Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 08.03.2024 Executado por luisf (administrador) em LUIXX13 (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop E510MAB_E510MAB) (10-03-2024 09:32:09) Executando a partir de C:\Users\luisf\OneDrive\Área de Trabalho\FRST64.exe Perfis Carregados: luisf Plataforma: Microsoft Windows 11 Pro Versão 23H2 22635.2915 (X64) Idioma: Inglês (Estados Unidos) -> Português (Brasil) Navegador padrão: Edge Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOSD.exe (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.10.10.1\AdskIdentityManager.exe (C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe (C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Common Files\Autodesk\AdpDesktopSDK\bin\ADPClientService.exe (DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimizationStartupTask.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\14.1.0.10619\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe <2> ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe [19886880 2024-02-08] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3499016 2023-11-13] (Autodesk, Inc. -> Autodesk) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.80\Installer\setup.exe [7125456 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3294773875-157157671-1974535530-1001\...\Run: [MicrosoftEdgeAutoLaunch_2282CEAF4718D721A4417C5B8252C6CB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060608 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3294773875-157157671-1974535530-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2598928 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3294773875-157157671-1974535530-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37397480 2024-03-08] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3294773875-157157671-1974535530-1001\...\Run: [Steam] => C:\Users\luisf\MY THINGS\steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3294773875-157157671-1974535530-1001\...\Policies\Explorer: [] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-09] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-03-09] ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Nenhum Arquivo) ==================== Tarefas Agendadas (Whitelisted) ================= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {93602158-A195-4E0A-B087-8F294A7F3C06} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusHotkey.exe [311944 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {C4D74340-F204-4CE2-B876-C691770A802A} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusUpdateChecker.exe [802440 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {28491C1D-7AA0-492B-AD8F-668468FBB990} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {90BAD5B6-3359-4833-B9E6-D7CE238C662D} - System32\Tasks\GoogleUpdateTaskMachineCore{5AA7B632-F42F-4540-8E49-6C18B9EBDEF1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-03-09] (Google LLC -> Google LLC) Task: {84AFDE67-FFE5-4FEE-9855-3AD79032A5A5} - System32\Tasks\GoogleUpdateTaskMachineUA{6FF7DB48-5293-40E5-9225-5DC7714A984D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-03-09] (Google LLC -> Google LLC) Task: {359BC1DF-7461-4359-A6B4-D18454D3DB72} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (Nenhum Arquivo) Task: {7BB0EE74-35C8-4B99-B0E6-6DD7A1F397D7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) Task: {7F89FB2A-4B66-4158-ACA2-2509ECB89B6A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) Task: {7329B5D9-C810-4E2C-BFA8-CB479E0EC233} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-06] (Microsoft Corporation -> Microsoft Corporation) Task: {E41A8000-FA1A-4E80-B514-B2C5098E2DF6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-06] (Microsoft Corporation -> Microsoft Corporation) Task: {2B676964-DAE0-448D-B74C-F0BD9B084243} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170024 2024-03-06] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Nenhum Arquivo) Task: {2CE18F60-649F-418E-9B42-ACE1F9198354} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9E3B5763-2010-4CF4-BCA0-0EB1A1A3C242} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8A66B67E-66AE-43EF-B77C-9415621044CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E2657303-775B-47AB-A467-21D286CA24D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4538ED95-D1E7-4716-AD6D-F5321DB41176} - System32\Tasks\MyASUS Update Messenger => C:\Users\luisf\AppData\Local\MyASUS Update Messenger\UpdateMessenger.exe [14401048 2024-03-06] (SweetLabs Inc -> SweetLabs, Inc) <==== ATENÇÃO Task: {8F311695-2A46-4DED-88E2-6B060114ADB5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) Task: {26103D85-EFE5-4A1E-83AF-2FB22A635FFD} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3294773875-157157671-1974535530-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) Task: {BE365B2F-9582-4274-9CC5-983921011EDA} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe [3498472 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 189.124.132.32 189.124.132.33 Tcpip\..