Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 11.02.2024 Executado por Batman (administrador) em DESKTOP-2HFTGQ6 (ASUS System Product Name) (16-02-2024 02:21:40) Executando a partir de C:\Users\danie\Desktop\FRST64.exe Perfis Carregados: Batman & SQLTELEMETRY & MSSQLSERVER Plataforma: Microsoft Windows 10 Pro Versão 22H2 19045.4046 (X64) Idioma: Português (Brasil) Navegador padrão: Brave Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe (C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.0.1.266_0\DiscoverySrv.exe (C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe (C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdwtxag.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <2> (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe (C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (OldTimer Tools) [Arquivo não assinado] D:\Downloads\OTL.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\Trend Micro\HouseCall\housecall.bin ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\HouseCall\HouseCallX_x64\HouseCallX.exe (explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <13> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) () [Arquivo não assinado] C:\Program Files (x86)\MySQL\MySQL Server 5.7\bin\mysqld.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\11.0.0.4854\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQL\Binn\sqlceip.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQL\Binn\sqlservr.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpDefenderCoreService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8f4dab92e290c42d\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_197c8c184d9f8b39\RtkAudUService64.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\HouseCall\housecall.bin ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_197c8c184d9f8b39\RtkAudUService64.exe [1263160 2021-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.165\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10928152 2024-02-14] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1067296 2024-01-23] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1823560 2022-08-29] (LG Electronics Inc. -> LG Electronics Inc.) HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [555832 2017-01-06] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-07-30] (Adobe Inc. -> ) HKLM\...\RunOnce: [AvRepair] => "C:\Program Files\Avast Software\Avast\setup\instup.exe" /instop:repair /wait (Nenhum Arquivo) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restrição <==== ATENÇÃO HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [TabletDriver] => C:\Huion Tablet\x64\TabletDriverCore.exe [321256 2020-06-29] (Shenzhen Huion Animation Technology Co.,LTD -> ) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [24017552 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788856 2024-02-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4388200 2024-01-12] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [RiotClient] => D:\Games\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (Nenhum Arquivo) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [faka] => C:\Users\danie\AppData\Roaming\kdbaf\faka.exe [486400 2023-09-27] (Microsoft Corporation) [Arquivo não assinado] HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37371856 2024-02-08] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1256111066-4256309223-2006829380-1001\...\Policies\Explorer: [NoAdPrinter] 0 HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.165\Installer\chrmstp.exe [2024-02-14] (Brave Software, Inc. -> Brave Software, Inc.) IFEO\osppsvc.exe: [VerifierDlls] IFEO\SppExtComObj.exe: [VerifierDlls] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2021-06-01] ShortcutTarget: Huion Tablet.lnk -> C:\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> ) ==================== Tarefas Agendadas (Whitelisted) ================= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {7B57DC7C-3856-4204-A164-2EF1FCBF9E68} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [682008 2021-03-30] (Zemana D.O.O. Sarajevo -> Zemana Ltd.) Task: {54569724-F379-44AA-B895-9398ADF11F75} - System32\Tasks\AMSkipUAC => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [682008 2021-03-30] (Zemana D.O.O. Sarajevo -> Zemana Ltd.) Task: {45784502-A61D-4D55-9294-F0470B9F74C2} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [104088 2021-06-10] (ASUSTeK Computer Inc. -> ASUS) Task: {4118209C-A832-44AD-B0AC-FB56D8275636} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2200656 2021-06-10] (ASUSTeK Computer Inc. -> ASUS) Task: {11DCA4C7-3340-4BB2-B536-0012D5E38E1C} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d77e286534b002 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-07-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {9CB51B22-B91F-4167-B0A7-779591276079} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-07-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {ECFCCD07-FB7F-4B80-9750-8678AF0E35E5} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45585520 2021-03-29] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {1D864B50-4DF9-4AA9-9F97-5A46CF10B8D9} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Nenhum Arquivo) Task: {B522A473-E25E-4A4C-A117-04D5F28C90C3} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.266_0\WatchDog.exe [1111184 2023-12-12] (Bitdefender SRL -> Bitdefender) Task: {5AE1F53F-0969-4E35-9DAA-47A98546CB24} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{74642635-5B67-49CB-8C8B-7555FBAF47AD} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-14] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {E5274FA0-95A0-4A91-8262-22460E76862A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{E0EAB632-5F82-48E6-A2F9-5416906786CC} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-14] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {9D33499A-BCB2-4F3D-8D12-6B1D6D55ECF6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5577144 2024-02-14] (Microsoft Windows -> Microsoft Corporation) Task: {73C09162-1A4F-4297-A8E0-67552B27BAED} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\danie\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-15] (ESET, spol. s r.o. -> ESET) Task: {47A37328-8234-40E4-A1AC-B56587DD26F6} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\danie\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2024-02-15] (ESET, spol. s r.o. -> ESET) Task: {84E61A4D-BED4-4C96-92AB-DF414392F7C1} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {83EA2A2F-79A1-476D-8EBA-CAB933C1673F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-10-09] () [Arquivo não assinado] Task: {51035185-5222-4566-99B2-AA51B048FCD4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {FAC40F4C-E70B-4A2C-9814-E9D83A4BC555} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {26B67709-D54E-4C9E-ABA8-761CD36EBDE3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {2A9830D0-6BD4-44FA-9923-1737355EBCA4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {7D1ACF0A-CEFE-4CA4-912D-7B620BDBC1B4} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [253368 2023-05-17] (Microsoft Corporation -> Microsoft) Task: {4F928B88-6099-42C1-AF59-81C01BFACAE2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpCmdRun.exe [1646000 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {50F0ECBB-7163-4887-B41F-6B1DFEC1DFC4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpCmdRun.exe [1646000 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8A69B60D-F4ED-40D0-8D4B-527837602DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpCmdRun.exe [1646000 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BA69AF33-A0F2-4A3F-AEC9-19C63E0767C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpCmdRun.exe [1646000 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {335FD08E-92D5-4844-B698-E0EC34F1E629} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [53800 2017-08-18] (Oracle America, Inc. -> Oracle Corporation) Task: {8EEBF616-D8C0-4769-8B8D-6B85BB157EC4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {D9F4F5C7-2FF5-4BBD-80E8-16E39D71FE5F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {33F81738-8F94-4CF0-AC1C-2DB522B88E88} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {64C879DA-F67C-43BE-8C0A-9B023BE1B936} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FCC4C199-7408-40B0-8D3E-A122595CFB56} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {45FE23B5-443E-47B3-BD0F-6F121755CC5D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1CC01655-FB25-4753-8C8F-F00A9D012C42} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9C78C483-6DFF-4BBD-9C4E-24FFBB18168A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CFA42093-D5A6-4293-ADE8-9931732FA8C2} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CCE19AFC-DB53-490D-9390-392FA6B00812} - System32\Tasks\Opera scheduled assistant Autoupdate 1644941715 => C:\Users\danie\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\danie\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {816FF38A-7C6C-4C21-B99A-9508CA841E86} - System32\Tasks\Opera scheduled Autoupdate 1644941713 => C:\Users\danie\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo) Task: {D6FCEF6E-DFBE-4E3B-A4B8-F1A897634D53} - System32\Tasks\update-S-1-5-21-1256111066-4256309223-2006829380-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {FF92DB56-EEA4-4CD2-A403-92501E85C688} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe Task: C:\Windows\Tasks\update-S-1-5-21-1931017636-3512210810-3106789761-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: O arquivo Hosts não foi detectado no seu diretório padrão Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{8a8d15ec-5ba1-4002-9e1e-d173cb5806cf}: [DhcpNameServer] 192.168.15.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-16] Edge DownloadDir: Default -> D:\Downloads Edge Notifications: Default -> hxxps://newssysstem.net; hxxps://pngio.com; hxxps://pomofocus.io; hxxps://www10.todhamilton.pro Edge StartupUrls: Default -> "hxxps://letgodbetrue.com/proverbios/index/proverbios-por-capitulo/" Edge Extension: (MetaMask) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejbalbakoplchlghecdalmeeeajnimhm [2024-02-08] Edge Extension: (Documentos Google off-line) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-23] Edge Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-02-08] Edge Extension: (Edge relevant text changes) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2022-03-23] Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl] FireFox: ======== FF DefaultProfile: 2gsbv9xz.default FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\2gsbv9xz.default [2023-09-24] FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\m1ciirth.default-release [2024-02-16] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext [2024-01-30] [] [não assinado] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] Opera: ======= OPR Profile: C:\Users\danie\AppData\Roaming\Opera Software\Opera Stable [2022-02-15] Brave: ======= BRA Profile: C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-02-16] BRA DownloadDir: D:\Downloads BRA Notifications: Default -> hxxps://pomofocus.io BRA DefaultSearchKeyword: Default -> :g BRA Extension: (Google Tradutor) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-09-18] BRA Extension: (Torrent Scanner) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-08] BRA Extension: (uBlock Origin) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-01-16] BRA Extension: (Documentos Google off-line) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10] BRA Extension: (Antitracker da Bitdefender) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2024-02-16] BRA Extension: (vidIQ Vision for YouTube) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2024-02-14] BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-02-10] BRA Extension: (Brave Local Data Files Updater) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-02-15] BRA Extension: (Brave NTP background images) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-01-31] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-02-16] BRA