Ir ao conteúdo
  • Cadastre-se
Mikron Pt

PC muito lento a encerrar

Posts recomendados

viva,

 

O pc demora cerca de 5 minutos a encerrar mesmo tendo fechado todos programas abertos.

terá algum problema?

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Recomendo que salve esse tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Antes de continuarmos é recomendável que leia as regras dessa área em Leia Antes de Postar!

 

Também temos Leiam nosso FAQs! para facilitar.

 

Note que, a partir do momento que dê continuidade com o tópico, assume-se que está de acordo com as regras.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Sempre antes de executar qualquer ferramenta passada aqui, tenha certeza que todos os programas estejam fechados.
  • Respeite a ordem das instruções passadas.

 

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Faça o download da Farbar Recovery Scan Tool e salve-a em seu Desktop (Área de Trabalho).

 

Nota1 : Você precisa executar a versão compatível com o seu sistema (32-Bit ou 64-Bit). Se você não tiver certeza de qual versão se aplica ao seu sistema, faça o download dos dois e tente executá-los. Apenas um deles será executado, que será a versão correta.

 

Nota2 : Lembre-se, a ferramenta deve ser executada diretamente do Desktop (Área de Trabalho).

 

  1. Clique com o botão direito em FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Quando a ferramenta abrir click em Yes para o termo de responsabilidade.
  3. Pressione o botão Scan (Examinar).
  4. Dois logs (relatórios) serão gerados: FRST.txt e Addition.txt no Desktop.
  5. Abra o FRST.txt e copie todo seu conteúdo e cole em sua próxima resposta.
  6. Anexe o log Addition.txt.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Viva,

 