\Interfaces\{adeccd0d-c891-4cf7-8fac-1c8267e8e48b}: [DhcpNameServer] 127.0.0.1 Tcpip\..\Interfaces\{d75f04ef-31c1-4967-a260-0efacb7e131b}: [DhcpNameServer] 189.124.132.32 189.124.132.33 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-10] Edge HomePage: Default -> hxxp://varginha.cefetmg.br/ Edge StartupUrls: Default -> "hxxp://varginha.cefetmg.br/" Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats} Edge Extension: (Google Tradutor) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-02-18] Edge Extension: (Web Apps by 123apps) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bddjlgmebjbajnhgmhedjklehehfoimn [2024-02-05] Edge Extension: (Microsoft Rewards) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bnplfnhcidhhdapmblniehfaaompjlck [2024-01-15] Edge Extension: (QR Code) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cbimgpnbgalffiohilfglgkkhpegpjlo [2024-01-15] Edge Extension: (Voltar Dislikes do YouTube) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2024-02-05] Edge Extension: (Documentos Google off-line) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-07] Edge Extension: (Dark Reader) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ifoakfbpdcdoeenechcleahebpibofpc [2024-03-04] Edge Extension: (Edge relevant text changes) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05] Edge Extension: (Summarize) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kccfhiebopgfmoaceieligogmgemjgen [2024-01-15] Edge Extension: (FastForward) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ldcclmkclhomnpcnccgbgleikchbnecl [2024-01-15] Edge Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-03-04] Edge Extension: (Urban VPN Proxy) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nimlmejbmnecnaghgmbahmbaddhjbecg [2024-03-04] Edge Extension: (uBlock Origin) - C:\Users\luisf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-02-19] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-18] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-18] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\luisf\AppData\Local\Google\Chrome\User Data\Default [2024-03-10] CHR HomePage: Default -> hxxp://varginha.cefetmg.br/ CHR StartupUrls: Default -> "hxxp://varginha.cefetmg.br/" CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?fr=mcafee&type=E210BR885G91826&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/gossip/gossip-br-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Google Docs offline) - C:\Users\luisf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-09] CHR Extension: (Ride the Wave) - C:\Users\luisf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldfofogdaicbefckdloiahgnajmcicnc [2024-03-09] CHR Extension: (Pagamentos via Chrome Web Store) - C:\Users\luisf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-09] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [17243936 2024-02-15] (Autodesk, Inc. -> Autodesk) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe [1177224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe [529552 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1738904 2024-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe [1369232 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe [641272 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [845456 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13216544 2024-02-08] (Autodesk, Inc. -> Autodesk, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileSyncHelper.exe [3516848 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\OneDriveUpdaterService.exe [3853744 2024-03-04] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2024-01-15] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe [3191256 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe [133576 2024-03-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [150840 