Extension: (Brave NTP sponsored images) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\bpndlkddhgpmjengabcakadpcabgflca [2024-02-16] BRA Extension: (Wallet Data Files Updater) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-22] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-02-16] BRA Extension: (Brave Ads Resources) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\fbpmbjccnaaeogogeldlomcmlhllgaje [2024-02-14] BRA Extension: (Brave Ads Resources) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\fimpfhgllgkaekhbpkakjchdogecjflf [2024-01-25] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-07] BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-02-16] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese (plaintext))) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\meimhmgfbckapkbbbdaoefgnbppmkodp [2024-02-15] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-01-25] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\danie\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-24] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2020-11-17] (Autodesk, Inc. -> Autodesk) S2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-07-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-07-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-02-16] (ASUSTeK Computer Inc. -> ) R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [152312 2019-08-20] (Microsoft Windows -> Microsoft Corporation) R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [840552 2024-01-23] (Bitdefender SRL -> Bitdefender) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [840552 2024-01-23] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [840552 2024-01-23] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2963856 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2574864 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [840552 2024-01-23] (Bitdefender SRL -> Bitdefender) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2023-08-02] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-14] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-14] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.165\brave_vpn_helper.exe [2806296 2024-02-14] (Brave Software, Inc. -> Brave Software, Inc.) S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.165\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10928152 2024-02-14] (Brave Software, Inc. -> Brave Software, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14045768 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-04-30] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-12-08] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.) S2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MpDefenderCoreService.exe [1427000 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [722848 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) R2 MySQL57; C:\Program Files (x86)\MySQL\MySQL Server 5.7\bin\mysqld.exe [35161600 2017-09-13] () [Arquivo não assinado] S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-10-12] (Even Balance, Inc. -> ) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [686032 2023-12-12] (Bitdefender SRL -> Bitdefender) R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-13] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [726952 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) R2 SQLTELEMETRY; C:\Program Files\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQL\Binn\sqlceip.exe [300968 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [282728 2024-01-23] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [840552 2024-01-23] (Bitdefender SRL -> Bitdefender) S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142304 2022-06-01] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\NisSrv.exe [3191256 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.7-0\MsMpEng.exe [133688 2024-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) S2 Autodesk Access Service Host; "C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe" [X] S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.165\elevation_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8f4dab92e290c42d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8f4dab92e290c42d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [30528 2020-09-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2024-02-15] (Zemana D.O.O. Sarajevo -> Copyright 2018.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-06-01] (ASUSTeK Computer Inc. -> ) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> ) R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> ) R1 atc; C:\Windows\System32\DRIVERS\atc.sys [6611008 2023-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [800168 2023-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [24568 2023-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) S3 bdprivmon; C:\Windows\system32\DRIVERS\bdprivmon.sys [49200 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL) S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [39840 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R1 cupdbdrv; C:\Windows\System32\drivers\cupdbdrv.sys [89808 2019-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1347496 2023-07-12] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S3 HidGuardian; C:\Windows\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) R2 Ignisv2; C:\Windows\system32\DRIVERS\ignisv2.sys [165312 2023-08-06] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation) S4 RsFx0700; C:\Windows\System32\DRIVERS\RsFx0700.sys [298392 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [629184 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [24064 2020-12-08] (Microsoft Corporation) [Arquivo não assinado] R3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S3 vjoy; C:\Windows\System32\drivers\vjoy.sys [67448 2019-07-14] (On-site Dental Systems (Justin Shafer) -> Shaul Eizikovich) R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [520144 2023-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [21040 2024-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [608648 2024-02-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-02-10] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2022-05-11] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-05-11] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2021-08-16] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) U1 aswbdisk; não ImagePath S3 hsstap; \SystemRoot\System32\drivers\hsstap.