Ir ao conteúdo
  • Cadastre-se

Lentidão e travamento constante.


Posts recomendados

  • Analista de Segurança

@Marcus S. R.

 

A CPU me parece ok pelas imagens.

 

 

Baixe o Farbar Recovery Scan do link abaixo e salve na sua área de trabalho.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

** Usuários do Windows Vista, Windows 7, 8/8.1 e windows 10:
Clique com o direito sobre o arquivo FRST64.EXE, depois clique em http://i.imgur.com/VRIfczU.png .

Aceite o contrato e depois clique no botão Scan/Examinar.Aguarde e ao final, os logs FRST.txt e Addition.txt serão salvos no seu desktop.

Abra cada arquivo em separado, copie seu conteúdo e cole na sua próxima resposta.

 

Link para o comentário
Compartilhar em outros sites

Segue o log do procedimento:

 

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 22-02-2021
Executado por teste (22-02-2021 22:38:35)
Executando a partir de C:\Users\teste\Desktop
Windows 10 Pro Versão 2004 19041.746 (X64) (2020-11-07 16:04:58)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1412038159-2218112944-1139821531-500 - Administrator - Enabled) => C:\Users\Administrador
Convidado (S-1-5-21-1412038159-2218112944-1139821531-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1412038159-2218112944-1139821531-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1412038159-2218112944-1139821531-1002 - Limited - Disabled)
teste (S-1-5-21-1412038159-2218112944-1139821531-1003 - Administrator - Enabled) => C:\Users\teste
WDAGUtilityAccount (S-1-5-21-1412038159-2218112944-1139821531-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Panda Dome (Enabled - Up to date) {8EE5B6CC-D555-4755-164C-336E561DE601}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\uTorrent) (Version: 3.5.5.45672 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{6C16453A-F664-4CBD-99A7-78F73552470C}) (Version: 4.4.3.2265 - Open Media LLC)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Ae (HKLM\...\{B910FB1A-0B9D-412D-A735-28AF88A52FF1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_0_1) (Version: 24.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_3) (Version: 20.0.3 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Any Video Converter 6.2.8 (HKLM-x32\...\Any Video Converter) (Version: 6.2.8 - Anvsoft)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version:  - )
Blitz 1.13.67 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.13.67 - Blitz, Inc.)
CPUID CPU-Z 1.92 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.92 - CPUID, Inc.)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version:  - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Discord) (Version: 0.0.309 - Discord Inc.)
EaseUS Video Editor V1.6.3.29 (HKLM-x32\...\{160288F0-2C46-47E6-973D-F8F8D0577965}_is1) (Version: 1.6.3.29 - EaseUS)
EnigmaSAPI (HKLM-x32\...\{94DB450B-7A9C-4496-BE2C-52F3D237FDFE}) (Version: 1.0.0.0 - TesserAction Games)
Epic Games Launcher (HKLM-x32\...\{F07A0574-05C7-4FE2-827D-73385B8C8A5F}) (Version: 1.1.205.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 1.1.5.0 - EVGA Corporation)
FFmpeg (Windows) for Audacity versão 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
Gears of War (HKLM-x32\...\{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Glary Utilities 5.123 (HKLM-x32\...\Glary Utilities 5) (Version: 5.123.0.148 - Glarysoft Ltd)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.16.5272 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPU Caps Viewer 1.9.0 (HKLM-x32\...\{F6E04BE8-2FA4-44C4-9BD3-142CE3EB15B4}_is1) (Version:  - Geeks3D.com)
HP Deskjet 1000 J110 series Software básico do dispositivo (HKLM\...\{E3B463AE-4069-4736-B803-1C416E6E88D8}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Installer (HKLM-x32\...\{97E12F84-C033-4DA2-97D2-F540C3E292EA}) (Version: 1.0.0 - Sierra Entertainment, Inc.) Hidden
Intel Driver && Support Assistant (HKLM-x32\...\{CF18558A-3642-4C4D-A551-23275D1FCE16}) (Version: 19.7.30.2 - Intel) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AF8A5E6C-7485-47FB-9FE4-CF3B43FDB178}) (Version: 18.0.156 - Intel Corporation)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{12d2d1d9-5223-431d-96ac-6a82d3a1391c}) (Version: 19.7.30.2 - Intel)
IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Javelin3 PDF reader version 3.0.1.38 (HKLM-x32\...\Javelin3 PDF reader_is1) (Version: 3.0.1.38 - )
Johnny Castaway for x64 versão 1.0 (HKLM-x32\...\{B5F5DC54-AD05-4DAA-AE25-67F1B3AD3467}_is1) (Version: 1.0 - )
Kit de Avaliação e Implantação do Windows - Windows 10 (HKLM-x32\...\{9346016b-6620-4841-8ea4-ad91d3ea02b5}) (Version: 10.1.19041.1 - Microsoft Corporation)
Kits Configuration Installer (HKLM-x32\...\{8867E8B9-1539-18F3-54AB-B1F1E641AC14}) (Version: 10.1.19041.1 - Microsoft) Hidden
K-Lite Codec Pack 15.8.7 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.8.7 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Many Faces of Go 12 (HKLM-x32\...\{59772D11-9D88-4020-838C-6F4864D0DE8A}) (Version: 12.0 - Smart Games)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Combat Flight Simulator 3 Mission Pack (HKLM-x32\...\{9E816F70-50E9-4BF0-B3CD-BB140EAC3171}) (Version: 3.0.0.0921 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1_9527A496-5DF9-412A-ADC7-168BA5379CA6) (Version: 10.0.61355.0 - Microsoft Game Studios)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E75776B2-EAE5-42F9-A800-0A10763DEDF0}) (Version: 11.0.2318.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{1a63c099-febd-4eaf-83ad-a82ea4fdac49}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NextUp-ScanSoft Raquel Brazilian Portuguese Voice (HKLM-x32\...\{5FAFC823-5E8C-40FB-8238-F2C536B2FB11}) (Version: 4.0.0 - NextUp.com)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.1 - Notepad++ Team)
NVIDIA Driver de gráficos 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.27.126 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.27.126 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Software do sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.4 (HKLM-x32\...\{BDB210E1-06C5-451F-BDAC-C18DDC7C2F14}) (Version: 4.14.9788 - Apache Software Foundation)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security)
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{CEC43566-A3C0-428E-9FE4-6D100F136DB7}) (Version: 11.52.00 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 20.02.00.0000 - Panda Security)
PokeXGames versão 1.0 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{59CE89A4-DA29-4148-A7FA-5F416E798641}_is1) (Version: 1.0 - PokeXGames)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
PureRef (HKLM-x32\...\PureRef) (Version: 1.10.4 - Idyllic Pixel)
qBittorrent 4.3.3 (HKLM-x32\...\qBittorrent) (Version: 4.3.3 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7982 - Realtek Semiconductor Corp.)
RetroArch 2020-01-15 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\RetroArch) (Version: 2020-01-15 - libretro)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RFInterp v2.00 (HKLM-x32\...\RFInterp_is1) (Version:  - Allen Edwall/Rosicrucian Fellowship)
RimWorld Royalty (HKLM-x32\...\RimWorld Royalty_is1) (Version:  - )
RogueKiller version 14.8.5.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.8.5.0 - Adlice Software)
S.W.A.T. 4 (HKLM-x32\...\S.W.A.T. 4_is1) (Version:  - )
Security Task Manager 2.4 (HKLM-x32\...\Security Task Manager) (Version: 2.4 - Neuber Software)
Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden
Should I Remove It (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Sierra Utilities (HKLM-x32\...\Sierra Utilities) (Version:  - )
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.34.9745 - SoftEther VPN Project)
Solar Fire Gold Demo (HKLM-x32\...\{02240BDE-9E9F-4363-9A0B-3B42CAAA9C2B}) (Version: 7.0.1 - Esoteric Technologies Pty Ltd)
SoundWire Server version 2.5 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 2.5 - GeorgieLabs)
Spotify (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Spotify (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Spotify) (Version: 1.0.84.344.gfc674f6f - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
SWAT 4 - The Stetchkov Syndicate (HKLM-x32\...\InstallShield_{97E12F84-C033-4DA2-97D2-F540C3E292EA}) (Version: 1.0.0 - Sierra Entertainment, Inc.)
TextAloud 3.0 (HKLM-x32\...\TextAloud3_is1) (Version: 3.0 - NextUp.com)
Toolkit Documentation (HKLM-x32\...\{1978CD82-5D9C-F9BD-4FA3-17AFA5AE12B2}) (Version: 10.1.19041.1 - Microsoft) Hidden
Try Corel Snapfire muvee autoProducer add on (HKLM-x32\...\{12665B01-3F3A-4433-B179-9D8E352D7547}) (Version: 1.00.0000 - Corel Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
USB Disk Storage Format Tool 5.3 (HKLM\...\USB Disk Storage Format Tool_is1) (Version:  - Authorsoft Corporation)
USB Vibration Joystick (HKLM-x32\...\{57496D70-3C5A-4197-9908-128101444B73}) (Version: 2006.01.20 - )
Version 1.0 (HKLM-x32\...\{A901BF63-29AD-49A3-B067-231925E98B62}_is1) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.4 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.3 - Wacom Technology Corp.)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 0.16.0.0 - Winaero)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8  - Winamp SA)
Windows Driver Package - Oracle Corporation LdVBoxDrv System  (12/28/2016 2.0.0) (HKLM\...\C4B5ABF7DEBC0ED3EF1000EB14DAF65B01E12AD0) (Version: 12/28/2016 2.0.0 - Oracle Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WOW (HKLM-x32\...\{A7EC08D3-419E-4568-B59A-82D652450D48}) (Version:  - )
WPT Redistributables (HKLM-x32\...\{AE00264D-F001-A1D3-F3B8-74A9D2193E7F}) (Version: 10.1.19041.1 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{FD439F85-AD64-B3E5-9FC5-444AE8C8AF7B}) (Version: 10.1.19041.1 - Microsoft) Hidden
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

Packages:
=========
Any Video Converter,Video To Mp3,Total Video Converter -> C:\Program Files\WindowsApps\39492FruitCandy.AnyVideoConverterVideoToMp3TotalVi_1.1.1.0_x64__xnewyr70hrxjw [2019-12-19] (Fruit Candy) [MS Ad]
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation)
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.6.413.0_x64__rz1tebttyb220 [2020-12-11] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Studios) [MS Ad]
MSN Esportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-28] (NVIDIA Corp.)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.11.0_x64__8wekyb3d8bbwe [2020-07-23] (Microsoft Corporation)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.23.1.0_x64__nfy108tqq3p12 [2020-11-14] (Thumbmunkeys Ltd)
WebCam Monitor -> C:\Program Files\WindowsApps\DeskShare.WebCamMonitor_1.0.35.0_x86__13ddgfpts17ng [2020-10-24] (DeskShare) [Startup Task]
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation)

==================== Exame Personalizado CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399008} -  -> Nenhum Arquivo
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399003} -  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-10-27] (Notepad++ -> )
ContextMenuHandlers1: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL -> Nenhum Arquivo
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers2: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [IObitUnstaler] -> [CC]{B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll [2020-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Arquivo não assinado]

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)

Shortcut: C:\Users\teste\Desktop\LaunchSEF.bat.lnk -> C:\Program Files (x86)\S.W.A.T. 4\SEF\LaunchSEF.bat ()
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\AllCast Receiver.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hjbljnpdahefgnopeohlaeohgkiidnoe
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chromebook Recovery Utility.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jndclpdbaamdhonoechobihbbiimdgai
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Floating for YouTube™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad

==================== Módulos Carregados (Whitelisted) =============

2019-06-24 05:57 - 2019-06-24 05:57 - 000626688 _____ () [Arquivo não assinado] C:\Program Files\EVGA\Precision X1\scanner.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000085504 _____ () [Arquivo não assinado] C:\WINDOWS\system32\zlib1.dll
2019-02-25 13:51 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [Arquivo não assinado] C:\Program Files\7-Zip\7-zip.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000466944 _____ (The curl library, hxxps://curl.haxx.se/) [Arquivo não assinado] C:\WINDOWS\system32\libcurl.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT2 [672]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1412038159-2218112944-1139821531-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2018-07-16 19:44 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

2019-11-06 01:16 - 2019-11-06 02:07 - 000000433 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.86.17 USER-PC.mshome.net # 2024 11 1 4 5 7 58 877

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Skype\Phone;C:\WINDOWS\System32\WindowsPowerShel;C:\Windows\SysWOW64l\v1.0\;C:\Windows\SysWOW64;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Boxcryptor\bin\;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Windows Live\Shared;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-21-1412038159-2218112944-1139821531-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.15.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Nenhum Arquivo)
Firewall do Windows está habilitado.

Network Binding:
=============
Conexão local: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
Conexão local: Diebold Network Monitor -> nt_wsddntf (enabled) 
Ethernet: Diebold Network Monitor -> nt_wsddntf (enabled) 
Ethernet: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
VPN - VPN Client: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
VPN - VPN Client: Diebold Network Monitor -> nt_wsddntf (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 3
MSCONFIG\Services: AGSService => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: DSAService => 3
MSCONFIG\Services: DSAUpdateService => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: MEmusvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: Panda VPN Service => 3
MSCONFIG\Services: PandaAgent => 2
MSCONFIG\Services: rkrtservice => 2
MSCONFIG\Services: SEVPNCLIENT => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: TabletServicePen => 2
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: uSHAREitSvc => 3
MSCONFIG\Services: Wondershare InstallAssist => 2
MSCONFIG\Services: WTabletServiceCon => 2
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "PSUAMain"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Malwarebytes Anti-Exploit"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "Lightshot"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "TinyWall Controller"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "OpenVPN-GUI"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "AirDroid 3"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "HiAlgoBOOST"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "EVGAPrecisionX"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "qBittorrent"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "HiAlgoSWITCH"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "NetLimiter"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Application Restart #0"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "AtHomeVideoStreamer"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Application Restart #1"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "EZBlocker"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "com.blitz.app"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCXProcess"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{B2C0D868-DD93-480B-9749-4EA59C1180FA}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [UDP Query User{DDF574F4-1202-4483-B232-553FEEDCB318}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{87C505B8-4973-4ED9-86D4-AFE34F5CA1D3}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{5E93792F-7001-4BD3-98DB-B8650B6C3E4D}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02F6546B-F30D-48CC-A984-5A2860D6D593}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D2472D6-A42D-4DCE-B921-E62338ABF11F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EE5DE867-F840-4379-ADF5-6FF23DF100FB}] => (Block) C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc. -> Adobe Inc.) [Arquivo não assinado]
FirewallRules: [{0F7E33EB-0DC9-4336-B3F0-689EFC04D2A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{79F39BBE-C44B-42FC-B8C8-36832308942E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{31FAC11F-53A6-4881-A7EE-565779E696E7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{8232CFB9-DBA6-4EB6-8E44-91142084E022}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{52D41E79-B0AF-4AEC-853C-431F3C8BDC13}] => (Allow) LPort=5900
FirewallRules: [{A8A4FD77-3471-4E2B-BF5C-3C1DA1E4F6C2}] => (Allow) LPort=5800
FirewallRules: [{A8E761E0-5300-47FB-83DB-6D4C9B572F7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{75E5F7C9-FD4D-4D7A-B6D6-A9DA33E9B353}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{4AC3CE73-0283-4582-9171-B5F91A5A7D0F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{12975313-D210-4714-BDEA-2E5F8D10776D}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{D55FDB95-7B06-489D-B304-A1F0403B5775}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{16BE544B-BC04-4272-B226-E3A0FAECD477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{C03B698B-91BD-4A9A-BE0F-2151E2ED5816}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

17-02-2021 19:51:13 Ponto de Verificação Agendado
18-02-2021 19:14:12 18022021

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (02/22/2021 10:11:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (C:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:53:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:41:25 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:28:09 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 08:52:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 08:15:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 07:52:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 06:15:49 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)


Erros de Sistema:
=============
Error: (02/22/2021 03:07:41 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:40 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:39 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:38 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:37 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:07 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 02:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço ProtexisLicensing devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/20/2021 01:01:37 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.