2021-07-07] (Alcorlink Corp. -> ) R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_93fc123351137141\AsusPTPFilter.sys [155568 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSAIO.sys [49224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusWmiAcpi.sys [48928 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 empvhid; C:\WINDOWS\System32\drivers\EMP_VHID.sys [29688 2023-01-23] (DriverTest -> Windows (R) Win 7 DDK provider) R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S3 GSCAuxDriver; C:\WINDOWS\System32\DriverStore\FileRepository\gscauxdriver.inf_amd64_47dea9773e9dfab7\GSCAuxDriverx64.sys [79584 2021-08-30] (Intel Corporation -> Intel Corporation) S3 GSCx64; C:\WINDOWS\System32\DriverStore\FileRepository\gscheci.inf_amd64_1027aa064fe1f3f7\TeeDriverGSCW8x64.sys [260400 2021-08-30] (Intel Corporation -> Intel Corporation) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [76832 2022-09-30] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21040 2024-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [608648 2024-03-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-04] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-03-10 09:32 - 2024-03-10 09:32 - 000022604 _____ C:\Users\luisf\OneDrive\Área de Trabalho\FRST.txt 2024-03-10 09:31 - 2024-03-10 09:32 - 000000000 ____D C:\FRST 2024-03-10 09:31 - 2024-03-10 09:31 - 000001610 _____ C:\Users\luisf\OneDrive\Área de Trabalho\AdwCleaner[C00].txt 2024-03-10 09:29 - 2024-03-10 09:29 - 000000000 ____D C:\AdwCleaner 2024-03-10 09:08 - 2024-03-10 09:08 - 002390016 _____ (Farbar) C:\Users\luisf\OneDrive\Área de Trabalho\FRST64.exe 2024-03-10 09:07 - 2024-03-10 09:08 - 008790880 _____ (Malwarebytes) C:\Users\luisf\OneDrive\Área de Trabalho\adwcleaner.exe 2024-03-10 09:06 - 2024-03-10 09:07 - 003364000 _____ (Nicolas Coolman) C:\Users\luisf\OneDrive\Área de Trabalho\ZHPCleaner.exe 2024-03-10 08:43 - 2024-03-10 08:43 - 000000000 ____D C:\Users\luisf\AppData\Roaming\WinRAR 2024-03-10 08:42 - 2024-03-10 08:42 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-03-10 08:42 - 2024-03-10 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-03-10 08:41 - 2024-03-10 08:42 - 000000000 ____D C:\Program Files\WinRAR 2024-03-10 08:40 - 2024-03-10 09:02 - 000000000 ____D C:\Cadnorma 2024-03-10 08:15 - 2024-03-10 08:15 - 000444192 _____ (Autodesk, Inc.) C:\WINDOWS\system32\AcSignOpt.exe 2024-03-10 08:15 - 2024-03-10 08:15 - 000239392 _____ (Autodesk, Inc.) C:\WINDOWS\system32\AcSignExt.dll 2024-03-10 08:15 - 2024-03-10 08:15 - 000055072 _____ (Autodesk, Inc.) C:\WINDOWS\system32\AcSignIcon.dll 2024-03-10 08:08 - 2024-03-10 08:08 - 000000000 ____D C:\Users\luisf\AppData\Local\Steam 2024-03-10 08:08 - 2024-03-10 08:08 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-03-10 08:07 - 2024-03-10 08:07 - 000000000 ____D C:\Program Files (x86)\Autodesk 2024-03-10 08:06 - 2024-03-10 08:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2024 - Português - Brasil (Brazilian Portuguese) 2024-03-10 08:04 - 2024-03-10 08:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2024-03-10 08:04 - 2024-03-10 08:04 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared 2024-03-10 08:03 - 2024-03-10 08:04 - 000000000 ____D C:\Users\luisf\Nova pasta 2024-03-10 07:58 - 2024-03-10 08:16 - 002882072 _____ (Autodesk, Inc.) C:\WINDOWS\system32\styleman.cpl 2024-03-10 07:58 - 2024-03-10 08:16 - 002882072 _____ (Autodesk, Inc.) C:\WINDOWS\system32\plotman.cpl 2024-03-10 07:58 - 2024-03-10 08:16 - 000022040 _____ (Autodesk, Inc.) C:\WINDOWS\system32\AcSignExtRes.dll 2024-03-10 07:57 - 2024-03-10 08:15 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2024-03-10 07:57 - 2024-03-10 08:06 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Autodesk 2024-03-10 07:57 - 2024-03-10 07:58 - 000000000 ____D C:\Program Files\dotnet 2024-03-10 07:56 - 2024-03-10 07:56 - 000000000 ____D C:\Program Files\Common Files\Autodesk 2024-03-10 07:54 - 2024-03-10 08:09 - 000000000 ____D C:\Program Files\Autodesk 2024-03-10 07:53 - 2024-03-10 08:20 - 000000000 ____D C:\Users\luisf\AppData\Roaming\UI Launcher 2024-03-10 07:53 - 2024-03-10 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2024-03-10 07:50 - 2024-03-10 08:31 - 000000000 ____D C:\ProgramData\Autodesk 2024-03-10 07:50 - 2024-03-10 08:22 - 000000000 ____D C:\Users\luisf\AppData\Local\Autodesk 2024-03-10 07:50 - 2024-03-10 08:19 - 000000000 ____D