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-02-16 02:21 - 2024-02-16 02:22 - 000040990 _____ C:\Users\danie\Desktop\FRST.txt 2024-02-16 02:12 - 2024-02-16 02:12 - 000700204 _____ C:\ProgramData\cl.1708060227.bdinstall.v2.bin 2024-02-16 02:12 - 2024-02-16 02:12 - 000126564 _____ C:\ProgramData\cl.kit.1708060226.bdinstall.v2.bin 2024-02-16 02:12 - 2024-02-16 02:12 - 000002464 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk 2024-02-16 02:12 - 2024-02-16 02:12 - 000002385 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\Windows\system32\elambkup 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\ProgramData\Gemma 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\ProgramData\BDLogging 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\ProgramData\Atc 2024-02-16 02:12 - 2024-02-16 02:12 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2024-02-16 02:11 - 2024-02-16 02:11 - 000000000 ____D C:\Users\danie\AppData\Roaming\Bitdefender Security App 2024-02-16 02:11 - 2024-02-16 02:11 - 000000000 ____D C:\Users\danie\AppData\Roaming\Bitdefender 2024-02-16 02:11 - 2024-02-16 02:11 - 000000000 ____D C:\ProgramData\Bitdefender 2024-02-16 02:11 - 2024-02-16 02:11 - 000000000 ____D C:\Program Files\Bitdefender 2024-02-16 02:10 - 2024-02-16 02:11 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2024-02-16 02:10 - 2024-02-16 02:10 - 000000036 _____ C:\Users\danie\AppData\Local\housecall.guid.cache 2024-02-16 02:10 - 2024-02-16 02:10 - 000000000 ____D C:\Program Files\Trend Micro 2024-02-16 02:09 - 2024-02-16 02:09 - 000157600 _____ C:\ProgramData\agent.1708060147.bdinstall.v2.bin 2024-02-16 02:09 - 2024-02-16 02:09 - 000091316 _____ C:\ProgramData\agent.update.1708060178.bdinstall.v2.bin 2024-02-16 02:09 - 2024-02-16 02:09 - 000003854 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2024-02-16 02:09 - 2024-02-16 02:09 - 000000000 ____D C:\Users\danie\AppData\Local\Bitdefender 2024-02-16 02:09 - 2024-02-16 02:09 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2024-02-16 02:09 - 2024-02-16 02:09 - 000000000 ____D C:\Program Files\Bitdefender Agent 2024-02-16 02:08 - 2024-02-16 02:07 - 000263576 _____ (AVAST Software) C:\Users\danie\Desktop\avast_free_antivirus_setup_online (1).exe 2024-02-16 01:57 - 2024-02-16 01:57 - 000000008 _____ C:\ProgramData\ntuser.pol 2024-02-16 01:54 - 2024-02-16 01:10 - 002389504 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe 2024-02-16 01:02 - 2024-02-16 01:02 - 000003860 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn 2024-02-16 01:02 - 2024-02-16 01:02 - 000003418 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime 2024-02-15 22:41 - 2024-02-15 22:52 - 000000000 ____D C:\ProgramData\HitmanPro 2024-02-15 22:35 - 2024-02-15 22:35 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-02-15 22:34 - 2024-02-15 22:53 - 000012946 _____ C:\Users\danie\Desktop\Rkill.txt 2024-02-15 22:24 - 2024-02-15 21:49 - 000264088 _____ (AVAST Software) C:\Users\danie\Desktop\avast_free_antivirus_setup_online.exe 2024-02-15 22:11 - 2024-02-16 01:55 - 000000000 ____D C:\ProgramData\Emsisoft 2024-02-15 22:11 - 2024-02-15 22:27 - 000000000 ____D C:\EEK 2024-02-15 22:00 - 2024-02-15 22:00 - 000002684 _____ C:\Windows\system32\Tasks\AMSkipUAC 2024-02-15 21:59 - 2024-02-16 02:23 - 000326966 _____ C:\Windows\ZAM.krnl.trace 2024-02-15 21:59 - 2024-02-16 02:02 - 000000000 ____D C:\Users\danie\AppData\Local\AMSDK 2024-02-15 21:59 - 2024-02-15 21:59 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys 2024-02-15 21:59 - 2024-02-15 21:59 - 000003560 _____ C:\Windows\system32\Tasks\AMHelper 2024-02-15 21:59 - 2024-02-15 21:59 - 000001340 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk 2024-02-15 21:59 - 2024-02-15 21:59 - 000000000 ____D C:\Users\danie\AppData\Local\Zemana 2024-02-15 21:59 - 2024-02-15 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware 2024-02-15 21:59 - 2024-02-15 21:59 - 000000000 ____D C:\Program Files (x86)\Zemana 2024-02-15 21:54 - 2024-02-15 21:54 - 000000000 ____D C:\ProgramData\SUPERSetup 2024-02-15 21:51 - 2024-02-15 22:31 - 000001283 _____ C:\Users\danie\Desktop\ESET Online Scanner.lnk 2024-02-15 21:49 - 2024-02-15 22:35 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-02-15 21:49 - 2024-02-15 22:34 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-02-15 20:17 - 2024-02-16 01:56 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2024-02-15 18:33 - 2024-02-15 18:33 - 000004040 _____ C:\Windows\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-1256111066-4256309223-2006829380-1001_4 2024-02-14 18:56 - 2024-02-14 19:02 - 000000000 ____D C:\Users\danie\AppData\Roaming\Godot 2024-02-14 18:56 - 2024-02-14 18:57 - 000000000 ____D C:\Users\danie\AppData\Local\Godot 2024-02-14 18:52 - 2024-02-14 18:52 - 000000000 ____D C:\Users\danie\AppData\LocalLow\DefaultCompany 2024-02-14 18:51 - 2024-02-14 18:51 - 000000000 ____D C:\Users\danie\AppData\Local\plastic4 2024-02-14 18:49 - 2024-02-14 18:54 - 000000000 ____D C:\Users\danie\My project 2024-02-14 18:49 - 2024-02-14 18:54 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Unity 2024-02-14 18:49 - 2024-02-14 18:52 - 000000000 ____D C:\Users\danie\AppData\Roaming\Unity 2024-02-14 18:42 - 2024-02-14 18:42 - 000000000 ____D C:\ProgramData\Unity 2024-02-14 18:34 - 2024-02-14 18:58 - 000000000 ____D C:\Users\danie\AppData\Roaming\UnityHub 2024-02-14 18:34 - 2024-02-14 18:50 - 000000000 ____D C:\Users\danie\AppData\Local\Unity 2024-02-14 18:33 - 2024-02-14 18:58 - 000000000 ____D C:\Program Files\Unity Hub 2024-02-14 18:33 - 2024-02-14 18:33 - 000000000 ____D C:\Users\danie\AppData\Local\unityhub-updater 