Como pedido deixo copia do FRST.txt e anexo o Addition.txt

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2020
Ran by Cesar (administrator) on MIKRON (ASUS All Series) (16-06-2020 19:49:22)
Running from E:\Users\Mikron\Desktop
Loaded Profiles: Cesar
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Português (Portugal)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\USB-N10 WLAN Card Utilities\RtWLan.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\99.4.501\QtWebEngineProcess.exe <3>
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <19>
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\ASUS\USB-N10 WLAN Card Utilities\RtlService.exe
(Vishal Gupta -> Puran Software) [File not signed] C:\Program Files\Puran Utilities\Puran Utilities.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9068040 2016-11-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108136 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302392 2020-05-20] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7916032 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: D - D:\Setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: I - I:\stp-se4.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: J - J:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: L - L:\Setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {119c7304-0543-11e6-ab07-7824afd74558} - H:\Startme.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {1e18ebe1-3899-11e6-8d87-7824afd74558} - H:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {2c3b1a2e-894a-11e5-ab59-7824afd74558} - I:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {2c3b1d76-894a-11e5-ab59-7824afd74558} - H:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {3f3d3299-8b5d-11e4-b19b-7824afd74558} - D:\Setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {6c397279-a5a0-11e4-9850-7824afd74558} - L:\Setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {7616ff20-ec3f-11e4-9f73-7824afd74558} - D:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {7f084222-9646-11e5-855e-7824afd74558} - I:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {917eb97e-5263-11e6-a1a5-7824afd74558} - I:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {a6f54b19-a360-11e5-86dd-7824afd74558} - J:\this_war_of_mine_drmfree.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {af014124-8686-11e4-ac8f-7824afd74558} - J:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {afcf79ef-85ce-11e4-9a21-7824afd74558} - I:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {bbe8cc9a-ef63-11e4-b66a-7824afd74558} - I:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {cb9669c0-d1f3-11e6-a53c-005056c00008} - J:\setup.exe
HKU\S-1-5-21-910611789-622597485-2707345344-1000\...\MountPoints2: {dbbb103a-12e5-11e5-98e6-7824afd74558} - D:\setup.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-09] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: C:\Users\Cesar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Folding@home.lnk [2020-04-12]
ShortcutTarget: Folding@home.lnk -> G:\FAHClient\HideConsole.exe (No File)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05B630D6-5595-4951-A00E-22C65F457BAE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {178F95B4-79DA-40C4-85EA-AE0B68BC734C} - System32\Tasks\update-S-1-5-21-910611789-622597485-2707345344-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {1B623C88-A19A-47EF-B8F0-94B90BF6174F} - System32\Tasks\{043A2DD4-D769-4B0B-B4D8-7F492E022F8A} => C:\Windows\system32\pcalua.exe -a H:\Setup.exe -d "C:\Program Files\DAEMON Tools Lite"
Task: {1C2E724D-5448-45D8-8A8E-A4C2845493E0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-23] (Adobe Inc. -> Adobe)
Task: {20DEE9D1-5852-4D46-965B-253F2DEA6035} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {28463404-805F-4980-8A5F-30805A530366} - \IOTransfer SkipUAC (Cesar) -> No File <==== ATTENTION
Task: {2D2CECF5-589B-419D-911D-8D92A976D2ED} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {32B6932D-3122-4C81-AFC7-CC346A2F8E46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {32FD85D2-8EEA-4BE1-A725-C1759F4C3705} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47BB6D55-2C6E-48E5-A4FC-A784631FD19D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {582ADD88-D1C6-4390-A566-4534A99A2970} - System32\Tasks\PCCleaner-AutoCleanup-Task => C:\ProgramData\PCCleaner Pro\PCCleaners.exe
Task: {5A93C53A-954C-4A63-9216-F90E46A8B55A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {60F6A08A-668D-429F-BD05-068E40B51CD3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {614133FA-9581-41A3-80D1-62CA85D986CA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {712C9CC0-5697-4C57-8A9A-08DBE8651A48} - System32\Tasks\{13D402EA-B90E-4F17-B930-71CDD915B189} => C:\Windows\system32\pcalua.exe -a C:\Users\Cesar\AppData\Local\Temp\7zS1A0.tmp\MicroInstallerNative.exe -d C:\Users\Cesar\AppData\Local\Temp\7zS1A0.tmp <==== ATTENTION
Task: {7A99A635-2B10-40F2-9C11-DEE4C33FFADF} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_pepper.exe [1454136 2020-06-06] (Adobe Inc. -> Adobe)
Task: {817D365D-6349-4AB1-B6A8-E158A82B687E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {843625A6-B6A3-4178-B5C7-869016B20ABE} - System32\Tasks\{9084F6DA-3C4B-4D99-A756-B868840B3E4E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Windows 7 Manager\SmartUninstaller.exe" -d "C:\Program Files\Windows 7 Manager"
Task: {8E2EA582-953D-4068-8564-88EC77A1C67C} - System32\Tasks\Ashampoo Privacy Protector Weekly Security Scan => C:\Program Files (x86)\Ashampoo\Ashampoo Privacy Protector\PrivacyProtector.exe
Task: {90EA6DD3-7F72-442E-AD2E-F95F2CECDBCC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9771D964-6083-4EED-B045-A13CA5F483C8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9F7FF69F-D4C6-48F1-8B40-A125FC03C1D4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A18127CF-4CFC-4247-B9D4-5AA2861D08BB} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {A612A610-1D10-4830-8EF4-9C18363DE75C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3314272 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
Task: {A6D80DCB-C7D2-466F-AA64-377F4B805879} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {A8C173C1-780B-4761-A931-B6F2C31CF380} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {C5619B2A-32AD-4F56-920F-D02DE3707C0B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DCBA5FA0-6725-4D18-90BD-08DCC09DB5D6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E136285D-5B89-4F78-8364-373936D62776} - System32\Tasks\ASC8_SkipUac_Cesar => C:\Program Files (x86)\Advanced SystemCare 8\ASC.exe
Task: {E293A89E-2DC2-498A-9F89-F39820D57D5C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F4C00491-D99F-4412-B8F5-CB349BD744E2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {F5F74D1E-D19A-4DC4-B33A-9D1A7AD002EA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F6314131-25F8-425F-B60A-C810EA5A643F} - System32\Tasks\{39B44E7C-15EF-4E61-AB62-59DAF2106492} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.0.0.102/pp/abandoninstall?page=tsMain

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-910611789-622597485-2707345344-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.169.70.160 212.113.177.241 192.168.1.1
Tcpip\..\Interfaces\{4E127647-F961-4E3A-972E-FF8DB7EC4957}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6E00661F-1839-4876-A516-ED4B8E75D10F}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{977D0B09-F8ED-4C0B-B678-B5938F16A3A8}: [DhcpNameServer] 62.169.70.160 212.113.177.241 192.168.1.1
Tcpip\..\Interfaces\{9BC8712F-BF1E-4D6C-84B3-98089CF483AD}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{9BC8712F-BF1E-4D6C-84B3-98089CF483AD}: [DhcpNameServer] 62.169.70.160 212.113.177.241 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-910611789-622597485-2707345344-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130848013544421870&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKU\S-1-5-21-910611789-622597485-2707345344-1000 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
SearchScopes: HKU\S-1-5-21-910611789-622597485-2707345344-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180531__yaie&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 -  No File