C:\Autodesk 2024-03-09 23:06 - 2024-03-09 23:06 - 000000000 ____D C:\Users\luisf\AppData\Roaming\RenPy 2024-03-09 18:18 - 2024-03-09 18:18 - 000002681 _____ C:\Users\luisf\OneDrive\Área de Trabalho\Google Password Manager.lnk 2024-03-09 18:18 - 2024-03-09 18:18 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Apps do Chrome 2024-03-09 17:58 - 2024-03-09 17:58 - 000002317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-03-09 17:58 - 2024-03-09 17:58 - 000000000 ____D C:\Users\luisf\AppData\Local\Google 2024-03-09 17:58 - 2024-03-09 17:58 - 000000000 ____D C:\Program Files\Google 2024-03-09 17:57 - 2024-03-10 09:03 - 000000000 ____D C:\Program Files (x86)\Google 2024-03-09 17:57 - 2024-03-09 17:57 - 000003900 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{6FF7DB48-5293-40E5-9225-5DC7714A984D} 2024-03-09 17:57 - 2024-03-09 17:57 - 000003776 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{5AA7B632-F42F-4540-8E49-6C18B9EBDEF1} 2024-03-08 18:22 - 2024-03-10 07:59 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-08 18:22 - 2024-03-08 18:22 - 000000000 ____D C:\Users\luisf\AppData\Local\NVIDIA Corporation 2024-03-08 18:22 - 2024-03-08 18:22 - 000000000 ____D C:\Users\luisf\AppData\Local\CEF 2024-03-08 18:18 - 2024-03-08 18:18 - 000000000 ____D C:\Users\luisf\AppData\Local\UnrealEngineLauncher 2024-03-08 18:18 - 2024-03-08 18:18 - 000000000 ____D C:\Users\luisf\AppData\Local\UnrealEngine 2024-03-08 18:18 - 2024-03-08 18:18 - 000000000 ____D C:\Users\luisf\AppData\Local\EpicGamesLauncher 2024-03-08 18:18 - 2024-03-08 18:18 - 000000000 ____D C:\Users\luisf\AppData\Local\Epic Games 2024-03-08 18:16 - 2024-03-08 18:22 - 000000000 ____D C:\ProgramData\Epic 2024-03-08 18:16 - 2024-03-08 18:17 - 000000000 ____D C:\Program Files (x86)\Epic Games 2024-03-08 18:16 - 2024-03-08 18:16 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2024-03-07 19:11 - 2024-03-07 19:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-03-07 18:30 - 2024-03-09 18:34 - 000291398 _____ C:\Users\luisf\OneDrive\Documentos\estagio extensão.pdf 2024-03-06 19:36 - 2024-03-06 19:36 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-03-06 19:27 - 2024-03-06 19:27 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CADLaser 2024-03-06 19:27 - 2024-03-06 19:27 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AutoLaser 2024-03-06 19:27 - 2024-03-06 19:27 - 000000000 ____D C:\Program Files\MVTec 2024-03-06 19:10 - 2024-03-06 19:20 - 000000000 ____D C:\Users\luisf\OneDrive\Documentos\ops 2024-03-06 19:10 - 2024-03-06 19:10 - 000000000 ____D C:\Users\luisf\OneDrive\Documentos\LEGO Education SPIKE 2024-02-26 19:02 - 2024-03-09 18:22 - 000000000 ____D C:\Users\luisf\OneDrive\Documentos\projeto 2024-02-26 19:02 - 2024-03-04 20:17 - 000151400 _____ C:\Users\luisf\OneDrive\Documentos\Pranta.dwg 2024-02-26 19:02 - 2024-02-20 15:24 - 000000015 _____ C:\Users\luisf\OneDrive\Documentos\(35) 98896-6913.txt 2024-02-19 19:02 - 2024-02-19 19:02 - 000769804 _____ C:\WINDOWS\system32\prfh0416.dat 2024-02-19 19:02 - 2024-02-19 19:02 - 000154916 _____ C:\WINDOWS\system32\prfc0416.dat 2024-02-18 10:44 - 2024-02-18 10:44 - 000000000 ____D C:\Users\luisf\AppData\Local\PeerDistRepub 2024-02-18 10:30 - 2024-03-10 08:19 - 000000000 ____D C:\Users\luisf\AppData\Local\MyASUS Update Messenger 2024-02-18 10:30 - 2024-02-18 10:30 - 000006104 _____ C:\WINDOWS\system32\Tasks\MyASUS Update Messenger 2024-02-05 20:58 - 2024-02-05 20:58 - 000000000 ____D C:\Users\luisf\AppData\Local\Backup 2024-02-05 20:55 - 2024-02-05 20:55 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\UProof 2024-02-05 20:55 - 2024-02-05 20:55 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Proof 2024-02-05 20:54 - 2024-02-18 10:28 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-02-05 20:36 - 2024-03-04 19:43 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-02-05 20:36 - 2024-02-05 20:36 - 000000000 ___RD C:\Users\Default\OneDrive 2024-02-05 20:36 - 2024-02-05 20:36 - 000000000 ___HD C:\OneDriveTemp 2024-02-05 20:35 - 2024-03-04 19:43 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-02-05 20:35 - 2024-03-04 19:43 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-01-15 19:29 - 2024-02-19 19:02 - 001773032 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-01-15 19:26 - 2024-03-10 09:32 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2024-01-15 19:26 - 2024-03-06 19:13 