2024-02-14 18:12 - 2024-02-14 18:12 - 000019697 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-02-14 18:12 - 2024-02-14 18:12 - 000019697 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2024-02-14 18:02 - 2024-02-14 18:02 - 000000000 ___HD C:\$WinREAgent 2024-02-13 09:45 - 2024-02-13 13:45 - 068614116 _____ C:\Users\danie\Desktop\Illustration.clip 2024-02-13 09:36 - 2024-02-13 09:36 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2024-02-13 09:27 - 2024-02-13 09:55 - 000000000 __SHD C:\ProgramData\SystemPropertiesDataExecutionPrevention 2024-02-13 09:27 - 2024-02-13 09:27 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2024-02-13 09:25 - 2024-02-13 09:25 - 000000000 ____D C:\Users\danie\AppData\Roaming\Koma 2024-02-13 09:25 - 2024-02-13 09:25 - 000000000 ____D C:\ProgramData\Canon_Inc_IC 2024-02-10 22:42 - 2024-02-11 16:00 - 000000000 ____D C:\Users\danie\Documents\Euro Truck Simulator 2 2024-02-08 19:22 - 2024-02-08 19:22 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Simogo 2024-02-06 19:30 - 2024-02-06 19:30 - 000000000 ____D C:\Program Files\Speccy 2024-02-04 00:01 - 2024-02-04 00:01 - 000000000 ____D C:\Users\danie\AppData\LocalLow\KojimaProductions 2024-02-03 22:48 - 2024-02-03 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Central de Traduções 2024-02-03 22:40 - 2024-02-03 22:40 - 000000000 ____D C:\Users\danie\AppData\Local\TangoGameworks 2024-01-26 22:54 - 2024-01-26 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 3 2024-01-26 22:06 - 2024-01-26 22:06 - 000000000 ____D C:\Users\danie\AppData\Roaming\IO Interactive 2024-01-26 17:08 - 2024-01-26 17:09 - 000000000 ____D C:\Riot Games 2024-01-24 12:15 - 2024-02-10 10:26 - 000000000 ____D C:\Users\danie\Desktop\Nova pasta 2024-01-21 10:59 - 2024-01-21 11:01 - 000000000 ____D C:\Users\danie\AppData\Local\Pal 2024-01-19 19:02 - 2024-01-19 19:02 - 000000000 ____D C:\Users\danie\AppData\Local\Lossless Scaling 2024-01-17 16:45 - 2024-01-17 16:45 - 000000000 ____D C:\Windows\SysWOW64\UpdatableUi 2024-01-12 18:53 - 2024-01-12 18:53 - 000000000 ____D C:\Users\danie\Documents\League of Legends 2024-01-10 12:23 - 2024-01-10 12:23 - 000000000 ____D C:\Users\danie\AppData\Roaming\Steam 2024-01-08 19:25 - 2024-01-08 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Age - Inquisition 2024-01-05 11:39 - 2024-01-05 11:39 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Eremite Games 2024-01-05 11:39 - 2024-01-05 11:39 - 000000000 ____D C:\Users\danie\AppData\Local\AWSToolkit 2024-01-04 09:19 - 2024-01-04 09:19 - 000000000 ____D C:\Users\danie\AppData\Local\Sunset 2024-01-03 19:03 - 2024-01-03 19:03 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2024-01-03 19:03 - 2024-01-03 19:03 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2024-01-03 19:03 - 2024-01-03 19:03 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2024-01-03 19:03 - 2024-01-03 19:03 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2024-01-03 19:03 - 2024-01-03 19:03 - 000000000 ____D C:\Program Files (x86)\OpenAL 2023-12-30 19:54 - 2023-12-30 19:56 - 000000000 ____D C:\Users\danie\AppData\Local\ItTakesTwo 2023-12-28 20:31 - 2023-12-28 20:31 - 000000000 ____D C:\Program Files (x86)\Tribo Gamer 2023-12-27 14:30 - 2023-12-27 14:30 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Acid Wizard Studio 2023-12-27 14:19 - 2023-12-27 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2023-12-27 14:18 - 2023-12-27 14:19 - 000000000 ____D C:\Program Files\qBittorrent 2023-12-24 15:39 - 2023-12-24 15:39 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Team 17 Digital ltd_ 2023-12-24 15:25 - 2023-12-24 15:25 - 000000000 ____D C:\Users\danie\AppData\Roaming\DSDCS 2023-12-24 15:22 - 2023-12-24 15:30 - 000000000 ____D C:\Users\danie\AppData\Roaming\InputMapper 2023-12-24 15:22 - 2023-12-24 15:22 - 000000000 ____D C:\Users\danie\AppData\Local\Geckofx 2023-12-24 15:22 - 2023-12-24 15:22 - 000000000 ____D C:\ProgramData\Caphyon 2023-12-24 15:22 - 2023-12-24 15:22 - 000000000 ____D C:\Program Files (x86)\DSDCS 2023-12-24 14:59 - 2023-12-24 15:47 - 000000000 ____D C:\x360ce 2023-12-24 14:47 - 2023-12-24 14:47 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Ghost Town Games 2023-12-24 14:33 - 2024-02-09 22:38 - 000000000 ____D C:\Program Files\Epic Games 2023-12-24 14:22 - 2023-12-24 14:46 - 000000000 ____D C:\Users\danie\AppData\Local\EpicGamesLauncher 2023-12-24 14:20 - 2023-12-24 14:20 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2023-12-22 20:14 - 2023-12-22 20:15 - 001236044 _____ C:\Windows\Minidump\122223-23187-01.dmp 2023-12-22 20:14 - 2023-12-22 20:14 - 1359251732 _____ C:\Windows\MEMORY.DMP 2023-12-13 21:59 - 2023-12-13 21:59 - 000000000 ____D C:\Windows\InboxApps 2023-12-13 10:07 - 2023-12-13 10:07 - 000000000 ____D C:\Users\danie\.librarymanager 2023-12-11 10:25 - 2023-12-11 10:25 - 000000000 ____D C:\Program Files\Sublime Text 3 2023-12-09 09:00 - 2023-12-09 09:00 - 000000000 ____D C:\Users\danie\AppData\Local\CD Projekt Red 2023-12-08 10:36 - 2023-12-08 10:36 - 000000000 ____D C:\Users\danie\AppData\Local\Embark 2023-12-08 10:30 - 2023-12-08 10:30 - 000000000 ____D C:\Users\danie\AppData\Local\AnybrainSDK 2023-12-05 14:31 - 2023-12-05 14:34 - 000000000 ____D C:\Users\danie\AppData\Local\Blisk 2023-12-05 13:20 - 2023-12-05 13:20 - 000000000 ____D C:\Users\danie\Documents\OpenIV 2023-12-05 12:51 - 2023-12-05 14:23 - 000000000 ____D C:\Users\danie\AppData\Local\New Technology Studio 2023-12-05 02:49 - 2023-12-05 14:26 - 000000000 ____D C:\Program Files\Rockstar Games 2023-12-05 02:49 - 2023-12-05 14:23 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2023-12-04 15:09 - 2023-12-04 15:09 - 000000000 ____D C:\Users\danie\.m2 2023-12-04 14:55 - 2023-12-04 17:12 - 000000000 ____D C:\Users\danie\.android 2023-12-04 11:24 - 2023-12-20 20:31 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2023-12-04 11:24 - 2023-12-04 11:24 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2023-12-04 11:24 - 2023-12-04 11:24 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2023-12-03 