Windows Defender:
================
Date: 2021-01-19 13:07:06
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.2420.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2021-01-18 17:03:15
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.2420.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2021-01-18 16:53:16
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.57.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2020-11-07 15:56:16
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.327.510.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17600.5
Código de Erro: 0x80240438
Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

Date: 2020-11-07 15:38:00
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.325.803.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17500.4
Código de Erro: 0x80240016
Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

CodeIntegrity:
===============
Date: 2021-02-22 14:57:38
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vncmirror.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-02-15 15:32:03
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória =========================== 

BIOS: American Megatrends Inc. 0501 07/27/2011
placa-mãe: ASUSTeK Computer INC. P5G41T-M LX3
Processador: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentagem de memória em uso: 33%
RAM física total: 8191.11 MB
RAM física disponível: 5409.75 MB
Virtual Total: 16383.11 MB
Virtual disponível: 11785.39 MB

==================== Drives ================================

Drive 😄 () (Fixed) (Total:297.13 GB) (Free:102.19 GB) NTFS

\\?\Volume{ca2d0378-caf0-11e6-b74f-806e6f6e6963}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{96309630-0000-0000-0000-a04e4a000000}\ () (Fixed) (Total:0.86 GB) (Free:0.42 GB) NTFS

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 96309630)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=882 MB) - (Type=27)

==================== Fim de Addition.txt =======================

Link para o comentário
Compartilhar em outros sites

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 22-02-2021
Executado por teste (22-02-2021 22:38:35)
Executando a partir de C:\Users\teste\Desktop
Windows 10 Pro Versão 2004 19041.746 (X64) (2020-11-07 16:04:58)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1412038159-2218112944-1139821531-500 - Administrator - Enabled) => C:\Users\Administrador
Convidado (S-1-5-21-1412038159-2218112944-1139821531-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1412038159-2218112944-1139821531-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1412038159-2218112944-1139821531-1002 - Limited - Disabled)
teste (S-1-5-21-1412038159-2218112944-1139821531-1003 - Administrator - Enabled) => C:\Users\teste
WDAGUtilityAccount (S-1-5-21-1412038159-2218112944-1139821531-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Panda Dome (Enabled - Up to date) {8EE5B6CC-D555-4755-164C-336E561DE601}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\uTorrent) (Version: 3.5.5.45672 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{6C16453A-F664-4CBD-99A7-78F73552470C}) (Version: 4.4.3.2265 - Open Media LLC)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Ae (HKLM\...\{B910FB1A-0B9D-412D-A735-28AF88A52FF1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_0_1) (Version: 24.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_3) (Version: 20.0.3 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Any Video Converter 6.2.8 (HKLM-x32\...\Any Video Converter) (Version: 6.2.8 - Anvsoft)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version:  - )
Blitz 1.13.67 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.13.67 - Blitz, Inc.)
CPUID CPU-Z 1.92 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.92 - CPUID, Inc.)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version:  - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Discord) (Version: 0.0.309 - Discord Inc.)
EaseUS Video Editor V1.6.3.29 (HKLM-x32\...\{160288F0-2C46-47E6-973D-F8F8D0577965}_is1) (Version: 1.6.3.29 - EaseUS)
EnigmaSAPI (HKLM-x32\...\{94DB450B-7A9C-4496-BE2C-52F3D237FDFE}) (Version: 1.0.0.0 - TesserAction Games)
Epic Games Launcher (HKLM-x32\...\{F07A0574-05C7-4FE2-827D-73385B8C8A5F}) (Version: 1.1.205.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 1.1.5.0 - EVGA Corporation)
FFmpeg (Windows) for Audacity versão 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
Gears of War (HKLM-x32\...\{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Glary Utilities 5.123 (HKLM-x32\...\Glary Utilities 5) (Version: 5.123.0.148 - Glarysoft Ltd)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.16.5272 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPU Caps Viewer 1.9.0 (HKLM-x32\...\{F6E04BE8-2FA4-44C4-9BD3-142CE3EB15B4}_is1) (Version:  - Geeks3D.com)
HP Deskjet 1000 J110 series Software básico do dispositivo (HKLM\...\{E3B463AE-4069-4736-B803-1C416E6E88D8}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Installer (HKLM-x32\...\{97E12F84-C033-4DA2-97D2-F540C3E292EA}) (Version: 1.0.0 - Sierra Entertainment, Inc.) Hidden
Intel Driver && Support Assistant (HKLM-x32\...\{CF18558A-3642-4C4D-A551-23275D1FCE16}) (Version: 19.7.30.2 - Intel) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AF8A5E6C-7485-47FB-9FE4-CF3B43FDB178}) (Version: 18.0.156 - Intel Corporation)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{12d2d1d9-5223-431d-96ac-6a82d3a1391c}) (Version: 19.7.30.2 - Intel)
IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Javelin3 PDF reader version 3.0.1.38 (HKLM-x32\...\Javelin3 PDF reader_is1) (Version: 3.0.1.38 - )
Johnny Castaway for x64 versão 1.0 (HKLM-x32\...\{B5F5DC54-AD05-4DAA-AE25-67F1B3AD3467}_is1) (Version: 1.0 - )
Kit de Avaliação e Implantação do Windows - Windows 10 (HKLM-x32\...\{9346016b-6620-4841-8ea4-ad91d3ea02b5}) (Version: 10.1.19041.1 - Microsoft Corporation)
Kits Configuration Installer (HKLM-x32\...\{8867E8B9-1539-18F3-54AB-B1F1E641AC14}) (Version: 10.1.19041.1 - Microsoft) Hidden
K-Lite Codec Pack 15.8.7 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.8.7 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Many Faces of Go 12 (HKLM-x32\...\{59772D11-9D88-4020-838C-6F4864D0DE8A}) (Version: 12.0 - Smart Games)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Combat Flight Simulator 3 Mission Pack (HKLM-x32\...\{9E816F70-50E9-4BF0-B3CD-BB140EAC3171}) (Version: 3.0.0.0921 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1_9527A496-5DF9-412A-ADC7-168BA5379CA6) (Version: 10.0.61355.0 - Microsoft Game Studios)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E75776B2-EAE5-42F9-A800-0A10763DEDF0}) (Version: 11.0.2318.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{1a63c099-febd-4eaf-83ad-a82ea4fdac49}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NextUp-ScanSoft Raquel Brazilian Portuguese Voice (HKLM-x32\...\{5FAFC823-5E8C-40FB-8238-F2C536B2FB11}) (Version: 4.0.0 - NextUp.com)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.1 - Notepad++ Team)
NVIDIA Driver de gráficos 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.27.126 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.27.126 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Software do sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.4 (HKLM-x32\...\{BDB210E1-06C5-451F-BDAC-C18DDC7C2F14}) (Version: 4.14.9788 - Apache Software Foundation)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security)
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{CEC43566-A3C0-428E-9FE4-6D100F136DB7}) (Version: 11.52.00 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 20.02.00.0000 - Panda Security)
PokeXGames versão 1.0 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\{59CE89A4-DA29-4148-A7FA-5F416E798641}_is1) (Version: 1.0 - PokeXGames)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
PureRef (HKLM-x32\...\PureRef) (Version: 1.10.4 - Idyllic Pixel)
qBittorrent 4.3.3 (HKLM-x32\...\qBittorrent) (Version: 4.3.3 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7982 - Realtek Semiconductor Corp.)
RetroArch 2020-01-15 (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\RetroArch) (Version: 2020-01-15 - libretro)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RFInterp v2.00 (HKLM-x32\...\RFInterp_is1) (Version:  - Allen Edwall/Rosicrucian Fellowship)
RimWorld Royalty (HKLM-x32\...\RimWorld Royalty_is1) (Version:  - )
RogueKiller version 14.8.5.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.8.5.0 - Adlice Software)
S.W.A.T. 4 (HKLM-x32\...\S.W.A.T. 4_is1) (Version:  - )
Security Task Manager 2.4 (HKLM-x32\...\Security Task Manager) (Version: 2.4 - Neuber Software)
Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden
Should I Remove It (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Sierra Utilities (HKLM-x32\...\Sierra Utilities) (Version:  - )
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.34.9745 - SoftEther VPN Project)
Solar Fire Gold Demo (HKLM-x32\...\{02240BDE-9E9F-4363-9A0B-3B42CAAA9C2B}) (Version: 7.0.1 - Esoteric Technologies Pty Ltd)
SoundWire Server version 2.5 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 2.5 - GeorgieLabs)
Spotify (HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Spotify (HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Spotify) (Version: 1.0.84.344.gfc674f6f - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
SWAT 4 - The Stetchkov Syndicate (HKLM-x32\...\InstallShield_{97E12F84-C033-4DA2-97D2-F540C3E292EA}) (Version: 1.0.0 - Sierra Entertainment, Inc.)
TextAloud 3.0 (HKLM-x32\...\TextAloud3_is1) (Version: 3.0 - NextUp.com)
Toolkit Documentation (HKLM-x32\...\{1978CD82-5D9C-F9BD-4FA3-17AFA5AE12B2}) (Version: 10.1.19041.1 - Microsoft) Hidden
Try Corel Snapfire muvee autoProducer add on (HKLM-x32\...\{12665B01-3F3A-4433-B179-9D8E352D7547}) (Version: 1.00.0000 - Corel Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
USB Disk Storage Format Tool 5.3 (HKLM\...\USB Disk Storage Format Tool_is1) (Version:  - Authorsoft Corporation)
USB Vibration Joystick (HKLM-x32\...\{57496D70-3C5A-4197-9908-128101444B73}) (Version: 2006.01.20 - )
Version 1.0 (HKLM-x32\...\{A901BF63-29AD-49A3-B067-231925E98B62}_is1) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.4 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.3 - Wacom Technology Corp.)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 0.16.0.0 - Winaero)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8  - Winamp SA)
Windows Driver Package - Oracle Corporation LdVBoxDrv System  (12/28/2016 2.0.0) (HKLM\...\C4B5ABF7DEBC0ED3EF1000EB14DAF65B01E12AD0) (Version: 12/28/2016 2.0.0 - Oracle Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WOW (HKLM-x32\...\{A7EC08D3-419E-4568-B59A-82D652450D48}) (Version:  - )
WPT Redistributables (HKLM-x32\...\{AE00264D-F001-A1D3-F3B8-74A9D2193E7F}) (Version: 10.1.19041.1 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{FD439F85-AD64-B3E5-9FC5-444AE8C8AF7B}) (Version: 10.1.19041.1 - Microsoft) Hidden
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

Packages:
=========
Any Video Converter,Video To Mp3,Total Video Converter -> C:\Program Files\WindowsApps\39492FruitCandy.AnyVideoConverterVideoToMp3TotalVi_1.1.1.0_x64__xnewyr70hrxjw [2019-12-19] (Fruit Candy) [MS Ad]
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation)
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.6.413.0_x64__rz1tebttyb220 [2020-12-11] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Studios) [MS Ad]
MSN Esportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-28] (NVIDIA Corp.)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.11.0_x64__8wekyb3d8bbwe [2020-07-23] (Microsoft Corporation)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.23.1.0_x64__nfy108tqq3p12 [2020-11-14] (Thumbmunkeys Ltd)
WebCam Monitor -> C:\Program Files\WindowsApps\DeskShare.WebCamMonitor_1.0.35.0_x86__13ddgfpts17ng [2020-10-24] (DeskShare) [Startup Task]
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-05-04] (Microsoft Corporation)

==================== Exame Personalizado CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399008} -  -> Nenhum Arquivo
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399003} -  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-10-27] (Notepad++ -> )
ContextMenuHandlers1: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL -> Nenhum Arquivo
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers2: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [IObitUnstaler] -> [CC]{B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll [2020-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Arquivo não assinado]

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)

Shortcut: C:\Users\teste\Desktop\LaunchSEF.bat.lnk -> C:\Program Files (x86)\S.W.A.T. 4\SEF\LaunchSEF.bat ()
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\AllCast Receiver.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hjbljnpdahefgnopeohlaeohgkiidnoe
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chromebook Recovery Utility.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jndclpdbaamdhonoechobihbbiimdgai
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Floating for YouTube™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad

==================== Módulos Carregados (Whitelisted) =============

2019-06-24 05:57 - 2019-06-24 05:57 - 000626688 _____ () [Arquivo não assinado] C:\Program Files\EVGA\Precision X1\scanner.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000085504 _____ () [Arquivo não assinado] C:\WINDOWS\system32\zlib1.dll
2019-02-25 13:51 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [Arquivo não assinado] C:\Program Files\7-Zip\7-zip.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000466944 _____ (The curl library, hxxps://curl.haxx.se/) [Arquivo não assinado] C:\WINDOWS\system32\libcurl.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT2 [672]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1412038159-2218112944-1139821531-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2018-07-16 19:44 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

2019-11-06 01:16 - 2019-11-06 02:07 - 000000433 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.86.17 USER-PC.mshome.net # 2024 11 1 4 5 7 58 877

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Skype\Phone;C:\WINDOWS\System32\WindowsPowerShel;C:\Windows\SysWOW64l\v1.0\;C:\Windows\SysWOW64;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Boxcryptor\bin\;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Windows Live\Shared;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-21-1412038159-2218112944-1139821531-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.15.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Nenhum Arquivo)
Firewall do Windows está habilitado.