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-01-15 19:26 - 2024-03-06 19:13 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-01-15 19:26 - 2024-02-19 18:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-01-15 19:26 - 2024-02-18 10:24 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0 2024-01-15 19:26 - 2024-02-18 10:24 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Usuário Padrão 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Todos os Usuários 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Modelos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Meus Documentos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Menu Iniciar 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Configurações Locais 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\ProgramData\Modelos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\ProgramData\Menu Iniciar 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\ProgramData\Documentos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Program Files\Common Files\Sistema 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Program Files\Arquivos Comuns 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Documents and Settings 2024-01-15 19:26 - 2024-01-15 19:26 - 000000000 _SHDL C:\Arquivos de Programas 2024-01-15 19:26 - 2024-01-15 14:59 - 000003366 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG 2024-01-15 19:25 - 2024-01-15 19:25 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2024-01-15 19:24 - 2024-01-15 19:24 - 000000000 ____D C:\WINDOWS\CSC 2024-01-15 19:19 - 2024-01-15 19:19 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2024-01-15 19:18 - 2024-01-15 19:18 - 000000000 ____D C:\eSupport 2024-01-15 19:13 - 2024-03-07 18:01 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-01-15 19:13 - 2024-02-19 18:53 - 000000000 ___HD C:\Intel 2024-01-15 19:13 - 2024-01-15 19:21 - 000000000 ____D C:\ProgramData\Intel 2024-01-15 19:13 - 2024-01-15 19:13 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2024-01-15 19:12 - 2024-03-09 22:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-01-15 19:12 - 2024-02-19 18:53 - 000012288 ___SH C:\DumpStack.log.tmp 2024-01-15 19:12 - 2024-02-05 20:16 - 000000000 ____D C:\ProgramData\ASUS 2024-01-15 19:12 - 2024-01-15 19:12 - 000000000 ____D C:\WINDOWS\system32\config\BFS 2024-01-15 19:12 - 2024-01-15 19:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2024-01-15 19:12 - 2024-01-15 14:58 - 000514976 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-01-15 18:36 - 2024-01-15 19:21 - 000000000 ____D C:\WINDOWS\ASUS 2024-01-15 18:33 - 2024-01-15 19:26 - 000000000 ____D C:\WINDOWS\Panther 2024-01-15 18:31 - 2024-01-15 18:31 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-01-15 18:31 - 2024-01-15 18:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde 2024-01-15 18:24 - 2024-01-15 18:24 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json 2024-01-15 18:22 - 2024-01-15 18:22 - 000060462 _____ C:\WINDOWS\system32\ctac.json 2024-01-15 18:22 - 2024-01-15 18:22 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-01-15 18:18 - 2024-01-15 19:27 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2024-01-15 18:18 - 2024-01-15 18:18 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2024-01-15 18:18 - 2024-01-15 18:18 - 000000000 ____D C:\WINDOWS\addins 2024-01-15 18:17 - 2024-01-15 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2024-01-15 18:17 - 2024-01-15 18:17 - 000000000 ____D C:\Program Files\Reference Assemblies 2024-01-15 18:17 - 2024-01-15 18:17 - 000000000 ____D C:\Program Files\MSBuild 2024-01-15 18:17 - 2024-01-15 18:17 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2024-01-15 18:17 - 2024-01-15 18:17 - 000000000 ____D C:\Program Files (x86)\MSBuild 2024-01-15 18:12 - 2024-01-15 18:14 - 000000000 ____D C:\WINDOWS\Firmware 2024-01-15 18:09 - 2024-01-15 18:09 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2024-01-15 15:33 - 2024-03-10 08:04 - 000000000 ____D C:\Users\luisf\MY THINGS 2024-01-15 15:32 - 2024-01-15 15:32 - 000000000 ____D C:\Users\luisf\AppData\Local\OneDrive 2024-01-15 15:26 - 2024-01-15 15:30 - 000000000 ____D C:\Users\luisf\AppData\Local\Publishers 2024-01-15 15:25 - 2024-01-15 15:29 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Office 2024-01-15 15:25 - 2024-01-15 15:25 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Word 2024-01-15 15:25 - 2024-01-15 15:25 