21:01 - 2023-12-03 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia II Definitive Edition 2023-11-29 12:01 - 2023-11-29 12:01 - 000000000 ____D C:\Users\danie\Documents\NeocoreGames 2023-11-24 12:07 - 2023-11-26 23:00 - 000000000 ____D C:\Users\danie\Documents\Battlefield V 2023-11-24 12:07 - 2023-11-24 12:07 - 000000000 ____D C:\Users\danie\AppData\Local\Battlefield V 2023-11-21 22:47 - 2023-11-21 22:47 - 000000000 ____D C:\ProgramData\Blizzard Entertainment 2023-11-21 22:46 - 2023-11-21 22:46 - 000000000 ____D C:\Users\danie\Documents\Diablo IV 2023-11-18 18:18 - 2023-11-18 18:18 - 000000000 ____D C:\Users\danie\AppData\LocalLow\Free Lives 2023-11-18 15:09 - 2023-11-18 15:09 - 000000000 ____D C:\Users\danie\Documents\Streets of Rage 4 Save and Config 2023-11-18 15:08 - 2023-11-18 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streets of Rage 4 Mr X Nightmare ==================== Três meses (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-02-16 02:22 - 2023-10-13 17:31 - 000000000 ____D C:\FRST 2024-02-16 02:12 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2024-02-16 02:12 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2024-02-16 02:09 - 2021-05-30 13:41 - 000000000 ____D C:\ProgramData\NVIDIA 2024-02-16 02:05 - 2021-12-17 05:19 - 000000000 ____D C:\Windows\SystemTemp 2024-02-16 02:04 - 2023-10-13 17:31 - 000000000 __SHD C:\Program Files (x86)\IObit 2024-02-16 02:04 - 2022-10-22 17:27 - 000000000 ____D C:\Users\danie\AppData\Roaming\IObit 2024-02-16 02:02 - 2023-08-09 09:11 - 000004918 _____ C:\GetDeviceStatus.xml 2024-02-16 02:02 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-02-16 02:01 - 2021-07-20 12:45 - 000880672 _____ C:\Windows\system32\wpbbin.exe 2024-02-16 02:01 - 2021-07-20 12:45 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe 2024-02-16 02:01 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2024-02-16 02:01 - 2019-12-07 04:19 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-02-16 02:01 - 2019-12-07 04:17 - 000008192 ___SH C:\DumpStack.log.tmp 2024-02-16 01:55 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-02-16 01:51 - 2023-08-12 07:44 - 000000228 _____ C:\SetMatrixLEDScript.xml 2024-02-16 01:51 - 2023-08-11 13:48 - 000000200 _____ C:\QueryAllDevice.xml 2024-02-16 01:51 - 2023-08-11 13:48 - 000000066 _____ C:\GetDeviceCap.xml 2024-02-16 01:01 - 2019-12-07 04:17 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-02-15 22:43 - 2021-05-30 19:47 - 000000000 ____D C:\Windows\pss 2024-02-15 22:34 - 2023-10-13 17:31 - 000000000 __SHD C:\Program Files\Malwarebytes 2024-02-15 22:31 - 2023-10-14 13:16 - 000001389 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2024-02-15 22:30 - 2021-05-31 10:35 - 000000000 ____D C:\Users\danie\AppData\Local\CrashDumps 2024-02-15 20:19 - 2023-08-08 11:01 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Outlook 2024-02-15 20:17 - 2023-08-07 10:18 - 000000000 ____D C:\Users\danie\AppData\Local\Rufus 2024-02-15 20:15 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-02-15 20:15 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2024-02-15 20:12 - 2019-12-07 04:40 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache 2024-02-15 19:25 - 2023-10-14 09:42 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll 2024-02-15 19:25 - 2023-10-14 09:42 - 000000000 ____D C:\Program Files\Common Files\AVG 2024-02-15 12:21 - 2023-09-16 11:31 - 000000000 ____D C:\Users\danie\AppData\Roaming\qBittorrent 2024-02-15 12:19 - 2021-06-19 12:44 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Word 2024-02-15 11:30 - 2021-06-19 13:02 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Excel 2024-02-15 10:39 - 2021-07-21 09:08 - 000000000 ____D C:\Program Files\ASUS 2024-02-15 09:31 - 2022-02-07 08:58 - 000000000 ____D C:\Users\danie\AppData\Roaming\Code 2024-02-14 20:32 - 2022-12-14 06:40 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2024-02-14 18:49 - 2019-12-07 04:38 - 000000000 ____D C:\Users\danie 2024-02-14 18:44 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2024-02-14 18:35 - 2019-12-07 04:38 - 000000000 ___SD C:\Users\danie\AppData\Roaming\Microsoft\Credentials 2024-02-14 18:29 - 2019-12-07 11:54 - 000926212 _____ C:\Windows\system32\prfh0416.dat 2024-02-14 18:29 - 2019-12-07 11:54 - 000225152 _____ C:\Windows\system32\prfc0416.dat 2024-02-14 18:29 - 2019-12-07 04:39 - 002217580 _____ C:\Windows\system32\PerfStringBackup.INI 2024-02-14 18:25 - 2019-12-07 04:17 - 000451776 _____ C:\Windows\system32\FNTCACHE.DAT 2024-02-14 18:16 - 2020-12-08 20:56 - 000000000 ___SD C:\Windows\system32\AppV 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\appraiser 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2024-02-14 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2024-02-14 18:12 - 2019-12-07 04:21 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-02-14 18:12 - 2019-12-07 04:16 - 000416284 __RSH C:\bootmgr 2024-02-14 18:06 - 2022-06-08 20:06 - 000000000 ____D C:\Users\danie\AppData\Roaming\discord 2024-02-14 17:49 - 2022-09-16 14:03 - 000000000 ____D C:\Users\danie\AppData\Local\Discord 2024-02-14 10:21 - 2021-05-30 15:01 - 000000000 ____D C:\Windows\system32\MRT 2024-02-14 10:21 - 2021-05-30 14:59 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-02-13 20:49 - 2023-06-25 10:37 - 000000000 ____D C:\Program Files (x86)\Steam 2024-02-13 09:54 - 2023-10-13 17:31 - 000000000 __SHD C:\Program Files\Common Files\AV 2024-02-13 09:53 - 2019-12-07 04:40 - 000000000 ____D C:\Users\danie\AppData\Local\VirtualStore 2024-02-13 09:44 - 2021-05-30 21:31 - 000000000 ____D C:\Users\danie\AppData\Roaming\vlc 2024-02-12 19:50 - 2021-08-10 20:04 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2024-02-10 15:50 - 2021-08-10 20:03 - 000000000 ____D C:\Users\danie\AppData\Local\Steam 2024-02-10 14:48 - 2022-08-29 20:04 - 000000000 ____D C:\ProgramData\Riot Games 2024-02-10 10:00 - 2019-12-07 04:19 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-02-09 22:44 - 2021-05-30 13:24 - 000918944 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2024-02-09 