FireFox:
========
FF DefaultProfile: jjvlmz5i.default
FF ProfilePath: C:\Users\Cesar\AppData\Roaming\Mozilla\Firefox\Profiles\jjvlmz5i.default [2020-06-16]
FF Homepage: Mozilla\Firefox\Profiles\jjvlmz5i.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT170902&iDate=2020-05-31 09:17:32&bName=
FF NewTab: Mozilla\Firefox\Profiles\jjvlmz5i.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT170902&iDate=2020-05-31 09:17:32&bName=
FF Extension: (Avast SafePrice | Comparação, ofertas, cupões) - C:\Users\Cesar\AppData\Roaming\Mozilla\Firefox\Profiles\jjvlmz5i.default\Extensions\sp@avast.com.xpi [2019-11-19]
FF Extension: (Avast Online Security) - C:\Users\Cesar\AppData\Roaming\Mozilla\Firefox\Profiles\jjvlmz5i.default\Extensions\wrc@avast.com.xpi [2018-07-08]
FF Extension: (Greasemonkey) - C:\Users\Cesar\AppData\Roaming\Mozilla\Firefox\Profiles\jjvlmz5i.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2017-12-21]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-23] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-23] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2019-03-14] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-910611789-622597485-2707345344-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Cesar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-13] (Unity Technologies SF -> Unity Technologies ApS)

