Logo Hardware.com.br
Espírita
Espírita Cyber Highlander Registrado
9.6K Mensagens 2.1K Curtidas

[Resolvido] Windows Update Error.

#1 Por Espírita 15/06/2021 - 21:22
Devido a erros constantes no Windows Update., especificamente por falhas na instalação do pacote KB5003637.. resolvi postar os logs abaixo
- Aguardo a análise e orientação dos especialistas radicais...


Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 12-06-2021
Executado por Jaguar (administrador) em FENIX (15-06-2021 21:07:45)
Executando a partir de C:\Users\Jaguar\Desktop
Perfis Carregados: Jaguar
Platform: Windows 10 Home Versão 21H1 19043.985 (X64) Idioma: Português (Brasil)
Navegador padrão: FF
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356173.inf_amd64_1858b36ef10d71b5\B355563\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356173.inf_amd64_1858b36ef10d71b5\B355563\atiesrxx.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Stealth-7\COMODO\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Stealth-7\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Stealth-7\COMODO\COMODO Internet Security\cmdagent.exe <2>
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Program Files\Vivaldi\Application\update_notifier.exe
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\WPS Office\11.2.0.10152\office6\wpscenter.exe <2>
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\WPS Office\11.2.0.10152\office6\wpscloudsvr.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [10140904 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Stealth-7\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50041472 2021-03-12] (Google LLC -> )
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\...\Run: [Vivaldi Update Notifier] => C:\Program Files\Vivaldi\Application\update_notifier.exe [2978192 2021-06-11] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\...\Policies\system: [DisableLockWorkstation] 0
HKLM\...\Print\Monitors\EPSON TX430 Series 64MonitorBL: C:\Windows\system32\E_ILMHAL.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION) [Arquivo não assinado]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.101\Installer\chrmstp.exe [2021-06-10] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9C142C0C-124C-4467-B117-EBCC62801D7B}] -> C:\Program Files\Vivaldi\Application\4.0.2312.27\Installer\chrmstp.exe [2021-06-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
GroupPolicy: Restrição ? <==== ATENÇÃO
Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {2F8D4D8A-6369-48EF-976A-753D9E93EA28} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.exe /NoUACCheck
Task: {35897FCE-12A5-4E32-B0CB-D982924C2571} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Stealth-7\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {596A95BA-027A-4355-98D9-425B6BFC2B8F} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Stealth-7\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {60BF6240-DBBC-48BC-B3F2-0E25BD5CBCC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-02] (Google LLC -> Google LLC)
Task: {6FC011D1-313F-4733-A246-723C4FFDB20B} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Stealth-7\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {6FEC93F2-5726-4932-8420-F1253EE3B27B} - System32\Tasks\WpsUpdateTask_Jaguar => C:\WPS Office\11.2.0.10152\office6\wpsupdate.exe [164552 2021-06-04] (Zhuhai Kingsoft Office Software Co., Ltd. -> )
Task: {71859542-A531-489E-AC5A-14D765F69E21} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {7E5274D2-041F-4108-926D-C2710C7C95D2} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Stealth-7\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {82AF1E13-0949-47E8-9F5A-FA918E5EE4C2} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Stealth-7\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B6D6C393-887C-40DC-B9BD-9B31FFA4F6B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-02] (Google LLC -> Google LLC)
Task: {B91D3CFB-533F-49C9-91AC-DB14EC8CF923} - System32\Tasks\WpsExternal_Jaguar_20210604233703 => C:\WPS Office\11.2.0.10152\office6\wpscloudsvr.exe [1666760 2021-06-04] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {BC132A15-F1C9-424C-8DB5-D6C7790EFE7D} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Stealth-7\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F47809D6-EAF3-4F7B-8BF6-56656D809E2E} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Stealth-7\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\WpsExternal_Jaguar_20210604233703.job => C:\WPS Office\11.2.0.10152\office6\wpscloudsvr.exe/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll
Task: C:\Windows\Tasks\WpsUpdateTask_Jaguar.job => C:\WPS Office\11.2.0.10152\office6\wpsupdate.exe

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{2c004246-3715-4226-92fd-e7e667029232}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{2c004246-3715-4226-92fd-e7e667029232}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{768a5e9d-07d6-44bb-9fb0-87042e12959b}: [DhcpNameServer] 192.168.100.1

FireFox:
========
FF DefaultProfile: ivt1lojz.default
FF ProfilePath: C:\Users\Jaguar\AppData\Roaming\Comodo\CSS\User Data-firefox1 [2021-06-14]
FF Homepage: Comodo\CSS\User Data-firefox1 -> about:blank
FF ProfilePath: C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\ivt1lojz.default [2021-06-14]
FF user.js: detected! => C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\ivt1lojz.default\user.js [2021-05-25]
FF Homepage: Mozilla\Firefox\Profiles\ivt1lojz.default -> hxxps://br.yahoo.com/?fr=fp-comodo&type=81_138430100004_89.0.4389.128_u_hp_sp
FF SearchPlugin: C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\ivt1lojz.default\searchplugins\AdTrustMediaComodo Dragon.xml [2021-06-14]
FF ProfilePath: C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release [2021-06-15]
FF user.js: detected! => C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\user.js [2021-05-25]
FF Homepage: Mozilla\Firefox\Profiles\i4v5d3ff.default-release -> about:blank
FF Extension: (Segurança do navegador Avira) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\[email]abs@avira.com.xpi[/email] [2021-06-09]
FF Extension: (AdGuard AdBlocker) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\[email]adguardadblocker@adguard.com.xpi[/email] [2021-05-27]
FF Extension: (I don't care about cookies) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\[email]jid1-KKzOGWgsW3Ao4Q@jetpack.xpi[/email] [2021-05-24]
FF Extension: (Privacy Badger) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\[email]jid1-MnnxcxisBPnSXQ@jetpack.xpi[/email] [2021-06-11]
FF Extension: (Temp Mail) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\[email]tempmail@temp-mail.io.xpi[/email] [2021-05-19]
FF Extension: (Cloudopt AdBlocker) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{102c8bd2-8ea8-4379-9503-acb06b6b373a}.xpi [2021-03-28]
FF Extension: (Print PDF) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{142cfbf5-ba62-48b6-acfe-fbff2b9636e3}.xpi [2021-03-28]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-06-11]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{6488a8db-4e9e-49ac-b058-2670e51b2ce0}.xpi [2021-05-15]
FF Extension: (Print Preview) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{8711aa11-2355-411a-ba8b-5891c39ad9dc}.xpi [2021-03-28]
FF Extension: (YouBlock - Youtube Video Ads Blocker) - C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\Extensions\{fc5a5c77-f8d2-4e21-838b-669a9d5112c7}.xpi [2021-03-28]
FF SearchPlugin: C:\Users\Jaguar\AppData\Roaming\Mozilla\Firefox\Profiles\i4v5d3ff.default-release\searchplugins\AdTrustMediaComodo Dragon.xml [2021-06-14]

