Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 09-02-2023 01 Executado por gcero (administrador) em DESKTOP-TH9B0OM (Dell Inc. Inspiron 7520) (10-02-2023 16:52:31) Executando a partir de C:\Users\gcero\Desktop Perfis Carregados: gcero Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.2486 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserSessionAgent.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <19> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348200 2015-07-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" (Nenhum Arquivo) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" (Nenhum Arquivo) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [Arquivo não assinado] HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [5773640 2013-08-22] (Compal Electronics, Inc. -> Dell Inc.) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-10] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [ExtendScreen.exe] => C:\Users\gcero\Desktop\Monitor Hardware\en-defaultú¿Ëó+-¦µú®\ExtendScreen.exe [7174656 2022-12-07] () [Arquivo não assinado] HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4252008 2023-01-31] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1391464 2022-12-12] (Digital Wave Ltd -> Digital Wave Ltd) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [utweb] => "C:\Users\gcero\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Nenhum Arquivo) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [MicrosoftEdgeAutoLaunch_A226A5D78F2E64B75A8F7520DE803B0F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [FACEIT] => C:\Users\gcero\AppData\Local\FACEIT\update.exe [2278576 2022-11-02] (FACE IT LIMITED -> ) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-02-04] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Policies\Explorer: [] HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-03-05] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [181248 2022-02-23] (pdfforge GmbH) [Arquivo não assinado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.77\Installer\chrmstp.exe [2023-02-07] (Google LLC -> Google LLC) Startup: C:\Users\gcero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor da tecnologia Intel® Turbo Boost 2.6.lnk [2022-02-23] ShortcutTarget: Monitor da tecnologia Intel® Turbo Boost 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel(R) Software -> Intel® Corporation) GroupPolicy: Restrição ? <==== ATENÇÃO Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {013A79A9-761D-4C62-8036-A5A2D1B6CE1B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-04-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {0D639145-4571-4A16-86F5-F000555B9A1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {0F089B03-0C15-45CB-8397-F045116FBC67} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {26BA9BED-2493-400B-B462-0E5301AB105C} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-04-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {2F33C7D4-9227-4196-895D-911E0CF3410C} - System32\Tasks\GoogleUpdateTaskMachineUA{9BB3FC3F-2ED5-4682-BBA1-FD9027F2A07E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-23] (Google LLC -> Google LLC) Task: {3A0C6A2C-672C-4A13-9427-F8FBC5DF6AE9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6611EED0-254C-4FD3-8082-E02FA19C4756} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Nenhum Arquivo) Task: {6C8FF69D-8829-4532-AC86-25F2F068B2C7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004296 2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {6EB8FFA5-87A4-4B5D-A868-2C99D2E002E3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {75487E82-B17C-42D3-90F7-FF2A41B2BB56} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {7FB982AC-906E-442D-963C-55375AA28B89} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [664928 2022-11-29] (Dell Inc -> Dell Inc.) Task: {A23ABB1C-5883-4E86-8ACD-5D41CA9AF0AB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {AFC378FE-224B-424E-B9C7-46D0F72D3191} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2022-01-30] () [Arquivo não assinado] Task: {D0EA2FCA-E147-42C5-9C09-925497B133BB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {E3114A25-25D0-4F3A-8F02-A412CCC11FA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F20E5863-1526-4A3A-BF5B-AF1C66284C7A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004296 2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {F7C29A3C-F5BD-4C34-A349-878E862184B0} - System32\Tasks\GoogleUpdateTaskMachineCore{1EDDD80C-DC50-4D82-82D8-F9FB326E5E8C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-23] (Google LLC -> Google LLC) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{3deff926-ae3f-469c-85d5-b976d17640b2}: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{d07cd4b3-3a5b-4fed-9363-60f2dd900272}: [DhcpNameServer] 192.168.15.