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\AddIns 2024-01-15 15:22 - 2024-01-15 15:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2024-01-15 15:13 - 2024-03-10 09:31 - 000000000 ____D C:\Users\luisf\AppData\Local\D3DSCache 2024-01-15 15:11 - 2024-03-10 07:48 - 000000000 ___RD C:\Users\luisf\OneDrive 2024-01-15 15:11 - 2024-03-04 19:43 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3294773875-157157671-1974535530-1001 2024-01-15 15:11 - 2024-01-15 15:11 - 000000000 ____D C:\Users\luisf\AppData\Local\VirtualStore 2024-01-15 15:11 - 2024-01-15 15:11 - 000000000 ____D C:\Users\luisf\AppData\Local\Comms 2024-01-15 15:11 - 2024-01-15 15:11 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2024-01-15 15:08 - 2024-01-15 15:08 - 000000000 ____D C:\Users\luisf\AppData\LocalLow\Intel 2024-01-15 15:08 - 2024-01-15 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2024-01-15 15:06 - 2024-03-10 08:42 - 000000000 ____D C:\Users\luisf\AppData\Local\Packages 2024-01-15 15:06 - 2024-01-15 15:06 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Adobe 2024-01-15 15:05 - 2024-03-10 07:46 - 000000000 __SHD C:\Users\luisf\IntelGraphicsProfiles 2024-01-15 15:05 - 2024-02-05 20:14 - 000000000 ____D C:\Users\luisf\AppData\Local\ConnectedDevicesPlatform 2024-01-15 15:05 - 2024-01-15 15:12 - 000000000 ____D C:\Users\luisf\AppData\Local\ASUS 2024-01-15 15:05 - 2024-01-15 15:05 - 000000000 ___SD C:\Users\luisf\AppData\Roaming\Microsoft\Crypto 2024-01-15 15:05 - 2024-01-15 15:05 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Vault 2024-01-15 15:02 - 2024-03-10 08:06 - 000000000 ____D C:\Users\luisf\AppData\Local\PlaceholderTileLogoFolder 2024-01-15 15:02 - 2024-01-15 15:02 - 000000000 ___SD C:\Users\luisf\AppData\Roaming\Microsoft\SystemCertificates 2024-01-15 15:01 - 2024-03-10 08:04 - 000000000 ____D C:\Users\luisf 2024-01-15 15:01 - 2024-01-15 19:25 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Network 2024-01-15 15:01 - 2024-01-15 15:20 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Spelling 2024-01-15 15:01 - 2024-01-15 15:08 - 000000000 ____D C:\Users\luisf\AppData\Roaming\Microsoft\Windows 2024-01-15 15:01 - 2024-01-15 15:01 - 000000020 ___SH C:\Users\luisf\ntuser.ini 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Modelos 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Meus Documentos 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Menu Iniciar 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Dados de Aplicativos 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Configurações Locais 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\AppData\Local\Histórico 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\AppData\Local\Dados de Aplicativos 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Ambiente de Rede 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 _SHDL C:\Users\luisf\Ambiente de Impressão 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 ___SD C:\Users\luisf\AppData\Roaming\Microsoft\Protect 2024-01-15 15:01 - 2024-01-15 15:01 - 000000000 ___SD C:\Users\luisf\AppData\Roaming\Microsoft\Credentials 2024-01-15 15:00 - 2024-01-15 15:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfeeTsk 2024-01-15 15:00 - 2024-01-15 15:00 - 000000000 ____D C:\Program Files\Common Files\DynamicAppDownloader 2024-01-15 11:42 - 2024-01-15 18:37 - 000000000 ___HD C:\$SysReset 2024-01-01 17:47 - 2024-01-01 17:47 - 014841320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RsDMFT64.dll 2024-01-01 17:47 - 2024-01-01 17:47 - 014807088 _____ C:\WINDOWS\system32\RsEyeContactCorrection_Assets.dll 2024-01-01 17:47 - 2024-01-01 17:47 - 012773832 _____ C:\WINDOWS\system32\RsDMFT_Assets.dll ==================== Três meses (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-03-10 09:31 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF 2024-03-10 09:30 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-03-10 09:03 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-03-10 08:55 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-03-10 08:42 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-10 08:42 - 2021-09-30 23:48 - 000000000 ____D C:\ProgramData\Packages 2024-03-07 19:10 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2024-03-06 19:35 - 2021-09-30 23:48 - 000000000 ____D C:\Program Files\Microsoft Office 2024-03-04 19:43 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2024-03-04 