Chrome:
=======
CHR Profile: C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default [2021-06-14]
CHR HomePage: Default -> about:blank
CHR StartupUrls: Default -> "about:blank"
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Google Drive) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-31]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-06-05]
CHR Extension: (DuckDuckGo) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-06-05]
CHR Extension: (TrafficLight) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2021-06-02]
CHR Extension: (Cloudopt AdBlocker) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnffkgfknlbnbfhihojeagbmcdcfdcnb [2021-06-02]
CHR Extension: (Kaspersky Password Manager) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2021-06-12]
CHR Extension: (Segurança do navegador Avira) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-06-14]
CHR Extension: (Click&Clean) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-06-02]
CHR Extension: (Adblocker Unlimited - bloquear anúncios) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgddnoifhgfdhcpbkkjdgokfnkkmdcen [2021-06-02]
CHR Extension: (Ghostery – Bloqueador de anúncios para privacidade) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-06-02]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-31]
CHR Extension: (Ad Skipper on Youtube) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlakjdnmabjgpbmjgmdmdcblhdkfdaj [2021-06-02]
CHR Extension: (AdsBlocker for YouTube™) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdkgjjhlbojfndcacamipdenealcpmcb [2021-06-02]
CHR Extension: (Gmail) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-31]
CHR Extension: (Chrome Media Router) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-31]
CHR Extension: (Privacy Badger) - C:\Users\Jaguar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-06-12]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] -
CHR HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

