Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 11.06.2024 Executado por renan (administrador) em DESKTOP-FHTHFTP (Dell Inc. G3 3500) (13-06-2024 23:23:06) Executando a partir de C:\Users\renan\Desktop\FRST64.exe Perfis Carregados: renan Plataforma: Microsoft Windows 11 Home Single Language Versão 22H2 22621.3737 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (A-Volute SAS -> A-Volute) C:\Users\renan\AppData\Local\NhNotifSys\awsc\awscns.exe (C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2> (C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.92\msedgewebview2.exe <6> (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2404.10.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <3> (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.18.255.1\mc-fw-host.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdm.inf_amd64_e4741605e6540d22\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5e142737be80cf43\RtkAudUService64.exe <2> (services.exe ->) (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) C:\Program Files\Topaz OFD\Warsaw\core.exe <2> (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.18.255.1\neo\mc-neo-host.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5e142737be80cf43\RtkAudUService64.exe [1609064 2022-10-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Cm108BSound] => C:\Program Files\Redragon Gaming Headset Driver\CPL\FaceLift_x64.exe [2341888 2014-11-09] () [Arquivo não assinado] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrição <==== ATENÇÃO HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrição <==== ATENÇÃO HKU\S-1-5-21-4140478933-941104255-298867293-1001\...\Run: [MicrosoftEdgeAutoLaunch_D21A3207C313279760993974D24FC0BF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4136912 2024-06-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4140478933-941104255-298867293-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4402536 2024-06-13] (Valve Corp. -> Valve Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\chrmstp.exe [2024-06-04] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Tarefas Agendadas (Whitelisted) ================= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {03efc3f9-519a-4fbf-b138-4440c1ba78c8} - não caminho do arquivo. <==== ATENÇÃO Task: {05c5a6e8-2046-4d3f-a6bc-131277890274} - não caminho do arquivo. <==== ATENÇÃO Task: {0685241a-0a10-4a39-9a06-146e791a4a01} - não caminho do arquivo. <==== ATENÇÃO Task: {0c775fa8-f175-4c6c-9cec-e90fd0dd1ba1} - não caminho do arquivo. <==== ATENÇÃO Task: {16c4340d-f269-4c86-8c9a-d0642add5949} - não caminho do arquivo. <==== ATENÇÃO Task: {1a79d292-2eaf-443f-9518-64c73649b89f} - não caminho do arquivo. <==== ATENÇÃO Task: {1cb90832-f0ab-4457-9627-016dfdf76cfe} - não caminho do arquivo. <==== ATENÇÃO Task: {1fd0f8da-33ff-4c3c-b763-cd2c194f0402} - não caminho do arquivo. <==== ATENÇÃO Task: {202a3ed5-7f32-4473-8441-deac1f31ff1c} - não caminho do arquivo. <==== ATENÇÃO Task: {262defb1-f655-4a1d-9d86-66a5db67fb90} - não caminho do arquivo. <==== ATENÇÃO Task: {2798f374-e64c-41a5-a088-3b859a38d527} - não caminho do arquivo. <==== ATENÇÃO Task: {28ecb452-e95c-4071-8cd2-b902a60326d0} - não caminho do arquivo. <==== ATENÇÃO Task: {2cd51861-7750-45e5-be6f-07535f842997} - não caminho do arquivo. <==== ATENÇÃO Task: {2e070983-b92f-4df9-b094-5be63b5cde18} - não caminho do arquivo. <==== ATENÇÃO Task: {326b1c74-bc80-4c03-869d-56cca97c02f5} - não caminho do arquivo. <==== ATENÇÃO Task: {33a7c23a-7ae5-4481-9008-d7436723d1ac} - não caminho do arquivo. <==== ATENÇÃO Task: {33e63694-9c22-4701-9f76-17b002aac7be} - não caminho do arquivo. <==== ATENÇÃO Task: {3a98a2f5-a79e-42f6-a4a2-d4ff3ae23f28} - não caminho do arquivo. <==== ATENÇÃO Task: {3f064edc-62c0-4dc7-a89a-751703f43617} - não caminho do arquivo. <==== ATENÇÃO Task: {3fe5d5fb-1354-46e6-a957-0514cee5a626} - não caminho do arquivo. <==== ATENÇÃO Task: {56aec141-c86a-4c61-bed4-7b331e055e8f} - não caminho do arquivo. <==== ATENÇÃO Task: {5ed0f411-41b2-41a2-b569-b7ce7cac5c38} - não caminho do arquivo. <==== ATENÇÃO Task: {7163f05e-ace4-460d-85d6-39efc49805a1} - não caminho do arquivo. <==== ATENÇÃO Task: {72d271bb-fc42-498e-a824-cc833bece685} - não caminho do arquivo. <==== ATENÇÃO Task: {739bd8da-fbef-4977-aa8e-53f3654a824a} - não caminho do arquivo. <==== ATENÇÃO Task: {77aa9a87-1b9b-497e-adb3-435d28a6dc79} - não caminho do arquivo. <==== ATENÇÃO Task: {7b78b2ed-d564-4bb0-b8f7-1b5db0b44269} - não caminho do arquivo. <==== ATENÇÃO Task: {7cc7d0cf-b9ef-4b7f-acc6-9a85ad48a002} - não caminho do arquivo. <==== ATENÇÃO Task: {827b1451-f0ef-4c71-a38b-bf7ef758c484} - não caminho do arquivo. <==== ATENÇÃO Task: {874b0930-460e-4956-94e7-39ffada33877} - não caminho do arquivo. <==== ATENÇÃO Task: {87852115-1fc6-42f4-9de7-824f01afe3bc} - não caminho do arquivo. <==== ATENÇÃO Task: {8b84c0d2-9770-49a8-88e7-648bcec81058} - não caminho do arquivo. <==== ATENÇÃO Task: {8b952ee5-91c5-4a82-afd2-299882a79c8e} - não caminho do arquivo. <==== ATENÇÃO Task: {8e9fa9c1-d455-4f6e-9042-5dcf2d3271d9} - não caminho do arquivo. <==== ATENÇÃO Task: {8f138caf-f7b8-472d-8942-4d48abda0703} - não caminho do arquivo. <==== ATENÇÃO Task: {91c3fe29-4b9a-48e7-ab5d-a8d8b6505231} - não caminho do arquivo. <==== ATENÇÃO Task: {95b9acde-9ab1-430f-b57d-e8cc1e819446} - não caminho do arquivo. <==== ATENÇÃO Task: {9609524c-55b1-4f24-831a-c8958f5e9a0e} - não caminho do arquivo. <==== ATENÇÃO Task: {97086a4b-31ce-46b2-a8b6-25009bda3672} - não caminho do arquivo. <==== ATENÇÃO Task: {9b90f9b5-fa45-41c2-8853-cf5e705f130d} - não caminho do arquivo. <==== ATENÇÃO Task: {9cb165d0-d2fc-42b1-ad56-ecdafa54b852} - não caminho do arquivo. <==== ATENÇÃO Task: {a0c86a3b-8731-432f-86ef-1dad22b060dd} - não caminho do arquivo. <==== ATENÇÃO Task: {a0fc6c7b-7f61-4ff3-89be-57f7101e78c3} - não caminho do arquivo. <==== ATENÇÃO Task: {a9dd6340-30d7-45b8-bf73-034922fa4d6e} - não caminho do arquivo. <==== ATENÇÃO Task: {ab8c486f-6eed-4c91-8e97-890a431a1951} - não caminho do arquivo. <==== ATENÇÃO Task: {b485a141-0a02-43b8-8b14-f1c3cc344f7e} - não caminho do arquivo. <==== ATENÇÃO Task: {b5df8103-fc5c-4a7f-b1a1-8aebba951ebb} - não caminho do arquivo. <==== ATENÇÃO Task: {b6a1ac18-65df-4080-9f5e-7ff3b366f06c} - não caminho do arquivo. <==== ATENÇÃO Task: {b8004034-0aaf-4374-8c9b-1aaf56b2c487} - não caminho do arquivo. <==== ATENÇÃO Task: {bae704e0-0264-4e20-9afa-6262817dc6c5} - não caminho do arquivo. <==== ATENÇÃO Task: {c5e51861-144a-4787-81c8-3cc66a0ab5ec} - não caminho do arquivo. <==== ATENÇÃO Task: {c63fe07b-2d88-46d8-9186-ad68cc22015d} - não caminho do arquivo. <==== ATENÇÃO Task: {c960e178-facf-4e11-9434-34b979445378} - não caminho do arquivo. <==== ATENÇÃO Task: {cb17a1b0-8947-4712-9646-3782e7116c71} - não caminho do arquivo. <==== ATENÇÃO Task: {ce042a81-e36f-418f-bcd1-6a2725b72703} - não caminho do arquivo. <==== ATENÇÃO Task: {cfddc8c3-d483-43bf-9608-fe6bfffaac82} - não caminho do arquivo. <==== ATENÇÃO Task: {d0453a8d-52cd-4078-b694-4100cb0ce3a0} - não caminho do arquivo. <==== ATENÇÃO Task: {d5b2a4c2-7b2b-4df1-88d6-35b5f7c58390} - não caminho do arquivo. <==== ATENÇÃO Task: {d6278ca1-a88d-4f21-ae8a-80a16c1154e4} - não caminho do arquivo. <==== ATENÇÃO Task: {d8e9a976-eb7e-4ac0-9386-bb09f12dce42} - não caminho do arquivo. <==== ATENÇÃO Task: {d90691ae-bfec-4126-a6d8-d30f77a0ef5a} - não caminho do arquivo. <==== ATENÇÃO Task: {d9b475ab-9df5-41a1-9bb2-9e1c52bd614f} - não caminho do arquivo. <==== ATENÇÃO Task: {da7402d8-2edc-48cc-a345-93c296de39ae} - não caminho do arquivo. <==== ATENÇÃO Task: {df74acdc-9389-40e8-8892-8e207b9d2d16} - não caminho do arquivo. <==== ATENÇÃO Task: {e4aa3aa9-28a9-4f3f-83bb-8e0424a87bed} - não caminho do arquivo. <==== ATENÇÃO Task: {e559110b-478c-436b-9f6a-5f41f7f6ee52} - não caminho do arquivo. <==== ATENÇÃO Task: {e6e4bd16-6a4a-4fd2-9f7c-f265fd127b46} - não caminho do arquivo. <==== ATENÇÃO Task: {e9f020e1-d3ce-4317-85a1-d2264316494b} - não caminho do arquivo. <==== ATENÇÃO Task: {ec41ef89-1e75-4421-9083-c57bc381df57} - não caminho do arquivo. <==== ATENÇÃO Task: {f15666ff-a46b-4f05-9513-ea9d19e0936e} - não caminho do arquivo. <==== ATENÇÃO Task: {f81e95e4-fffd-405c-b022-4580efc14c80} - não caminho do arquivo. <==== ATENÇÃO Task: {AC24E0C3-3ECD-4C38-A729-715B4CEF6B92} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.) Task: {FA81CE78-BC4C-4D65-BE7E-31C1ABB153FA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [964936 2024-04-25] (Dell Technologies Inc. -> Dell Inc.) -> C:\Program Files\Dell\SupportAssistAgent\bin\AutoUpdate Task: {25976B51-8798-4A49-8C4B-13F035727947} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{3D7B8C0D-1013-420E-8B32-111C9657DA53} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) Task: {3FC5DFEC-ACB6-404B-9709-8893A57BFD73} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {ABFCBC5D-8378-4B21-92F6-7A2EA238F6BF} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {B8D49F1D-1C80-4A6B-954B-305CBFC5D558} - System32\Tasks\McAfee\WPS\McAfee Health Check => C:\Program Files\McAfee\WPS\1.18.255.1\sustainability\mc-sustainability.exe [950824 2024-05-17] (McAfee, LLC -> McAfee, LLC) Task: {CD3F0BEA-E554-4A25-9EDB-7310999F7D3A} - System32\Tasks\McAfee\WPS\McAfee Hotfix => C:\Program Files\McAfee\wps\1.18.255.1\dad\mc-dad.exe [2654448 2024-05-17] (McAfee, LLC -> McAfee, LLC) Task: {57372576-30FD-43C5-85F7-018AD25CB1EC} - System32\Tasks\McAfee\WPS\McAfee Message Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {74E03830-1AA5-4499-8E97-B41D76811FCE} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {6F813DD3-C458-4322-885C-B664973E24F4} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {7B85BCE8-1BD0-4DCB-B781-5D0D113F724A} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {9240BC55-AE30-447C-ABA1-639F8DBFCEE9} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {A3DAECF1-1313-4319-890C-AF9E2C9E8CEA} - System32\Tasks\McAfee\wps\McAfee Updater => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} C:\Program Files\McAfee\wps\1.18.255.1\mc-update.exe [3296312 2024-05-17] (McAfee, LLC -> McAfee, LLC) Task: {C431A3DD-4E8C-48C5-8902-17CC87880D31} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {DB0490F9-570E-438A-B933-F2DA0B9D7A54} - System32\Tasks\McAfee\WPS\McAfee Windows Notification Token => \\?\C:\Program Files\McAfee\WPS\1.18.255.1\mc-wns-client\mc-wns-client.exe [923696 2024-05-17] (McAfee, LLC -> ) Task: {F4267DC7-F9EF-45AE-97CB-33C7BD4D36A2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28498912 2024-05-26] (Microsoft Corporation -> Microsoft Corporation) Task: {440485D9-C898-45B6-B0A1-08B797230E2A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28498912 2024-05-26] (Microsoft Corporation -> Microsoft Corporation) Task: {3318322A-DA4F-49EF-8883-C2E081F34607} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309912 2024-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {C957896A-54D5-4F79-BFB6-B92FD816CA41} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309912 2024-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {2464ED79-1989-4227-A499-4221A0B390DC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [169648 2024-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {BAC51CC4-CE9E-4A2D-BD98-5532929CCC26} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [73728 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Nenhum Arquivo) Task: {A602A4C5-C27B-438E-BABA-F46D349FD9B9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC Reboot (Nenhum Arquivo) Task: {A44FE5A3-2C94-485C-A21B-9A480530F49B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery Reboot (Nenhum Arquivo) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Nenhum Arquivo) Task: {F99BEEFA-5BE4-42EC-A1E7-E495E80E839E} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [837280 2022-07-15] (A-Volute SAS -> Nahimic) Task: {D8588022-EF15-4E51-8CB2-D0C131F18C28} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1098400 2022-07-15] (A-Volute SAS -> Nahimic) Task: {28BB75AC-7AA2-4A57-9D98-09DAD411B12B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-24] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {8ACE5587-AD2A-4110-BABB-4C69FE6AD717} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation) Task: {3A960BD8-CA02-45D7-AAB6-C68FD663FFBE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {4A74038E-C76D-4108-9DBA-4E39F9AF0722} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {96C05334-504D-46AC-B7BE-7F1EEDBF8BF5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {B4668764-A554-4D36-AED6-FCD71B620394} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {C8E11C12-BF70-4E66-879A-920278FE7404} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {A732006F-1CC3-414D-A309-BBAC39D3310A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {1C9816CC-0647-4715-AAB6-75415124C03D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {7F0EF457-2C29-42B5-904B-02361419FB1F} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-AAGHU.tmp\corefixer.exe /norerun (Nenhum Arquivo) <==== ATENÇÃO (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{352486da-ea8b-4c8e-871e-45ec4e597d18}: [DhcpNameServer] 10.8.8.8 10.7.7.7 Tcpip\..\Interfaces\{88163bda-1d07-4a57-8ded-5492b6d246a4}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{88163bda-1d07-4a57-8ded-5492b6d246a4}\6796E6465696E66756374796D656E647F637: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{88163bda-1d07-4a57-8ded-5492b6d246a4}\960586F6E656: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{88163bda-1d07-4a57-8ded-5492b6d246a4}\960586F6E656024656022556E616E6: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\renan\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-13] Edge HomePage: Default -> hxxp://www.msn.com/?pc=DCTE Edge Extension: (McAfee® WebAdvisor) - C:\Users\renan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-05-03] Edge Extension: (Documentos Google off-line) - C:\Users\renan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07] Edge Extension: (Edge relevant text changes) - C:\Users\renan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-11] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\renan\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-05-05] CHR Profile: C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-06-13] CHR Extension: (McAfee® WebAdvisor) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-06] CHR Extension: (Documentos Google off-line) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-06] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-19] CHR Profile: C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-06-13] CHR Notifications: Profile 2 -> hxxps://meet.google.com; hxxps://tipstrr.com; hxxps://www.vivara.com.br CHR Extension: (McAfee® WebAdvisor) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-04-23] CHR Extension: (Documentos Google off-line) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20] CHR Extension: (Vimego - downloader de vídeo Vimeo™ ) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mffmjlddchdccijipncbjhoabgmphjfb [2024-06-13] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\renan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-08] CHR Profile: C:\Users\renan\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-05] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14012520 2024-05-26] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458128 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [159632 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [481680 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [57760 2023-12-20] (Dell Inc -> ) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [22224 2023-12-13] (Dell Inc -> Dell INC.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [50392 2024-01-27] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [159664 2023-12-22] (Dell Technologies Inc. -> Dell) R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2004344 2023-12-20] (IndiLogic LLC -> Dell Inc.) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [87432 2021-09-30] (MIXBYTE, INC. -> Freemake) S2 FusionService; C:\Program Files\Dell\Fusion\FusionService.exe [26792 2023-02-13] (Dell Inc -> Dell Inc.) S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) S2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_581d7e91d349facc\AS\IAS\IntelAudioService.exe [402464 2022-10-20] (Intel Corporation -> Intel) S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [78088 2023-07-13] (Intel Corporation -> Intel® Corporation) S2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2480944 2023-07-13] (Intel Corporation -> Intel) S2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2981168 