17:56 - 2021-12-12 19:32 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1256111066-4256309223-2006829380-1001 2024-02-09 17:56 - 2021-07-27 10:09 - 000003382 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1256111066-4256309223-2006829380-1001 2024-02-09 17:56 - 2021-06-19 12:37 - 000002396 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-02-09 11:20 - 2019-12-07 04:22 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-02-02 19:31 - 2021-06-19 12:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-02-02 12:06 - 2019-12-07 04:40 - 000000000 ____D C:\Users\danie\AppData\Local\Packages 2024-01-30 20:13 - 2019-12-07 04:22 - 000003674 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-01-30 20:13 - 2019-12-07 04:22 - 000003550 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-01-27 15:15 - 2021-07-03 19:35 - 000000000 ____D C:\Users\danie\AppData\Roaming\DS4Windows 2024-01-26 22:57 - 2023-06-29 17:30 - 000000000 ____D C:\Users\danie\AppData\Roaming\Goldberg SteamEmu Saves 2024-01-26 22:54 - 2021-07-03 19:26 - 000000000 ___HD C:\Windows\msdownld.tmp 2024-01-26 22:54 - 2021-07-03 19:26 - 000000000 ____D C:\Windows\SysWOW64\directx 2024-01-26 17:09 - 2022-08-29 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-01-23 09:49 - 2021-06-19 12:44 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Office 2024-01-19 14:03 - 2021-06-04 17:43 - 000000000 ____D C:\Users\danie\AppData\Local\UnrealEngine 2024-01-19 12:44 - 2022-10-21 18:55 - 000095736 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2024-01-19 12:44 - 2022-10-21 18:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2024-01-19 12:44 - 2022-01-15 12:13 - 002754152 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2024-01-19 12:43 - 2023-09-13 19:46 - 000263672 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_3.dll 2024-01-19 12:43 - 2022-01-15 12:13 - 000145000 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2024-01-19 12:40 - 2022-01-15 12:13 - 000644600 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2024-01-19 12:40 - 2022-01-15 12:13 - 000214632 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2024-01-19 12:40 - 2022-01-15 12:13 - 000194040 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll ==================== Arquivos na raiz de alguns diretórios ======== 2024-02-13 09:27 - 2024-02-13 09:27 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000450024 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2024-02-13 09:27 - 2024-02-13 09:27 - 000080880 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll 2022-02-07 08:52 - 2022-02-07 09:09 - 000000078 _____ () C:\Users\danie\AppData\Roaming\.flutter 2022-02-07 08:52 - 2022-02-25 15:41 - 000000076 _____ () C:\Users\danie\AppData\Roaming\.flutter_tool_state 2023-03-10 20:28 - 2023-03-10 20:28 - 000208896 _____ () C:\Users\danie\AppData\Roaming\emp.bin 2024-02-16 02:10 - 2024-02-16 02:10 - 000000036 _____ () C:\Users\danie\AppData\Local\housecall.guid.cache 2023-07-28 18:58 - 2023-07-28 19:29 - 000000032 _____ () C:\Users\danie\AppData\Local\MapStructure.cache 2022-02-15 13:14 - 2022-03-06 16:17 - 000016438 _____ () C:\Users\danie\AppData\Local\partner.bmp 2021-06-03 19:05 - 2023-10-14 21:34 - 000007640 _____ () C:\Users\danie\AppData\Local\Resmon.ResmonCfg 2021-06-01 12:48 - 2021-06-01 12:48 - 000000003 _____ () C:\Users\danie\AppData\Local\updater.log 2021-06-01 12:48 - 2021-06-01 12:48 - 000000424 _____ () C:\Users\danie\AppData\Local\UserProducts.xml ==================== FLock ============================== 2023-10-13 17:31 C:\Program Files\AVAST Software 2023-10-13 17:31 C:\Program Files\AVG 2023-10-13 17:31 C:\Program Files\ByteFence 2023-10-13 17:31 C:\Program Files\Cezurity 2023-10-13 17:31 C:\Program Files\COMODO 2023-10-13 17:31 C:\Program Files\DrWeb 2023-10-13 17:31 C:\Program Files\Enigma Software Group 2023-10-13 17:31 C:\Program Files\EnigmaSoft 2023-10-13 17:31 C:\Program Files\ESET 2023-10-13 17:31 C:\Program Files\HitmanPro 2023-10-13 17:31 C:\Program Files\Kaspersky Lab 2023-10-13 17:31 C:\Program Files\Loaris Trojan Remover 2024-02-15 22:34 C:\Program Files\Malwarebytes 2023-10-13 17:31 C:\Program Files\NETGATE 2023-10-13 17:31 C:\Program Files\Process Hacker 2 2023-10-13 17:31 C:\Program Files\Process Lasso 2023-10-13 17:31 C:\Program Files\QuickCPU 2023-10-13 17:31 C:\Program Files\Rainmeter 2023-10-13 17:31 C:\Program Files\Ravantivirus 2023-10-13 17:31 C:\Program Files\RogueKiller 2023-10-13 17:31 C:\Program Files\SpyHunter 2023-10-13 17:31 C:\Program Files\SUPERAntiSpyware 2023-10-13 17:31 C:\Program Files\Transmission 2023-10-13 17:31 C:\Program Files (x86)\360 2023-10-13 17:31 C:\Program Files (x86)\AVAST Software 2023-10-13 17:31 C:\Program Files (x86)\AVG 2023-10-13 17:31 C:\Program Files (x86)\Cezurity 2023-10-13 17:31 C:\Program Files (x86)\GPU Temp 2023-10-13 17:31 C:\Program Files (x86)\GRIZZLY Antivirus 2023-10-13 17:31 C:\Program Files (x86)\Microsoft JDX 2023-10-13 17:31 C:\Program Files (x86)\Moo0 2023-10-13 17:31 C:\Program Files (x86)\Panda Security 2023-10-13 17:31 C:\Program Files (x86)\SpeedFan 2023-10-13 17:31 C:\Program Files (x86)\SpyHunter 2023-10-13 17:31 C:\Program Files (x86)\Transmission 2024-02-13 09:54 C:\Program Files\Common Files\AV 2023-10-13 17:31 C:\Program Files\Common Files\Doctor Web 2023-10-13 17:31 C:\Program Files\Common Files\McAfee 2023-10-13 17:31 C:\ProgramData\360safe 2023-06-01 10:01 C:\ProgramData\Avast Software 2023-10-13 17:31 C:\ProgramData\Avira 2023-10-13 17:31 C:\ProgramData\BookManager 2023-10-13 17:31 C:\ProgramData\Doctor Web 2023-10-13 17:31 C:\ProgramData\ESET 2023-10-13 17:31 C:\ProgramData\Evernote 2023-10-13 17:31 C:\ProgramData\FingerPrint 2023-10-13 17:31 C:\ProgramData\grizzly 2023-10-13 17:31 C:\ProgramData\Norton 2023-10-13 17:31 C:\ProgramData\princeton-produce 2023-10-13 17:31 C:\ProgramData\PuzzleMedia 2023-10-13 17:31 C:\ProgramData\RobotDemo 2023-10-13 17:31 C:\ProgramData\WavePad 2023-10-13 17:31 C:\Users\danie\Desktop\AutoLogger 2023-10-13 17:31 C:\Users\danie\Desktop\AV_block_remover 