Vivaldi:
=======
VIV Profile: C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default [2021-06-13]
VIV HomePage: Default -> about:blank
VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
VIV DefaultSearchKeyword: Default -> duckduckgo.com
VIV DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
VIV Extension: (AdGuard AdBlocker) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-06-03]
VIV Extension: (DuckDuckGo) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-06-05]
VIV Extension: (TrafficLight) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2021-06-03]
VIV Extension: (Temp Mail) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\ckcdnopgiijkcoejjophlljlfommgihi [2021-06-02]
VIV Extension: (Cloudopt AdBlocker) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\cnffkgfknlbnbfhihojeagbmcdcfdcnb [2021-06-02]
VIV Extension: (Blockano Adblocker) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\ecfpnoadcfiakcdpphcifeknajmbnoih [2021-06-02]
VIV Extension: (I don't care about cookies) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-06-03]
VIV Extension: (Segurança do navegador Avira) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-06-02]
VIV Extension: (Click&Clean) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-06-02]
VIV Extension: (JustBlock Security) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\hiajdlfgbgnnjakkbnpdhmhfhklkbiol [2021-06-02]
VIV Extension: (Adstopper adblock software) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\ifebaancnnlmdehpiojjndcolgbcjcll [2021-06-02]
VIV Extension: (Melhor Comprar - Cupons de Desconto) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\jjhjfdaghnddkabhboalgfapchmdbfjo [2021-06-02]
VIV Extension: (ClearURLs) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\lckanjgmijmafbedllaakclkaicjfmnk [2021-06-03]
VIV Extension: (Acesso rápido a apps para o Drive (do Google)) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-06-01]
VIV Extension: (Adblock for youtube™) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\meeigimblnoededboeggpdknokefoece [2021-06-10]
VIV Extension: (Ad Skipper on Youtube) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\ohlakjdnmabjgpbmjgmdmdcblhdkfdaj [2021-06-02]
VIV Extension: (Chrome Media Router) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-12]
VIV Extension: (Privacy Badger) - C:\Users\Jaguar\AppData\Local\Vivaldi\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-06-12]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 CmdAgent; C:\Stealth-7\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Stealth-7\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Stealth-7\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4054248 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
S3 ENAgent; C:\Windows\SysWOW64\ENAgent.exe [4209856 2012-07-05] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wpscloudsvr; C:\ProgramData\Kingsoft\office6\wpscloudsvr.exe [1666760 2021-06-04] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
S2 asComSvc; "C:\Program Files (x86)\ASUS\AXSP\4.00.42\atkexComSvc.exe" [X]
S3 AsusFanControlService; "C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.78\AsusFanControlService.exe" [X]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
S0 cmdboot; C:\Windows\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmdcss; C:\Windows\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2021-06-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [425184 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileControl; \??\C:\Adv SystemCare\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [X]
S3 AscFileFilter; \??\C:\Adv SystemCare\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Adv SystemCare\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X]
S4 IUFileFilter; \??\C:\Uninstaller-z\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Uninstaller-z\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Uninstaller-z\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três meses (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-06-15 21:07 - 2021-06-15 21:08 - 000023526 _____ C:\Users\Jaguar\Desktop\FRST.txt
2021-06-15 21:07 - 2021-06-15 21:08 - 000000000 ____D C:\FRST
2021-06-15 21:05 - 2021-06-15 21:05 - 002300416 _____ (Farbar) C:\Users\Jaguar\Desktop\FRST64.exe
2021-06-15 19:52 - 2021-06-15 19:52 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-06-15 19:52 - 2021-06-15 19:52 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-06-15 18:35 - 2021-06-15 18:35 - 000000000 ___HD C:\$WinREAgent
2021-06-14 00:04 - 2021-06-14 00:04 - 000000000 ____D C:\Users\Jaguar\AppData\Roaming\Comodo
2021-06-13 23:58 - 2021-06-15 21:03 - 001474832 _____ C:\Windows\system32\Drivers\sfi.dat
2021-06-13 23:58 - 2021-06-13 23:58 - 000000000 ____D C:\Windows\system32\Tasks\COMODO
2021-06-13 23:58 - 2021-06-13 23:58 - 000000000 ____D C:\Stealth-7
2021-06-13 23:58 - 2019-10-22 18:02 - 000017576 _____ (COMODO) C:\Windows\system32\Drivers\cmdboot.sys
2021-06-13 23:57 - 2021-06-14 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-06-13 23:57 - 2021-06-13 23:57 - 000002158 _____ C:\Users\Public\Desktop\Comodo Secure Shopping.lnk
2021-06-13 23:57 - 2021-06-13 23:57 - 000002158 _____ C:\ProgramData\Desktop\Comodo Secure Shopping.lnk
2021-06-13 23:57 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\Windows\system32\cssguard64.dll
2021-06-13 23:57 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\Windows\system32\cmdkbdcss64.dll
2021-06-13 23:57 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\Windows\SysWOW64\cssguard32.dll
2021-06-13 23:57 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\Windows\SysWOW64\cmdkbdcss32.dll
2021-06-13 23:57 - 2019-01-29 05:42 - 000254440 _____ (COMODO) C:\Windows\system32\iseguard64.dll
2021-06-13 23:57 - 2019-01-29 05:42 - 000205024 _____ (COMODO) C:\Windows\SysWOW64\iseguard32.dll
2021-06-13 23:57 - 2018-08-29 19:55 - 000063256 _____ (COMODO) C:\Windows\system32\Drivers\isedrv.sys
2021-06-13 23:57 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\Windows\system32\Drivers\cmdcss.sys
2021-06-13 23:56 - 2021-06-14 16:56 - 000000000 ____D C:\Program Files (x86)\Comodo
2021-06-13 23:53 - 2021-06-13 23:57 - 000000000 ____D C:\ProgramData\Comodo
2021-06-13 23:53 - 2021-06-13 23:53 - 000000000 ____D C:\ProgramData\Shared Space
2021-06-13 01:04 - 2021-06-13 01:04 - 000000000 ____D C:\Users\Jaguar\AppData\Roaming\LibreOffice
2021-06-12 20:35 - 2021-06-12 20:35 - 000000000 ____D C:\Users\Jaguar\AppData\Local\ElevatedDiagnostics
2021-06-11 23:30 - 2021-06-11 23:30 - 000000918 _____ C:\Users\Public\Desktop\LibreOffice 7.1.lnk
2021-06-11 23:30 - 2021-06-11 23:30 - 000000918 _____ C:\ProgramData\Desktop\LibreOffice 7.1.lnk
2021-06-11 23:30 - 2021-06-11 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1
2021-06-11 23:29 - 2021-06-11 23:29 - 000000000 ____D C:\Office-w
2021-06-06 00:54 - 2021-06-06 10:59 - 000000336 _____ C:\Windows\Tasks\WpsUpdateTask_Jaguar.job
2021-06-04 23:37 - 2021-06-06 00:54 - 000003358 _____ C:\Windows\system32\Tasks\WpsUpdateTask_Jaguar
2021-06-04 23:37 - 2021-06-05 16:33 - 000000626 _____ C:\Windows\Tasks\WpsExternal_Jaguar_20210604233703.job
2021-06-04 23:37 - 2021-06-04 23:37 - 000003674 _____ C:\Windows\system32\Tasks\WpsExternal_Jaguar_20210604233703
2021-06-04 23:36 - 2021-06-04 23:36 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-06-04 12:02 - 2021-06-04 12:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-02 17:43 - 2021-06-02 17:43 - 000000000 ____D C:\Users\Jaguar\AppData\Roaming\Thunderbird
2021-06-02 17:43 - 2021-06-02 17:43 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Thunderbird
2021-06-02 17:34 - 2021-06-13 23:41 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2021-06-02 17:34 - 2021-06-10 22:20 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-06-02 11:16 - 2021-06-02 11:16 - 000000286 __RSH C:\ProgramData\ntuser.pol
2021-06-02 00:16 - 2021-06-02 00:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-05-31 18:35 - 2021-06-13 23:25 - 000002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-05-31 18:35 - 2021-06-13 23:25 - 000002171 _____ C:\Users\Public\Desktop\Vivaldi.lnk
2021-05-31 18:35 - 2021-06-13 23:25 - 000002171 _____ C:\ProgramData\Desktop\Vivaldi.lnk
2021-05-31 18:35 - 2021-06-13 23:25 - 000000000 ____D C:\Program Files\Vivaldi
2021-05-31 18:35 - 2021-05-31 18:35 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Vivaldi
2021-05-31 18:34 - 2021-05-31 18:34 - 000000279 _____ C:\Users\Jaguar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk
2021-05-31 18:30 - 2021-06-10 22:09 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-31 18:30 - 2021-06-10 22:09 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-31 18:30 - 2021-06-10 22:09 - 000002212 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-05-30 09:07 - 2021-06-14 16:56 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Comodo
2021-05-30 09:03 - 2021-05-30 09:03 - 001060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2021-05-30 09:03 - 2021-05-30 09:03 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2021-05-30 00:11 - 2021-06-11 21:20 - 000000000 ____D C:\Program Files\Revo Uninstaller
2021-05-30 00:11 - 2021-05-30 00:11 - 000000940 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2021-05-30 00:11 - 2021-05-30 00:11 - 000000940 _____ C:\ProgramData\Desktop\Revo Uninstaller Pro.lnk
2021-05-30 00:11 - 2021-05-30 00:11 - 000000000 ____D C:\Users\Jaguar\AppData\Local\VS Revo Group
2021-05-30 00:11 - 2021-05-30 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2021-05-30 00:11 - 2020-10-14 04:07 - 000038400 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2021-05-29 23:43 - 2021-05-30 00:12 - 000000000 ____D C:\Users\Jaguar\AppData\Local\BraveSoftware
2021-05-29 16:30 - 2021-05-29 16:30 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Western Digital
2021-05-29 16:29 - 2021-05-29 23:27 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-26 01:15 - 2021-05-29 23:35 - 000000000 ____D C:\Users\Jaguar\AppData\Roaming\Geek Uninstaller
2021-05-26 00:49 - 2021-05-26 00:49 - 000003638 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2021-05-26 00:49 - 2021-05-26 00:49 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled
2021-05-26 00:36 - 2021-05-26 00:36 - 071376896 _____ C:\Windows\system32\config\SOFTWARE.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 009355264 _____ C:\Windows\system32\config\DRIVERS.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000483328 _____ C:\Windows\system32\config\DEFAULT.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000077824 _____ C:\Windows\system32\config\SAM.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000036864 _____ C:\Windows\system32\config\SECURITY.iobit
2021-05-25 13:22 - 2021-06-15 18:18 - 000000000 ____D C:\Users\Jaguar\AppData\LocalLow\Mozilla
2021-05-25 00:22 - 2021-06-02 00:23 - 000003588 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-25 00:22 - 2021-06-02 00:23 - 000003464 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-25 00:22 - 2021-05-25 00:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-05-23 21:50 - 2021-05-24 23:51 - 000000000 ____D C:\ESD
2021-05-22 21:31 - 2021-05-23 21:39 - 000000000 ____D C:\Users\Jaguar\AppData\Local\luminati
2021-05-20 22:10 - 2015-12-20 16:24 - 000053144 _____ (COMPAL ELECTRONIC INC.) C:\Windows\system32\Drivers\LPCFilter.sys
2021-05-19 22:00 - 2021-05-19 22:00 - 000000042 _____ C:\Windows\SysWOW64\guid.dat
2021-05-19 12:49 - 2021-05-23 22:17 - 000000000 ____D C:\Users\Jaguar\AppData\Local\CrashDumps
2021-05-19 11:14 - 2021-03-24 12:16 - 001149440 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2021-05-15 21:02 - 2021-06-13 23:25 - 000000527 _____ C:\Users\Jaguar\.vivaldi_reporting_data
2021-05-13 17:24 - 2021-05-13 17:24 - 000011351 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-05-09 23:36 - 2021-05-09 23:36 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2021-05-09 23:35 - 2021-06-13 23:41 - 000000000 ____D C:\Program Files\Common Files\AV
2021-05-05 10:53 - 2021-06-04 12:03 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-04-30 17:04 - 2021-04-30 17:04 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-04-30 17:04 - 2021-04-30 17:04 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-04-30 17:04 - 2021-04-30 17:04 - 001823816 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-04-30 17:04 - 2021-04-30 17:04 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-04-30 17:04 - 2021-04-30 17:04 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-04-30 17:04 - 2021-04-30 17:04 - 001314120 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-04-30 17:04 - 2021-04-30 17:04 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-04-30 17:04 - 2021-04-30 17:04 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-04-30 17:04 - 2021-04-30 17:04 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-04-30 17:04 - 2021-04-30 17:04 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-04-30 17:04 - 2021-04-30 17:04 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-04-15 22:30 - 2021-04-15 22:30 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-04-03 18:03 - 2021-04-03 18:03 - 000000000 ____D C:\Users\Jaguar\AppData\Local\fontconfig
2021-04-03 18:02 - 2021-04-03 18:02 - 000000000 ____D C:\Users\Jaguar\.dbus-keyrings
2021-04-02 11:38 - 2021-04-02 11:38 - 000000000 ____D C:\Windows\system32\DAX3
2021-04-02 11:38 - 2021-04-02 11:38 - 000000000 _____ C:\Windows\system32\fpfftResultsFile.txt
2021-04-02 11:37 - 2021-03-18 03:38 - 003445648 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 003168296 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 001435048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 001382144 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 001195880 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 001110088 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000964944 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000873368 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000541024 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000467064 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000381312 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000341056 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000341056 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000231832 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000230608 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000218176 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000174848 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000158600 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000090832 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000088232 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000083536 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2021-04-02 11:37 - 2021-03-18 03:38 - 000075448 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 003676976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2021-04-02 11:37 - 2021-03-18 03:37 - 003601376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 003375920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 003159680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 001415000 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 001327936 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 001078600 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000692056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000392760 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000343600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000266456 _____ (TODO: ) C:\Windows\system32\slprp64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000220280 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000192872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000116432 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000093800 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2021-04-02 11:37 - 2021-03-18 03:37 - 000023600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 072520616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2021-04-02 11:36 - 2021-03-18 03:37 - 003843944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 003334136 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000453184 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000360248 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000327176 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000327176 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000203744 _____ (Harman) C:\Windows\system32\HMHVS.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000190840 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000190840 _____ (Harman) C:\Windows\system32\HMEQ.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000179504 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000157248 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000139664 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2021-04-02 11:36 - 2021-03-18 03:37 - 000090080 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 007178376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 007101664 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 006270096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 005346904 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 002930056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 002444600 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001971280 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001965072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001787864 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001610864 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOv251gm.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001598304 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001596096 _____ (Harman International Industries, Incorporated.) C:\Windows\system32\HarmanAPO64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001544160 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001516184 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001372304 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001287504 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOvlldpgm.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001259632 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 001159088 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000751216 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000734680 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000715552 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000511552 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000487376 _____ (Harman International Industries, Incorporated.) C:\Windows\system32\HarmanAPOUI64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000452656 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000448520 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000416416 _____ (Harman) C:\Windows\system32\HMUI.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000406360 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000378288 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000367520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000366024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000332920 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000315896 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000278184 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000261152 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000261104 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000260120 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000154272 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000122232 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000118496 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2021-04-02 11:36 - 2021-03-18 03:36 - 000105208 _____ C:\Windows\system32\audioLibVc.dll
2021-04-02 11:36 - 2021-03-18 03:13 - 045120758 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-04-01 13:42 - 2021-05-23 21:29 - 000004183 _____ C:\Windows\SysWOW64\ÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ÷ØÙÚÛÜÝÞ
2021-04-01 13:42 - 2012-07-05 01:02 - 004209856 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\ENAgent.exe
2021-04-01 13:40 - 2021-05-09 22:34 - 000000000 ____D C:\ProgramData\EPSON
2021-04-01 13:40 - 2021-04-01 13:40 - 000000000 ____D C:\Program Files\Common Files\EPSON
2021-04-01 13:40 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMHAL.DLL
2021-04-01 13:40 - 2011-03-15 03:03 - 000083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BHAL.DLL
2021-03-29 23:53 - 2019-09-03 14:10 - 000034064 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2021-03-29 23:50 - 2019-07-02 05:58 - 000034112 _____ C:\Windows\SysWOW64\Drivers\AsUpIO.sys
2021-03-29 23:48 - 2019-04-09 07:27 - 000033832 _____ C:\Windows\system32\Drivers\AsIO2.sys
2021-03-29 23:48 - 2019-04-09 06:22 - 000120880 _____ C:\Windows\system32\AsIO2.dll
2021-03-29 23:48 - 2019-04-09 06:22 - 000095280 _____ C:\Windows\SysWOW64\AsIO2.dll
2021-03-29 23:42 - 2021-03-29 23:42 - 000000000 ____D C:\ProgramData\Propagation
2021-03-29 23:37 - 2021-03-30 23:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-29 23:37 - 2020-10-26 14:37 - 000274736 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-29 23:37 - 2020-10-26 14:37 - 000229680 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-29 23:24 - 2021-03-29 23:25 - 000000000 ____D C:\Program Files\AMD
2021-03-29 23:24 - 2021-03-29 23:24 - 000000000 ____D C:\Users\Jaguar\AppData\Local\RadeonInstaller
2021-03-29 20:17 - 2021-05-24 18:05 - 000000000 ____D C:\ProgramData\ProductData
2021-03-29 20:16 - 2021-05-26 00:49 - 000000000 ____D C:\Users\Jaguar\AppData\LocalLow\IObit
2021-03-29 20:08 - 2021-05-26 01:19 - 000000000 ____D C:\Program Files\Realtek
2021-03-29 20:08 - 2021-04-02 11:38 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2021-03-29 20:08 - 2021-03-18 03:37 - 006426616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-29 20:08 - 2016-06-07 05:48 - 003299824 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2021-03-29 20:08 - 2016-06-07 05:48 - 002190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2021-03-29 20:08 - 2016-06-07 05:46 - 000716112 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2021-03-29 20:08 - 2016-06-07 05:46 - 000589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2021-03-29 20:08 - 2016-06-07 05:45 - 006402440 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2021-03-29 20:08 - 2016-06-07 05:45 - 005593624 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2021-03-29 20:08 - 2016-06-07 05:44 - 013122584 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2021-03-29 20:08 - 2016-06-07 05:44 - 012988352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2021-03-29 20:08 - 2016-06-07 05:44 - 000923744 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2021-03-29 20:08 - 2016-06-07 05:44 - 000677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2021-03-29 20:08 - 2016-06-07 05:43 - 001334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2021-03-29 20:08 - 2016-06-07 05:43 - 000999864 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2021-03-29 20:08 - 2016-06-07 05:41 - 002825104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2021-03-29 20:08 - 2016-06-07 05:41 - 001422936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2021-03-29 20:08 - 2016-06-07 05:41 - 001213664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2021-03-29 20:08 - 2016-06-07 05:41 - 000678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2021-03-29 20:08 - 2016-06-07 05:41 - 000330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2021-03-29 20:08 - 2016-06-07 05:40 - 010512448 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2021-03-29 20:08 - 2016-06-07 05:40 - 000618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2021-03-29 20:08 - 2016-06-07 05:40 - 000472312 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2021-03-29 20:08 - 2016-06-07 05:39 - 000514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2021-03-29 20:08 - 2016-06-07 05:39 - 000500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2021-03-29 20:08 - 2016-06-07 05:39 - 000428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2021-03-29 20:08 - 2016-06-07 05:38 - 001608128 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2021-03-29 20:08 - 2016-06-07 05:38 - 000574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2021-03-29 20:08 - 2016-06-07 05:38 - 000118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2021-03-29 20:08 - 2016-06-07 05:28 - 014057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2021-03-29 20:08 - 2016-06-07 05:28 - 001003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2021-03-29 20:08 - 2016-06-07 05:27 - 002050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2021-03-29 20:08 - 2016-06-07 05:27 - 001186824 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2021-03-29 20:08 - 2016-06-07 05:27 - 000931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2021-03-29 20:08 - 2016-06-07 05:19 - 005776968 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2021-03-29 20:08 - 2016-06-07 05:19 - 003282544 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2021-03-29 20:08 - 2016-06-07 05:19 - 001166160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2021-03-29 20:08 - 2016-06-07 05:16 - 002110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2021-03-29 20:08 - 2016-06-07 02:37 - 005804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2021-03-29 20:08 - 2016-06-07 02:37 - 003181209 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2021-03-29 19:46 - 2021-03-29 19:46 - 000000000 ____D C:\Users\Jaguar\AppData\Local\setup
2021-03-28 16:46 - 2021-04-11 11:27 - 000000000 ____D C:\Users\Jaguar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WPS Office
2021-03-28 16:45 - 2021-03-28 16:45 - 000000000 ____D C:\ProgramData\Kingsoft
2021-03-28 16:01 - 2021-06-13 23:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-28 16:01 - 2021-03-28 16:01 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Mozilla
2021-03-28 15:50 - 2021-03-28 15:50 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-03-28 11:21 - 2021-03-28 11:21 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-03-28 11:21 - 2021-03-28 11:21 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-03-28 11:21 - 2021-03-28 11:21 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-03-28 11:21 - 2021-03-28 11:21 - 000095744 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-03-28 11:21 - 2021-03-28 11:21 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000729600 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-03-28 11:20 - 2021-03-28 11:20 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-03-28 11:20 - 2021-03-28 11:20 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-03-28 11:20 - 2021-03-28 11:20 - 000234496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-03-28 11:20 - 2021-03-28 11:20 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-03-28 11:20 - 2021-03-28 11:20 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-03-28 11:20 - 2021-03-28 11:20 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-03-28 11:20 - 2021-03-28 11:20 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-03-28 11:20 - 2021-03-28 11:20 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-03-28 11:20 - 2021-03-28 11:20 - 000053760 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-03-28 11:19 - 2021-03-28 11:19 - 000455680 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000422912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-03-28 11:19 - 2021-03-28 11:19 - 000330752 _____ C:\Windows\SysWOW64\ssdm.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-03-28 11:19 - 2021-03-28 11:19 - 000235520 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000190976 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-03-28 11:19 - 2021-03-28 11:19 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-03-28 11:19 - 2021-03-28 11:19 - 000152064 _____ C:\Windows\system32\EoAExperiences.exe
2021-03-28 11:18 - 2021-03-28 11:18 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-03-28 11:18 - 2021-03-28 11:18 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-28 11:18 - 2021-03-28 11:18 - 000643072 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-03-28 11:18 - 2021-03-28 11:18 - 000562688 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-03-28 11:18 - 2021-03-28 11:18 - 000455168 _____ C:\Windows\system32\ssdm.dll
2021-03-28 11:18 - 2021-03-28 11:18 - 000306688 _____ C:\Windows\system32\HeatCore.dll
2021-03-28 11:18 - 2021-03-28 11:18 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-03-28 11:18 - 2021-03-28 11:18 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-03-28 11:18 - 2021-03-28 11:18 - 000074240 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-03-28 11:00 - 2021-04-02 11:38 - 000000000 ____D C:\Windows\system32\DAX2
2021-03-28 11:00 - 2021-03-28 11:00 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-03-28 10:54 - 2021-05-18 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12

