11 18:04 - 000262144 _____ C:\Windows\system32\config\BBI
2020-06-02 12:46 - 2020-04-15 21:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Todos os Usuários\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2018-10-11 19:08 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-02 12:46 - 2018-10-11 19:08 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-02 12:33 - 2019-06-04 19:14 - 000000000 ____D C:\Users\Diego\AppData\Local\BitTorrentHelper
2020-05-29 19:11 - 2018-10-19 21:28 - 000000000 ____D C:\Users\Diego\AppData\Local\CrashDumps
2020-05-29 18:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-29 18:38 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\VirtualStore
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\Users\Todos os Usuários\IVDlFgeFa7731H5528
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\ProgramData\IVDlFgeFa7731H5528
2020-05-29 14:51 - 2018-10-11 19:03 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-29 14:47 - 2018-05-20 08:24 - 000413136 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-29 09:12 - 2018-10-11 19:08 - 000002218 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-29 09:12 - 2018-10-11 17:16 - 000003108 _____ C:\Windows\system32\Tasks\KMSAutoNet
2020-05-29 09:12 - 2018-10-11 16:57 - 000002280 _____ C:\Windows\system32\Tasks\RTKCPL
2020-05-26 18:07 - 2018-10-11 17:02 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\Users\Todos os Usuários\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\ProgramData\Foxit Software
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\Users\Todos os Usuários\KMSAutoS
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\ProgramData\KMSAutoS
2020-05-25 18:42 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\Packages
2020-05-22 14:00 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\AppReadiness
2020-05-22 13:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\system32\NDF
2020-05-20 05:11 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-18 13:15 - 2018-10-11 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2020-05-18 13:15 - 2018-10-11 16:47 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-15 15:08 - 2018-10-11 19:09 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Mozilla
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Program Files\WinRAR
2020-05-12 18:17 - 2018-10-13 16:46 - 000000000 ____D C:\Users\Diego\AppData\Local\AVAST Software
2020-05-12 18:12 - 2019-09-30 12:56 - 000000000 ____D C:\Users\Diego\AppData\Roaming\AVAST Software
2020-05-12 18:10 - 2018-04-11 20:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-12 17:44 - 2018-10-11 16:41 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-05-12 14:37 - 2018-10-11 17:12 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 14:25 - 2018-10-11 17:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 09:33 - 2018-04-11 20:30 - 000000000 ____D C:\Windows\CbsTemp

==================== Arquivos na raiz de alguns diretórios ========

2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ () C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ () C:\Program Files (x86)\GUTD245.tmp
2018-10-11 17:13 - 2018-10-11 17:13 - 000000042 _____ () C:\Program Files (x86)\Common Files\MSTAInfo.ini

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

 

Minha resposta esta dando como oculta

Obrigado pela atenção

Citação

@diego_moicano

Funcionou o de 64 bits.

Segue em anexo do FRST:

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2020
Executado por Note (administrador) em DESKTOP-C6DHB7B (SAMSUNG ELECTRONICS CO., LTD. 270E5G/270E5U) (03-06-2020 13:18:20)
Executando a partir de D:\Note\Desktop
Perfis Carregados: Note
Platform: Windows 10 Home Single Language Versão 1803 17134.1130 (X64) Idioma: Português (Brasil)
Navegador padrão: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(WZTeam -> MSFree Inc.) C:\ProgramData\KMSAutoS\bin\KMSSS.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108728 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [uTorrent] => C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe [1893104 2020-05-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\Installer\chrmstp.exe [2020-06-02] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eree2AaY.lnk [2019-11-21]
ShortcutTarget: eree2AaY.lnk -> C:\ProgramData\IVDlFgeFa7731H5528\Uy9Aio6b.exe (AutoIt Consulting Ltd -> AutoIt Team)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05B64C6F-50D4-45D4-8F02-99DC941A26A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {197D6925-9B6C-46EF-BB88-AF3C75434FAC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3339472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {29D4A072-B8A2-4CC4-9AA3-65575A958100} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-05-12] (Avast Software s.r.o. -> Avast Software)
Task: {3512CCF7-E0C3-41FC-B139-E3E0D2D67621} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3917F2D6-A810-4DAE-80AD-B6EB235DE68E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {39BFF5A6-3592-4E9E-83D5-4925B3405A9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {4FFE75B7-79D1-4114-A1EA-78A498344F2B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {69E20C9A-AF32-428F-8206-38BEC4C8B61A} - não caminho do arquivo
Task: {8A05458B-94CD-4085-8836-8C81D24F0079} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {9DB1D3E7-2175-4B2C-BAD2-D63D244100D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD7BED57-FECA-45D8-8324-9982BD00A512} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {BC825F53-CE5F-4894-9DCF-282C22051796} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {BD86081E-3BDB-4D25-BC4E-A41E28A4FFE6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE46B314-52C0-4EB6-A798-5AFFCE628752} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {C93796AA-1B46-4460-82D5-164F686BFD41} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D54F08EE-A805-45C5-99DD-DC281ED8B0F2} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {E0D2E930-4173-4F49-A8DF-7721833454DA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {EBE49C83-BBCA-451E-8E5E-B4AFC0152024} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {F5532731-7D4C-43E5-BB73-E1FB77970B50} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8991592 2017-10-31] (WZTeam -> MSFree Inc.)
Task: {F8F26CFC-62DC-4834-A362-FFA2C876B62F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC76B529-0E0F-4F4B-967D-F62CDA090DD8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 177.54.96.8 187.33.55.254
Tcpip\..\Interfaces\{91911968-ad3d-40b6-a054-df61525b40f0}: [DhcpNameServer] 192.168.254.254 0.0.0.0
Tcpip\..\Interfaces\{cccc3482-c739-4dc5-a35b-52a4ff475711}: [DhcpNameServer] 177.54.96.8 187.33.55.254

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
DownloadDir: D:\Diego\Downloads

FireFox:
========
FF DefaultProfile: qvlsgsd3.default
FF ProfilePath: C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default [2020-05-15]
FF Extension: (Avast SafePrice | Comparação, ofertas, cupons) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\sp@avast.com.xpi [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\wrc@avast.com.xpi [2020-04-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2020-06-03]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR Extension: (Apresentações) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-11]
CHR Extension: (Documentos) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-11]
CHR Extension: (Google Drive) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-19]
CHR Extension: (YouTube) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-11]
CHR Extension: (Planilhas) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-05-22]
CHR Extension: (Bloqueador de anúncios para o Youtube ™) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-10-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Gmail) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6350752 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\elevation_service.exe [1106528 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation - pGFX -> Intel Corporation)
R2 KMSEmulator; C:\ProgramData\KMSAutoS\bin\KMSSS.exe [38736 2017-10-19] (WZTeam -> MSFree Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256120 2016-01-31] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13255184 2020-05-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aftap0901; C:\Windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37136 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234560 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178760 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2020-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175704 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [501472 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851592 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460992 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235488 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Generic USB smartcard reader)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; não ImagePath
U3 aswblog; não ImagePath
U4 dcpsvc; não ImagePath
U4 DiagTrack; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) ===================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:17 - 2020-06-03 13:19 - 000000000 ____D C:\FRST
2020-05-29 19:26 - 2020-05-29 19:26 - 000016918 _____ C:\ZA-Scan.txt
2020-05-29 19:20 - 2020-05-29 19:20 - 000000000 ____D C:\zoek_backup
2020-05-29 19:10 - 2020-06-02 19:53 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\uTorrent
2020-05-29 18:28 - 2020-05-29 18:28 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2020-05-29 14:51 - 2020-05-29 14:51 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Todos os Usuários\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-05-29 14:51 - 000002334 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 14:49 - 2020-05-29 14:49 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-29 14:49 - 2020-05-29 14:49 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-28 21:10 - 2020-05-28 21:10 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Foxit
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Todos os Usuários\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\ProgramData\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-05-23 13:28 - 2020-06-02 19:53 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Todos os Usuários\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\ProgramData\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Roaming\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Local\TeamViewer
2020-05-18 13:15 - 2020-05-18 13:15 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2020-05-12 18:17 - 2020-06-02 12:43 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Todos os Usuários\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-05-19 21:23 - 000003856 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-12 18:17 - 2020-05-19 21:23 - 000003272 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-12 18:15 - 2020-05-12 18:15 - 000003624 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2020-05-12 18:15 - 2020-05-12 18:15 - 000003500 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2020-05-12 18:15 - 2020-05-12 18:15 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-05-12 18:12 - 2020-05-12 18:12 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Todos os Usuários\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:10 - 2020-05-29 09:12 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-05-12 18:10 - 2020-05-28 12:40 - 000319112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-12 18:10 - 2020-05-28 12:35 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-12 18:10 - 2020-05-12 18:10 - 000501472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000460992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000235488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000175704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000016304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-05-12 18:10 - 2020-05-12 18:09 - 000851592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000337560 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-05-12 18:10 - 2020-05-12 18:09 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000178760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-05-12 18:10 - 2020-05-12 18:09 - 000037136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-05-12 18:07 - 2020-05-12 18:07 - 000000000 ____D C:\Program Files\Avast Software
2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 16:35 - 2020-05-12 16:35 - 000000000 ____D C:\Program Files (x86)\GUM79E2.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ C:\Program Files (x86)\GUTD245.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 000000000 ____D C:\Program Files (x86)\GUMD234.tmp
2020-05-04 19:41 - 2020-05-12 17:52 - 000000000 ____D C:\Program Files (x86)\MEGAMU