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default [2020-03-28]
CHR Extension: (Apresentações) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-30]
CHR Extension: (Documentos) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-30]
CHR Extension: (Google Drive) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-15]
CHR Extension: (YouTube) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-15]
CHR Extension: (Tampermonkey) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-12-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-12]
CHR Extension: (Avast SafePrice | Comparação, ofertas, cupões) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-30]
CHR Extension: (Folhas de cálculo) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-30]
CHR Extension: (Google Docs offline) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-12]
CHR Extension: (Avast Online Security) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-12]
CHR Extension: (Ace Script) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-12-30]
CHR Extension: (Pagamentos via Chrome Web Store) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-30]
CHR Extension: (Gmail) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-12]
CHR Profile: C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Guest Profile [2015-08-06]
CHR Profile: C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-06-16]
CHR Notifications: Profile 1 -> hxxp://scare.pt; hxxps://drive.google.com; hxxps://onesignal.com; hxxps://resistancept.slack.com; hxxps://web.telegram.org; hxxps://www.reddit.com
CHR HomePage: Profile 1 -> hxxp://www.google.pt/
CHR StartupUrls: Profile 1 -> "hxxps://www.google.pt/"
CHR Extension: (Google Tradutor) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Documentos) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (Bloqueador de Publicidade AdGuard) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2020-05-21]
CHR Extension: (WOT Web of Trust, Website Reputation Ratings) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2020-03-04]
CHR Extension: (Honey) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-05-29]
CHR Extension: (uBlock Origin) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-05-30]
CHR Extension: (Google Search) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Serviço de cashback Megabonus) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dbfipcjecamggjfabeaclacjoohfjhhn [2020-06-06]
CHR Extension: (Tampermonkey) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-24]
CHR Extension: (Tampermonkey) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dmhfaagmiabgebeiogncajjkiddkpbfc [2015-11-12]
CHR Extension: (Dropbox for Gmail) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-10-23]
CHR Extension: (VPN gratuita da ZenMate – A melhor VPN para Chrome) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2020-03-12]
CHR Extension: (Folhas de cálculo) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Google Docs offline) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-21]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-06-12]
CHR Extension: (Avast Online Security) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-03]
CHR Extension: (Ace Script) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-12-22]
CHR Extension: (Hangouts do Google) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-05-23]
CHR Extension: (Pagamentos via Chrome Web Store) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (OpenSubtitles) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pfbdkpjnibjpkebckajcinnjlkdeilej [2020-05-28]
CHR Extension: (Gmail) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
CHR Profile: C:\Users\Cesar\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-28]
CHR HKU\S-1-5-21-910611789-622597485-2707345344-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-910611789-622597485-2707345344-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] (ASUSTeK Computer Inc. -> )
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6392728 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2017-01-18] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-12] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [782320 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-04-15] (Even Balance, Inc. -> )
S4 PuranDefrag; C:\Windows\system32\PuranDefragS.exe [292736 2013-08-15] (Vishal Gupta -> Puran Software) [File not signed]
R2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N10 WLAN Card Utilities\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235088 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [506152 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-12-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462592 2020-06-15] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322256 2020-06-09] (Avast Software s.r.o. -> AVAST Software)
R3 athur; C:\Windows\System32\DRIVERS\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-23] (Disc Soft Ltd -> Disc Soft Ltd)
S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [32400 2016-03-04] (ThreatTrack Security, Inc. -> ThreatTrack Security)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-05-23] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-07] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3591384 2014-10-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (Duodian Online Technology Co. Ltd. -> BigNox Corporation)
S3 cpuz137; \??\C:\Users\Cesar\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X] <==== ATTENTION
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-16 19:49 - 2020-06-16 19:49 - 000000000 ____D C:\FRST
2020-06-16 19:46 - 2020-06-16 19:46 - 000000017 _____ C:\Users\Cesar\AppData\Local\resmon.resmoncfg
2020-06-15 21:04 - 2020-06-15 21:04 - 000266288 _____ C:\Windows\Minidump\061520-19032-01.dmp
2020-06-14 15:11 - 2020-06-14 15:11 - 000029450 _____ C:\ZA-Scan.txt
2020-06-14 15:09 - 2020-06-14 15:09 - 000000000 ____D C:\zoek_backup
2020-06-13 17:16 - 2020-06-13 17:16 - 000001747 _____ C:\Users\Public\Desktop\iTunes.lnk
2020-06-13 17:16 - 2020-06-13 17:16 - 000001747 _____ C:\ProgramData\Desktop\iTunes.lnk
2020-06-13 17:16 - 2020-06-13 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2020-06-13 17:16 - 2020-06-13 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2020-06-13 17:16 - 2020-06-13 17:16 - 000000000 ____D C:\Program Files\iTunes
2020-06-13 17:16 - 2020-06-13 17:16 - 000000000 ____D C:\Program Files\iPod
2020-06-10 10:20 - 2020-06-10 10:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-06-09 21:04 - 2020-06-09 21:04 - 000000000 ____C C:\unp30817945964325277i-manual.mdmp
2020-06-09 21:04 - 2020-06-03 20:06 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-06-09 20:48 - 2020-06-09 20:48 - 000266320 _____ C:\Windows\Minidump\060920-15100-01.dmp
2020-06-09 19:58 - 2020-06-09 19:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-06-09 19:58 - 2020-06-09 19:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-06-09 19:58 - 2020-06-09 19:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-06-09 19:58 - 2020-06-09 19:58 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-06-07 09:41 - 2020-06-07 09:50 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-06-05 21:04 - 2020-06-05 21:04 - 000000000 ____C C:\unp308171402084939990i-manual.mdmp
2020-06-03 20:06 - 2020-06-03 20:06 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-06-03 20:06 - 2020-06-03 20:06 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-06-01 09:34 - 2020-06-02 19:35 - 000000000 ____D C:\Users\Cesar\AppData\LocalLow\uTorrent
2020-05-28 03:32 - 2020-05-28 03:49 - 000000000 ____D C:\Users\Cesar\AppData\Roaming\ZHP
2020-05-28 03:32 - 2020-05-28 03:32 - 000000000 ____D C:\Users\Cesar\AppData\Local\ZHP
2020-05-23 09:31 - 2020-05-23 13:36 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-16 19:49 - 2014-12-16 19:31 - 000000388 _____ C:\Windows\Tasks\update-S-1-5-21-910611789-622597485-2707345344-1000.job