==================== Três meses (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-06-15 20:59 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp
2021-06-15 20:03 - 2020-10-20 22:26 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-06-15 18:19 - 2020-10-21 16:22 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-15 17:53 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-15 17:43 - 2020-10-20 22:26 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-15 17:43 - 2020-10-20 22:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-06-14 21:57 - 2020-10-20 19:34 - 000065536 _____ C:\Windows\psp_storage.bin
2021-06-14 21:57 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-06-14 20:09 - 2020-10-20 19:38 - 000000000 ____D C:\Users\Jaguar\AppData\Local\D3DSCache
2021-06-13 23:58 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-06-13 23:58 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF
2021-06-13 23:42 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-06-12 00:02 - 2020-10-20 22:26 - 000462208 _____ C:\Windows\system32\FNTCACHE.DAT
2021-06-11 23:18 - 2020-10-20 22:26 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-06-11 22:31 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-11 22:31 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness
2021-06-10 22:09 - 2020-10-21 11:23 - 000000000 ____D C:\Windows\system32\MRT
2021-06-10 22:08 - 2020-10-21 11:23 - 132447432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-06-08 17:45 - 2020-10-20 19:34 - 000000000 ____D C:\Windows\system32\AMD
2021-06-05 17:18 - 2020-10-20 19:33 - 000000000 ____D C:\Users\Jaguar
2021-06-04 23:37 - 2020-11-27 15:13 - 000000000 ____D C:\WPS Office
2021-06-01 13:34 - 2020-10-20 19:40 - 000000000 ____D C:\Users\Jaguar\AppData\Local\PlaceholderTileLogoFolder
2021-06-01 13:34 - 2020-10-20 19:38 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Packages
2021-05-31 18:30 - 2020-10-21 19:50 - 000000000 ____D C:\Users\Jaguar\AppData\Local\Google
2021-05-31 18:29 - 2020-10-21 19:50 - 000000000 ____D C:\Program Files\Google
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-05-30 00:30 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-05-30 00:17 - 2020-10-20 19:38 - 000000000 ____D C:\Users\Jaguar\AppData\Local\ConnectedDevicesPlatform
2021-05-29 16:30 - 2020-10-22 09:44 - 000000000 ____D C:\Users\Jaguar\AppData\Local\cache
2021-05-29 13:08 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-05-28 21:36 - 2020-10-21 12:35 - 000000000 ____D C:\Temp
2021-05-25 18:29 - 2020-12-07 08:36 - 000000000 ____D C:\Users\Jaguar\AppData\Local\SquirrelTemp
2021-05-25 00:25 - 2020-10-21 19:56 - 000001521 _____ C:\Users\Jaguar\Desktop\Google Drive.lnk
2021-05-24 23:50 - 2020-10-20 22:26 - 000000000 ____D C:\Windows\Panther
2021-05-23 21:34 - 2019-12-07 06:14 - 000000155 _____ C:\Windows\win.ini