2023-10-13 17:31 C:\Users\danie\Downloads\AutoLogger 2023-10-13 17:31 C:\Users\danie\Downloads\AV_block_remover ==================== SigCheckExt ========================= 2020-12-02 04:41 - 2020-12-02 04:41 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\d3dref9.dll 2022-02-07 16:26 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\Windows\system32\divx.dll 2022-02-07 16:26 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\Windows\system32\Lagarith.dll 2022-02-07 16:26 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\Windows\system32\mcdvd_32.dll 2022-02-07 16:26 - 2003-05-21 22:50 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3a.dll 2023-10-13 17:31 - 2023-10-13 17:31 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll 2012-09-28 16:45 - 2012-09-28 16:45 - 000246272 _____ C:\Windows\system32\rtvcvfw64.dll 2023-05-07 16:41 - 2010-12-05 23:16 - 000090112 _____ (Vestris Inc.) C:\Windows\system32\Vestris.ResourceLib.dll 2022-02-07 16:26 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\Windows\system32\vp6vfw.dll 2021-06-01 11:57 - 2020-04-21 08:51 - 000221184 _____ (Graphics Tablet) C:\Windows\system32\wintab32.dll 2022-02-07 16:26 - 2004-07-03 19:59 - 000524288 _____ C:\Windows\system32\xvidcore.dll 2022-02-07 16:26 - 2004-07-03 20:08 - 000139264 _____ C:\Windows\system32\xvidvfw.dll 2022-12-11 11:02 - 2022-12-11 11:43 - 000360039 _____ C:\Windows\Tradução do Diablo Versão 2.05 PARA BR Uninstaller.exe 2021-07-21 09:15 - 2017-06-01 11:24 - 000028672 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll 2020-11-25 19:37 - 2020-11-25 19:37 - 000332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D2D1Debug2.dll 2020-06-23 16:54 - 2020-06-23 16:54 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11sdklayers.dll 2020-06-23 16:54 - 2020-06-23 16:54 - 000698368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_1sdklayers.dll 2020-06-23 16:54 - 2020-06-23 16:54 - 000936960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_2sdklayers.dll 2020-12-02 04:14 - 2020-12-02 04:14 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dref9.dll 2023-04-03 17:56 - 2022-08-29 19:44 - 000239616 _____ (LG Soft India) C:\Windows\SysWOW64\LGDeviceManager.dll 2023-04-03 17:56 - 2022-08-29 19:44 - 000075776 _____ C:\Windows\SysWOW64\LGErrorHandler.dll 2023-04-03 17:56 - 2022-08-29 19:44 - 000130048 _____ (LG Soft India) C:\Windows\SysWOW64\LGMonitorDDCCISDK.dll 2023-04-03 17:56 - 2022-08-29 19:44 - 000136704 _____ (LG Soft India) C:\Windows\SysWOW64\LGProtocolEngine.dll 2022-02-07 16:26 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll 2012-09-28 16:45 - 2012-09-28 16:45 - 000247296 _____ C:\Windows\SysWOW64\rtvcvfw32.dll 2021-06-01 11:57 - 2020-04-21 08:50 - 000190976 _____ (Graphics Tablet) C:\Windows\SysWOW64\wintab32.dll 2024-02-16 01:54 - 2024-02-16 01:10 - 002389504 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== BCD ================================ Gerenciador de Inicialização do Windows --------------------------------------- identificador {bootmgr} device partition=C: description Windows Boot Manager locale pt-BR inherit {globalsettings} default {current} resumeobject {701ed7b1-18c1-11ea-8aba-b259c4f81657} displayorder {cbd971bf-b7b8-4885-951a-fa03044f5d71} {current} toolsdisplayorder {memdiag} timeout 0 Carregador de Inicialização do Windows -------------------------------------- identificador {current} device partition=C: path \Windows\system32\winload.exe description Windows 10 locale pt-BR inherit {bootloadersettings} recoverysequence {dd78fc8d-e9ae-11eb-b60c-fc3497151355} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {701ed7b1-18c1-11ea-8aba-b259c4f81657} nx OptIn bootmenupolicy Standard Instalação do Windows --------------------- identificador {cbd971bf-b7b8-4885-951a-fa03044f5d71} device partition=C: path \$WINDOWS.~BT\Windows\system32\winload.exe description Programa de Instalação do Windows locale pt-BR inherit {bootloadersettings} osdevice partition=C: systemroot \$WINDOWS.~BT\Windows nx OptOut safeboot Minimal detecthal Yes winpe Yes Carregador de Inicialização do Windows -------------------------------------- identificador {dd78fc8d-e9ae-11eb-b60c-fc3497151355} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{dd78fc8e-e9ae-11eb-b60c-fc3497151355} path \windows\system32\winload.exe description Windows Recovery Environment locale pt-BR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{dd78fc8e-e9ae-11eb-b60c-fc3497151355} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Continuar da Hibernação ----------------------- identificador {701ed7b1-18c1-11ea-8aba-b259c4f81657} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale pt-BR inherit {resumeloadersettings} recoverysequence {dd78fc8d-e9ae-11eb-b60c-fc3497151355} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testador de Memória do Windows ------------------------------ identificador {memdiag} device partition=C: path \boot\memtest.exe description Diagnóstico de Memória do Windows locale pt-BR inherit {globalsettings} badmemoryaccess Yes Configurações de EMS -------------------- identificador {emssettings} bootems Yes Configurações do Depurador -------------------------- identificador {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Defeitos de RAM --------------- identificador {badmemory} Configurações Globais --------------------- identificador {globalsettings} inherit {dbgsettings} {emssettings} integrityservices Enable Configurações do Carregador de Inicialização -------------------------------------------- identificador {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Configurações do Hypervisor --------------------------- identificador {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Configurações do Carregador de Retorno -------------------------------------- identificador {resumeloadersettings} inherit {globalsettings} Opções de dispositivo --------------------- identificador {dd78fc8e-e9ae-11eb-b60c-fc3497151355} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fim de FRST.txt ========================