2020-06-16 19:48 - 2011-04-12 13:55 - 000023508 _____ C:\Windows\system32\prfh0816.dat
2020-06-16 19:48 - 2011-04-12 13:55 - 000012822 _____ C:\Windows\system32\prfc0816.dat
2020-06-16 19:48 - 2009-07-14 06:13 - 000816288 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-16 19:48 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-06-16 19:44 - 2014-12-15 16:02 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-16 19:42 - 2018-03-26 19:31 - 000000000 ____D C:\Users\Cesar\AppData\Local\AVAST Software
2020-06-16 19:42 - 2017-10-11 19:24 - 000000902 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-06-16 19:42 - 2015-01-22 00:43 - 000000000 ___RD C:\Users\Cesar\iCloudDrive
2020-06-16 19:42 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-16 09:40 - 2017-10-11 19:24 - 000000906 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-06-16 09:22 - 2009-07-14 05:45 - 000027888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-16 09:22 - 2009-07-14 05:45 - 000027888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-16 01:05 - 2014-12-15 20:01 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-16 00:00 - 2014-12-16 19:31 - 000000388 _____ C:\Windows\Tasks\update-sys.job
2020-06-15 23:49 - 2019-06-14 00:20 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2019-06-14 00:20 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2019-06-14 00:20 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2019-06-14 00:20 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-05-30 21:23 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-06-15 23:49 - 2018-03-30 15:32 - 000004458 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-15 23:49 - 2018-02-28 19:12 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-15 23:49 - 2018-02-28 19:12 - 000002786 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-06-15 23:49 - 2017-12-20 01:57 - 000003514 _____ C:\Windows\system32\Tasks\PCCleaner-AutoCleanup-Task
2020-06-15 23:49 - 2017-10-11 19:24 - 000003912 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2020-06-15 23:49 - 2017-10-11 19:24 - 000003660 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2020-06-15 23:49 - 2017-04-23 20:38 - 000004470 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-06-15 23:49 - 2015-12-23 17:58 - 000003094 _____ C:\Windows\system32\Tasks\{043A2DD4-D769-4B0B-B4D8-7F492E022F8A}
2020-06-15 23:49 - 2015-12-04 00:16 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-15 23:49 - 2015-11-25 11:59 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-06-15 23:49 - 2015-08-25 19:46 - 000003224 _____ C:\Windows\system32\Tasks\{13D402EA-B90E-4F17-B930-71CDD915B189}
2020-06-15 23:49 - 2015-08-05 01:38 - 000003826 _____ C:\Windows\system32\Tasks\Ashampoo Privacy Protector Weekly Security Scan
2020-06-15 23:49 - 2015-04-26 19:09 - 000003326 _____ C:\Windows\system32\Tasks\SidebarExecute
2020-06-15 23:49 - 2015-03-27 20:49 - 000003090 _____ C:\Windows\system32\Tasks\{39B44E7C-15EF-4E61-AB62-59DAF2106492}
2020-06-15 23:49 - 2014-12-17 23:38 - 000002842 _____ C:\Windows\system32\Tasks\ASC8_SkipUac_Cesar
2020-06-15 23:49 - 2014-12-16 23:59 - 000003184 _____ C:\Windows\system32\Tasks\{9084F6DA-3C4B-4D99-A756-B868840B3E4E}
2020-06-15 23:49 - 2014-12-16 19:31 - 000003396 _____ C:\Windows\system32\Tasks\update-sys
2020-06-15 23:49 - 2014-12-16 19:31 - 000003374 _____ C:\Windows\system32\Tasks\update-S-1-5-21-910611789-622597485-2707345344-1000
2020-06-15 23:49 - 2014-12-16 17:50 - 000003444 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-06-15 23:49 - 2014-12-16 17:50 - 000003316 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-06-15 21:04 - 2014-12-30 01:33 - 000000000 ____D C:\Windows\Minidump
2020-06-15 20:57 - 2014-12-15 20:02 - 000462592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-06-14 12:09 - 2014-12-17 00:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-13 17:21 - 2018-08-18 14:01 - 000000000 ____D C:\Users\Cesar\AppData\Local\7DDB13AA-3044-4C40-89D0-8C5E5E69962F.aplzod
2020-06-10 10:20 - 2017-10-11 19:24 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-06-09 21:04 - 2020-04-05 13:54 - 000002003 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-06-09 21:04 - 2020-04-05 13:54 - 000002003 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-06-09 21:04 - 2017-04-16 21:45 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-09 20:40 - 2014-12-15 20:02 - 000322256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-06-09 09:09 - 2014-12-16 17:50 - 000002220 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-09 09:09 - 2014-12-16 17:50 - 000002179 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-09 09:09 - 2014-12-16 17:50 - 000002179 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-09 00:55 - 2017-07-04 20:04 - 000000000 ____D C:\Program Files (x86)\Steam
2020-06-08 20:10 - 2009-07-14 06:08 - 000032578 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-06-06 18:07 - 2014-12-15 20:02 - 000000000 ____D C:\Users\Cesar\AppData\Local\Adobe
2020-06-06 18:05 - 2014-12-17 00:36 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-06 18:05 - 2014-12-17 00:36 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-06 18:05 - 2014-12-17 00:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-06 18:03 - 2019-08-28 14:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-05 00:00 - 2015-11-25 11:59 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-06-03 20:06 - 2020-04-05 10:30 - 000506152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-06-03 20:06 - 2020-04-05 10:30 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-06-03 20:06 - 2019-01-17 23:33 - 000235088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-06-03 20:06 - 2019-01-17 22:27 - 000178768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-06-03 20:06 - 2019-01-17 22:27 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-06-03 20:06 - 2018-10-24 09:23 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-06-03 20:06 - 2018-01-09 22:13 - 000205896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-06-03 20:06 - 2014-12-15 20:02 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-06-03 20:06 - 2014-12-15 20:02 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-06-03 20:06 - 2014-12-15 20:02 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-06-02 20:52 - 2014-12-16 23:34 - 000000000 ____D C:\Users\Cesar\AppData\Roaming\uTorrent
2020-06-02 04:13 - 2015-12-29 02:00 - 000000000 ____D C:\Users\Cesar\AppData\Local\CrashDumps
2020-05-31 23:06 - 2015-10-31 12:29 - 000000000 ____D C:\Users\Cesar\AppData\Local\ElevatedDiagnostics
2020-05-28 03:54 - 2019-03-30 11:07 - 000000000 ____D C:\Users\Cesar\AppData\Local\BitTorrentHelper
2020-05-28 03:43 - 2014-12-16 19:31 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2020-05-26 22:34 - 2019-01-22 21:02 - 000000000 _____ C:\Windows\system32\last.dump
2020-05-24 12:58 - 2014-12-27 01:13 - 000000000 ____D C:\Users\Cesar\AppData\Roaming\MPC-HC
2020-05-24 00:09 - 2017-08-21 01:52 - 000000000 ____D C:\Users\Cesar\AppData\Local\Opera Software
2020-05-24 00:08 - 2017-08-21 01:52 - 000000000 ____D C:\Users\Cesar\AppData\Roaming\Opera Software
2020-05-22 21:53 - 2014-12-17 22:50 - 000000000 ____D C:\Program Files\Puran Utilities
2020-05-21 08:45 - 2017-11-17 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-05-21 08:45 - 2017-11-17 22:28 - 000000000 ____D C:\Program Files\Java
2020-05-21 08:44 - 2017-11-17 22:28 - 000129192 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2020-05-18 20:13 - 2014-12-15 16:21 - 000000000 ____D C:\Windows\system32\MRT
2020-05-18 20:10 - 2014-12-15 16:21 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-17 01:11 - 2014-12-15 20:00 - 000000000 ____D C:\Users\Cesar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-17 01:11 - 2014-12-15 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-05-17 01:11 - 2014-12-15 20:00 - 000000000 ____D C:\Program Files\WinRAR