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================



Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 12-06-2021
Executado por Jaguar (15-06-2021 21:11:10)
Executando a partir de C:\Users\Jaguar\Desktop
Windows 10 Home Versão 21H1 19043.985 (X64) (2020-10-20 22:29:41)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1221202554-1171223759-2647826858-500 - Administrator - Disabled)
Convidado (S-1-5-21-1221202554-1171223759-2647826858-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1221202554-1171223759-2647826858-503 - Limited - Disabled)
Jaguar (S-1-5-21-1221202554-1171223759-2647826858-1001 - Administrator - Enabled) => C:\Users\Jaguar
WDAGUtilityAccount (S-1-5-21-1221202554-1171223759-2647826858-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
FW: COMODO Firewall (Enabled) {3D87FB90-B561-70B4-3B0B-BCEFE7656ABC}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.10.20 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.)
COMODO Internet Security Premium (HKLM\...\{529CC629-B436-4886-B322-4BE75B97783D}) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.)
COMODO Secure Shopping (HKLM-x32\...\{D15DF9B0-3A98-4BEF-B7D5-FC3AEA478445}) (Version: 1.4.159.0 - COMODO) Hidden
COMODO Secure Shopping (HKLM-x32\...\Comodo Secure_Shopping_list_uninstall) (Version: 1.4.478445.159 - Comodo)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.101 - Google LLC)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
LibreOffice 7.1.4.2 (HKLM\...\{7BE60D5A-5444-4E4D-9BAE-6A5BEA22C2AA}) (Version: 7.1.4.2 - The Document Foundation)
MiniTool Partition Wizard Free 12 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)
Mozilla Firefox 89.0 (x64 pt-BR) (HKLM\...\Mozilla Firefox 89.0 (x64 pt-BR)) (Version: 89.0 - Mozilla)
Mozilla Thunderbird 78.11.0 (x64 pt-BR) (HKLM\...\Mozilla Thunderbird 78.11.0 (x64 pt-BR)) (Version: 78.11.0 - Mozilla)
PeaZip 7.8.0 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 7.8.0 - Giorgio Tani)
Revo Uninstaller Pro 4.4.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.4.5 - VS Revo Group, Ltd.)
Vivaldi (HKLM-x32\...\Vivaldi) (Version: 4.0.2312.27 - Vivaldi Technologies AS.)
WPS Office (11.2.0.10152) (HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\...\Kingsoft Office) (Version: 11.2.0.10152 - Kingsoft Corp.)