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\gcero\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-10] FireFox: ======== FF DefaultProfile: c3oc85xl.default FF ProfilePath: C:\Users\gcero\AppData\Roaming\Mozilla\Firefox\Profiles\c3oc85xl.default [2022-05-06] FF ProfilePath: C:\Users\gcero\AppData\Roaming\Mozilla\Firefox\Profiles\zear60xz.default-release [2023-02-10] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Nenhum Arquivo] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Nenhum Arquivo] Chrome: ======= CHR Profile: C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default [2023-02-10] CHR Notifications: Default -> hxxps://noticias.r7.com; hxxps://www.kabum.com.br; hxxps://www.netshoes.com.br; hxxps://www.reddit.com; hxxps://www.softonic.com.br; hxxps://www.telhanorte.com.br; hxxps://www.underarmour.com.br CHR Extension: (Just Black) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-02-23] CHR Extension: (BetterTTV) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-02-03] CHR Extension: (GamersClub Booster) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\dahnmmlhchpmmlgebpkpaofbefjdlpin [2023-02-10] CHR Extension: (Adobe Acrobat: ferramentas para editar, converter e assinar PDFs) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-02-08] CHR Extension: (App for Instagram in Browser with Direct) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\eicmpjhebninebabifciaiamcnlacagb [2022-03-08] CHR Extension: (Documentos Google off-line) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-23] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-03] CHR Extension: (Apex Screen Recorder & Screenshot Master) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\igkkmokkmlbkkgdnkkancbonkbbmkioc [2022-10-06] CHR Extension: (MetaMask) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-02-02] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\gcero\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-23] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Arquivo não assinado] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2022-09-22] (Dell Inc -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2022-09-22] (Dell Inc -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2022-09-22] (Dell Inc -> Dell Technologies Inc.) S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [47320 2022-11-18] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-08-15] (Dell Inc -> Dell) S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [462400 2022-08-30] (Digital Wave Ltd -> Digital Wave Ltd) S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [25543048 2022-11-02] (FACE IT LIMITED -> ) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-10-11] (GOG Sp. z o.o. -> GOG.com) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2022-12-06] (HP Inc. -> HP Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10172672 2023-02-04] (Logitech Inc -> Logitech, Inc.) S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2023-01-07] (Even Balance, Inc. -> ) S2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2284400 2022-05-06] (Banco Bradesco SA -> Banco Bradesco S.A.