Network Binding:
=============
Conexão local: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
Conexão local: Diebold Network Monitor -> nt_wsddntf (enabled) 
Ethernet: Diebold Network Monitor -> nt_wsddntf (enabled) 
Ethernet: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
VPN - VPN Client: SoftEther Lightweight Network Protocol -> SeLow (enabled) 
VPN - VPN Client: Diebold Network Monitor -> nt_wsddntf (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 3
MSCONFIG\Services: AGSService => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: DSAService => 3
MSCONFIG\Services: DSAUpdateService => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: MEmusvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: Panda VPN Service => 3
MSCONFIG\Services: PandaAgent => 2
MSCONFIG\Services: rkrtservice => 2
MSCONFIG\Services: SEVPNCLIENT => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: TabletServicePen => 2
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: uSHAREitSvc => 3
MSCONFIG\Services: Wondershare InstallAssist => 2
MSCONFIG\Services: WTabletServiceCon => 2
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "PSUAMain"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Malwarebytes Anti-Exploit"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "Lightshot"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "TinyWall Controller"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "OpenVPN-GUI"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "AirDroid 3"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "HiAlgoBOOST"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "EVGAPrecisionX"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "qBittorrent"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "HiAlgoSWITCH"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "NetLimiter"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Application Restart #0"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "AtHomeVideoStreamer"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "Application Restart #1"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "EZBlocker"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "com.blitz.app"
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\StartupApproved\Run: => "CCXProcess"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{B2C0D868-DD93-480B-9749-4EA59C1180FA}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [UDP Query User{DDF574F4-1202-4483-B232-553FEEDCB318}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{87C505B8-4973-4ED9-86D4-AFE34F5CA1D3}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{5E93792F-7001-4BD3-98DB-B8650B6C3E4D}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02F6546B-F30D-48CC-A984-5A2860D6D593}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D2472D6-A42D-4DCE-B921-E62338ABF11F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EE5DE867-F840-4379-ADF5-6FF23DF100FB}] => (Block) C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc. -> Adobe Inc.) [Arquivo não assinado]
FirewallRules: [{0F7E33EB-0DC9-4336-B3F0-689EFC04D2A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{79F39BBE-C44B-42FC-B8C8-36832308942E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{31FAC11F-53A6-4881-A7EE-565779E696E7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{8232CFB9-DBA6-4EB6-8E44-91142084E022}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{52D41E79-B0AF-4AEC-853C-431F3C8BDC13}] => (Allow) LPort=5900
FirewallRules: [{A8A4FD77-3471-4E2B-BF5C-3C1DA1E4F6C2}] => (Allow) LPort=5800
FirewallRules: [{A8E761E0-5300-47FB-83DB-6D4C9B572F7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{75E5F7C9-FD4D-4D7A-B6D6-A9DA33E9B353}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{4AC3CE73-0283-4582-9171-B5F91A5A7D0F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{12975313-D210-4714-BDEA-2E5F8D10776D}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{D55FDB95-7B06-489D-B304-A1F0403B5775}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{16BE544B-BC04-4272-B226-E3A0FAECD477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{C03B698B-91BD-4A9A-BE0F-2151E2ED5816}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

17-02-2021 19:51:13 Ponto de Verificação Agendado
18-02-2021 19:14:12 18022021

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (02/22/2021 10:11:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (C:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:53:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:41:25 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 09:28:09 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 08:52:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 08:15:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 07:52:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (02/22/2021 06:15:49 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Reservado pelo Sistema devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)


Erros de Sistema:
=============
Error: (02/22/2021 03:07:41 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:40 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:39 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:38 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:37 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 03:07:07 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (02/22/2021 02:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço ProtexisLicensing devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/20/2021 01:01:37 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.


Windows Defender:
================
Date: 2021-01-19 13:07:06
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.2420.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2021-01-18 17:03:15
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.2420.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2021-01-18 16:53:16
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.329.57.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17700.4
Código de Erro: 0x80070422
Descrição do Erro: O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados. 

Date: 2020-11-07 15:56:16
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.327.510.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17600.5
Código de Erro: 0x80240438
Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

Date: 2020-11-07 15:38:00
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.325.803.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.17500.4
Código de Erro: 0x80240016
Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

CodeIntegrity:
===============
Date: 2021-02-22 14:57:38
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vncmirror.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-02-15 15:32:03
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória =========================== 

BIOS: American Megatrends Inc. 0501 07/27/2011
placa-mãe: ASUSTeK Computer INC. P5G41T-M LX3
Processador: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentagem de memória em uso: 33%
RAM física total: 8191.11 MB
RAM física disponível: 5409.75 MB
Virtual Total: 16383.11 MB
Virtual disponível: 11785.39 MB

==================== Drives ================================

Drive 😄 () (Fixed) (Total:297.13 GB) (Free:102.19 GB) NTFS

\\?\Volume{ca2d0378-caf0-11e6-b74f-806e6f6e6963}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{96309630-0000-0000-0000-a04e4a000000}\ () (Fixed) (Total:0.86 GB) (Free:0.42 GB) NTFS

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 96309630)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=882 MB) - (Type=27)

==================== Fim de Addition.txt =======================

Link para o comentário
Compartilhar em outros sites

Ops, obrigado por avisar! Segue o log restante!

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 22-02-2021
Executado por teste (administrador) em USER-PC (22-02-2021 22:35:02)
Executando a partir de C:\Users\teste\Desktop
Perfis Carregados: teste & Administrador
Platform: Windows 10 Pro Versão 2004 19041.746 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(1ncrivel Sistemas LTDA -> ) C:\Windows\System32\service.notification.center.exe
(Discord Inc. -> Discord Inc.) C:\Users\teste\AppData\Local\Discord\app-0.0.309\Discord.exe <6>
(EVGA Corp. -> EVGA Co., Ltd.) C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <32>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9068040 2016-11-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2021-02-09] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-26] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Run: [EZBlocker] => C:\Users\teste\Desktop\EZBlocker.exe [1443328 2020-09-22] (Eric Zhang) [Arquivo não assinado]
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Run: [com.blitz.app] => C:\Users\teste\AppData\Local\Programs\Blitz\Blitz.exe [108250608 2021-01-01] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\System32\logon.scr
HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Run: [uTorrent] => C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe [1893104 2020-06-10] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1412038159-2218112944-1139821531-500\...\Run: [Spotify Web Helper] => C:\Users\Administrador\AppData\Roaming\Spotify\SpotifyWebHelper.exe [781712 2018-06-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\CutePDF Writer Monitor: C:\WINDOWS\system32\cpwmon64.dll [85504 2009-11-05] (Acro Software Inc. -> )
HKLM\...\Print\Monitors\HP 8811 Status Monitor: C:\WINDOWS\system32\hpinksts8811LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
IFEO\EOSNOTIFY.EXE: [Debugger] 
IFEO\MusNotification.exe: [Debugger] 
IFEO\MusNotificationUX.exe: [Debugger] 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2021-02-09]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bit
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {04B1B8C6-F19C-43EF-BED8-3C92F05C2C3F} - não caminho do arquivo
Task: {0575FF21-0E69-4E3B-BBBA-60976CADA38D} - não caminho do arquivo
Task: {082B26EC-FF00-4F6A-9F62-D5C97E3B170A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {091CD22C-39DB-42BB-AF67-CDC7F628DDFF} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {1230E479-61DE-4E1E-88EE-B8B93D296D70} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {15CE6196-AFC5-4482-98E5-5C6E05F78BAF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {186A0FDD-C0A0-4F10-BAF7-0BD1E8E90B26} - não caminho do arquivo
Task: {1AEC0A23-F68F-49B5-B1BB-5A930BF1DE3B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {1DEDFCD0-1F69-4A16-BD7B-0C54EDA9718D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {212C16C0-AA8B-44F0-AA8B-76FC7578A692} - não caminho do arquivo
Task: {2906A675-3C1C-49AA-8BB4-10EB7CD2FD4D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {388DD43A-4B24-4CFD-83DB-A71B585D42F1} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {3C4F069C-2606-4A90-B44A-799EE44404BD} - não caminho do arquivo
Task: {3F8A7C69-D5BE-4D49-A099-CC32B92247B6} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {496481AB-FE27-4F55-A4BD-5EA892EA9F10} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A85F9F7-713F-4D6A-B92F-5731AD1647BE} - System32\Tasks\Tweaking.com - Remote Desktop IP Monitor & Blocker => C:\Program Files (x86)\Tweaking.com\Remote Desktop IP Monitor & Blocker\RDP_Monitor.exe
Task: {4B7BFA1F-7421-4FB2-BF72-F5D60424A243} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4B7C0170-47F4-4AE5-A225-E0DFB849519D} - não caminho do arquivo
Task: {503B0BCB-2F71-4DAC-9F7A-866B8C1CB1EF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {579F36FC-A9D4-4C8B-94DD-D5C26A47828E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6506D79B-9503-4D46-AA8E-D4C18B9243EB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {797C186B-A3B1-498F-AF68-C66E6483E678} - não caminho do arquivo
Task: {7CD34FD5-4B4B-4E4C-A54E-2DA816915660} - não caminho do arquivo
Task: {7EABC029-6093-40F5-8C5D-651BFC00F8BD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8041026B-14B7-4453-82D8-0BAF28AAAFEE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {82E319AC-EF0D-4EF1-9BE0-162D2B425B87} - System32\Tasks\Notification Center => C:\ProgramData\Notification Center\service.notification.updater.exe [489992 2020-04-27] (1ncrivel Sistemas LTDA -> )
Task: {86DAE117-166A-43FC-B39C-5A9FB584B3D5} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1412038159-2218112944-1139821531-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {8E5ED00C-0F42-4A5E-8804-A3C99D2CC5D8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {901383B4-30A8-46EE-B85C-5703D64A5B67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {94B7EF82-7013-47BA-A1B0-F514719DDFB7} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {94F68EF4-24D9-42B8-8F93-301E73C38E9F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2FAE6C2-7A6E-4029-BD4C-AA26717B8A97} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB47D004-2AAB-4379-AE27-53ED73E5B444} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF5A9FA4-4FB0-433C-8F39-7A7D3A7B7E1F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3179E28-7626-47BE-BF9B-D017EA10B6FC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B9F868A6-0415-4E41-95E5-975440AB0D04} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA628EDF-9CD2-4B9D-9FD3-C3EF4C216039} - não caminho do arquivo
Task: {BEDD92FD-5CD6-412F-B33F-2E091CC8C2A4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {C189FDAE-AB3A-4D08-9170-F9D00BB8C5E9} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-03] () [Arquivo não assinado]
Task: {C24AE269-46E6-4B98-98A3-02D09000E25C} - não caminho do arquivo
Task: {C499FEFE-AF95-42DC-9C2C-7AD9AE67203B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {C884A454-FCDF-41CB-8C6E-9855464CAB03} - não caminho do arquivo
Task: {D2382DA7-C042-440E-B331-3EE89970FD53} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6D8402F-6407-4B4A-B410-3F5DE0FC1A67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {DD92AE5D-E6E7-4B20-890C-B6120B6CA30A} - não caminho do arquivo
Task: {E023520C-DAAF-46A8-8A08-BE4B8F11C3F6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E1D27F9A-AA49-4256-9F1F-612BDDF507CF} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E43AB0AD-06AF-4272-A7FE-5E87356BFA9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4813AAD-EAD1-4D97-B51C-3AA1E1216501} - System32\Tasks\AdobeAAMUpdater-1.0-USER-PC-teste => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {EA4DCD02-772E-48F7-AC35-F808A0748BB6} - System32\Tasks\EVGAPrecisionX => C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe [27036240 2021-01-15] (EVGA Corp. -> EVGA Co., Ltd.)
Task: {F055CBFC-0CD9-4941-B1EB-AAAE4F21FDD4} - System32\Tasks\Limpeza de cache => C:\Users\teste\Documents\Manutenção\script-completo\script-completo.bat [12625 2020-12-31] () [Arquivo não assinado]
Task: {F136AA9B-E3C3-492F-83A4-911E315094F9} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F3D6E577-E809-4B62-A807-58E34C48AE84} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F3E71626-BF98-4C33-A77F-F46421DF9A3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F85B0E35-92EF-4A48-B6CD-847C0675A4C2} - não caminho do arquivo
Task: {FA8C184A-2CD9-4F39-9D72-47F27BE46B1F} - System32\Tasks\{251713C3-01E0-4FE7-9FA6-B3B3B908757E} => C:\Windows\system32\pcalua.exe -a E:\autorun.exe -d E:\

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Tweaking.com - Windows Repair Tray Icon.job => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)Tweaking.com - Windows Repair)Created By Tweaking.com