==================== Exame Personalizado CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Stealth-7\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Stealth-7\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Stealth-7\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\Revo Uninstaller\RUExt.dll [2020-09-28] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers1_S-1-5-21-1221202554-1171223759-2647826858-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll [2021-06-04] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-1221202554-1171223759-2647826858-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll [2021-06-04] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Codecs (Whitelisted) ====================

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

2021-06-15 17:43 - 2021-06-15 17:43 - 000114176 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000172544 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002255872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000032256 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000046080 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000047616 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002824704 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026112 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000080896 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000015872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000007680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000301568 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000168448 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001084416 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000548864 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137728 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000010752 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000689664 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000119808 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000128512 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000438784 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000011776 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000023040 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000149504 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000223232 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000048128 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000029696 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000027648 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000044032 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020480 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000136192 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026624 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000034304 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000037888 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000071680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103936 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000019968 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001325056 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001489408 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001007104 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103424 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000916992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001039872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 003043328 _____ (Python Software Foundation) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll
2021-04-01 13:40 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Arquivo não assinado] C:\Windows\System32\E_ILMHAL.DLL
2021-06-15 17:43 - 2021-06-15 17:43 - 000202240 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 002831872 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 001654784 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 006542336 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000773632 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137216 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Modo de Segurança (Whitelisted) ==================

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.yahoo.com/?fr=fp-comodo&type=81_25050030005_89.0.4389.128_u_hp
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
BHO: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-12-07 06:14 - 2021-06-12 23:28 - 000000852 _____ C:\Windows\system32\drivers\etc\hosts

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 156.154.70.25 - 156.154.71.25
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

Network Binding:
=============
Ethernet 2: COMODO Internet Security Firewall Driver -> inspect (enabled)

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{480D2D94-7F3B-40E5-8A38-BF8B6DC20CF1}] => (Allow) C:\Program Files\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [TCP Query User{2232A969-4AFA-4EC7-9931-083ACE767A74}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{529F4662-3ABE-4E20-ABB6-C67D1073585E}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

08-06-2021 00:33:35 Instalador de Módulos do Windows
10-06-2021 22:10:04 Instalador de Módulos do Windows
10-06-2021 22:12:46 Instalador de Módulos do Windows
11-06-2021 20:01:19 Instalador de Módulos do Windows
11-06-2021 20:48:52 Instalador de Módulos do Windows
11-06-2021 21:13:57 Instalador de Módulos do Windows
11-06-2021 21:23:32 Instalador de Módulos do Windows
11-06-2021 22:06:23 Instalador de Módulos do Windows
11-06-2021 22:20:49 Instalador de Módulos do Windows
11-06-2021 23:04:31 Instalador de Módulos do Windows
12-06-2021 20:53:00 Instalador de Módulos do Windows
12-06-2021 23:08:00 Instalador de Módulos do Windows
13-06-2021 01:06:53 Removed Kaspersky Password Manager
13-06-2021 01:08:11 Removido Microsoft Update Health Tools
13-06-2021 23:57:56 Installing COMODO Internet Security Premium
15-06-2021 18:38:40 Instalador de Módulos do Windows
15-06-2021 20:05:57 Instalador de Módulos do Windows
15-06-2021 20:19:57 Instalador de Módulos do Windows
15-06-2021 20:48:47 Instalador de Módulos do Windows

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (06/13/2021 11:41:22 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: A Central de Segurança não validou o chamador com o erro %1.

Error: (06/13/2021 11:39:09 PM) (Source: MsiInstaller) (EventID: 1013) (User: FENIX)
Description: Aplicativo: Kaspersky Security Cloud -- Para instalar o aplicativo, execute startup.exe

Error: (06/12/2021 08:53:31 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy13 - 0000000000000258,0x00530194,0000000000000000,0,000001CE8B00C9F0,4096,[0]). hr = 0x800701b1, Foi especificado um dispositivo inexistente.
.


Operação:
Consultar Cópias de Sombra

Error: (06/12/2021 01:47:11 PM) (Source: Firefox) (EventID: 5) (User: )
Description: Event-ID 5

Error: (06/10/2021 10:47:26 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Naja (Esmile.png devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (06/10/2021 10:46:42 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Cofre (Fsmile.png devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (06/04/2021 03:11:03 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Cofre (Fsmile.png devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)

Error: (06/04/2021 02:36:48 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em Cofre (Fsmile.png devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A)


Erros de Sistema:
=============
Error: (06/15/2021 08:59:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x800f081f: 2021-06 Atualização Cumulativa do Windows 10 Version 21H1 para sistemas operacionais baseados em x64 (KB5003637).

Error: (06/15/2021 08:31:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x800f081f: 2021-06 Atualização Cumulativa do Windows 10 Version 21H1 para sistemas operacionais baseados em x64 (KB5003637).

Error: (06/15/2021 08:17:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x800f081f: 2021-06 Atualização Cumulativa do Windows 10 Version 21H1 para sistemas operacionais baseados em x64 (KB5003637).

Error: (06/15/2021 06:52:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x800f081f: 2021-06 Atualização Cumulativa do Windows 10 Version 21H1 para sistemas operacionais baseados em x64 (KB5003637).

Error: (06/15/2021 05:43:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço FDResPub terminou com o erro:
%%2147952449 = O endereço solicitado não é válido no contexto.

Error: (06/14/2021 07:49:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200b: Atualização de segurança para o Windows (KB5003637).

Error: (06/14/2021 12:06:26 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Host de Sincronização_52429.

Error: (06/14/2021 12:06:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Host de Sincronização_52429.


Windows Defender:
================
Date: 2021-06-07 22:58:36
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {97E2E0CB-8EF3-40B9-9788-82FE2AB4D4D0}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-05-29 23:34:38
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {E8B43A5B-CE57-4133-AC22-AFE4CB545268}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Completa
Usuário: FENIX\Jaguar

Date: 2021-05-24 18:30:00
Description:
Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado.
Para obter mais informações, veja a seguir:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Nome: Trojan:Win32/Tiggre!rfn
Gravidade: Grave
Categoria: Cavalo de Tróia
Caminho: file:_F:\Downloads\4How_.com_IObit Uninstaller Pro 10.0.2.23\4HowCrack.com_IObit Uninstaller Pro 10.0.2.23\Loader.rar
Origem da Detecção: Computador local
Tipo da Detecção: Concreto
Fonte da Detecção: Proteção em Tempo Real
Usuário: FENIX\Jaguar
Nome do Processo: C:\Windows\explorer.exe
Versão da Inteligência de Segurança: AV: 1.339.1324.0, AS: 1.339.1324.0, NIS: 1.339.1324.0
Versão do Mecanismo: AM: 1.1.18100.6, NIS: 1.1.18100.6

Date: 2021-05-20 22:17:07
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {304B5B10-4E43-49F6-AB0D-13C17A4A12A2}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-06-03 19:02:50
Description:
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 1.341.8.0
Versão da Inteligência de Segurança anterior: 1.339.1902.0
Fonte da Atualização: Usuário
Tipo da Inteligência de Segurança: Anti-spyware
Tipo da atualização: Delta
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 1.1.18200.4
Versão Anterior do Mecanismo: 1.1.18100.6
Código de Erro: 0x80070666
Descrição do Erro: Outra versão deste produto já está instalada. A instalação desta versão não pode continuar. Para configurar ou remover a versão existente deste produto, use 'Adicionar ou remover programas' no Painel de Controle.

Date: 2021-06-03 19:02:50
Description:
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 1.341.8.0
Versão da Inteligência de Segurança anterior: 1.339.1902.0
Fonte da Atualização: Usuário
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Delta
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 1.1.18200.4
Versão Anterior do Mecanismo: 1.1.18100.6
Código de Erro: 0x80070666
Descrição do Erro: Outra versão deste produto já está instalada. A instalação desta versão não pode continuar. Para configurar ou remover a versão existente deste produto, use 'Adicionar ou remover programas' no Painel de Controle.

Date: 2021-06-03 19:02:50
Description:
O Microsoft Defender Antivírus encontrou um erro ao tentar atualizar o mecanismo.
Nova Versão do Mecanismo: 1.1.18200.4
Versão Anterior do Mecanismo: 1.1.18100.6
Usuário: AUTORIDADE NT\SISTEMA
Código do Erro: 0x80070666
Descrição do erro: Outra versão deste produto já está instalada. A instalação desta versão não pode continuar. Para configurar ou remover a versão existente deste produto, use 'Adicionar ou remover programas' no Painel de Controle.