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-03 13:13 - 2018-05-20 08:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2020-06-03 13:13 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-03 09:36 - 2018-10-11 17:02 - 000000000 ___HD C:\Users\Diego\MicrosoftEdgeBackups
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2020-06-02 19:56 - 2018-10-13 16:42 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-02 19:54 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Diego\AppData\Roaming\uTorrent
2020-06-02 19:52 - 2018-05-20 08:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-02 19:52 - 2018-04-11 18:04 - 000262144 _____ C:\Windows\system32\config\BBI
2020-06-02 12:46 - 2020-04-15 21:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Todos os Usuários\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2018-10-11 19:08 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-02 12:46 - 2018-10-11 19:08 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-02 12:33 - 2019-06-04 19:14 - 000000000 ____D C:\Users\Diego\AppData\Local\BitTorrentHelper
2020-05-29 19:11 - 2018-10-19 21:28 - 000000000 ____D C:\Users\Diego\AppData\Local\CrashDumps
2020-05-29 18:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-29 18:38 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\VirtualStore
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\Users\Todos os Usuários\IVDlFgeFa7731H5528
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\ProgramData\IVDlFgeFa7731H5528
2020-05-29 14:51 - 2018-10-11 19:03 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-29 14:47 - 2018-05-20 08:24 - 000413136 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-29 09:12 - 2018-10-11 19:08 - 000002218 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-29 09:12 - 2018-10-11 17:16 - 000003108 _____ C:\Windows\system32\Tasks\KMSAutoNet
2020-05-29 09:12 - 2018-10-11 16:57 - 000002280 _____ C:\Windows\system32\Tasks\RTKCPL
2020-05-26 18:07 - 2018-10-11 17:02 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\Users\Todos os Usuários\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\ProgramData\Foxit Software
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\Users\Todos os Usuários\KMSAutoS
2020-05-26 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\ProgramData\KMSAutoS
2020-05-25 18:42 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\Packages
2020-05-22 14:00 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\AppReadiness
2020-05-22 13:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\system32\NDF
2020-05-20 05:11 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-18 13:15 - 2018-10-11 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2020-05-18 13:15 - 2018-10-11 16:47 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-15 15:08 - 2018-10-11 19:09 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Mozilla
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Program Files\WinRAR
2020-05-12 18:17 - 2018-10-13 16:46 - 000000000 ____D C:\Users\Diego\AppData\Local\AVAST Software
2020-05-12 18:12 - 2019-09-30 12:56 - 000000000 ____D C:\Users\Diego\AppData\Roaming\AVAST Software
2020-05-12 18:10 - 2018-04-11 20:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-12 17:44 - 2018-10-11 16:41 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-05-12 14:37 - 2018-10-11 17:12 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 14:25 - 2018-10-11 17:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 09:33 - 2018-04-11 20:30 - 000000000 ____D C:\Windows\CbsTemp