==================== Files in the root of some directories ========

2020-06-16 19:46 - 2020-06-16 19:46 - 000000017 _____ () C:\Users\Cesar\AppData\Local\resmon.resmoncfg
2017-01-03 19:55 - 2017-10-21 20:30 - 000000553 _____ () C:\Users\Cesar\AppData\Local\TroubleshooterConfig.json
2017-12-21 12:49 - 2017-12-21 12:49 - 000000003 _____ () C:\Users\Cesar\AppData\Local\updater.log
2014-12-16 19:31 - 2017-05-06 19:13 - 000000425 _____ () C:\Users\Cesar\AppData\Local\UserProducts.xml
2019-05-28 19:30 - 2019-05-28 19:30 - 000000000 _____ () C:\Users\Cesar\AppData\Local\{8139C150-3E3B-4C09-9320-321FA75566F5}
2019-12-19 21:55 - 2019-12-19 21:55 - 000000000 _____ () C:\Users\Cesar\AppData\Local\{8157ECAD-54BE-4345-8E53-C4DFB2D5AB53}
2019-12-19 21:59 - 2019-12-19 21:59 - 000000000 _____ () C:\Users\Cesar\AppData\Local\{89FD7287-1E97-4599-9768-1C919D5293E2}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-06-07 10:50
==================== End of FRST.txt ========================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Opa patrício, como está Portugal com relação ao covid-19?

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Salve o arquivo (fixlist.txt) no anexo dessa mensagem em seu Desktop (Área de Trabalho).

  1. Clique com o botão direito em FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Clique no botão Fix (Corrigir) e aguarde.
  3. O sistema pode ser reiniciado.
  4. Será criado um arquivo de texto Fixlog.txt em seu Desktop.
  5. Anexe-o em sua próxima resposta.

Novamente:

  1. Execute novamente o FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Marque a opção Addition.txt.
  3. Pressione o botão Scan (Examinar).
  4. Anexe os dois logs.