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{ad0f5af5-22ee-46bf-ba1a-01ff8011f1c7}: [DhcpNameServer] 192.168.15.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-22]
Edge Notifications: Default -> hxxps://www.instagram.com
Edge HomePage: Default -> hxxp://www.kadaza.com.br/
Edge StartupUrls: Default -> "chrome-extension://klbibkeccnjlkjkiokjodocebajanakg/suspended.html#ttl=AnimesOrionX%20-%20Assistir%20Animes%20Online&pos=0&uri=hxxps://animesorionx.net/","chrome-extension://klbibkeccnjlkjkiokjodocebajanakg/suspended.html#ttl=Soul%20Eater%20Epis%C3%B3dio%2015%20%E2%80%93%20O%20drag%C3%A3o%20negro%20devorador%20de%20almas%20%E2%80%93%20A%20covarde%20Liz%20e%20seus%E2%80%A6%20%E2%80%93%20AniTube&pos=194&uri=hxxps://www.anitube.site/19655/","chrome-extension://klbibkeccnjlkjkiokjodocebajanakg/suspended.html#ttl=Japanese%20Basic%20II%20-%2029%20-%20He%20said%20he's%20going%20to%20Nagasaki%20today%20-%20YouTube&pos=0&uri=hxxps://www.youtube.com/watch?v=0iw6K3wG3PM&t=36s","chrome-extension://klbibkeccnjlkjkiokjodocebajanakg/suspended.html#ttl=Mapa%20Numerol%C3%B3gico%20%E2%94%82%20Personare&pos=0&uri=hxxps://www.personare.com.br/numerologia/mapa-numerologico/completo/resultado/oVpqZODumLUeOB6k1lvtpQ4ri7Skip7NZuZIzeXwkIQ","chrome-extension://klbibkeccnjlkjkiokjodocebajanakg/suspended.html#ttl=Matsuo%20Bash%C3%B4%20-%20dez%20haikais%20-%20Revista%20Prosa%20Verso%20e%20Arte&pos=440&uri=hxxps://www.revistaprosaversoearte.com/matsuo-basho-dez-haikais/","hxxps://www.facebook.com/groups/jogosbr/?post_id=1681219228683134","hxxp://www.kadaza.com.br/"
Edge Session Restore: Default -> está habilitado.
Edge Extension: (Flash Video Downloader) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2020-04-19]
Edge Extension: (Removes Taboola) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ajdhffnbdccpannhhpeclanoojjloech [2020-04-19]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-02-17]
Edge Extension: (EPUB READER) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfpfpfenkimhijpdcbbhmemcimbeehcl [2020-08-19]
Edge Extension: (DuckDuckGo) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-01-09]
Edge Extension: (TrafficLight) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2020-10-19]
Edge Extension: (Image Downloader) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2020-04-19]
Edge Extension: (Talk and Comment - Voice notes anywhere) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2020-06-01]
Edge Extension: (Checker Plus for Gmail™) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkjkomkbjefdadfgbgdfgnpbmhmppiaa [2021-01-15]
Edge Extension: (Flip this) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\donljlliiecjcagcenoeohjmabfegkph [2020-04-19]
Edge Extension: (Tabs Outliner) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2020-04-30]
Edge Extension: (Floating Video with Playback Controls) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\egncdnniomonjgpjbapalkckojhkfddk [2021-02-05]
Edge Extension: (Pinterest Enhanced) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\egpachgbfnbpkceigfpcpicekmiehame [2020-04-19]
Edge Extension: (Dark Reader) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2021-02-22]
Edge Extension: (HTTPS Everywhere) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-02-01]
Edge Extension: (Picture in Picture for every website) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hepbieccgbieoeaigepkojmogpkjfpin [2020-05-09]
Edge Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2021-02-15]
Edge Extension: (Social Fixer for Facebook) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb [2020-09-03]
Edge Extension: (Tampermonkey) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iikmkjmpaadaobahmlepeloendndfphd [2020-11-10]
Edge Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2020-04-19]
Edge Extension: (SwiftRead - read faster, learn faster) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ipikiaejjblmdopojhpejjmbedhlibno [2021-02-10]
Edge Extension: (Save to Pocket) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jicacccodjjgmghnmekophahpmddeemd [2020-06-26]
Edge Extension: (The Great Suspender) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2020-10-27]
Edge Extension: (SimpleExtManager) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kniehgiejgnnpgojkdhhjbgbllnfkfdk [2020-11-16]
Edge Extension: (Video DownloadHelper) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-02-17]
Edge Extension: (Extensão do Google Keep para o Chrome) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-02-17]
Edge Extension: (Facebook Screen Sharing) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2020-04-19]
Edge Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-02-17]
Edge Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nfjgmgjhcihmkobljembcfodkajehoej [2021-02-22]
Edge Extension: (Gmail Checker - Read, Label & Manage) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nhjdhmbdahdidccpobobccagmmijndmp [2021-02-20]
Edge Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nmpoeeoiinfjbokhiglialghhgphffah [2020-10-06]
Edge Extension: (The QR Code Extension) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oijdcdmnjjgnnhgljmhkjlablaejfeeb [2020-04-19]
Edge Extension: (Feedbro) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdfbckdfhgaohcfdkcgpggcifmalimfd [2020-09-19]
Edge Extension: (Extensão Check-up de senha) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pncabnpcffmalkkjpajodfhijclecjno [2020-08-31]
Edge Extension: (RSS Feed Reader) - C:\Users\teste\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-09-03]

FireFox:
========
FF DefaultProfile: lh8bmdul.default
FF DefaultProfile: diwdmpgn.default
FF ProfilePath: C:\Users\teste\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lh8bmdul.default [2020-12-05]
FF Extension: (DOM Inspector) - C:\Users\teste\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lh8bmdul.default\Extensions\[email protected] [2020-05-21] [] [não assinado]
FF Extension: (ChatZilla) - C:\Users\teste\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lh8bmdul.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}.xpi [2020-05-21] [] [não assinado]
FF Extension: (Lightning) - C:\Users\teste\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lh8bmdul.default\Extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}.xpi [2020-05-21] [] [não assinado]
FF ProfilePath: C:\Users\teste\AppData\Roaming\Mozilla\Firefox\Profiles\diwdmpgn.default [2020-12-05]
FF Notifications: Mozilla\Firefox\Profiles\diwdmpgn.default -> hxxps://www.facebook.com; hxxps://mail.google.com; hxxps://www.youtubeconverter.io; hxxps://gestaoescolar.org.br
FF Extension: (LastPass: Free Password Manager) - C:\Users\teste\AppData\Roaming\Mozilla\Firefox\Profiles\diwdmpgn.default\Extensions\[email protected] [2020-01-31]
FF HKLM-x32\...\Firefox\Extensions: [{4ba57eab-93a9-4b0f-90d4-414773f8ef5c}] - C:\Program Files (x86)\TextAloud\TAForFirefox
FF Extension: (TextAloud 3 Toolbar) - C:\Program Files (x86)\TextAloud\TAForFirefox [2017-07-29] [] [não assinado]
FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Arquivo não assinado]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Arquivo não assinado]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2009-09-25] (Wacom, Inc.) [Arquivo não assinado]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Arquivo não assinado]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Arquivo não assinado]
FF Plugin HKU\S-1-5-21-1412038159-2218112944-1139821531-1003: gastecnologia.com.br/sf/cef64 -> C:\Users\teste\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [Nenhum Arquivo]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\autoconf_warsaw.js [2020-04-19]

Chrome: 
=======
CHR Profile: C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default [2021-02-13]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com","hxxp:www.fidonav.com"
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Slides) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-15]
CHR Extension: (Flash Video Downloader) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2020-01-15]
CHR Extension: (Removes Taboola) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajdhffnbdccpannhhpeclanoojjloech [2018-12-09]
CHR Extension: (Docs) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-15]
CHR Extension: (Lucidchart Diagrams) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2020-07-26]
CHR Extension: (Google Drive) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-16]
CHR Extension: (BeFunky Photo Editor) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2018-07-15]
CHR Extension: (Gliffy Diagrams) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2018-07-15]
CHR Extension: (DuckDuckGo Privacy Essentials) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2020-09-03]
CHR Extension: (YouTube) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-15]
CHR Extension: (TrafficLight) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2020-03-13]
CHR Extension: (DownAlbum) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2020-09-03]
CHR Extension: (Image Downloader) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2018-07-15]
CHR Extension: (Tampermonkey) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-07-26]
CHR Extension: (Talk and Comment - Voice notes anywhere) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2020-09-03]
CHR Extension: (Flip this) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\donljlliiecjcagcenoeohjmabfegkph [2018-07-15]
CHR Extension: (Tabs Outliner) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2020-09-03]
CHR Extension: (Floating for YouTube™ Extension) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\egncdnniomonjgpjbapalkckojhkfddk [2019-05-23]
CHR Extension: (Pinterest Enhanced) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\egpachgbfnbpkceigfpcpicekmiehame [2018-07-15]
CHR Extension: (Dark Reader) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2020-09-03]
CHR Extension: (Sheets) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-15]
CHR Extension: (Japanese Kanji Quizzer) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcadphbdbihhfjdhealiljcnaobegnmk [2018-07-15]
CHR Extension: (HTTPS Everywhere) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2020-09-03]
CHR Extension: (The QR Code Generator) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2018-07-15]
CHR Extension: (Google Docs Offline) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-03]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-03]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-04-29]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-04-17]
CHR Extension: (Picture in Picture for every website) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\hepbieccgbieoeaigepkojmogpkjfpin [2020-02-22]
CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2018-07-15]
CHR Extension: (AllCast Receiver) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbljnpdahefgnopeohlaeohgkiidnoe [2018-07-15]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-04-13]
CHR Extension: (Social Fixer for Facebook) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb [2019-10-07]
CHR Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2020-01-08]
CHR Extension: (Spreed - speed read the web) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipikiaejjblmdopojhpejjmbedhlibno [2020-04-15]
CHR Extension: (Floating for YouTube™) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2018-07-15]
CHR Extension: (Chromebook Recovery Utility) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\jndclpdbaamdhonoechobihbbiimdgai [2018-07-15]
CHR Extension: (The Great Suspender) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2019-10-07]
CHR Extension: (SimpleExtManager) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\kniehgiejgnnpgojkdhhjbgbllnfkfdk [2018-07-15]
CHR Extension: (Little Alchemy) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2018-07-15]
CHR Extension: (Evernote Web) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2018-07-15]
CHR Extension: (Video DownloadHelper) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2020-04-15]
CHR Extension: (Google Keep Chrome Extension) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-04-15]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2020-03-31]
CHR Extension: (Facebook Screen Sharing) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2019-09-10]
CHR Extension: (LastPass Vault) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncliohomlfopnmlfkepkcbnhmeijkhhf [2018-07-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2020-04-17]
CHR Extension: (The QR Code Extension) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\oijdcdmnjjgnnhgljmhkjlablaejfeeb [2019-12-28]
CHR Extension: (Getthemall) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdijnakepckmpominkocjobdghfohopj [2020-04-16]
CHR Extension: (No BBB) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pffipagakjgfndljjpkbdpoimojmgjca [2018-07-15]
CHR Extension: (SpeakIt! - Text to speech for Chrome) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2019-10-15]
CHR Extension: (Gmail) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-09]
CHR Extension: (Password Checkup extension) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pncabnpcffmalkkjpajodfhijclecjno [2019-08-28]
CHR Extension: (RSS Feed Reader) - C:\Users\teste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2019-12-17]
CHR Profile: C:\Users\teste\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-04]
CHR HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [ffdcfjdljhbehggjdkdioajnknjcpbjb] - C:\Program Files (x86)\DAP\DAPChrome\DAPChrome6.crx <não encontrado (a)>
StartMenuInternet: Google Chrome.7VWOBFAS5TCKWZMX7MEYQNNZLU - C:\Users\Administrador\Desktop\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.RFJEOCXMUZDGTCGSGYD7UYOK4Y - C:\Users\USER\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-26] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-11-07] (BattlEye Innovations e.K. -> )
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-12-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S4 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2017-09-11] (GAS INFORMATICA LTDA -> GAS Tecnologia)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado]
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [98896 2020-12-01] (Panda Security S.L. -> Panda Security, S.L.)
S4 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
S4 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189288 2020-07-09] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13686592 2021-02-12] (Adlice -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2021-02-09] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [230176 2020-01-17] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 ComLegService; C:\ProgramData\Legendas\srvlegendas.exe [X]
S4 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [X]