==================== Arquivos na raiz de alguns diretórios ========

2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ () C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ () C:\Program Files (x86)\GUTD245.tmp
2018-10-11 17:13 - 2018-10-11 17:13 - 000000042 _____ () C:\Program Files (x86)\Common Files\MSTAInfo.ini

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Vascaino_1726

 

Em 03/06/2020 às 18:01, Vascaino_1726 disse:

Minha resposta esta dando como oculta

 

Amigo, tenha paciência... eu teria que aprovar primeiro. ;)

 

Se quer mencionar meu nome, no final de cada tópico existe um link @mencionar, é só clicar nele.

 

Você executou o FRST do Desktop da partição Dados, preciso que execute do Desktop de onde o Windows está instalado, ou seja, da C:.

 

Refaça:

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

O Farbar Recovery Scan Tool deve ser executado diretamente do Desktop (Área de Trabalho).
Você o executou da:

 

Citação

Executando a partir de D:\Note\Desktop

  1. Faça sua desinstalação: renomeie o FRST.exe ou FRST64.exe para uninstall.exe
  2. Clique com o botão direito em uninstall.exe e escolha Executar como Administrador
  3. Aguarde.
  4. Agora baixe um novo Farbar Recovery Scan Tool e salve no Desktop (Área de Trabalho).
  5. Faça o scan e anexe os novos logs.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 06-06-2020
Executado por Note (administrador) em DESKTOP-C6DHB7B (SAMSUNG ELECTRONICS CO., LTD. 270E5G/270E5U) (06-06-2020 10:46:52)
Executando a partir de C:\Users\Diego\teste
Perfis Carregados: Note
Platform: Windows 10 Home Single Language Versão 1803 17134.1130 (X64) Idioma: Português (Brasil)
Navegador padrão: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PickerHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(WZTeam -> MSFree Inc.) C:\ProgramData\KMSAutoS\bin\KMSSS.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108136 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1485077433-4194112884-671219489-1001\...\Run: [uTorrent] => C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe [1893104 2020-05-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-05] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\Installer\chrmstp.exe [2020-06-02] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eree2AaY.lnk [2019-11-21]
ShortcutTarget: eree2AaY.lnk -> C:\ProgramData\IVDlFgeFa7731H5528\Uy9Aio6b.exe (AutoIt Consulting Ltd -> AutoIt Team)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05B64C6F-50D4-45D4-8F02-99DC941A26A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {29D4A072-B8A2-4CC4-9AA3-65575A958100} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-05-12] (Avast Software s.r.o. -> Avast Software)
Task: {3512CCF7-E0C3-41FC-B139-E3E0D2D67621} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3917F2D6-A810-4DAE-80AD-B6EB235DE68E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {39BFF5A6-3592-4E9E-83D5-4925B3405A9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {4FFE75B7-79D1-4114-A1EA-78A498344F2B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {69E20C9A-AF32-428F-8206-38BEC4C8B61A} - não caminho do arquivo
Task: {743495E3-0648-490B-AC29-080A55B3E5E3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3314272 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
Task: {8A05458B-94CD-4085-8836-8C81D24F0079} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {9DB1D3E7-2175-4B2C-BAD2-D63D244100D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD7BED57-FECA-45D8-8324-9982BD00A512} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {BC825F53-CE5F-4894-9DCF-282C22051796} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {BD86081E-3BDB-4D25-BC4E-A41E28A4FFE6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE46B314-52C0-4EB6-A798-5AFFCE628752} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-29] (Google LLC -> Google LLC)
Task: {C93796AA-1B46-4460-82D5-164F686BFD41} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D54F08EE-A805-45C5-99DD-DC281ED8B0F2} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {E0D2E930-4173-4F49-A8DF-7721833454DA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {EBE49C83-BBCA-451E-8E5E-B4AFC0152024} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {F5532731-7D4C-43E5-BB73-E1FB77970B50} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8991592 2017-10-31] (WZTeam -> MSFree Inc.)
Task: {F8F26CFC-62DC-4834-A362-FFA2C876B62F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC76B529-0E0F-4F4B-967D-F62CDA090DD8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 177.54.96.8 187.33.55.254
Tcpip\..\Interfaces\{91911968-ad3d-40b6-a054-df61525b40f0}: [DhcpNameServer] 192.168.254.254 0.0.0.0
Tcpip\..\Interfaces\{cccc3482-c739-4dc5-a35b-52a4ff475711}: [DhcpNameServer] 177.54.96.8 187.33.55.254