Note: espero três logs em sua próxima resposta.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

 

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Viva,

 

Por cá o covid vai estando controlado. Conseguimos "achatar" a curva para nao sobrecarregar os hospitais e ja estamos ha 1 mes em desconfinamento. No entanto agora vão aparecendo alguns focos mas muitos fruto da estupidez de algumas pessoas como no algarve que fizeram uma festa com cerca 200 pessoas e agora estão a aparecer imensos infectados...
Vamos esperar que corra tudo bem tal como ai no brasil de onde, infelizmente, nao chegam noticias muito animadoras...

 

Seguem em anexo os 3 logs

Fixlog.txt FRST.txt Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Que bom e sempre tem pessoas assim que fazem essas estupidez, aqui no Brasil não é diferente. Sim, o Brasil como um todo não está muito bem, porém algumas cidades e estados estão "melhores" e estão em teste, afrouxando um pouco o isolamento. A minha cidade é uma delas: aqui temos quase 80 mil habitantes, e no momento há 445 casos confirmados, 5 óbitos, 310 recuperados e 122 doentes em casa. Aqui a taxa de isolamento foi uma das maiores do país.

 

Vamos lá :)

 

# Etapa nº 1 #

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Salve o arquivo (fixlist.txt) no anexo dessa mensagem em seu Desktop (Área de Trabalho).

  1. Clique com o botão direito em FRST.exe ou FRST64.exe e escolha Executar como Administrador.
  2. Clique no botão Fix (Corrigir) e aguarde.
  3. O sistema pode ser reiniciado.
  4. Será criado um arquivo de texto Fixlog.txt em seu Desktop.
  5. Anexe-o em sua próxima resposta.

# Etapa nº 2 #

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Faça o download da AdwCleaner e salve-a em seu Desktop (Área de Trabalho).

 

  1. Feche todos os programas abertos.
  2. Clique com o botão direito em adwcleaner_nºVersion.exe e escolha Executar como Administrador
  3. Clique em I agree para aceitar o termo de responsabilidade.
  4. Clique no botão Scan Now e aguarde.
  5. Clique no botão Run Basic Repair.
  6. Clique no botão LogFile, depois clique no relatório que será aberto pelo Bloco de Notas.
  7. Selecione todo seu conteúdo, copie e cole em sua próxima resposta.

 

O log também será salvo em C:\AdwCleaner\Logs


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado.

 

# Etapa nº 3 #

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

  1. Clique com o botão direito em ZHPCleaner.exe e escolha Executar como Administrador.
  2. Clique em I agree para aceitar o termo de responsabilidade.
  3. Clique no botão Scanner e aguarde.
  4. Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  5. Obs: o navegador pode abrir a qualquer momento, pode fechá-lo.
  6. Em seguida clique no botão Repair.
  7. Na janela que abrir, clique novamente no botão Repair.
  8. Obs: o navegador pode abrir a qualquer momento, pode fechá-lo.
  9. No Desktop irá aparecer dois logs: ZHPCleaner(S).txt e ZHPCleaner(R).txt.
  10. Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Viva,

Ainda bem que a sua cidade fez confinamento. A ver os casos que estão a aparecer por ca depois de desconfinar se as pessoas nao tiverem cuidado pode complicar rapidamente...

 

Seguem os logs

Fixlog.txt AdwCleaner[C07].txt ZHPCleaner (S).txt ZHPCleaner (R).txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Sim :)

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

Faça o download da RogueKiller Free e salve-a em seu Desktop (Área de Trabalho).

 

  1. Desconecte qualquer mídia externa (USB, HD, etc)
  2. Clique com o botão direito rogueKiller.exe e escolha Executar como Administrador
  3. Clique no botão Accept do termo de responsabilidade.
  4. Clique em Scan no painel esquerdo.
  5. Clique no botão Start em Standard Scan (recommended).
  6. Aguarde o término do scan e clique no botão Results.
  7. Veja abaixo como proceder (interpretação das cores) com os resultados.
  8. Depois da sua decisão clique no botão Finish.

 

As cores do resultado são interpretadas da seguinte forma:

 

Vermelho - Software malicioso ou infecções por malware.
Laranja - Programas potencialmente indesejados (PUPs), geralmente malicioso.
Cinza - Suspeito. Excluir ou mantê-lo, depende de você.
Verde - Seguro.

 

Nota 1: Caso você fique em dúvida sobre o resultado clique no botão Report, me envie e me aguarde.

Nota 2: Caso contrário clique no botão Removal, depois clique no botão Report, salve o relatório no Desktop, reinicie seu computador e anexo o log em sua próxima resposta.