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BazisPortableCDBus; C:\WINDOWS\System32\drivers\BazisPortableCDBus.sys [283480 2020-06-28] (Sysprogs OU -> Sysprogs OU)
S3 CSTDM; C:\WINDOWS\System32\Drivers\CSTDM.sys [58736 2017-07-11] (Colasoft Co., Ltd -> Colasoft)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-08-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-08-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497304 2017-04-10] (Symantec Corporation -> Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156824 2017-04-02] (Symantec Corporation -> Symantec Corporation)
R0 gbpddreg; C:\WINDOWS\System32\drivers\gbpddreg64.sys [29816 2017-08-13] (GAS INFORMATICA LTDA -> GAS Tecnologia)
S3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-12-04] (GAS INFORMATICA LTDA -> GAS Tecnologia)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2019-07-11] (Glarysoft LTD -> Glarysoft Ltd)
R1 legendasdrv; C:\WINDOWS\System32\drivers\legendasdrv.sys [89808 2019-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 libwamf; C:\WINDOWS\System32\DRIVERS\libwamf.sys [31360 2017-03-24] (Opswat Inc. -> OPSWAT, Inc.)
R2 libwasys; C:\WINDOWS\System32\DRIVERS\libwasys.sys [38528 2017-03-24] (Opswat Inc. -> OPSWAT, Inc.)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [37824 2020-01-13] (SoftEther Corporation -> SoftEther Corporation)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [141088 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212768 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125728 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132384 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [111296 2020-11-23] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [152864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [102688 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [347424 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [353592 2020-12-10] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123168 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [327968 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [92008 2021-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [195872 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [21432 2020-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [171296 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [216864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [148768 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [160544 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130336 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [50624 2021-02-09] (SoftEther Corporation -> SoftEther Corporation)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [Arquivo não assinado]
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42088 2016-01-13] (AnchorFree Inc -> Anchorfree Inc.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-09-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-10-07] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-10-07] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 VBoxNetAdp; C:\WINDOWS\System32\DRIVERS\VBoxNetAdp.sys [144656 2010-06-25] (Sun Microsystems, Inc. -> Oracle Corporation)
S3 vhidmini; C:\WINDOWS\System32\drivers\vjoy.sys [15104 2012-10-15] (Ultimarc Limited -> Headsoft)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S1 vncmirror; C:\WINDOWS\system32\DRIVERS\vncmirror.sys [4608 2011-08-18] (RealVNC Ltd.) [Arquivo não assinado]
S3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-12-04] (GAS INFORMATICA LTDA -> GAS Tecnologia LTDA)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [57016 2019-08-20] (Gas Informatica Ltda -> GAS Tecnologia)
S3 andnetndis; \SystemRoot\System32\drivers\lgandnetndis64.sys [X]
U4 aspnet_state; não ImagePath
S3 hsstap; \SystemRoot\System32\drivers\hsstap.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um mês (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-02-22 22:35 - 2021-02-22 22:37 - 000049635 _____ C:\Users\teste\Desktop\FRST.txt
2021-02-22 22:34 - 2021-02-22 22:37 - 000000000 ____D C:\FRST
2021-02-22 22:34 - 2021-02-22 22:34 - 002301440 _____ (Farbar) C:\Users\teste\Desktop\FRST64.exe
2021-02-22 16:53 - 2021-02-22 16:53 - 002798456 _____ (Sysinternals - www.sysinternals.com) C:\Users\teste\Desktop\procexp.exe
2021-02-22 16:53 - 2021-02-22 16:53 - 000036200 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2021-02-22 16:02 - 2021-02-22 16:02 - 000310453 _____ C:\Users\teste\Downloads\escola panamericana de arte.pdf
2021-02-20 21:53 - 2021-02-20 22:40 - 2179626564 _____ C:\Users\teste\Downloads\La Belle Noiseuse 1991.mkv
2021-02-20 18:57 - 2021-02-20 19:06 - 000202446 _____ C:\Users\teste\Downloads\A Balada do Cafe Triste - Carson McCullers.mobi
2021-02-20 17:04 - 2021-02-20 17:04 - 000000000 ____D C:\Users\teste\AppData\LocalLow\Z-Software GmbH
2021-02-18 13:58 - 2021-02-18 13:58 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2021-02-18 13:58 - 2021-02-18 13:58 - 000000899 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2021-02-18 13:58 - 2021-02-18 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-02-18 13:58 - 2021-02-18 13:58 - 000000000 ____D C:\Program Files\RogueKiller
2021-02-18 13:53 - 2021-02-18 14:05 - 000000000 ____D C:\ProgramData\RogueKiller
2021-02-17 21:13 - 2021-02-18 14:38 - 000000000 ____D C:\Users\teste\Desktop\Photos (1)
2021-02-17 16:41 - 2021-02-17 16:41 - 758515758 _____ C:\WINDOWS\MEMORY.DMP
2021-02-15 20:19 - 2021-02-15 20:19 - 000000222 _____ C:\Users\teste\Desktop\Jalopy.url
2021-02-13 15:18 - 2021-02-13 15:18 - 000000000 ____D C:\Users\teste\AppData\Local\mbam
2021-02-12 15:17 - 2021-02-20 23:31 - 000000000 ____D C:\Users\teste\AppData\Roaming\qBittorrent
2021-02-12 15:17 - 2021-02-12 15:17 - 000000000 ____D C:\Users\teste\AppData\Local\qBittorrent
2021-02-12 15:17 - 2021-02-12 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2021-02-12 15:17 - 2021-02-12 15:17 - 000000000 ____D C:\Program Files\qBittorrent
2021-02-12 00:08 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL
2021-02-11 18:14 - 2020-12-10 09:18 - 000353592 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2021-02-11 18:14 - 2020-12-02 07:21 - 000216864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2021-02-11 18:14 - 2020-12-02 07:21 - 000195872 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2021-02-11 18:14 - 2020-12-02 07:21 - 000160544 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2021-02-11 18:14 - 2020-12-02 07:21 - 000130336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000347424 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000327968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000212768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000152864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000141088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000135456 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000132384 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000125728 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000123168 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2021-02-11 18:14 - 2020-12-02 07:20 - 000102688 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspihsw.sys
2021-02-11 18:14 - 2020-07-10 06:48 - 000021432 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\psinelam.sys
2021-02-11 18:13 - 2021-02-11 18:17 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2021-02-11 18:13 - 2021-02-11 18:17 - 000002281 _____ C:\Users\Public\Desktop\Panda Dome.lnk
2021-02-11 18:13 - 2021-02-11 18:17 - 000002281 _____ C:\ProgramData\Desktop\Panda Dome.lnk
2021-02-11 18:13 - 2021-02-11 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2021-02-10 02:54 - 2021-02-10 02:54 - 003458048 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000466944 _____ (The curl library, hxxps://curl.haxx.se/) C:\WINDOWS\system32\libcurl.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000385536 _____ C:\WINDOWS\system32\boost_program_options-vc141-mt-x64-1_73.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000355848 _____ C:\WINDOWS\system32\boost_program_options-vc142-mt-x64-1_73.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000353288 _____ C:\WINDOWS\system32\service.notification.center.exe
2021-02-10 02:54 - 2021-02-10 02:54 - 000226304 _____ C:\WINDOWS\system32\jsoncpp.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000193032 _____ C:\WINDOWS\system32\pool_request-Release-x64-msvc-141.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000120840 _____ C:\WINDOWS\system32\boost_filesystem-vc142-mt-x64-1_73.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000098816 _____ C:\WINDOWS\system32\boost_filesystem-vc142-mt-x64-1_70.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000085504 _____ C:\WINDOWS\system32\zlib1.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000083456 _____ C:\WINDOWS\system32\boost_thread-vc142-mt-x64-1_70.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000080392 _____ C:\WINDOWS\system32\boost_thread-vc142-mt-x64-1_73.dll
2021-02-10 02:54 - 2021-02-10 02:54 - 000048640 _____ C:\WINDOWS\system32\boost_date_time-vc142-mt-x64-1_70.dll
2021-02-09 19:52 - 2021-02-09 19:52 - 000004290 _____ C:\Users\teste\Downloads\email.eml
2021-02-09 19:38 - 2021-02-09 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
2021-02-09 19:37 - 2021-02-09 19:37 - 000000000 ____D C:\Users\teste\Downloads\vpngate-client-2021.02.10-build-9745.149343
2021-02-09 19:34 - 2021-02-09 19:37 - 061897207 _____ C:\Users\teste\Downloads\vpngate-client-2021.02.10-build-9745.149343.zip
2021-02-09 19:31 - 2021-02-09 19:38 - 000001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SoftEther VPN Client Manager.lnk
2021-02-09 19:31 - 2021-02-09 19:38 - 000001974 _____ C:\Users\Public\Desktop\SoftEther VPN Client Manager.lnk
2021-02-09 19:31 - 2021-02-09 19:38 - 000001974 _____ C:\ProgramData\Desktop\SoftEther VPN Client Manager.lnk
2021-02-09 19:30 - 2021-02-18 13:39 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2021-02-09 19:15 - 2021-02-09 19:15 - 000003174 _____ C:\WINDOWS\system32\Tasks\Notification Center
2021-02-09 19:15 - 2021-02-09 19:15 - 000000000 ____D C:\Users\teste\AppData\Local\NoPing
2021-02-09 19:15 - 2021-02-09 19:15 - 000000000 ____D C:\ProgramData\Notification Center
2021-02-09 19:13 - 2021-02-09 19:13 - 000000000 ____D C:\Users\teste\AppData\Local\NoPingUpdater
2021-02-09 19:13 - 2021-02-09 19:13 - 000000000 ____D C:\Users\teste\AppData\Local\cache
2021-02-09 19:07 - 2021-02-09 20:15 - 000000000 ____D C:\Program Files\NoPing
2021-02-09 19:06 - 2021-02-09 20:14 - 000000000 ____D C:\Users\teste\AppData\Roaming\NoPing
2021-02-08 00:23 - 2021-02-19 23:12 - 000000000 ____D C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2021-02-05 19:30 - 2021-02-05 19:32 - 150211234 _____ C:\Users\teste\Downloads\Mellow Days 80's Japanese City Pop 시티팝シティポップ.mp4
2021-02-02 21:15 - 2021-02-02 21:15 - 000000000 ____D C:\Users\teste\AppData\Local\safe-watch-updater
2021-02-02 19:25 - 2021-02-22 19:12 - 000000000 ____D C:\Users\teste\Desktop\Desenho
2021-02-01 09:13 - 2021-02-01 09:13 - 000033447 _____ C:\ZA-Scan.txt
2021-01-31 21:48 - 2021-01-31 21:48 - 000000466 _____ C:\Users\teste\Downloads\tunein-station.pls
2021-01-31 19:22 - 2021-01-31 19:22 - 000003304 _____ C:\WINDOWS\system32\Tasks\EVGAPrecisionX
2021-01-30 14:58 - 2021-01-30 14:58 - 000000000 ____D C:\Users\teste\Documents\EaseUS
2021-01-30 14:57 - 2021-01-30 14:57 - 000000000 ____D C:\Users\teste\AppData\Roaming\EaseUS
2021-01-30 14:57 - 2021-01-30 14:57 - 000000000 ____D C:\Users\teste\AppData\Local\EaseUS
2021-01-30 14:57 - 2021-01-30 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Video Editor
2021-01-30 14:57 - 2021-01-30 14:57 - 000000000 ____D C:\ProgramData\EaseUS
2021-01-30 14:57 - 2021-01-30 14:57 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-01-29 23:42 - 2021-02-17 16:44 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-29 20:41 - 2021-01-29 20:41 - 000001456 _____ C:\Users\teste\AppData\Local\Adobe Save for Web 13.0 Prefs
2021-01-27 20:33 - 2021-01-27 20:33 - 000000222 _____ C:\Users\teste\Desktop\The Witcher 3 Wild Hunt.url
2021-01-27 19:26 - 2021-01-27 19:26 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-27 19:24 - 2021-01-27 19:24 - 000000000 ____D C:\Users\teste\AppData\Roaming\DrumlinSecurity
2021-01-27 19:24 - 2021-01-27 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Javelin3
2021-01-27 19:24 - 2021-01-27 19:24 - 000000000 ____D C:\Program Files (x86)\Javelin3
2021-01-27 19:23 - 2021-01-27 19:23 - 012023120 _____ ( ) C:\Users\teste\Downloads\jw3setup.exe
2021-01-26 21:02 - 2021-01-26 21:02 - 000001018 _____ C:\Users\teste\Desktop\EVGA Precision X1.lnk
2021-01-26 21:02 - 2021-01-26 21:02 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2021-01-26 21:02 - 2021-01-26 21:02 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2021-01-26 21:00 - 2021-01-26 21:01 - 000000000 ____D C:\Users\teste\Downloads\EVGA_Precision_X1_1.1.5.0
2021-01-26 20:57 - 2021-01-26 20:58 - 060592201 _____ C:\Users\teste\Downloads\EVGA_Precision_X1_1.1.5.0.zip
2021-01-25 18:43 - 2021-01-25 18:43 - 000000000 ____D C:\Users\teste\AppData\Local\UXP
2021-01-25 18:39 - 2021-01-25 18:39 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk

==================== Um mês (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-02-22 22:23 - 2020-11-04 20:00 - 000000000 ____D C:\Users\teste\AppData\Roaming\discord
2021-02-22 22:23 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-22 22:13 - 2020-11-07 12:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-22 18:07 - 2017-09-05 13:48 - 000000000 ____D C:\Users\teste\Documents\Manutenção
2021-02-22 17:47 - 2016-12-31 15:16 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-22 15:04 - 2020-05-05 17:46 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-02-22 15:04 - 2020-05-05 17:46 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2021-02-22 14:58 - 2020-11-07 13:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-22 14:58 - 2020-11-07 12:22 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-20 23:32 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-20 12:50 - 2020-11-30 17:44 - 000000000 ____D C:\Users\teste\Documents\The Witcher 3
2021-02-19 23:18 - 2020-01-11 20:09 - 000202240 _____ C:\Users\teste\Desktop\Planilha-de-Controle-Financeiro-2.xls
2021-02-19 23:12 - 2019-04-17 19:35 - 000000000 ____D C:\Users\teste\AppData\Local\Ubisoft Game Launcher
2021-02-19 23:12 - 2017-09-12 01:09 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2021-02-19 22:53 - 2020-06-21 20:01 - 000000000 ____D C:\Riot Games
2021-02-19 22:42 - 2020-06-21 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-02-19 22:41 - 2019-07-11 23:43 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2021-02-19 22:39 - 2017-01-29 15:57 - 000000000 ____D C:\Program Files (x86)\Microprose
2021-02-19 22:36 - 2017-09-11 18:09 - 000000000 ____D C:\Users\teste\Documents\Games
2021-02-18 19:23 - 2018-04-24 20:34 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-18 14:22 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-18 14:22 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-18 14:16 - 2020-04-19 00:37 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-17 21:31 - 2021-01-18 20:06 - 000000000 ____D C:\Users\teste\AppData\Local\Adobe
2021-02-17 16:45 - 2020-11-07 08:29 - 000000000 ____D C:\Users\teste
2021-02-16 00:16 - 2020-06-28 21:56 - 000000000 ____D C:\Users\teste\AppData\Roaming\Winamp
2021-02-16 00:05 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-15 00:05 - 2018-08-31 02:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2021-02-13 19:03 - 2020-11-25 22:48 - 000000000 ____D C:\Users\teste\Desktop\devolver ao pendrive
2021-02-13 17:09 - 2020-08-24 12:34 - 000000000 ____D C:\Users\teste\Downloads\DefenderControl
2021-02-13 17:09 - 2019-07-09 14:55 - 000000000 ____D C:\Program Files (x86)\EZCA2
2021-02-12 14:35 - 2019-04-08 23:41 - 000000000 ____D C:\Users\teste\AppData\Roaming\ZHP
2021-02-12 00:08 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-11 18:15 - 2018-07-26 19:23 - 000000000 ____D C:\Users\teste\AppData\Roaming\Panda Security
2021-02-11 18:15 - 2018-07-03 16:05 - 000000000 ____D C:\Program Files (x86)\Panda Security
2021-02-11 18:15 - 2018-07-03 15:37 - 000000000 ____D C:\ProgramData\Panda Security
2021-02-11 18:10 - 2020-07-11 15:31 - 000001468 _____ C:\Users\teste\Desktop\NVIDIA GeForce NOW.lnk
2021-02-11 18:10 - 2020-03-10 12:20 - 000001476 _____ C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2021-02-11 18:10 - 2019-12-03 23:13 - 000000000 ____D C:\Users\teste\AppData\Local\NVIDIA Corporation
2021-02-09 20:02 - 2016-12-31 19:32 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-09 19:38 - 2020-01-13 23:09 - 000050624 _____ (SoftEther Corporation) C:\WINDOWS\system32\Drivers\SeLow_x64.sys
2021-02-09 19:31 - 2020-01-13 22:58 - 000143672 _____ (SoftEther VPN Project at University of Tsukuba, Japan.) C:\WINDOWS\system32\vpncmd.exe
2021-02-09 19:15 - 2020-05-10 20:57 - 000000000 ____D C:\log
2021-02-09 14:07 - 2020-11-28 12:59 - 000003524 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b51d2791cde2
2021-02-09 14:07 - 2020-11-07 13:03 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-08 00:29 - 2017-08-13 23:03 - 000000000 ____D C:\Users\teste\Documents\My Games
2021-02-06 19:54 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-06 16:46 - 2018-11-12 11:27 - 000000000 ____D C:\Users\teste\AppData\Local\D3DSCache
2021-02-06 01:32 - 2017-04-16 20:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2021-02-06 01:28 - 2019-05-14 22:42 - 000000000 ____D C:\Program Files\OpenShot Video Editor
2021-02-06 01:09 - 2020-11-10 18:59 - 000003225 _____ C:\Users\teste\Desktop\Playlist.m3u8
2021-02-05 21:29 - 2018-09-08 16:13 - 000000000 ____D C:\Users\teste\AppData\Local\Microsoft Game Studios
2021-02-05 14:08 - 2020-11-07 13:03 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 14:08 - 2020-11-07 13:03 - 000003494 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a
2021-02-05 01:16 - 2019-07-12 14:14 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-04 20:23 - 2018-11-25 19:56 - 000000000 ____D C:\Users\teste\AppData\Local\CrashDumps
2021-02-04 13:00 - 2020-11-07 12:48 - 001810506 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-04 13:00 - 2019-12-07 11:53 - 000762858 _____ C:\WINDOWS\system32\prfh0416.dat
2021-02-04 13:00 - 2019-12-07 11:53 - 000149034 _____ C:\WINDOWS\system32\prfc0416.dat
2021-02-03 22:30 - 2019-04-08 23:41 - 000000000 ____D C:\Users\teste\AppData\Local\ZHP
2021-01-30 00:42 - 2018-12-18 13:58 - 000001920 __RSH C:\ProgramData\ntuser.pol
2021-01-29 16:27 - 2020-11-13 14:36 - 000003584 _____ C:\Users\teste\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-01-27 20:51 - 2020-11-07 07:07 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-01-27 20:51 - 2019-12-07 11:53 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-27 20:51 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-27 20:51 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2021-01-27 20:50 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-27 20:50 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-27 20:50 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-27 20:50 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-27 20:50 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-27 20:50 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-27 20:50 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-01-27 20:50 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-27 20:27 - 2019-05-12 10:16 - 000000000 ____D C:\Program Files\Epic Games
2021-01-27 20:01 - 2019-07-13 21:13 - 000000000 ____D C:\Program Files (x86)\EVGA
2021-01-27 19:58 - 2019-05-19 17:03 - 000000000 ____D C:\Program Files (x86)\LG Electronics
2021-01-27 19:58 - 2017-01-02 20:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-01-27 19:57 - 2017-09-24 12:06 - 000000000 ____D C:\Fraps
2021-01-27 19:49 - 2017-11-15 14:43 - 000000000 ____D C:\Program Files (x86)\Intel
2021-01-27 19:32 - 2019-02-07 21:01 - 000000000 ____D C:\Users\teste\AppData\Roaming\Foxit Software
2021-01-27 19:31 - 2017-09-08 17:25 - 000000000 ____D C:\ProgramData\Foxit Software
2021-01-27 19:19 - 2020-06-06 20:04 - 000000000 ____D C:\Users\teste\Downloads\Epic
2021-01-27 17:37 - 2020-11-07 12:22 - 005254864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-26 21:21 - 2017-09-09 01:54 - 000000000 ____D C:\Users\teste\Documents\Meus livros
2021-01-26 21:13 - 2016-12-26 13:14 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-01-26 21:12 - 2016-12-26 17:00 - 000000000 ____D C:\Program Files\Adobe
2021-01-26 21:12 - 2016-12-26 11:36 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-01-26 21:02 - 2019-07-13 21:37 - 000000000 ____D C:\Users\teste\AppData\Local\EVGA_Co.,_Ltd
2021-01-26 21:02 - 2019-07-13 21:13 - 000000000 ____D C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA
2021-01-26 21:02 - 2019-07-13 21:12 - 000000000 ____D C:\Users\teste\AppData\Roaming\EVGA
2021-01-26 21:02 - 2019-07-13 21:12 - 000000000 ____D C:\Program Files\EVGA
2021-01-25 19:25 - 2020-12-23 17:07 - 4179813299 _____ C:\Users\teste\Downloads\Koe no Katachi (1080p x264 AAC) ENG Subs.mkv
2021-01-25 18:44 - 2018-07-15 18:02 - 000000000 ____D C:\Users\teste\AppData\Roaming\Adobe
2021-01-25 13:19 - 2020-10-01 20:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Arquivos na raiz de alguns diretórios ========