CodeIntegrity:
===============
Date: 2021-06-15 20:59:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\cssguard64.dll that did not meet the Windows signing level requirements.

Date: 2021-06-15 20:59:54
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória ===========================

BIOS: American Megatrends Inc. 5604 10/26/2020
placa-mãe: ASUSTeK COMPUTER INC. PRIME A320M-K/BR
Processador: AMD A8-9600 RADEON R7, 10 COMPUTE CORES 4C+6G
Percentagem de memória em uso: 51%
RAM física total: 11705.79 MB
RAM física disponível: 5655.09 MB
Virtual Total: 13497.79 MB
Virtual disponível: 6759.01 MB

==================== Drives ================================

Drive c: (Raptor) (Fixed) (Total:223.46 GB) (Free:174.28 GB) NTFS
Drive e: (Naja) (Fixed) (Total:465.73 GB) (Free:447.87 GB) NTFS
Drive f: (Cofre) (Fixed) (Total:931.51 GB) (Free:916.74 GB) NTFS

\\?\Volume{55422679-0d97-2d4a-989f-253b8986b65f}\ (NO_LABEL) (Fixed) (Total:0.38 GB) (Free:0.38 GB) FAT32
\\?\Volume{8bf53b72-bd5c-4b24-b6cd-6662f465a472}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.7 GB) (Disk ID: DE7A0A90)
Partition 1: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt =======================
falha-windows-update windows update error especificamente devido constantes kb5003637
PH
PH Cyber Highlander Registrado
61.1K Mensagens 10.6K Curtidas
#2 Por PH
16/06/2021 - 07:06
Espírita disse:
Devido a erros constantes no Windows Update., especificamente por falhas na instalação do pacote KB5003637.. resolvi postar os logs abaixo
- Aguardo a análise e orientação dos especialistas radicais...


Bom dia!

Como o log já foi gerado, siga as informações abaixo.

Faça download do Kaspersky Virus Removal Tool, é um antivírus on-line, ou seja, não precisa instalar.

Neste link a seguir, tem um pequeno tutorial de como usar o Kaspersky: https://www.hardware.com.br/comunidade/v-t/1510949/#post8249043
TRONNER
TRONNER Cyber Highlander Registrado
32.2K Mensagens 7.3K Curtidas
#5 Por TRONNER
16/06/2021 - 08:51
Espírita disse:
Devido a erros constantes no Windows Update., especificamente por falhas na instalação do pacote KB5003637.. resolvi postar os logs abaixo
- Aguardo a análise e orientação dos especialistas radicais...

E aquela outra parada explicando como limpar o cache de atualizações, pode ser outra sugestão porém relembrando de efetuar essa atividade com o serviço de atualizações interrompido legal.png
joram
joram Highlander Registrado
5.4K Mensagens 2.5K Curtidas
#8 Por joram
16/06/2021 - 10:32
/!\ Bom Dia! Espírita /!\

AV: COMODO Antivirus (Enabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
>
> Vc possui 2 antivírus habilitados!
> Faça a opção por um que seja de sua preferência.
Error: (06/15/2021 08:17:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x800f081f: 2021-06 Atualização Cumulativa do Windows 10 Version 21H1 para sistemas operacionais baseados em x64 (KB5003637).

> A falha na atualização veio descrita no Log de Eventos. (0x800f081f)

> Copie estas informações que estão no Spoiler,para o Bloco de Notas.
> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

Imagem
[spoiler]start::
CloseProcesses:
AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.yahoo.com/?fr=fp-comodo&type=81_25050030005_89.0.4389.128_u_hp
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
2021-06-15 17:43 - 2021-06-15 17:43 - 000114176 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000172544 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002255872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000032256 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000046080 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000047616 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002824704 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026112 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000080896 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000015872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000007680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000301568 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000168448 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001084416 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000548864 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137728 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000010752 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000689664 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000119808 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000128512 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000438784 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000011776 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000023040 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000149504 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000223232 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000048128 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000029696 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000027648 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000044032 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020480 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000136192 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026624 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000034304 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000037888 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000071680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103936 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000019968 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001325056 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001489408 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001007104 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103424 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000916992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001039872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 003043328 _____ (Python Software Foundation) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll
2021-04-01 13:40 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Arquivo não assinado] C:\Windows\System32\E_ILMHAL.DLL
2021-06-15 17:43 - 2021-06-15 17:43 - 000202240 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 002831872 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 001654784 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 006542336 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000773632 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137216 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll
2021-05-26 00:36 - 2021-05-26 00:36 - 071376896 _____ C:\Windows\system32\config\SOFTWARE.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 009355264 _____ C:\Windows\system32\config\DRIVERS.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000483328 _____ C:\Windows\system32\config\DEFAULT.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000077824 _____ C:\Windows\system32\config\SAM.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000036864 _____ C:\Windows\system32\config\SECURITY.iobit
2021-05-28 21:36 - 2020-10-21 12:35 - 000000000 ____D C:\Temp
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
StartPowershell:
sfc /scannow
Dism /online /enable-feature /featurename: NetFx3 /All /Source: : Sources\SxS /LimitAccess
DISM /Online /Cleanup-image /Restorehealth
EndPowershell:
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:
end::[/spoiler]

Imagem

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde e esteja conectado ao realizar esta operação!
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

< Este script foi elaborado exclusivamente para este computador,portanto peço aos visitantes que não o utilize em outras "máquinas". >

[]s
PH
PH Cyber Highlander Registrado
61.1K Mensagens 10.6K Curtidas
#11 Por PH
16/06/2021 - 13:19
Espírita disse:
@PH - Vou efetuar a análise!!

@joram - Não sei por qual motivo aparece o kaspersky ( o mesmo foi removido com Revo Uninstaller). Vou executar o script informado.


Boa tarde!

Sempre use sempre a opção para desinstalar do próprio programa, caso tenha problemas em relação ao Kaspersky use a ferramenta Removal tool for Kaspersky applications, por ser um programa de segurança, algumas vezes sua desinstalação é mais complicado, isso é normal devido a várias pragas que tentam para os seus serviços para agir. Para não misturar os tópicos assim como vem fazendo o joram, da uma olhada em outras opções relacionadas ao KB que não consegue instalar.
Espírita
Espírita Cyber Highlander Registrado
9.6K Mensagens 2.1K Curtidas
#12 Por Espírita
16/06/2021 - 13:51
d973cf57df90ac340da5a5826181220d

Log Correção FarBar

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 16-06-2021
Executado por Jaguar (16-06-2021 13:14:31) Run:1
Executando a partir de C:\Users\Jaguar\Desktop
Perfis Carregados: Jaguar
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CloseProcesses:
AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.yahoo.com/?fr=fp-comodo&type=81_25050030005_89.0.4389.128_u_hp
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
2021-06-15 17:43 - 2021-06-15 17:43 - 000114176 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000172544 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002255872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000032256 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000046080 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000047616 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002824704 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026112 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000080896 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000015872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000007680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000301568 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000168448 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001084416 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000548864 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137728 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000010752 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000689664 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000119808 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000128512 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000438784 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000011776 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000023040 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000149504 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000223232 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000048128 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000029696 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000027648 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000044032 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020480 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000136192 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026624 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000034304 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000037888 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000071680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103936 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000019968 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001325056 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001489408 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001007104 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103424 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000916992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001039872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 003043328 _____ (Python Software Foundation) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll
2021-04-01 13:40 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Arquivo não assinado] C:\Windows\System32\E_ILMHAL.DLL
2021-06-15 17:43 - 2021-06-15 17:43 - 000202240 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 002831872 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 001654784 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 006542336 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000773632 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137216 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll
2021-05-26 00:36 - 2021-05-26 00:36 - 071376896 _____ C:\Windows\system32\config\SOFTWARE.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 009355264 _____ C:\Windows\system32\config\DRIVERS.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000483328 _____ C:\Windows\system32\config\DEFAULT.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000077824 _____ C:\Windows\system32\config\SAM.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000036864 _____ C:\Windows\system32\config\SECURITY.iobit
2021-05-28 21:36 - 2020-10-21 12:35 - 000000000 ____D C:\Temp
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
StartPowershell:
sfc /scannow
Dism /online /enable-feature /featurename: NetFx3 /All /Source: : Sources\SxS /LimitAccess
DISM /Online /Cleanup-image /Restorehealth
EndPowershell:
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:

*****************

Processos fechados com sucesso.
"AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}" => removido (a) com sucesso.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => valor restaurado com sucesso
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
"HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removido (a) com sucesso.
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removido (a) com sucesso.
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll" => não encontrado (a)
C:\Windows\System32\E_ILMHAL.DLL => movido com sucesso
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll" => não encontrado (a)
C:\Windows\system32\config\SOFTWARE.iobit => movido com sucesso
C:\Windows\system32\config\DRIVERS.iobit => movido com sucesso
C:\Windows\system32\config\DEFAULT.iobit => movido com sucesso
C:\Windows\system32\config\SAM.iobit => movido com sucesso
C:\Windows\system32\config\SECURITY.iobit => movido com sucesso
C:\Temp => movido com sucesso
HKLM\System\CurrentControlSet\Services\uhssvc => removido (a) com sucesso.
uhssvc => serviço removido (a) com sucesso.

========= Powershell: =========


========= Fim de Powershell: =========

Ponto de Restauração criado com sucesso.
C:\Windows\System32\Drivers\etc\hosts => movido com sucesso
Hosts restaurado com sucesso.

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46225901 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2982658 B
Edge => 0 B
Chrome => 64174953 B
Vivaldi => 49709289 B
Firefox => 21247462 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 34779136 B
LocalService => 34902252 B
NetworkService => 34971758 B
Jaguar => 431563177 B

RecycleBin => 104857968 B
EmptyTemp: => 797.5 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 13:16:13 ====
PH
PH Cyber Highlander Registrado
61.1K Mensagens 10.6K Curtidas
#13 Por PH
16/06/2021 - 14:31
Espírita disse:
Imagem

Log Correção FarBar

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 16-06-2021
Executado por Jaguar (16-06-2021 13:14:31) Run:1
Executando a partir de C:\Users\Jaguar\Desktop
Perfis Carregados: Jaguar
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CloseProcesses:
AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.yahoo.com/?fr=fp-comodo&type=81_25050030005_89.0.4389.128_u_hp
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1221202554-1171223759-2647826858-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_89.0.4389.128_u_ds&p={searchTerms}
2021-06-15 17:43 - 2021-06-15 17:43 - 000114176 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000172544 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002255872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000032256 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000046080 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000047616 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 002824704 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026112 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000080896 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000015872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000007680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000301568 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000168448 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001084416 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000548864 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137728 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000010752 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000689664 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000119808 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000128512 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000438784 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000011776 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000023040 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000149504 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000223232 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000048128 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000029696 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000027648 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000044032 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000020480 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000136192 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000026624 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000034304 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000037888 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000071680 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103936 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000019968 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001325056 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001489408 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001007104 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000103424 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 000916992 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 001039872 _____ () [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd
2021-06-15 17:43 - 2021-06-15 17:43 - 003043328 _____ (Python Software Foundation) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll
2021-04-01 13:40 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Arquivo não assinado] C:\Windows\System32\E_ILMHAL.DLL
2021-06-15 17:43 - 2021-06-15 17:43 - 000202240 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 002831872 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 001654784 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 006542336 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000773632 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll
2021-06-15 17:43 - 2021-06-15 17:43 - 000137216 _____ (wxWidgets development team) [Arquivo não assinado] C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll
2021-05-26 00:36 - 2021-05-26 00:36 - 071376896 _____ C:\Windows\system32\config\SOFTWARE.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 009355264 _____ C:\Windows\system32\config\DRIVERS.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000483328 _____ C:\Windows\system32\config\DEFAULT.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000077824 _____ C:\Windows\system32\config\SAM.iobit
2021-05-26 00:36 - 2021-05-26 00:36 - 000036864 _____ C:\Windows\system32\config\SECURITY.iobit
2021-05-28 21:36 - 2020-10-21 12:35 - 000000000 ____D C:\Temp
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
StartPowershell:
sfc /scannow
Dism /online /enable-feature /featurename: NetFx3 /All /Source: : Sources\SxS /LimitAccess
DISM /Online /Cleanup-image /Restorehealth
EndPowershell:
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:

*****************

Processos fechados com sucesso.
"AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}" => removido (a) com sucesso.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => valor restaurado com sucesso
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado com sucesso
"HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removido (a) com sucesso.
HKU\S-1-5-21-1221202554-1171223759-2647826858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removido (a) com sucesso.
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ctypes.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_elementtree.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_hashlib.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_multiprocessing.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_psutil_windows.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_socket.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_ssl.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\_yappi.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\bz2.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\common.time34.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\hashobjs_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\PIL._imaging.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pyexpat.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pysqlite2._sqlite.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pythoncom27.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\pywintypes27.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\select.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\thumbnails_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\unicodedata.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\usb_ext.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32api.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32com.shell.shell.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32crypt.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32event.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32file.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32gui.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32inet.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pdh.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32pipe.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32process.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32profile.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32security.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\win32ts.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.conditional.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.connectivity.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.device_monitor.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.volumes.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\windows.winwrap.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._controls_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._core_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._gdi_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._html2.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._misc_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wx._windows_.pyd" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\python27.dll" => não encontrado (a)
C:\Windows\System32\E_ILMHAL.DLL => movido com sucesso
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_net_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxbase30u_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_adv_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_core_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_html_vc90_x64.dll" => não encontrado (a)
"C:\Users\Jaguar\AppData\Local\Temp\_MEI78882\wxmsw30u_webview_vc90_x64.dll" => não encontrado (a)
C:\Windows\system32\config\SOFTWARE.iobit => movido com sucesso
C:\Windows\system32\config\DRIVERS.iobit => movido com sucesso
C:\Windows\system32\config\DEFAULT.iobit => movido com sucesso
C:\Windows\system32\config\SAM.iobit => movido com sucesso
C:\Windows\system32\config\SECURITY.iobit => movido com sucesso
C:\Temp => movido com sucesso
HKLM\System\CurrentControlSet\Services\uhssvc => removido (a) com sucesso.
uhssvc => serviço removido (a) com sucesso.

========= Powershell: =========


========= Fim de Powershell: =========

Ponto de Restauração criado com sucesso.
C:\Windows\System32\Drivers\etc\hosts => movido com sucesso
Hosts restaurado com sucesso.

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46225901 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2982658 B
Edge => 0 B
Chrome => 64174953 B
Vivaldi => 49709289 B
Firefox => 21247462 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 34779136 B
LocalService => 34902252 B
NetworkService => 34971758 B
Jaguar => 431563177 B

RecycleBin => 104857968 B
EmptyTemp: => 797.5 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 13:16:13 ====

Marcou a opção para fazer a varredura nos drivers?
© 1999-2024 Hardware.com.br. Todos os direitos reservados.
Imagem do Modal