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2022-11-29] (Dell Inc -> Dell Inc.) R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [1001256 2022-09-19] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 athr; C:\Windows\System32\drivers\athw10x.sys [4316784 2015-06-16] (WDKTestCert qcaswbld,130129545209614653 -> Qualcomm Atheros Communications, Inc.) S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 DBUtilDrv2; C:\Windows\System32\drivers\DBUtilDrv2.sys [24968 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [37808 2022-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 EMACDRV; C:\Windows\System32\drivers\EMAC-Driver-x64.sys [6253456 2022-12-11] (EMAC LAB SOFTWARE LTDA -> ) R1 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [16823904 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 HWiNFO_172; C:\Users\gcero\AppData\Local\Temp\HWiNFO64A_172.SYS [56888 2023-01-31] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm)) <==== ATENÇÃO R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-11-04] (Logitech Inc -> Logitech) S3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-10-30] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-11-04] (Logitech Inc -> Logitech) R3 MpKsldb9667c4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6FEA21EF-9500-4409-8470-FFF3FAA7AB32}\MpKslDrv.sys [214280 2023-02-10] (Microsoft Windows -> Microsoft Corporation) S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [26368 2020-08-21] (Daniel Terhell -> Resplendence Software Projects Sp.) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 WinRing0_1_2_0; C:\Users\gcero\AppData\Local\Temp\tmpF04B.tmp [14544 2023-02-09] (Noriyuki MIYAZAKI -> OpenLibSys.org) <==== ATENÇÃO R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [39488 2023-02-10] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [34768 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [36768 2022-02-25] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 AIDA64Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [X] S3 iscFlash; \??\C:\Users\gcero\AppData\Local\Temp\7zS3F81.tmp\iscflashx64.sys [X] <==== ATENÇÃO ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-02-10 16:50 - 2023-02-10 16:52 - 000060968 _____ C:\Users\gcero\Desktop\Addition.txt 2023-02-10 16:49 - 2023-02-10 16:53 - 000024331 _____ C:\Users\gcero\Desktop\FRST.txt 2023-02-10 16:49 - 2023-02-10 16:52 - 000000000 ____D C:\FRST 2023-02-10 16:48 - 2023-02-10 16:48 - 002378240 _____ (Farbar) C:\Users\gcero\Desktop\FRST64.exe 2023-02-10 16:47 - 2023-02-10 16:46 - 000001651 _____ C:\Users\gcero\Desktop\AdwCleaner[C00].txt 2023-02-10 16:45 - 2023-02-10 16:46 - 000000000 ____D C:\AdwCleaner 2023-02-10 16:41 - 2023-02-10 16:41 - 008791352 _____ (Malwarebytes) C:\Users\gcero\Desktop\adwcleaner.exe 2023-02-10 16:18 - 2023-02-10 16:11 - 075563008 _____ C:\ProgramData\11571360686946872786581928 2023-02-10 16:13 - 2023-02-10 16:13 - 000000000 _____ C:\ProgramData\47105757420381299355.exe 2023-02-10 16:12 - 2023-02-10 16:12 - 002537472 _____ C:\ProgramData\29580998941599662034.exe 2023-02-10 16:09 - 2023-02-10 16:09 - 000000000 _____ C:\ProgramData\60759367890391188580.exe 2023-02-10 16:08 - 2023-02-10 16:08 - 002537472 _____ C:\ProgramData\15394743854415777080.exe 2023-02-10 16:05 - 2023-02-10 16:05 - 075530240 _____ C:\ProgramData\49308535155155010194055601 2023-02-10 15:39 - 2023-02-10 15:39 - 000002674 _____ C:\Users\gcero\Desktop\Autodesk Fusion 360.lnk 2023-02-10 15:39 - 2023-02-10 15:39 - 000000000 ____D C:\Users\gcero\Documents\Fusion 360 2023-02-10 15:39 - 2023-02-10 15:39 - 000000000 ____D C:\Users\gcero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk 2023-02-10 13:50 - 2023-02-10 14:05 - 000000000 ____D C:\Users\gcero\Downloads\makerAcademy 2023-02-10 13:48 - 2023-02-10 14:12 - 000000000 ____D C:\Users\gcero\AppData\Roaming\qBittorrent 2023-02-10 13:48 - 2023-02-10 13:49 - 000000000 ____D C:\Users\gcero\AppData\Local\qBittorrent 2023-02-10 13:48 - 2023-02-10 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2023-02-10 13:48 - 2023-02-10 13:48 - 000000000 ____D C:\Program Files\qBittorrent 2023-02-10 13:34 - 2023-02-10 13:34 - 000000000 ____D C:\Users\gcero\Downloads\Telegram Desktop 2023-02-08 11:19 - 2023-02-08 11:19 - 000000000 ____D C:\Users\gcero\Documents\Planilhas Gilsinho 2023-02-04 11:39 - 2023-02-04 11:39 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2023-02-04 11:39 - 2023-02-04 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2023-01-31 08:20 - 2023-01-31 08:21 - 001139964 _____ C:\Windows\Minidump\013123-23406-01.dmp 2023-01-31 08:20 - 2023-01-31 08:21 - 000000000 ____D C:\Windows\Minidump 2023-01-31 08:20 - 2023-01-31 