2023-07-13] (Intel Corporation -> Intel) S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [78128 2023-07-13] (Intel Corporation -> Intel® Corporation) R2 mc-fw-host; C:\Program Files\McAfee\WPS\1.18.255.1\mc-fw-host.exe [2711192 2024-05-17] (McAfee, LLC -> McAfee, LLC) S3 mc-wps-update; C:\Program Files\McAfee\wps\1.18.255.1\mc-update.exe [3296312 2024-05-17] (McAfee, LLC -> McAfee, LLC) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [879456 2024-06-13] (McAfee, LLC -> McAfee, LLC) R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1926840 2022-07-15] (A-Volute SAS -> Nahimic) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_e4741605e6540d22\Display.NvContainer\NVDisplay.Container.exe [1275440 2024-05-03] (NVIDIA Corporation -> NVIDIA Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [159048 2024-04-25] (Dell Technologies Inc. -> Dell Inc.) S2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256376 2022-12-15] (Intel Corporation -> Intel Corporation) R2 Warsaw Technology; C:\Program Files\Topaz OFD\Warsaw\core.exe [999736 2024-05-08] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 AWCCDriver; C:\WINDOWS\System32\drivers\AWCCDriver.sys [42456 2021-03-02] (IndiLogic LLC -> Dell Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2023-02-08] (Microsoft Corporation) [Arquivo não assinado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-02-08] (Microsoft Corporation) [Arquivo não assinado] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Arquivo não assinado] R3 CMUAC; C:\WINDOWS\System32\drivers\CMUAC.sys [613888 2014-10-09] (C-MEDIA ELECTRONICS INC. -> C-MEDIA) S3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46640 2023-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 DPMDriver; C:\WINDOWS\System32\drivers\DPMDriver.sys [139680 2023-08-06] (IndiLogic LLC -> Dell Inc.) R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_5966b201aaa328ab\e2k68cx21x64.sys [717208 2023-05-09] (Realtek Semiconductor Corp. -> Realtek) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [209200 2023-07-13] (Intel Corporation -> Rivet Networks, LLC.) S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [19536 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [85304 2024-05-17] (McAfee, LLC -> McAfee, LLC) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 ScrHIDDriver3; C:\WINDOWS\System32\drivers\ScrHIDDriver3.sys [63296 2021-10-01] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [41008 2021-02-04] (McAfee, LLC. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [45552 2024-06-13] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [51160 2021-02-11] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [54768 2024-04-19] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [52104 2024-02-15] (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-06-13 23:23 - 2024-06-13 23:23 - 000034009 _____ C:\Users\renan\Desktop\FRST.txt 2024-06-13 23:23 - 2024-06-13 23:23 - 000000000 ____D C:\FRST 2024-06-13 23:22 - 2024-06-13 23:22 - 002395136 _____ (Farbar) C:\Users\renan\Desktop\FRST64.exe 2024-06-13 23:20 - 2024-06-13 23:20 - 000011968 _____ C:\Users\renan\Desktop\ZHPCleaner (R).html 2024-06-13 23:20 - 2024-06-13 23:20 - 000004604 _____ C:\Users\renan\Desktop\ZHPCleaner (R).txt 2024-06-13 23:10 - 2024-06-13 23:10 - 000011840 _____ C:\Users\renan\Desktop\ZHPCleaner (S).html 2024-06-13 23:10 - 2024-06-13 23:10 - 000004539 _____ C:\Users\renan\Desktop\ZHPCleaner (S).txt 2024-06-13 23:00 - 2024-06-13 23:20 - 000000000 ____D C:\Users\renan\AppData\Roaming\ZHP 2024-06-13 23:00 - 2024-06-13 23:01 - 000000879 _____ C:\Users\renan\Desktop\ZHPCleaner.lnk 2024-06-13 23:00 - 2024-06-13 23:00 - 003364512 _____ (Nicolas Coolman) C:\Users\renan\Desktop\ZHPCleaner.exe 2024-06-13 23:00 - 2024-06-13 23:00 - 000000000 ____D C:\Users\renan\AppData\Local\ZHP 2024-06-13 22:55 - 2024-06-13 22:58 - 000000000 ____D C:\AdwCleaner 2024-06-13 22:55 - 2024-06-13 22:55 - 008790880 _____ (Malwarebytes) C:\Users\renan\Downloads\adwcleaner.exe 2024-06-13 22:53 - 2024-06-13 22:53 - 000747684 _____ C:\WINDOWS\system32\prfh0816.dat 2024-06-13 22:53 - 2024-06-13 22:53 - 000732744 _____ C:\WINDOWS\system32\prfh0416.dat 2024-06-13 22:53 - 2024-06-13 22:53 - 000151054 _____ C:\WINDOWS\system32\prfc0816.dat 2024-06-13 22:53 - 2024-06-13 22:53 - 000146898 _____ C:\WINDOWS\system32\prfc0416.dat 2024-06-13 22:48 - 2024-06-13 22:48 - 007669532 _____ C:\WINDOWS\Minidump\061324-20484-01.dmp 2024-06-13 22:48 - 2024-06-13 22:48 - 000000000 ____D C:\WINDOWS\Minidump 2024-06-13 22:47 - 2024-06-13 22:48 - 000012288 ___SH C:\DumpStack.log.tmp 2024-06-13 22:39 - 2024-06-13 22:48 - 000045552 _____ (Topaz OFD) C:\WINDOWS\system32\Drivers\wsddfac.sys 2024-06-13 22:39 - 2024-04-19 12:39 - 000054768 ____N (Topaz OFD) C:\WINDOWS\system32\Drivers\wsddpp.sys 2024-06-11 23:00 - 2024-06-11 23:00 - 000208840 _____ C:\Users\renan\Downloads\cnh digital.pdf 2024-06-11 17:14 - 2024-06-11 17:14 - 000024821 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-06-11 17:12 - 2024-06-11 17:12 - 000024821 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-06-11 17:05 - 2024-06-11 17:08 - 000000000 ___HD C:\$WinREAgent 2024-06-09 10:29 - 2024-06-09 11:56 - 001289062 _____ C:\Users\renan\Downloads\BIG ODDS BTTS_BSKT PREMIUM (2).xlsx 2024-06-09 09:49 - 2024-06-09 09:49 - 000481602 _____ C:\Users\renan\Documents\06520633909-IRPF-2024-2023-retif-imagem-declaracao.pdf 2024-06-08 13:05 - 2024-06-08 13:05 - 000000000 ____D C:\Users\renan\Downloads\Telegram Desktop 2024-06-05 19:33 - 2024-06-05 19:33 - 000533634 _____ C:\Users\renan\Downloads\CONTROLE VIZINHOS.xlsx 2024-06-05 18:52 - 2024-06-05 18:52 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4140478933-941104255-298867293-1001 2024-06-05 18:52 - 2024-06-05 18:52 - 000002387 _____ C:\Users\renan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-06-03 18:39 - 2024-06-03 18:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-06-01 01:03 - 2024-06-01 01:03 - 000111782 _____ C:\Users\renan\Downloads\Fatura 05-2024.pdf 2024-05-31 17:22 - 2024-05-31 17:22 - 000041572 _____ C:\Users\renan\Downloads\banca aposta 3000 (1).xlsx 2024-05-30 18:41 - 2024-06-01 18:23 - 000041232 _____ C:\Users\renan\Downloads\banca aposta 3000.xlsx 2024-05-28 13:22 - 2024-01-23 18:16 - 000979032 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2024-05-28 13:22 - 2024-01-23 18:16 - 000737752 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2024-05-28 13:22 - 2024-01-23 18:16 - 000541368 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2024-05-28 13:22 - 2024-01-23 18:16 - 000481528 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2024-05-28 13:22 - 2024-01-23 18:15 - 000621752 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2024-05-28 13:22 - 2024-01-23 18:15 - 000480648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2024-05-28 13:22 - 2024-01-23 18:14 - 027983888 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2024-05-28 13:22 - 2024-01-23 18:14 - 000512520 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2024-05-28 13:22 - 2024-01-23 18:14 - 000418352 _____ C:\WINDOWS\system32\ze_loader.dll 2024-05-28 13:22 - 2024-01-23 18:14 - 000179256 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2024-05-28 13:22 - 2024-01-23 18:13 - 020707896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2024-05-22 10:38 - 2024-05-03 02:09 - 001578768 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-05-22 10:38 - 2024-05-03 02:09 - 001578768 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-05-22 10:38 - 2024-05-03 02:08 - 002031376 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-05-22 10:38 - 2024-05-03 02:08 - 002031376 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-05-22 10:38 - 2024-05-03 02:08 - 001488024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-05-22 10:38 - 2024-05-03 02:08 - 001445240 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-05-22 10:38 - 2024-05-03 02:08 - 001445240 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-05-22 10:38 - 2024-05-03 02:08 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-05-22 10:38 - 2024-05-03 02:08 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-05-22 10:38 - 2024-05-03 02:08 - 001226880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-05-22 10:38 - 2024-05-03 02:05 - 001046168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2024-05-22 10:38 - 2024-05-03 02:05 - 000670360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2024-05-22 10:38 - 2024-05-03 02:05 - 000505472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 002174504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 001626136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 001543832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 001199744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 001024560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 000841856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2024-05-22 10:38 - 2024-05-03 02:04 - 000787480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2024-05-22 10:38 - 2024-05-03 02:04 - 000131576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2024-05-22 10:38 - 2024-05-03 02:03 - 016034968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2024-05-22 10:38 - 2024-05-03 02:03 - 012929688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2024-05-22 10:38 - 2024-05-03 02:03 - 006781080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2024-05-22 10:38 - 2024-05-03 02:03 - 005773360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2024-05-22 10:38 - 2024-05-03 02:03 - 003721344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2024-05-22 10:38 - 2024-05-03 02:03 - 000459400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2024-05-22 10:38 - 2024-05-03 02:02 - 005913112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2024-05-22 10:38 - 2024-05-03 02:02 - 000853120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2024-05-22 10:38 - 2024-05-03 02:01 - 006948568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2024-05-22 10:38 - 2024-05-03 02:01 - 006034632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2024-05-22 10:38 - 2024-05-03 00:03 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb 2024-05-19 20:12 - 2024-05-19 20:13 - 000832562 _____ C:\Users\renan\Downloads\BIG ODDS BTTS_BSKT PREMIUM (1).xlsx 2024-05-17 21:15 - 2024-05-17 21:15 - 000000000 ____D C:\Program Files\Common Files\DynamicAppDownloader 2024-05-17 19:42 - 2024-05-17 19:42 - 000085304 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys 2024-05-16 23:25 - 2024-05-16 23:25 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-05-16 23:25 - 2024-05-16 23:25 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-05-16 23:25 - 2024-05-16 23:25 - 000002065 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-05-15 12:50 - 2024-06-11 17:32 - 000472936 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-05-14 16:10 - 2024-05-14 16:10 - 000003950 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate 2024-05-14 00:49 - 2024-05-30 16:41 - 000035235 _____ C:\Users\renan\Downloads\base de dados tipsters.xlsx ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2024-06-13 23:22 - 2021-03-02 18:23 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2024-06-13 23:18 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-06-13 23:06 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-06-13 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-06-13 22:58 - 2021-03-02 18:22 - 000000000 ____D C:\ProgramData\NVIDIA 2024-06-13 22:53 - 2023-02-08 22:22 - 002578360 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-06-13 22:53 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF 2024-06-13 22:51 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-06-13 22:50 - 2021-03-09 16:57 - 000000000 ____D C:\Program Files (x86)\Steam 2024-06-13 22:48 - 2023-02-08 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-06-13 22:48 - 2023-02-08 22:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-06-13 22:48 - 2023-02-08 20:15 - 000000000 ____D C:\Users\renan 2024-06-13 22:48 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-06-13 22:48 - 2021-03-09 16:28 - 000000000 ___RD C:\Users\renan\OneDrive 2024-06-13 22:48 - 2021-03-09 16:26 - 000000000 __SHD C:\Users\renan\IntelGraphicsProfiles 2024-06-13 22:48 - 2021-03-02 22:37 - 2496680409 _____ C:\WINDOWS\MEMORY.DMP 2024-06-13 22:48 - 2021-03-02 18:06 - 