 

Observação: você pode marcar e desmarcar cada entrada através do checkbox esquerdo de cada um no resultado.

 

Ative novamente seu antivírus, antispywares 👍

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Viva

 

executei o rogueKiller.exe e removi as entradas que la tinha

gerou este report

 

 

as_28C7.tmp.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Atualize o antivírus do seu Windows, faça um scan completo e poste o log.

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Viva,

 

Estou a usar o avast como antivirus.

Fiz o scan e nao reportou nada mas nao sei onde ele gera o log.

 

Era o Avast para fazer scan ou outro?

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @Mikron Pt

 

Em 23/06/2020 às 19:44, Mikron Pt disse:

Estou a usar o avast como antivirus.

 

Isso mesmo... :joia:

 

Como está seu Windows?

 

Desative temporariamente seu antivírus, antispywares para não causar conflitos.

 

# Etapa nº 1 #

 

Renomeie o FRST.exe ou FRST64.exe para uninstall.exe
Clique com o botão direito em uninstall.exe e escolha Executar como Administrador.
Aguarde.

 

# Etapa nº 2 #

 

Clique com o botão direito em adwcleaner_nºVersion.exe e escolha Executar como Administrador

Clique em Settings e depois em Applications.

Em Remove AdwCleaner clique no botão Remove.


# Etapa nº 3 #

O programa RogueKiller é pago (total funcionalidade), no caso nós usamos somente para remoção, porém vai da sua decisão mantê-lo instalado (e atualizado) ou não. 

 

# Etapa nº 4 #

 

Faça o download da KpRm by Kernel-panik e salve-a em seu Desktop (Área de Trabalho).

Clique com o botão direito e escolha Executar como Administrador.

Marque os itens em Actions:

- Delete tools
- Delete Restore Points
- Create Restore Point
- Registry Backup
- UAC Restore
- Restore System Settings

Marque os itens em Delete Quarentines:

- Delete now

Clique no botão Run.
Uma vez terminado clique em Ok.

O log irá abrir com o título kprm-(data).txt.

Selecione todo o conteúdo, copie e cole em sua próxima resposta (caso ache necessário).

 

# Etapa nº 5 #

 

Faça o download da Security Check by glax24.25 e salve-a em seu Desktop (Área de Trabalho).

 

Clique com o botão direito em SecurityCheckH.exe e escolha Executar como Administrador.
Aguarde... irá abrir o navegador.
Confira cada aviso (Warning!) e faça as devidas atualizações (Download Update).


<<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!

 

Nota: Caso queira pode deletar o(s) arquivo(s) depois do fechamento desse tópico.

 

Ative novamente seu antivírus, antispywares 👍

 

# Etapa nº 6 #

 

O Ccleaner é um excelente utilitário de limpeza para o computador.

 

Faça o download dele aqui Ccleaner

 

  • Após a instalação vá até o local onde o programa foi instalado, geralmente em C:\Arquivos de programas\CCleaner.
  • Clique duas vezes nesta pasta;
  • Numa área vazia desta janela, clique com o botão direito do mouse e escolha Novo > pasta e crie uma nova pasta;
  • Coloque o nome de backups.
  • Abra o programa e clique em Executar Limpeza;
  • Clique no botão Registro > Procurar Erros > Corrigir erro(s) seleciona(s)...
  • Observação: Não se esqueça de aceitar o backup das correções, e salvá-los nas pasta criada acima!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Muito obrigado pela ajuda.

 

Tinha muita coisa desactualizada e o  Security Check by glax24.25 veio ajudar a actualizar muita coisa.

So nao consigo atualizar o windows update.. da sempre erros...

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Mikron Pt

 

15 horas atrás, Mikron Pt disse:

So nao consigo atualizar o windows update.. da sempre erros...

 

Qual é o código do erro?

Compartilhar este post


Link para o post
Compartilhar em outros sites

viva,

 

Desculpa a demora mas estive ausente em trabalho

 

os códigos de erro que da sao 

80092004

800B0100

 

Ja procurei no suporte como ultrapassar isso sem sucesso

Compartilhar este post


Link para o post
Compartilhar em outros sites

Problema resolvido!

 

Caso o autor necessite, o mesmo será reaberto, para isso deverá entrar em contato com um Analista de Segurança ou Coordenador solicitando o desbloqueio.

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas comunidades sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

Aprenda a ler resistores e capacitores

EBOOK GRÁTIS!

CLIQUE AQUI E BAIXE AGORA MESMO!