08:20 - 1085946137 _____ C:\Windows\MEMORY.DMP 2023-01-31 07:50 - 2023-01-31 07:50 - 000000426 __RSH C:\ProgramData\ntuser.pol 2023-01-31 07:50 - 2023-01-31 07:50 - 000000000 ____D C:\Users\gcero\usb_driver 2023-01-30 15:13 - 2023-01-30 18:30 - 000000000 ____D C:\Users\gcero\AppData\Local\ExtendScreen 2023-01-23 17:37 - 2023-02-10 13:44 - 000000000 ____D C:\Users\gcero\AppData\Roaming\Telegram Desktop 2023-01-23 17:37 - 2023-01-23 17:37 - 000000000 ____D C:\Users\gcero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2023-01-12 11:58 - 2023-01-12 14:14 - 000223048 _____ C:\Users\gcero\Desktop\Croqui lotes.dwg 2023-01-12 11:46 - 2023-01-12 11:46 - 000000218 ____H C:\Users\gcero\Documents\Drawing1.dwl2 2023-01-12 11:46 - 2023-01-12 11:46 - 000000068 ____H C:\Users\gcero\Documents\Drawing1.dwl 2023-01-12 10:55 - 2023-01-12 14:54 - 000000132 _____ C:\Users\gcero\AppData\Roaming\Adobe PNG Format CS6 Prefs 2023-01-12 09:49 - 2023-02-10 06:48 - 000000000 ____D C:\Users\gcero\Desktop\Monitor Hardware 2023-01-11 18:19 - 2023-01-11 18:19 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2023-01-11 18:19 - 2023-01-11 18:19 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk 2023-01-11 07:23 - 2023-01-11 07:23 - 000000000 ___HD C:\$WinREAgent ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2023-02-10 16:38 - 2022-02-23 19:36 - 000000000 ____D C:\Program Files (x86)\Steam 2023-02-10 16:33 - 2022-02-25 14:03 - 000000000 ____D C:\Users\gcero\Documents\Gustavo 2023-02-10 16:18 - 2022-02-23 18:12 - 000000000 ____D C:\Program Files (x86)\Google 2023-02-10 16:06 - 2022-02-23 19:53 - 000000000 ____D C:\Users\gcero\AppData\Roaming\WhatsApp 2023-02-10 15:57 - 2022-02-24 10:09 - 000000000 ____D C:\Users\gcero\AppData\Roaming\Autodesk 2023-02-10 15:39 - 2022-02-24 10:09 - 000000000 ____D C:\Users\gcero\AppData\Local\Autodesk 2023-02-10 15:18 - 2022-02-23 17:41 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-02-10 11:13 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-02-10 06:45 - 2022-02-23 18:05 - 001742396 _____ C:\Windows\system32\PerfStringBackup.INI 2023-02-10 06:45 - 2019-12-07 11:53 - 000752782 _____ C:\Windows\system32\prfh0416.dat 2023-02-10 06:45 - 2019-12-07 11:53 - 000148896 _____ C:\Windows\system32\prfc0416.dat 2023-02-10 06:45 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2023-02-10 06:41 - 2022-05-18 07:59 - 000039488 _____ (Topaz OFD) C:\Windows\system32\Drivers\wsddfac.sys 2023-02-10 06:41 - 2022-02-23 18:19 - 000000000 __SHD C:\Users\gcero\IntelGraphicsProfiles 2023-02-10 06:41 - 2022-02-23 17:41 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-02-10 06:40 - 2022-02-23 17:40 - 000008192 ___SH C:\DumpStack.log.tmp 2023-02-09 17:59 - 2022-02-23 17:48 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2023-02-09 17:59 - 2019-12-07 06:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-02-09 17:40 - 2022-02-23 17:41 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-02-09 17:40 - 2022-02-23 17:41 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-02-09 16:46 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-02-09 16:46 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2023-02-09 14:58 - 2022-02-23 17:45 - 000000000 ____D C:\Users\gcero 2023-02-09 14:18 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2023-02-09 14:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2023-02-08 15:26 - 2022-02-25 13:36 - 000000000 ____D C:\Users\gcero\Documents\Ceron Lombardi Engenharia 2023-02-08 15:12 - 2022-02-23 17:46 - 000000000 ____D C:\Users\gcero\AppData\Local\Packages 2023-02-07 17:20 - 2022-02-23 18:13 - 000002500 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-02-07 17:20 - 2022-02-23 18:13 - 000002243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-02-07 08:25 - 2022-11-14 09:35 - 000070620 _____ C:\Users\gcero\Downloads\Despesas Mensais Geral.xlsx 2023-02-07 08:06 - 2022-12-13 21:27 - 000013189 _____ C:\Users\gcero\Desktop\Planilha itens steam.xlsx 2023-02-05 19:06 - 2022-11-04 19:13 - 000000000 ____D C:\Users\gcero\AppData\Roaming\LGHUB 2023-02-05 14:38 - 2022-07-12 18:41 - 000000000 ____D C:\Users\gcero\AppData\Local\LGHUB 2023-02-04 11:40 - 2022-10-30 12:59 - 000000000 ____D