Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 27-12-2021
Executado por Usuario (05-01-2022 18:44:27) Run:3
Executando a partir de C:\Users\Usuario\Desktop
Perfis Carregados: Usuario
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
Task: {3B5B8FB1-07A0-43EE-BBB8-AED3BB048F06} - \AMDLinkUpdate -> Nenhum Arquivo <==== ATENÇÃO
Task: {3979EF3D-A906-41DF-983C-29EB005D9858} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (Nenhum Arquivo)
Task: {41E0176D-1406-4B32-8978-27D3792E6B87} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (Nenhum Arquivo)
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge Profile: C:\Users\Usuario\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-31]
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATENÇÃO (não ServiceDLL)
S3 CrucialSMBusScan; \??\C:\Users\Usuario\AppData\Local\Temp\CrucialSMBusScan_V64.sys [X] <==== ATENÇÃO
FCheck: C:\Windows\system32\Drivers\dump_storahci.sys [2021-07-24] <==== ATENÇÃO (zero byte Arquivo/Pasta)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
FirewallRules: [{BF7CF1BD-9F7E-48DE-A216-1BDD1AE2EDBA}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{C01FE5A1-6FD3-42A4-BC5E-5CE610557F1B}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{DFFA0B3F-3CB9-49BD-8FDC-996ED37C7CCC}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{D19EDF38-7147-487C-89BB-5000F48F4745}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{52AAA61C-B0F2-4C05-A3FF-058E1CC01D3D}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{1D4A2363-C8FA-4F24-B2E2-15F288FD000D}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{AF28845C-9609-4BDA-BA14-E2D57AFEB064}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{8A57AA4B-6AD6-45FB-8446-B3E4EEDCA341}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{5F85E264-4671-4F2C-AAED-38E7B2CE7DF3}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{CD251D81-AF24-4603-A889-02AC7CDE48C7}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{A059A70B-8B00-4690-8CBF-ED937DE151BC}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [{A9367D84-17A6-49BC-8440-F68F15A1AD79}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe => Nenhum Arquivo
FirewallRules: [{F8B0BCFE-0094-42C0-BB03-D83FEF88D7D6}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller.exe => Nenhum Arquivo
FirewallRules: [{67DE65AA-082C-4B95-8079-AD35A1B898C3}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller.exe => Nenhum Arquivo
FirewallRules: [{9DD83B58-A5CC-4E62-B61D-8D844360EC2F}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred)
FirewallRules: [{299A3166-5244-4F1E-A215-527DC77DFBA9}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred)
C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe
C:\Users\Usuario\Desktop\UltraAdwareKiller.exe
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [134]
AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [210]
AlternateDataStreams: C:\ProgramData\TEMP:D78D6FF7 [154]
CMD: ipconfig /flushdns
EmptyTemp:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B5B8FB1-07A0-43EE-BBB8-AED3BB048F06}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B5B8FB1-07A0-43EE-BBB8-AED3BB048F06}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AMDLinkUpdate" => não encontrado (a)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3979EF3D-A906-41DF-983C-29EB005D9858}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3979EF3D-A906-41DF-983C-29EB005D9858}" => removido (a) com sucesso.
C:\Windows\System32\Tasks\StartDVR => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\StartDVR" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{41E0176D-1406-4B32-8978-27D3792E6B87}" => removido (a) com sucesso.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41E0176D-1406-4B32-8978-27D3792E6B87}" => removido (a) com sucesso.
C:\Windows\System32\Tasks\StartCN => movido com sucesso
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\StartCN" => removido (a) com sucesso.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removido (a) com sucesso.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removido (a) com sucesso.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removido (a) com sucesso.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removido (a) com sucesso.
C:\Users\Usuario\AppData\Local\Microsoft\Edge\User Data\Default => movido com sucesso
HKLM\System\CurrentControlSet\Services\wuauserv => removido (a) com sucesso.
wuauserv => o serviço removido (a) com sucesso.
wuauserv => o serviço não encontrado (a).
HKLM\System\CurrentControlSet\Services\CrucialSMBusScan => removido (a) com sucesso.
CrucialSMBusScan => o serviço removido (a) com sucesso.
C:\Windows\system32\Drivers\dump_storahci.sys => movido com sucesso
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removido (a) com sucesso.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF7CF1BD-9F7E-48DE-A216-1BDD1AE2EDBA}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C01FE5A1-6FD3-42A4-BC5E-5CE610557F1B}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DFFA0B3F-3CB9-49BD-8FDC-996ED37C7CCC}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D19EDF38-7147-487C-89BB-5000F48F4745}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{52AAA61C-B0F2-4C05-A3FF-058E1CC01D3D}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1D4A2363-C8FA-4F24-B2E2-15F288FD000D}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AF28845C-9609-4BDA-BA14-E2D57AFEB064}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8A57AA4B-6AD6-45FB-8446-B3E4EEDCA341}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F85E264-4671-4F2C-AAED-38E7B2CE7DF3}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CD251D81-AF24-4603-A889-02AC7CDE48C7}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A059A70B-8B00-4690-8CBF-ED937DE151BC}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A9367D84-17A6-49BC-8440-F68F15A1AD79}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F8B0BCFE-0094-42C0-BB03-D83FEF88D7D6}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67DE65AA-082C-4B95-8079-AD35A1B898C3}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9DD83B58-A5CC-4E62-B61D-8D844360EC2F}" => removido (a) com sucesso.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{299A3166-5244-4F1E-A215-527DC77DFBA9}" => removido (a) com sucesso.
C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe => movido com sucesso
"C:\Users\Usuario\Desktop\UltraAdwareKiller.exe" => não encontrado (a)
C:\ProgramData\TEMP => ":4FC01C57" ADS removido (a) com sucesso.
C:\ProgramData\TEMP => ":B755D674" ADS removido (a) com sucesso.
C:\ProgramData\TEMP => ":D78D6FF7" ADS removido (a) com sucesso.

========= ipconfig /flushdns =========


Configura‡Æo de IP do Windows

Libera‡Æo do Cache do DNS Resolver bem-sucedida.

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 226781336 B
Java, Flash, Steam htmlcache => 660634409 B
Windows/system/drivers => 1135920 B
Edge => 0 B
Chrome => 2496572 B
Firefox => 1792985373 B
Opera => 361459364 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1931862 B
systemprofile32 => 1931862 B
LocalService => 2130698 B
NetworkService => 42890454 B
Usuario => 63776207 B

RecycleBin => 206423830 B
EmptyTemp: => 3.1 GB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 18:48:49 ====