2019-05-31 15:29 - 2019-05-31 15:29 - 000000068 _____ () C:\Users\teste\AppData\Roaming\changzhi_leidian.data
2019-09-08 18:11 - 2019-09-08 18:11 - 000000068 _____ () C:\Users\teste\AppData\Roaming\changzhi_mplayer.data
2019-05-14 23:44 - 2019-05-14 23:44 - 000099374 _____ () C:\Users\teste\AppData\Roaming\icarus-dxdiag.xml
2019-10-09 19:21 - 2019-10-27 22:27 - 000000096 _____ () C:\Users\teste\AppData\Roaming\LauncherSettings_live.cfg
2020-11-27 18:49 - 2020-11-27 18:49 - 000000654 _____ () C:\Users\teste\AppData\Roaming\PureRef.ini
2019-10-09 19:26 - 2019-10-11 18:29 - 000015950 _____ () C:\Users\teste\AppData\Roaming\TheHunterSettings_live.bin
2019-10-09 19:28 - 2019-10-13 15:57 - 000000048 _____ () C:\Users\teste\AppData\Roaming\TheHunterSettings_steam_live.cfg
2021-01-29 20:41 - 2021-01-29 20:41 - 000001456 _____ () C:\Users\teste\AppData\Local\Adobe Save for Web 13.0 Prefs
2020-11-13 14:36 - 2021-01-29 16:27 - 000003584 _____ () C:\Users\teste\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-05-02 21:55 - 2020-05-02 21:55 - 000000356 _____ () C:\Users\teste\AppData\Local\karboncalligraphyrc
2020-05-02 21:45 - 2020-05-02 21:45 - 000000040 _____ () C:\Users\teste\AppData\Local\klanguageoverridesrc
2020-05-02 21:36 - 2020-05-02 22:03 - 000005025 _____ () C:\Users\teste\AppData\Local\krita-sysinfo.log
2020-05-02 21:36 - 2020-05-02 22:10 - 000002728 _____ () C:\Users\teste\AppData\Local\krita.log
2020-05-02 22:10 - 2020-05-02 22:10 - 000000152 _____ () C:\Users\teste\AppData\Local\kritadisplayrc
2020-05-02 21:36 - 2020-05-02 22:10 - 000019749 _____ () C:\Users\teste\AppData\Local\kritarc
2020-05-05 20:13 - 2020-05-05 20:13 - 000000000 _____ () C:\Users\teste\AppData\Local\oobelibMkey.log
2020-04-17 21:47 - 2020-04-17 21:47 - 000000218 _____ () C:\Users\teste\AppData\Local\recently-used.xbel
2018-10-15 00:36 - 2020-05-21 18:58 - 000007600 _____ () C:\Users\teste\AppData\Local\Resmon.ResmonCfg
2020-03-14 20:56 - 2020-03-14 20:56 - 000000003 _____ () C:\Users\teste\AppData\Local\updater.log
2020-03-14 20:56 - 2021-01-19 22:36 - 000000059 _____ () C:\Users\teste\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

Link para o comentário
Compartilhar em outros sites

  • Analista de Segurança

@Marcus S. R.

 

Antes de tudo sugiro analise e verificar se tu precisa de todoas as extensões que teus navegadores possuem. As que tu nao utiliza, o ideal é remover.

 

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está no CODE abaixo:

CreateRestorePoint:
CloseProcesses:
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399008} -  -> Nenhum Arquivo
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399003} -  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL -> Nenhum Arquivo
ContextMenuHandlers2: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [IObitUnstaler] -> [CC]{B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
Shortcut: C:\Users\teste\Desktop\LaunchSEF.bat.lnk -> C:\Program Files (x86)\S.W.A.T. 4\SEF\LaunchSEF.bat ()
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\AllCast Receiver.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hjbljnpdahefgnopeohlaeohgkiidnoe
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chromebook Recovery Utility.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jndclpdbaamdhonoechobihbbiimdgai
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Floating for YouTube™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT2 [672]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FirewallRules: [TCP Query User{B2C0D868-DD93-480B-9749-4EA59C1180FA}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [UDP Query User{DDF574F4-1202-4483-B232-553FEEDCB318}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{87C505B8-4973-4ED9-86D4-AFE34F5CA1D3}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{5E93792F-7001-4BD3-98DB-B8650B6C3E4D}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02F6546B-F30D-48CC-A984-5A2860D6D593}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D2472D6-A42D-4DCE-B921-E62338ABF11F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EE5DE867-F840-4379-ADF5-6FF23DF100FB}] => (Block) C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc. -> Adobe Inc.) [Arquivo não assinado]
FirewallRules: [{0F7E33EB-0DC9-4336-B3F0-689EFC04D2A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{79F39BBE-C44B-42FC-B8C8-36832308942E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{31FAC11F-53A6-4881-A7EE-565779E696E7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{8232CFB9-DBA6-4EB6-8E44-91142084E022}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{52D41E79-B0AF-4AEC-853C-431F3C8BDC13}] => (Allow) LPort=5900
FirewallRules: [{A8A4FD77-3471-4E2B-BF5C-3C1DA1E4F6C2}] => (Allow) LPort=5800
FirewallRules: [{A8E761E0-5300-47FB-83DB-6D4C9B572F7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{75E5F7C9-FD4D-4D7A-B6D6-A9DA33E9B353}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{4AC3CE73-0283-4582-9171-B5F91A5A7D0F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{12975313-D210-4714-BDEA-2E5F8D10776D}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{D55FDB95-7B06-489D-B304-A1F0403B5775}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{16BE544B-BC04-4272-B226-E3A0FAECD477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{C03B698B-91BD-4A9A-BE0F-2151E2ED5816}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bit
Task: {04B1B8C6-F19C-43EF-BED8-3C92F05C2C3F} - não caminho do arquivo
Task: {0575FF21-0E69-4E3B-BBBA-60976CADA38D} - não caminho do arquivo
Task: {082B26EC-FF00-4F6A-9F62-D5C97E3B170A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {091CD22C-39DB-42BB-AF67-CDC7F628DDFF} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {1230E479-61DE-4E1E-88EE-B8B93D296D70} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {15CE6196-AFC5-4482-98E5-5C6E05F78BAF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {186A0FDD-C0A0-4F10-BAF7-0BD1E8E90B26} - não caminho do arquivo
Task: {1AEC0A23-F68F-49B5-B1BB-5A930BF1DE3B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {1DEDFCD0-1F69-4A16-BD7B-0C54EDA9718D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {212C16C0-AA8B-44F0-AA8B-76FC7578A692} - não caminho do arquivo
Task: {2906A675-3C1C-49AA-8BB4-10EB7CD2FD4D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {388DD43A-4B24-4CFD-83DB-A71B585D42F1} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {3C4F069C-2606-4A90-B44A-799EE44404BD} - não caminho do arquivo
Task: {3F8A7C69-D5BE-4D49-A099-CC32B92247B6} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {496481AB-FE27-4F55-A4BD-5EA892EA9F10} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A85F9F7-713F-4D6A-B92F-5731AD1647BE} - System32\Tasks\Tweaking.com - Remote Desktop IP Monitor & Blocker => C:\Program Files (x86)\Tweaking.com\Remote Desktop IP Monitor & Blocker\RDP_Monitor.exe
Task: {4B7BFA1F-7421-4FB2-BF72-F5D60424A243} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4B7C0170-47F4-4AE5-A225-E0DFB849519D} - não caminho do arquivo
Task: {503B0BCB-2F71-4DAC-9F7A-866B8C1CB1EF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {579F36FC-A9D4-4C8B-94DD-D5C26A47828E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6506D79B-9503-4D46-AA8E-D4C18B9243EB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {797C186B-A3B1-498F-AF68-C66E6483E678} - não caminho do arquivo
Task: {7CD34FD5-4B4B-4E4C-A54E-2DA816915660} - não caminho do arquivo
Task: {7EABC029-6093-40F5-8C5D-651BFC00F8BD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8041026B-14B7-4453-82D8-0BAF28AAAFEE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {82E319AC-EF0D-4EF1-9BE0-162D2B425B87} - System32\Tasks\Notification Center => C:\ProgramData\Notification Center\service.notification.updater.exe [489992 2020-04-27] (1ncrivel Sistemas LTDA -> )
Task: {86DAE117-166A-43FC-B39C-5A9FB584B3D5} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1412038159-2218112944-1139821531-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {8E5ED00C-0F42-4A5E-8804-A3C99D2CC5D8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {901383B4-30A8-46EE-B85C-5703D64A5B67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {94B7EF82-7013-47BA-A1B0-F514719DDFB7} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {94F68EF4-24D9-42B8-8F93-301E73C38E9F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2FAE6C2-7A6E-4029-BD4C-AA26717B8A97} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB47D004-2AAB-4379-AE27-53ED73E5B444} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF5A9FA4-4FB0-433C-8F39-7A7D3A7B7E1F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3179E28-7626-47BE-BF9B-D017EA10B6FC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B9F868A6-0415-4E41-95E5-975440AB0D04} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA628EDF-9CD2-4B9D-9FD3-C3EF4C216039} - não caminho do arquivo
Task: {BEDD92FD-5CD6-412F-B33F-2E091CC8C2A4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {C189FDAE-AB3A-4D08-9170-F9D00BB8C5E9} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-03] () [Arquivo não assinado]
Task: {C24AE269-46E6-4B98-98A3-02D09000E25C} - não caminho do arquivo
Task: {C499FEFE-AF95-42DC-9C2C-7AD9AE67203B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {C884A454-FCDF-41CB-8C6E-9855464CAB03} - não caminho do arquivo
Task: {D2382DA7-C042-440E-B331-3EE89970FD53} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6D8402F-6407-4B4A-B410-3F5DE0FC1A67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {DD92AE5D-E6E7-4B20-890C-B6120B6CA30A} - não caminho do arquivo
Task: {E023520C-DAAF-46A8-8A08-BE4B8F11C3F6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E1D27F9A-AA49-4256-9F1F-612BDDF507CF} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E43AB0AD-06AF-4272-A7FE-5E87356BFA9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4813AAD-EAD1-4D97-B51C-3AA1E1216501} - System32\Tasks\AdobeAAMUpdater-1.0-USER-PC-teste => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {EA4DCD02-772E-48F7-AC35-F808A0748BB6} - System32\Tasks\EVGAPrecisionX => C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe [27036240 2021-01-15] (EVGA Corp. -> EVGA Co., Ltd.)
Task: {F055CBFC-0CD9-4941-B1EB-AAAE4F21FDD4} - System32\Tasks\Limpeza de cache => C:\Users\teste\Documents\Manutenção\script-completo\script-completo.bat [12625 2020-12-31] () [Arquivo não assinado]
Task: {F136AA9B-E3C3-492F-83A4-911E315094F9} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F3D6E577-E809-4B62-A807-58E34C48AE84} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F3E71626-BF98-4C33-A77F-F46421DF9A3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F85B0E35-92EF-4A48-B6CD-847C0675A4C2} - não caminho do arquivo
Task: {FA8C184A-2CD9-4F39-9D72-47F27BE46B1F} - System32\Tasks\{251713C3-01E0-4FE7-9FA6-B3B3B908757E} => C:\Windows\system32\pcalua.exe -a E:\autorun.exe -d E:\
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Tweaking.com - Windows Repair Tray Icon.job => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)Tweaking.com - Windows Repair)Created By Tweaking.com
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
S2 ComLegService; C:\ProgramData\Legendas\srvlegendas.exe [X]
S2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [X]
VirusTotal: C:\Windows\System32\service.notification.center.exe
VirusTotal: C:\WINDOWS\system32\frapsv64.dll
VirusTotal: C:\WINDOWS\system32\zlib1.dll
CMD: ipconfig /flushdns
RemoveProxy:
EmptyTemp:
CreateRestorePoint:

Salve este arquivo na na sua área de trabalho com o nome fixlist

OBS: É de extrema importância que o arquivo "fixlist" seja salvo na sua Área de Trabalho/Desktop. Verifique também se o FRST.exe encontra-se na Área de Trabalho/Desktop.