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
DownloadDir: D:\Diego\Downloads

FireFox:
========
FF DefaultProfile: qvlsgsd3.default
FF ProfilePath: C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default [2020-06-05]
FF Extension: (Avast SafePrice | Comparação, ofertas, cupons) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\sp@avast.com.xpi [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\qvlsgsd3.default\Extensions\wrc@avast.com.xpi [2020-04-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-05-12] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2020-06-06]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR Extension: (Apresentações) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-11]
CHR Extension: (Documentos) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-11]
CHR Extension: (Google Drive) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-19]
CHR Extension: (YouTube) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-11]
CHR Extension: (Planilhas) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-05-22]
CHR Extension: (Bloqueador de anúncios para o Youtube ™) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-10-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Gmail) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6392728 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\elevation_service.exe [1106528 2020-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation - pGFX -> Intel Corporation)
R2 KMSEmulator; C:\ProgramData\KMSAutoS\bin\KMSSS.exe [38736 2017-10-19] (WZTeam -> MSFree Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256120 2016-01-31] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13255184 2020-05-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aftap0901; C:\Windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235088 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2020-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [506152 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462600 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322248 2020-06-05] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Generic USB smartcard reader)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; não ImagePath
U3 aswblog; não ImagePath
U4 dcpsvc; não ImagePath
U4 DiagTrack; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) ===================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-06 10:46 - 2020-06-06 10:47 - 000000000 ____D C:\FRST
2020-06-06 10:41 - 2020-06-06 10:46 - 000000000 ____D C:\Users\Diego\teste
2020-06-05 12:42 - 2020-06-05 12:42 - 000000000 _____ C:\Windows\system32\last.dump
2020-06-04 14:33 - 2020-06-04 14:33 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-06-04 14:33 - 2020-06-04 14:33 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-06-04 14:33 - 2020-06-04 14:33 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-05-29 19:26 - 2020-05-29 19:26 - 000016918 _____ C:\ZA-Scan.txt
2020-05-29 19:20 - 2020-05-29 19:20 - 000000000 ____D C:\zoek_backup
2020-05-29 18:28 - 2020-05-29 18:28 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2020-05-29 14:51 - 2020-06-05 09:36 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-29 14:51 - 2020-06-05 09:36 - 000002262 _____ C:\Users\Todos os Usuários\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-06-05 09:36 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-29 14:51 - 2020-06-05 09:36 - 000002262 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-29 14:49 - 2020-06-05 12:52 - 000003518 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-29 14:49 - 2020-06-05 12:52 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-28 21:10 - 2020-05-28 21:10 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Foxit
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Todos os Usuários\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000002222 _____ C:\ProgramData\Desktop\Foxit Reader.lnk
2020-05-26 15:01 - 2020-05-26 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-05-23 13:28 - 2020-06-05 12:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Todos os Usuários\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000001104 _____ C:\ProgramData\Desktop\TeamViewer.lnk
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Roaming\TeamViewer
2020-05-23 13:28 - 2020-05-23 13:28 - 000000000 ____D C:\Users\Diego\AppData\Local\TeamViewer
2020-05-18 13:15 - 2020-05-18 13:15 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2020-05-18 13:15 - 2020-05-18 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2020-05-12 18:17 - 2020-06-02 12:43 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Todos os Usuários\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-06-02 12:43 - 000002465 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 18:17 - 2020-05-19 21:23 - 000003856 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-12 18:17 - 2020-05-19 21:23 - 000003272 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-12 18:15 - 2020-05-12 18:15 - 000003624 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2020-05-12 18:15 - 2020-05-12 18:15 - 000003500 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2020-05-12 18:15 - 2020-05-12 18:15 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-05-12 18:12 - 2020-05-12 18:12 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Todos os Usuários\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:12 - 2020-05-12 18:12 - 000002152 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-12 18:10 - 2020-06-05 12:52 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-05-12 18:10 - 2020-06-05 12:40 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-12 18:10 - 2020-06-05 09:38 - 000322248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000506152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000462600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000235088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000205896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000178768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-12 18:10 - 2020-06-04 14:33 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000016304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-05-12 18:10 - 2020-05-12 18:10 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-05-12 18:07 - 2020-05-12 18:07 - 000000000 ____D C:\Program Files\Avast Software
2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 16:35 - 2020-05-12 16:35 - 000000000 ____D C:\Program Files (x86)\GUM79E2.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ C:\Program Files (x86)\GUTD245.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 000000000 ____D C:\Program Files (x86)\GUMD234.tmp