19:40 - 2021-09-30 23:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-02-19 18:53 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-02-19 18:53 - 2022-05-07 02:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-02-18 10:33 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-02-18 10:31 - 2022-05-07 02:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-02-18 10:19 - 2022-05-07 02:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM ==================== SigCheckExt ========================= 2024-03-10 09:08 - 2024-03-10 09:08 - 002390016 _____ (Farbar) C:\Users\luisf\OneDrive\Área de Trabalho\FRST64.exe 2024-03-10 09:06 - 2024-03-10 09:07 - 003364000 _____ (Nicolas Coolman) C:\Users\luisf\OneDrive\Área de Trabalho\ZHPCleaner.exe ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== BCD ================================ Gerenciador de Inicialização de Firmware ---------------------------------------- identificador {fwbootmgr} displayorder {bootmgr} {25638a0a-5812-11ee-a226-806e6f6e6963} {25638c73-5812-11ee-a226-7032172005a2} {25638c74-5812-11ee-a226-7032172005a2} {25638c75-5812-11ee-a226-7032172005a2} timeout 1 Gerenciador de Inicialização do Windows --------------------------------------- identificador {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale pt-BR inherit {globalsettings} flightsigning Yes default {current} resumeobject {a985c736-b3ed-11ee-bb74-b32d98209684} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Aplicativo de Firmware (101fffff) --------------------------------- identificador {25638a0a-5812-11ee-a226-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\UBUNTU\SHIMX64.EFI description ubuntu Aplicativo de Firmware (101fffff) --------------------------------- identificador {25638c73-5812-11ee-a226-7032172005a2} description UEFI:CD/DVD Drive Aplicativo de Firmware (101fffff) --------------------------------- identificador {25638c74-5812-11ee-a226-7032172005a2} description UEFI:Removable Device Aplicativo de Firmware (101fffff) --------------------------------- identificador {25638c75-5812-11ee-a226-7032172005a2} description UEFI:Network Device Carregador de Inicialização do Windows -------------------------------------- identificador {03d32399-88a1-11ed-a22a-e299b99a9a70} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{03d3239a-88a1-11ed-a22a-e299b99a9a70} path \windows\system32\winload.efi description Windows Recovery Environment locale en-US inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{03d3239a-88a1-11ed-a22a-e299b99a9a70} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Carregador de Inicialização do Windows -------------------------------------- identificador {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale pt-BR inherit {bootloadersettings} recoverysequence {03d32399-88a1-11ed-a22a-e299b99a9a70} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {a985c736-b3ed-11ee-bb74-b32d98209684} nx OptIn bootmenupolicy Standard Continuar da Hibernação ----------------------- identificador {a985c736-b3ed-11ee-bb74-b32d98209684} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale pt-BR inherit {resumeloadersettings} recoverysequence {03d32399-88a1-11ed-a22a-e299b99a9a70} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testador de Memória do Windows ------------------------------ identificador {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Windows Memory Diagnostic locale pt-BR inherit {globalsettings} badmemoryaccess Yes Configurações de EMS -------------------- identificador {emssettings} bootems No Configurações do Depurador -------------------------- identificador {dbgsettings} debugtype Local Defeitos de RAM --------------- identificador {badmemory} Configurações Globais --------------------- identificador {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Configurações do Carregador de Inicialização -------------------------------------------- identificador {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Configurações do Hypervisor --------------------------- identificador {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Configurações do Carregador de Retorno -------------------------------------- identificador {resumeloadersettings} inherit {globalsettings} Opções de dispositivo --------------------- identificador {03d3239a-88a1-11ed-a22a-e299b99a9a70} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fim de FRST.txt ========================