000000000 ____D C:\ProgramData\Goodix 2024-06-13 22:48 - 2021-03-02 18:06 - 000000000 ____D C:\Intel 2024-06-13 21:17 - 2024-04-27 14:12 - 000000000 ____D C:\Users\renan\AppData\Roaming\Telegram Desktop 2024-06-13 19:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2024-06-13 19:21 - 2021-03-09 18:17 - 000000000 ____D C:\Users\renan\AppData\Local\CrashDumps 2024-06-13 00:01 - 2021-03-09 17:02 - 000000000 ____D C:\Users\renan\AppData\Roaming\Microsoft\Excel 2024-06-12 22:49 - 2022-10-22 15:51 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2024-06-12 22:49 - 2022-10-22 15:51 - 000075256 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2024-06-12 22:49 - 2021-11-19 03:54 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2024-06-12 22:49 - 2021-03-09 16:43 - 002799200 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2024-06-12 22:49 - 2021-03-09 16:43 - 000222824 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2024-06-12 22:49 - 2021-03-09 16:43 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2024-06-11 18:24 - 2023-02-08 22:18 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK 2024-06-11 17:34 - 2022-05-07 02:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2024-06-11 17:30 - 2023-12-13 17:40 - 000000000 ____D C:\WINDOWS\InboxApps 2024-06-11 17:30 - 2023-10-11 23:41 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\UNP 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\UUS 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\setup 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\BrowserCore 2024-06-11 17:30 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-06-11 17:30 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\servicing 2024-06-11 17:24 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-06-11 17:23 - 2021-03-11 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-06-11 17:19 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-06-11 17:19 - 2021-03-11 19:18 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-06-11 17:14 - 2023-02-08 22:21 - 003216384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-06-09 15:16 - 2021-03-09 15:55 - 000000000 ____D C:\Users\renan\Desktop\Investidores 2024-06-09 13:12 - 2021-03-20 19:15 - 000000000 ____D C:\Users\renan\AppData\Local\D3DSCache 2024-06-09 10:30 - 2021-03-09 16:26 - 000000000 ____D C:\Users\renan\AppData\Local\Packages 2024-06-08 10:59 - 2023-01-16 18:44 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-06-08 10:59 - 2021-01-16 03:52 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-06-06 08:58 - 2023-02-08 22:23 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-06-06 08:58 - 2023-02-08 22:23 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-06-05 18:52 - 2023-02-08 22:23 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4140478933-941104255-298867293-1001 2024-06-05 17:34 - 2021-03-02 18:28 - 000000000 ____D C:\ProgramData\Packages 2024-06-04 16:20 - 2021-03-09 16:55 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-06-04 16:20 - 2021-03-09 16:55 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-06-03 18:39 - 2021-01-16 03:53 - 000000000 ____D C:\Program Files\Microsoft Office 2024-05-17 20:36 - 2024-04-27 20:30 - 000000201 _____ C:\Users\renan\Documents\observar lista tipster.txt 2024-05-17 19:42 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-05-15 17:28 - 2022-05-07 02:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-05-15 12:49 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-05-15 12:48 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemApps 2024-05-14 16:14 - 2021-03-02 18:12 - 000000000 ____D C:\Program Files (x86)\Dell 2024-05-14 16:13 - 2021-03-02 18:12 - 000000000 ____D C:\Program Files\Dell 2024-05-14 00:52 - 2023-03-05 23:49 - 000000000 ____D C:\Users\renan\AppData\Roaming\discord 2024-05-14 00:32 - 2023-03-05 23:49 - 000000000 ____D C:\Users\renan\AppData\Local\Discord ==================== Arquivos na raiz de alguns diretórios ======== 2023-10-22 16:00 - 2023-10-22 16:00 - 000000247 _____ () C:\Users\renan\AppData\Roaming\slotpokerpro_uuid ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================