** Usuários do Windows Vista, Windows 7, 8/8.1 e windows 10:Clique com o direito sobre o arquivo FRST.EXE, depois clique em http://i.imgur.com/VRIfczU.png

Clique no botão image.png

Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

Abra o arquivo Fixlog.txt, copie e cole seu conteudo na sua proxima resposta.

Link para o comentário
Compartilhar em outros sites

Obrigado! Segue o log:

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 24-02-2021
Executado por teste (27-02-2021 20:51:54) Run:1
Executando a partir de C:\Users\teste\Desktop
Perfis Carregados: teste & Administrador
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399008} -  -> Nenhum Arquivo
ShellExecuteHooks-x32: Sem Nome - {E37CB5F0-51F5-4395-A808-5FA49E399003} -  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL -> Nenhum Arquivo
ContextMenuHandlers2: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Nenhum Arquivo
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [IObitUnstaler] -> [CC]{B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
Shortcut: C:\Users\teste\Desktop\LaunchSEF.bat.lnk -> C:\Program Files (x86)\S.W.A.T. 4\SEF\LaunchSEF.bat ()
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\AllCast Receiver.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hjbljnpdahefgnopeohlaeohgkiidnoe
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chromebook Recovery Utility.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jndclpdbaamdhonoechobihbbiimdgai
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Floating for YouTube™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\muita San Andreas All:NT2 [672]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-1412038159-2218112944-1139821531-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FirewallRules: [TCP Query User{B2C0D868-DD93-480B-9749-4EA59C1180FA}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [UDP Query User{DDF574F4-1202-4483-B232-553FEEDCB318}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{87C505B8-4973-4ED9-86D4-AFE34F5CA1D3}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{5E93792F-7001-4BD3-98DB-B8650B6C3E4D}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02F6546B-F30D-48CC-A984-5A2860D6D593}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6D2472D6-A42D-4DCE-B921-E62338ABF11F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EE5DE867-F840-4379-ADF5-6FF23DF100FB}] => (Block) C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc. -> Adobe Inc.) [Arquivo não assinado]
FirewallRules: [{0F7E33EB-0DC9-4336-B3F0-689EFC04D2A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{79F39BBE-C44B-42FC-B8C8-36832308942E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado]
FirewallRules: [{31FAC11F-53A6-4881-A7EE-565779E696E7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{8232CFB9-DBA6-4EB6-8E44-91142084E022}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS)
FirewallRules: [{52D41E79-B0AF-4AEC-853C-431F3C8BDC13}] => (Allow) LPort=5900
FirewallRules: [{A8A4FD77-3471-4E2B-BF5C-3C1DA1E4F6C2}] => (Allow) LPort=5800
FirewallRules: [{A8E761E0-5300-47FB-83DB-6D4C9B572F7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{75E5F7C9-FD4D-4D7A-B6D6-A9DA33E9B353}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Arquivo não assinado]
FirewallRules: [{4AC3CE73-0283-4582-9171-B5F91A5A7D0F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{12975313-D210-4714-BDEA-2E5F8D10776D}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Arquivo não assinado]
FirewallRules: [{D55FDB95-7B06-489D-B304-A1F0403B5775}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{16BE544B-BC04-4272-B226-E3A0FAECD477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jalopy\Jalopy.exe () [Arquivo não assinado]
FirewallRules: [{C03B698B-91BD-4A9A-BE0F-2151E2ED5816}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bit
Task: {04B1B8C6-F19C-43EF-BED8-3C92F05C2C3F} - não caminho do arquivo
Task: {0575FF21-0E69-4E3B-BBBA-60976CADA38D} - não caminho do arquivo
Task: {082B26EC-FF00-4F6A-9F62-D5C97E3B170A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {091CD22C-39DB-42BB-AF67-CDC7F628DDFF} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {1230E479-61DE-4E1E-88EE-B8B93D296D70} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {15CE6196-AFC5-4482-98E5-5C6E05F78BAF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {186A0FDD-C0A0-4F10-BAF7-0BD1E8E90B26} - não caminho do arquivo
Task: {1AEC0A23-F68F-49B5-B1BB-5A930BF1DE3B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {1DEDFCD0-1F69-4A16-BD7B-0C54EDA9718D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {212C16C0-AA8B-44F0-AA8B-76FC7578A692} - não caminho do arquivo
Task: {2906A675-3C1C-49AA-8BB4-10EB7CD2FD4D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {388DD43A-4B24-4CFD-83DB-A71B585D42F1} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {3C4F069C-2606-4A90-B44A-799EE44404BD} - não caminho do arquivo
Task: {3F8A7C69-D5BE-4D49-A099-CC32B92247B6} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {496481AB-FE27-4F55-A4BD-5EA892EA9F10} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A85F9F7-713F-4D6A-B92F-5731AD1647BE} - System32\Tasks\Tweaking.com - Remote Desktop IP Monitor & Blocker => C:\Program Files (x86)\Tweaking.com\Remote Desktop IP Monitor & Blocker\RDP_Monitor.exe
Task: {4B7BFA1F-7421-4FB2-BF72-F5D60424A243} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4B7C0170-47F4-4AE5-A225-E0DFB849519D} - não caminho do arquivo
Task: {503B0BCB-2F71-4DAC-9F7A-866B8C1CB1EF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {579F36FC-A9D4-4C8B-94DD-D5C26A47828E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6506D79B-9503-4D46-AA8E-D4C18B9243EB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {797C186B-A3B1-498F-AF68-C66E6483E678} - não caminho do arquivo
Task: {7CD34FD5-4B4B-4E4C-A54E-2DA816915660} - não caminho do arquivo
Task: {7EABC029-6093-40F5-8C5D-651BFC00F8BD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8041026B-14B7-4453-82D8-0BAF28AAAFEE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {82E319AC-EF0D-4EF1-9BE0-162D2B425B87} - System32\Tasks\Notification Center => C:\ProgramData\Notification Center\service.notification.updater.exe [489992 2020-04-27] (1ncrivel Sistemas LTDA -> )
Task: {86DAE117-166A-43FC-B39C-5A9FB584B3D5} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1412038159-2218112944-1139821531-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {8E5ED00C-0F42-4A5E-8804-A3C99D2CC5D8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {901383B4-30A8-46EE-B85C-5703D64A5B67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {94B7EF82-7013-47BA-A1B0-F514719DDFB7} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {94F68EF4-24D9-42B8-8F93-301E73C38E9F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2FAE6C2-7A6E-4029-BD4C-AA26717B8A97} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB47D004-2AAB-4379-AE27-53ED73E5B444} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF5A9FA4-4FB0-433C-8F39-7A7D3A7B7E1F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3179E28-7626-47BE-BF9B-D017EA10B6FC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B9F868A6-0415-4E41-95E5-975440AB0D04} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA628EDF-9CD2-4B9D-9FD3-C3EF4C216039} - não caminho do arquivo
Task: {BEDD92FD-5CD6-412F-B33F-2E091CC8C2A4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {C189FDAE-AB3A-4D08-9170-F9D00BB8C5E9} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-03] () [Arquivo não assinado]
Task: {C24AE269-46E6-4B98-98A3-02D09000E25C} - não caminho do arquivo
Task: {C499FEFE-AF95-42DC-9C2C-7AD9AE67203B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {C884A454-FCDF-41CB-8C6E-9855464CAB03} - não caminho do arquivo
Task: {D2382DA7-C042-440E-B331-3EE89970FD53} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6D8402F-6407-4B4A-B410-3F5DE0FC1A67} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {DD92AE5D-E6E7-4B20-890C-B6120B6CA30A} - não caminho do arquivo
Task: {E023520C-DAAF-46A8-8A08-BE4B8F11C3F6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E1D27F9A-AA49-4256-9F1F-612BDDF507CF} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E43AB0AD-06AF-4272-A7FE-5E87356BFA9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4813AAD-EAD1-4D97-B51C-3AA1E1216501} - System32\Tasks\AdobeAAMUpdater-1.0-USER-PC-teste => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {EA4DCD02-772E-48F7-AC35-F808A0748BB6} - System32\Tasks\EVGAPrecisionX => C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe [27036240 2021-01-15] (EVGA Corp. -> EVGA Co., Ltd.)
Task: {F055CBFC-0CD9-4941-B1EB-AAAE4F21FDD4} - System32\Tasks\Limpeza de cache => C:\Users\teste\Documents\Manutenção\script-completo\script-completo.bat [12625 2020-12-31] () [Arquivo não assinado]
Task: {F136AA9B-E3C3-492F-83A4-911E315094F9} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F3D6E577-E809-4B62-A807-58E34C48AE84} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F3E71626-BF98-4C33-A77F-F46421DF9A3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F85B0E35-92EF-4A48-B6CD-847C0675A4C2} - não caminho do arquivo
Task: {FA8C184A-2CD9-4F39-9D72-47F27BE46B1F} - System32\Tasks\{251713C3-01E0-4FE7-9FA6-B3B3B908757E} => C:\Windows\system32\pcalua.exe -a E:\autorun.exe -d E:\
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Tweaking.com - Windows Repair Tray Icon.job => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)Tweaking.com - Windows Repair)Created By Tweaking.com
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
S2 ComLegService; C:\ProgramData\Legendas\srvlegendas.exe [X]
S2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [X]
VirusTotal: C:\Windows\System32\service.notification.center.exe
VirusTotal: C:\WINDOWS\system32\frapsv64.dll
VirusTotal: C:\WINDOWS\system32\zlib1.dll
CMD: ipconfig /flushdns
RemoveProxy:
EmptyTemp:
CreateRestorePoint:
*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
"HKLM\Software\Wow6432Node{E37CB5F0-51F5-4395-A808-5FA49E399008}\\{E37CB5F0-51F5-4395-A808-5FA49E399008}" => não encontrado (a)
"HKLM\Software\Wow6432Node{E37CB5F0-51F5-4395-A808-5FA49E399003}\\{E37CB5F0-51F5-4395-A808-5FA49E399003}" => não encontrado (a)
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removido (a) com sucesso.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => subchave com o nome inválido -> removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removido (a) com sucesso.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removido (a) com sucesso.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => removido (a) com sucesso.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\AIMP => removido (a) com sucesso.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities => removido (a) com sucesso.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFCreator.ShellContextMenu => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{d9cea52e-100d-4159-89ea-76e845bc13e1} => removido (a) com sucesso.
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Glary Utilities => removido (a) com sucesso.
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\AIMP => removido (a) com sucesso.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => removido (a) com sucesso.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MSSE => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{0365FE2C-F183-4091-AC82-BFC39FB75C49} => removido (a) com sucesso.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removido (a) com sucesso.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removido (a) com sucesso.
C:\Users\teste\Desktop\LaunchSEF.bat.lnk => movido com sucesso
C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\AllCast Receiver.lnk => Atalho argumento removido (a) com sucesso.
C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chromebook Recovery Utility.lnk => Atalho argumento removido (a) com sucesso.
C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Floating for YouTube™.lnk => Atalho argumento removido (a) com sucesso.
C:\Users\teste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Gliffy Diagrams.lnk => Atalho argumento removido (a) com sucesso.
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso.
C:\Program Files (x86)\GbPlugin => ":u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==" ADS removido (a) com sucesso.
C:\WINDOWS\system32\Drivers\gbpddfac64.sys => ":r0d3jo5" ADS removido (a) com sucesso.
C:\WINDOWS\system32\Drivers\gbpddfac64.sys => ":X5ZN8aGvT4" ADS removido (a) com sucesso.
C:\WINDOWS\system32\Drivers\gbpddreg64.sys => ":X5ZN8aGvT4" ADS removido (a) com sucesso.
C:\ProgramData\GbPlugin => ":IncompleteStartGbprcm.cnt" ADS removido (a) com sucesso.
"C:\ProgramData\muita San Andreas All" => ":NT" ADS não encontrado (a).
"C:\ProgramData\muita San Andreas All" => ":NT2" ADS não encontrado (a).
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removido (a) com sucesso.
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\PSUAService => Não pode ser removido, chave pode estar protegida
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valor restaurado com sucesso
"HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removido (a) com sucesso.
HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B2C0D868-DD93-480B-9749-4EA59C1180FA}C:\program files (x86)\winamp\winamp.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DDF574F4-1202-4483-B232-553FEEDCB318}C:\program files (x86)\winamp\winamp.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{87C505B8-4973-4ED9-86D4-AFE34F5CA1D3}C:\program files (x86)\steam\steam.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5E93792F-7001-4BD3-98DB-B8650B6C3E4D}C:\program files (x86)\steam\steam.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{02F6546B-F30D-48CC-A984-5A2860D6D593}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D2472D6-A42D-4DCE-B921-E62338ABF11F}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EE5DE867-F840-4379-ADF5-6FF23DF100FB}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0F7E33EB-0DC9-4336-B3F0-689EFC04D2A0}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{79F39BBE-C44B-42FC-B8C8-36832308942E}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{31FAC11F-53A6-4881-A7EE-565779E696E7}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8232CFB9-DBA6-4EB6-8E44-91142084E022}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{52D41E79-B0AF-4AEC-853C-431F3C8BDC13}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8A4FD77-3471-4E2B-BF5C-3C1DA1E4F6C2}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8E761E0-5300-47FB-83DB-6D4C9B572F7D}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75E5F7C9-FD4D-4D7A-B6D6-A9DA33E9B353}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4AC3CE73-0283-4582-9171-B5F91A5A7D0F}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12975313-D210-4714-BDEA-2E5F8D10776D}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D55FDB95-7B06-489D-B304-A1F0403B5775}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{16BE544B-BC04-4272-B226-E3A0FAECD477}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C03B698B-91BD-4A9A-BE0F-2151E2ED5816}" => não encontrado (a)
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removido (a) com sucesso.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removido (a) com sucesso.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removido (a) com sucesso.
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\" => removido (a) com sucesso.
C:\WINDOWS\system32\GroupPolicy\Machine => movido com sucesso
C:\WINDOWS\system32\GroupPolicy\GPT.ini => movido com sucesso
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => movido com sucesso
C:\ProgramData\NTUSER.pol => movido com sucesso
HKLM\SOFTWARE\Policies\Google => removido (a) com sucesso.
HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => valor restaurado com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{04B1B8C6-F19C-43EF-BED8-3C92F05C2C3F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04B1B8C6-F19C-43EF-BED8-3C92F05C2C3F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0575FF21-0E69-4E3B-BBBA-60976CADA38D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0575FF21-0E69-4E3B-BBBA-60976CADA38D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{082B26EC-FF00-4F6A-9F62-D5C97E3B170A}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{082B26EC-FF00-4F6A-9F62-D5C97E3B170A}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{091CD22C-39DB-42BB-AF67-CDC7F628DDFF}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{091CD22C-39DB-42BB-AF67-CDC7F628DDFF}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d3ef0a6f398b8a" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1230E479-61DE-4E1E-88EE-B8B93D296D70}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1230E479-61DE-4E1E-88EE-B8B93D296D70}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15CE6196-AFC5-4482-98E5-5C6E05F78BAF}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15CE6196-AFC5-4482-98E5-5C6E05F78BAF}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\SqlLiteRecoveryTask" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{186A0FDD-C0A0-4F10-BAF7-0BD1E8E90B26}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{186A0FDD-C0A0-4F10-BAF7-0BD1E8E90B26}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1AEC0A23-F68F-49B5-B1BB-5A930BF1DE3B}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1AEC0A23-F68F-49B5-B1BB-5A930BF1DE3B}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1DEDFCD0-1F69-4A16-BD7B-0C54EDA9718D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DEDFCD0-1F69-4A16-BD7B-0C54EDA9718D}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\GadgetManager" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{212C16C0-AA8B-44F0-AA8B-76FC7578A692}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{212C16C0-AA8B-44F0-AA8B-76FC7578A692}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2906A675-3C1C-49AA-8BB4-10EB7CD2FD4D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2906A675-3C1C-49AA-8BB4-10EB7CD2FD4D}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\mcupdate => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\mcupdate" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{388DD43A-4B24-4CFD-83DB-A71B585D42F1}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{388DD43A-4B24-4CFD-83DB-A71B585D42F1}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\AutoWake => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\AutoWake" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C4F069C-2606-4A90-B44A-799EE44404BD}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C4F069C-2606-4A90-B44A-799EE44404BD}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F8A7C69-D5BE-4D49-A099-CC32B92247B6}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F8A7C69-D5BE-4D49-A099-CC32B92247B6}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0 => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeGCInvoker-1.0" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{486D715E-6AA2-44CF-BC48-B6990CBB53C6}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{486D715E-6AA2-44CF-BC48-B6990CBB53C6}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControlsMigration" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{496481AB-FE27-4F55-A4BD-5EA892EA9F10}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{496481AB-FE27-4F55-A4BD-5EA892EA9F10}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PBDADiscovery" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4A85F9F7-713F-4D6A-B92F-5731AD1647BE}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A85F9F7-713F-4D6A-B92F-5731AD1647BE}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Tweaking.com - Remote Desktop IP Monitor & Blocker => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Tweaking.com - Remote Desktop IP Monitor & Blocker" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B7BFA1F-7421-4FB2-BF72-F5D60424A243}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B7BFA1F-7421-4FB2-BF72-F5D60424A243}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrScheduleTask" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4B7C0170-47F4-4AE5-A225-E0DFB849519D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B7C0170-47F4-4AE5-A225-E0DFB849519D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{503B0BCB-2F71-4DAC-9F7A-866B8C1CB1EF}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{503B0BCB-2F71-4DAC-9F7A-866B8C1CB1EF}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrRecoveryTask" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{579F36FC-A9D4-4C8B-94DD-D5C26A47828E}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{579F36FC-A9D4-4C8B-94DD-D5C26A47828E}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\StartRecording => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\StartRecording" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5B42DD9C-5A26-4F27-BB95-34603F0997E5}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B42DD9C-5A26-4F27-BB95-34603F0997E5}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControls" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6506D79B-9503-4D46-AA8E-D4C18B9243EB}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6506D79B-9503-4D46-AA8E-D4C18B9243EB}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ehDRMInit" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{797C186B-A3B1-498F-AF68-C66E6483E678}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{797C186B-A3B1-498F-AF68-C66E6483E678}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7CD34FD5-4B4B-4E4C-A54E-2DA816915660}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CD34FD5-4B4B-4E4C-A54E-2DA816915660}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7EABC029-6093-40F5-8C5D-651BFC00F8BD}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7EABC029-6093-40F5-8C5D-651BFC00F8BD}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8041026B-14B7-4453-82D8-0BAF28AAAFEE}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8041026B-14B7-4453-82D8-0BAF28AAAFEE}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\OCURActivate" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{82E319AC-EF0D-4EF1-9BE0-162D2B425B87}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82E319AC-EF0D-4EF1-9BE0-162D2B425B87}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Notification Center => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Notification Center" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{86DAE117-166A-43FC-B39C-5A9FB584B3D5}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86DAE117-166A-43FC-B39C-5A9FB584B3D5}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Games\UpdateCheck_S-1-5-21-1412038159-2218112944-1139821531-1000 => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-1412038159-2218112944-1139821531-1000" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8E5ED00C-0F42-4A5E-8804-A3C99D2CC5D8}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E5ED00C-0F42-4A5E-8804-A3C99D2CC5D8}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\MediaCenterRecoveryTask" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{901383B4-30A8-46EE-B85C-5703D64A5B67}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{901383B4-30A8-46EE-B85C-5703D64A5B67}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{94B7EF82-7013-47BA-A1B0-F514719DDFB7}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94B7EF82-7013-47BA-A1B0-F514719DDFB7}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{94F68EF4-24D9-42B8-8F93-301E73C38E9F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94F68EF4-24D9-42B8-8F93-301E73C38E9F}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2FAE6C2-7A6E-4029-BD4C-AA26717B8A97}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2FAE6C2-7A6E-4029-BD4C-AA26717B8A97}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AB47D004-2AAB-4379-AE27-53ED73E5B444}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB47D004-2AAB-4379-AE27-53ED73E5B444}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cleanup" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF5A9FA4-4FB0-433C-8F39-7A7D3A7B7E1F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF5A9FA4-4FB0-433C-8F39-7A7D3A7B7E1F}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ActivateWindowsSearch" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0CBAB43-44FC-469B-A4CE-87426761FDCE}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0CBAB43-44FC-469B-A4CE-87426761FDCE}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B3179E28-7626-47BE-BF9B-D017EA10B6FC}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3179E28-7626-47BE-BF9B-D017EA10B6FC}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ConfigureInternetTimeService" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9F868A6-0415-4E41-95E5-975440AB0D04}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9F868A6-0415-4E41-95E5-975440AB0D04}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA628EDF-9CD2-4B9D-9FD3-C3EF4C216039}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA628EDF-9CD2-4B9D-9FD3-C3EF4C216039}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BEDD92FD-5CD6-412F-B33F-2E091CC8C2A4}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEDD92FD-5CD6-412F-B33F-2E091CC8C2A4}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C189FDAE-AB3A-4D08-9170-F9D00BB8C5E9}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C189FDAE-AB3A-4D08-9170-F9D00BB8C5E9}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\klcp_update => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\klcp_update" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C24AE269-46E6-4B98-98A3-02D09000E25C}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C24AE269-46E6-4B98-98A3-02D09000E25C}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C499FEFE-AF95-42DC-9C2C-7AD9AE67203B}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C499FEFE-AF95-42DC-9C2C-7AD9AE67203B}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C884A454-FCDF-41CB-8C6E-9855464CAB03}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C884A454-FCDF-41CB-8C6E-9855464CAB03}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D2382DA7-C042-440E-B331-3EE89970FD53}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2382DA7-C042-440E-B331-3EE89970FD53}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\mcupdate_scheduled" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D6D8402F-6407-4B4A-B410-3F5DE0FC1A67}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6D8402F-6407-4B4A-B410-3F5DE0FC1A67}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DD92AE5D-E6E7-4B20-890C-B6120B6CA30A}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD92AE5D-E6E7-4B20-890C-B6120B6CA30A}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E023520C-DAAF-46A8-8A08-BE4B8F11C3F6}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E023520C-DAAF-46A8-8A08-BE4B8F11C3F6}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ReindexSearchRoot" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E1D27F9A-AA49-4256-9F1F-612BDDF507CF}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1D27F9A-AA49-4256-9F1F-612BDDF507CF}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\RecordingRestart" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E43AB0AD-06AF-4272-A7FE-5E87356BFA9D}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E43AB0AD-06AF-4272-A7FE-5E87356BFA9D}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Verification" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4813AAD-EAD1-4D97-B51C-3AA1E1216501}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4813AAD-EAD1-4D97-B51C-3AA1E1216501}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-USER-PC-teste => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeAAMUpdater-1.0-USER-PC-teste" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA4DCD02-772E-48F7-AC35-F808A0748BB6}" => não encontrado (a)
C:\WINDOWS\System32\Tasks\EVGAPrecisionX => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EVGAPrecisionX" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F055CBFC-0CD9-4941-B1EB-AAAE4F21FDD4}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F055CBFC-0CD9-4941-B1EB-AAAE4F21FDD4}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Limpeza de cache => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Limpeza de cache" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F136AA9B-E3C3-492F-83A4-911E315094F9}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F136AA9B-E3C3-492F-83A4-911E315094F9}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\MobilePC\HotStart => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F3D6E577-E809-4B62-A807-58E34C48AE84}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3D6E577-E809-4B62-A807-58E34C48AE84}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SessionAgent" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E71626-BF98-4C33-A77F-F46421DF9A3F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E71626-BF98-4C33-A77F-F46421DF9A3F}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F85B0E35-92EF-4A48-B6CD-847C0675A4C2}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F85B0E35-92EF-4A48-B6CD-847C0675A4C2}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA8C184A-2CD9-4F39-9D72-47F27BE46B1F}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA8C184A-2CD9-4F39-9D72-47F27BE46B1F}" => removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\{251713C3-01E0-4FE7-9FA6-B3B3B908757E} => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{251713C3-01E0-4FE7-9FA6-B3B3B908757E}" => removido (a) com sucesso.
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => movido com sucesso
C:\WINDOWS\Tasks\Tweaking.com - Windows Repair Tray Icon.job => movido com sucesso
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removido (a) com sucesso.
HKLM\System\CurrentControlSet\Services\ComLegService => removido (a) com sucesso.
ComLegService => serviço removido (a) com sucesso.
HKLM\System\CurrentControlSet\Services\ProtexisLicensing => removido (a) com sucesso.
ProtexisLicensing => serviço removido (a) com sucesso.
VirusTotal: C:\Windows\System32\service.notification.center.exe => (3) Erro
VirusTotal: C:\WINDOWS\system32\frapsv64.dll => (3) Erro
VirusTotal: C:\WINDOWS\system32\zlib1.dll => (3) Erro