C:\Program Files\LGHUB 2023-02-04 11:29 - 2023-01-02 07:38 - 000000000 ____D C:\Users\gcero\Documents\CREA 23 2023-02-04 11:04 - 2022-04-29 16:09 - 000000000 ____D C:\Users\gcero\AppData\Local\WhatsApp 2023-02-04 09:52 - 2022-02-23 17:41 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-02-02 17:56 - 2022-02-23 18:02 - 000000000 ____D C:\Users\gcero\AppData\Local\D3DSCache 2023-02-01 15:03 - 2022-02-25 13:24 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1227366972-1033682769-3568798095-1001 2023-02-01 15:03 - 2022-02-25 13:24 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1227366972-1033682769-3568798095-1001 2023-02-01 15:03 - 2022-02-24 10:26 - 000002389 _____ C:\Users\gcero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-31 08:24 - 2022-02-23 18:13 - 000000000 ____D C:\Program Files\Google 2023-01-31 08:00 - 2022-02-24 08:38 - 000000000 ____D C:\Users\gcero\AppData\Local\ElevatedDiagnostics 2023-01-31 07:50 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2023-01-30 14:41 - 2022-03-10 15:32 - 000000000 ____D C:\Users\gcero\AppData\Local\AMD_Common 2023-01-29 08:04 - 2022-02-25 13:39 - 000057952 _____ C:\Users\gcero\Documents\Manutenção Carro- GOL.xlsx 2023-01-27 15:53 - 2022-02-23 19:53 - 000000000 ____D C:\Users\gcero\AppData\Local\SquirrelTemp 2023-01-24 09:58 - 2022-04-07 17:11 - 000000000 ____D C:\Users\gcero\Documents\Cidade 3D 2023-01-24 07:52 - 2022-02-23 18:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-01-23 19:17 - 2022-02-23 20:41 - 000000000 ____D C:\Users\gcero\AppData\Roaming\discord 2023-01-23 19:16 - 2022-02-23 20:41 - 000000000 ____D C:\Users\gcero\AppData\Local\Discord 2023-01-23 10:42 - 2022-02-25 13:40 - 000000000 ____D C:\Users\gcero\Documents\Imagens para enquadrar 2023-01-22 08:38 - 2022-03-30 08:33 - 000000000 ____D C:\Windows\system32\Tasks\HP 2023-01-22 08:38 - 2022-02-23 20:50 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-01-20 11:07 - 2022-03-31 08:59 - 000000000 ____D C:\Users\gcero\Documents\Imposto Tio 2023-01-11 14:10 - 2022-02-24 15:47 - 000561864 _____ C:\Windows\system32\FNTCACHE.DAT 2023-01-11 14:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2023-01-11 14:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2023-01-11 14:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-01-11 14:09 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2023-01-11 11:07 - 2023-01-09 06:48 - 004443172 _____ C:\Users\gcero\Desktop\ESTR_ALV_SALAO OXIMED_R01 - Compat_INST.2.dwg 2023-01-11 07:27 - 2022-02-23 17:44 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-01-11 07:23 - 2022-02-23 18:02 - 000000000 ____D C:\Windows\system32\MRT 2023-01-11 07:20 - 2022-02-23 18:02 - 150199536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Arquivos na raiz de alguns diretórios ======== 2023-02-10 16:08 - 2023-02-10 16:08 - 002537472 _____ () C:\ProgramData\15394743854415777080.exe 2023-02-10 16:12 - 2023-02-10 16:12 - 002537472 _____ () C:\ProgramData\29580998941599662034.exe 2023-02-10 16:13 - 2023-02-10 16:13 - 000000000 _____ () C:\ProgramData\47105757420381299355.exe 2023-02-10 16:09 - 2023-02-10 16:09 - 000000000 _____ () C:\ProgramData\60759367890391188580.exe 2022-09-05 10:49 - 2022-09-05 10:49 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2022-09-05 10:49 - 2022-09-05 10:49 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2022-09-05 10:49 - 2022-09-05 10:49 - 000450024 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll 2022-09-05 10:49 - 2022-09-05 10:49 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll 2022-09-05 10:49 - 2022-09-05 10:49 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2022-09-05 10:49 - 2022-09-05 10:49 - 000080880 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll 2023-01-12 10:55 - 2023-01-12 14:54 - 000000132 _____ () C:\Users\gcero\AppData\Roaming\Adobe PNG Format CS6 Prefs 2022-03-09 15:35 - 2022-03-09 15:36 - 001065984 _____ () C:\Users\gcero\AppData\Local\file__0.localstorage 2022-02-25 15:24 - 2022-02-25 15:24 - 000000000 _____ () C:\Users\gcero\AppData\Local\oobelibMkey.log 2022-03-02 18:11 - 2022-03-02 18:11 - 000007605 _____ () C:\Users\gcero\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================