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-06-06 10:47 - 2018-04-11 20:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2020-06-06 10:47 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-06 10:44 - 2018-05-20 08:35 - 000000000 ____D C:\Users\Diego
2020-06-06 10:31 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2020-06-06 10:31 - 2018-10-13 16:42 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-06 10:30 - 2018-05-20 08:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-05 18:38 - 2018-10-11 19:09 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Mozilla
2020-06-05 13:11 - 2018-10-13 16:42 - 000000000 ____D C:\Users\Diego\AppData\Roaming\uTorrent
2020-06-05 13:02 - 2018-10-11 17:02 - 000000000 ___HD C:\Users\Diego\MicrosoftEdgeBackups
2020-06-05 13:00 - 2019-06-04 19:14 - 000000000 ____D C:\Users\Diego\AppData\Local\BitTorrentHelper
2020-06-05 12:58 - 2018-05-20 08:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-05 12:57 - 2018-04-11 18:04 - 000262144 _____ C:\Windows\system32\config\BBI
2020-06-05 12:52 - 2018-10-11 19:08 - 000003194 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-05 12:52 - 2018-10-11 19:08 - 000002218 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-06-05 12:52 - 2018-10-11 17:16 - 000003108 _____ C:\Windows\system32\Tasks\KMSAutoNet
2020-06-05 12:52 - 2018-10-11 16:57 - 000002280 _____ C:\Windows\system32\Tasks\RTKCPL
2020-06-05 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\Users\Todos os Usuários\KMSAutoS
2020-06-05 10:03 - 2018-10-11 17:16 - 000000000 ____D C:\ProgramData\KMSAutoS
2020-06-04 15:35 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\AppReadiness
2020-06-04 14:44 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-04 14:33 - 2018-04-11 20:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-06-02 12:46 - 2020-04-15 21:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Todos os Usuários\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2019-09-30 12:58 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-06-02 12:46 - 2018-10-11 19:08 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-05-29 19:11 - 2018-10-19 21:28 - 000000000 ____D C:\Users\Diego\AppData\Local\CrashDumps
2020-05-29 18:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-29 18:38 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\VirtualStore
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\Users\Todos os Usuários\IVDlFgeFa7731H5528
2020-05-29 18:02 - 2019-11-21 19:51 - 000000000 ____D C:\ProgramData\IVDlFgeFa7731H5528
2020-05-29 14:51 - 2018-10-11 19:03 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-29 14:47 - 2018-05-20 08:24 - 000413136 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-26 18:07 - 2018-10-11 17:02 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\Users\Todos os Usuários\Foxit Software
2020-05-26 15:01 - 2018-10-11 17:04 - 000000000 ____D C:\ProgramData\Foxit Software
2020-05-25 18:42 - 2018-05-20 08:36 - 000000000 ____D C:\Users\Diego\AppData\Local\Packages
2020-05-22 13:57 - 2018-04-11 20:38 - 000000000 ____D C:\Windows\system32\NDF
2020-05-18 13:15 - 2018-10-11 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2020-05-18 13:15 - 2018-10-11 16:47 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-12 18:21 - 2018-10-11 16:44 - 000000000 ____D C:\Program Files\WinRAR
2020-05-12 18:17 - 2018-10-13 16:46 - 000000000 ____D C:\Users\Diego\AppData\Local\AVAST Software
2020-05-12 18:12 - 2019-09-30 12:56 - 000000000 ____D C:\Users\Diego\AppData\Roaming\AVAST Software
2020-05-12 17:52 - 2020-05-04 19:41 - 000000000 ____D C:\Program Files (x86)\MEGAMU
2020-05-12 17:44 - 2018-10-11 16:41 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-05-12 14:37 - 2018-10-11 17:12 - 000000000 ____D C:\Windows\system32\MRT
2020-05-12 14:25 - 2018-10-11 17:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 09:33 - 2018-04-11 20:30 - 000000000 ____D C:\Windows\CbsTemp