========= ipconfig /flushdns =========


Configura‡ao de IP do Windows

Libera‡ao do Cache do DNS Resolver bem-sucedida.

========= Fim de CMD: =========


========= RemoveProxy: =========

HKU\S-1-5-21-1412038159-2218112944-1139821531-500\SOFTWARE\Policies\Microsoft\Internet Explorer => removido (a) com sucesso.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removido (a) com sucesso.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removido (a) com sucesso.
"HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removido (a) com sucesso.
"HKU\S-1-5-21-1412038159-2218112944-1139821531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removido (a) com sucesso.
"HKU\S-1-5-21-1412038159-2218112944-1139821531-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removido (a) com sucesso.
"HKU\S-1-5-21-1412038159-2218112944-1139821531-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removido (a) com sucesso.


========= Fim de RemoveProxy: =========

Ponto de Restauração criado com sucesso.

=========== EmptyTemp: ==========

BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 141819545 B
Java, Flash, Steam htmlcache => 431416187 B
Windows/system/drivers => 184924 B
Edge => 759309 B
Firefox => 5061377 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 13534 B
LocalService => 451298 B
NetworkService => 46630426 B
teste => 185471908 B
Administrador => 186551597 B

RecycleBin => 0 B
EmptyTemp: => 963.6 MB de dados temporários Removidos.

================================

Resultado dos arquivos que foram agendados para serem movidos (Modo de Inicialização: Normal) (Data&Hora: 27-02-2021 20:59:11)


Resultado dos registros marcados para excluir será exibido após a reinicialização:

HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => Não pode ser removido, chave pode estar protegida
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\PSUAService => Não pode ser removido, chave pode estar protegida

==== Fim de Fixlog 20:59:12 ====

Link para o comentário
Compartilhar em outros sites

Boa tarde! Segue o log!

 

 

# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build:    02-15-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    02-28-2021
# Duration: 00:01:53
# OS:       Windows 10 Pro
# Scanned:  1407
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner_Debug.log - [57866 octets] - [27/11/2020 13:07:15]
AdwCleaner[S00].txt - [1964 octets] - [27/11/2020 13:09:06]
AdwCleaner[C00].txt - [2064 octets] - [27/11/2020 13:14:36]
AdwCleaner[S01].txt - [2882 octets] - [03/02/2021 22:12:59]
AdwCleaner[C01].txt - [2906 octets] - [03/02/2021 22:24:34]
AdwCleaner[S02].txt - [1712 octets] - [12/02/2021 14:07:46]
AdwCleaner[C02].txt - [1902 octets] - [12/02/2021 14:08:45]
AdwCleaner[S03].txt - [1851 octets] - [17/02/2021 23:09:09]
AdwCleaner[C03].txt - [2022 octets] - [17/02/2021 23:09:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S04].txt ##########
 

Link para o comentário
Compartilhar em outros sites

  • Analista de Segurança

@Marcus S. R.

 

Em relação a malwares, não temos mais problemas.

MANTENHA O SO ATUALIZADO:
Mantenha como "automatica" as atualizações do windows. Novas brechas de segurança são descobertas com freqüência. Muitos malwares exploram essas brechas, infectando sistemas sem depender de nenhuma ação do usuário. A Microsoft corrige essas brechas através das atualizações. Por isso é fundamental manter o seu sistema atualizado.

Se não tiver mais problema em relação a malwares, clique em Denunciar Post localizado no topo da pagina e diga que seu topico está RESOLVIDO. Se você tiver alguma dúvida relacionada a informática e tecnologia, sinta-se à vontade para postar em qualquer área do CdH.

Link para o comentário
Compartilhar em outros sites

Visitante
Este tópico está impedido de receber novas respostas.

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas comunidades sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...