==================== Arquivos na raiz de alguns diretórios ========

2020-05-12 16:35 - 2020-05-12 16:35 - 024166400 _____ () C:\Program Files (x86)\GUT79E3.tmp
2020-05-12 09:49 - 2020-05-12 09:49 - 024166400 _____ () C:\Program Files (x86)\GUTD245.tmp
2018-10-11 17:13 - 2018-10-11 17:13 - 000000042 _____ () C:\Program Files (x86)\Common Files\MSTAInfo.ini

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Vascaino_1726

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Salve o arquivo (fixlist.txt) no anexo dessa mensagem em seu Desktop (Área de Trabalho).

  1. Clique com o botão direito em FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Clique no botão Fix (Corrigir) e aguarde.
  3. O sistema pode ser reiniciado.
  4. Será criado um arquivo de texto Fixlog.txt em seu Desktop.
  5. Anexe-o em sua próxima resposta.

Novamente:

  1. Execute novamente o FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Marque a opção Addition.txt.
  3. Pressione o botão Scan (Examinar).
  4. Anexe os dois logs.

Note: espero três logs em sua próxima resposta.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Não estou conseguindo gerar os log. Pois os arquvios estão no Disco D, para gerar o log anterior eu tive que criar um atalho pro Disco C,  nao estou conseguindo criar um atalho para area de trabalho no DISCO C

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Vascaino_1726

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

O Farbar Recovery Scan Tool deve ser executado diretamente do Desktop (Área de Trabalho).
Você o executou da:

 

Citação

Executando a partir de C:\Users\Diego\teste

  1. Faça sua desinstalação: renomeie o FRST.exe ou FRST64.exe para uninstall.exe
  2. Clique com o botão direito em uninstall.exe e escolha Executar como Administrador
  3. Aguarde.
  4. Agora baixe um novo Farbar Recovery Scan Tool e salve no Desktop (Área de Trabalho).
  5. Faça o scan e anexe os novos logs.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário

Criar uma conta

Crie uma nova conta em nossa comunidade. É fácil!

Crie uma nova conta

Entrar

Já tem uma conta? Faça o login.

Entrar agora





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas comunidades sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

Aprenda_a_Ler_Resistores_e_Capacitores-capa-3d-newsletter.jpg

EBOOK GRÁTIS!

CLIQUE AQUI E BAIXE AGORA MESMO!