Ir para conteúdo
Annluciap

[Resolvido] Computador lento e tela preta

Recommended Posts

Prezados, bom dia!

 

Desde ontem a máquina está tendo um comportamento estranho. Quando vou abrir ou fazer download de um arquivo, do nada a tela fica preta durante alguns segundos. Além disso a máquina está mais lenta.

 

Seguem abaixo os logs. 

 

Muito obrigada!

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 03-08-2021
Executado por Famaqui (administrador) em DESKTOP-5J8O8HF (Itautec S.A. Infoway) (04-08-2021 11:05:57)
Executando a partir de C:\Users\Logoterapia\Desktop
Perfis Carregados: Famaqui & Logoterapia
Platform: Windows 10 Pro Versão 21H1 19043.1110 (X64) Idioma: Português (Brasil)
Navegador padrão: Edge
Modo da Inicialização: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2105.4017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\CMUpdater.exe
(ZTE CORPORATION -> ) C:\Program Files (x86)\Claro 3G\UIMain.exe
0 C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
0 C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21062.150.0_x64__8wekyb3d8bbwe\YourPhone.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2021-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Famaqui\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Famaqui\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\RunOnce: [Uninstall 21.083.0425.0003\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Famaqui\AppData\Local\Microsoft\OneDrive\21.083.0425.0003\amd64"
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\RunOnce: [Uninstall 21.083.0425.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Famaqui\AppData\Local\Microsoft\OneDrive\21.083.0425.0003"
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
HKU\S-1-5-21-400714347-516547821-1503872166-1002\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.131\Installer\chrmstp.exe [2021-08-02] (Google LLC -> Google LLC)

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {03BC4C77-54F8-4972-8872-1B979C9BD76B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {3D5AEBDA-DF35-41D9-B853-BDB3267E4AFA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3F7257C1-B5D0-4310-B382-A3B5E9628174} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {58EFA3E4-2454-484C-A331-D4B6E68BA346} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FD8CA2C-4F4C-4EFB-A3C4-F9B07F0A0559} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-06] (Google LLC -> Google LLC)
Task: {D6AB6416-2CE9-4B1E-9B95-6C4C65D2FB5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-06] (Google LLC -> Google LLC)
Task: {DCF0DFC5-3B03-4300-AFD5-5541B012F1E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E5DFEFD4-A329-4D2F-9F38-209EF042D148} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [637368 2021-07-06] (Mozilla Corporation -> Mozilla Foundation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\..\Interfaces\{0F533CE7-7A6A-4ACC-93CA-5BA708D1008D}: [NameServer] 200.169.119.222 200.169.119.221
Tcpip\..\Interfaces\{3269e617-d4aa-4453-b41d-83b4746dcfd9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{636cd3da-d87d-4e07-ab6d-73ddd859b6db}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{7dd83a10-47fc-42d3-9512-f5eade7560af}: [DhcpNameServer] 181.213.132.2 181.213.132.3

Edge: 
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [não encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [não encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [não encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [não encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Famaqui\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-10]

FireFox:
========
FF DefaultProfile: 6al8hfm0.default
FF ProfilePath: C:\Users\Famaqui\AppData\Roaming\Mozilla\Firefox\Profiles\6al8hfm0.default [2021-05-31]
FF ProfilePath: C:\Users\Famaqui\AppData\Roaming\Mozilla\Firefox\Profiles\guqst3oi.default-release [2021-07-10]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default [2021-07-06]
CHR Extension: (Apresentações) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-31]
CHR Extension: (Documentos) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-31]
CHR Extension: (Google Drive) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-31]
CHR Extension: (YouTube) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-31]
CHR Extension: (Planilhas) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-31]
CHR Extension: (Documentos Google off-line) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-31]
CHR Extension: (Gmail) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-31]
CHR Extension: (Chrome Media Router) - C:\Users\Famaqui\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-31]

==================== Serviços (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5395384 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [11776 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> MBB Incorporated)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 ZTEusbmdm6k; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbnmea; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R3 ZTEusbser6k; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [123264 2011-08-29] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três meses (criados) (Whitelisted) =========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-08-04 11:04 - 2021-08-04 11:06 - 000000000 ____D C:\FRST
2021-08-04 11:03 - 2021-08-04 11:02 - 002300416 _____ (Farbar) C:\Users\Logoterapia\Desktop\FRST64.exe
2021-08-04 11:02 - 2021-08-04 11:02 - 002300416 _____ (Farbar) C:\Users\Logoterapia\Downloads\FRST64.exe
2021-08-04 10:56 - 2021-08-04 10:56 - 000030120 _____ C:\Users\Logoterapia\Downloads\(Aula 1) Solicitacao de Férias (1).bpm
2021-07-26 21:05 - 2021-07-26 21:05 - 000007597 _____ C:\Users\Famaqui\AppData\Local\Resmon.ResmonCfg
2021-07-23 17:41 - 2021-07-23 17:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-07-14 21:04 - 2021-07-14 21:04 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-14 21:04 - 2021-07-14 21:04 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-14 21:04 - 2021-07-14 21:04 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-14 21:04 - 2021-07-14 21:04 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-14 21:04 - 2021-07-14 21:04 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-14 21:03 - 2021-07-14 21:03 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-14 20:26 - 2021-07-14 20:26 - 000000000 ____D C:\WINDOWS\PCHEALTH
2021-07-14 19:56 - 2021-07-14 19:56 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2021-07-10 11:36 - 2021-07-10 11:36 - 000101633 _____ C:\Users\Famaqui\Downloads\Boleto_07-2021.pdf
2021-07-10 11:05 - 2021-07-10 11:40 - 000000000 ____D C:\Users\Famaqui\AppData\LocalLow\Adobe
2021-07-10 11:00 - 2021-07-10 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2021-07-10 11:00 - 2021-07-10 11:00 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2021-07-10 11:00 - 2021-07-10 11:00 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2021-07-08 15:27 - 2021-07-15 12:17 - 000092920 _____ C:\Users\Logoterapia\AppData\Local\GDIPFONTCACHEV1.DAT
2021-07-08 09:36 - 2021-07-08 09:36 - 000000000 ____D C:\Users\Logoterapia\AppData\LocalLow\Temp
2021-07-07 16:57 - 2021-07-07 16:57 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\Microsoft Help
2021-07-07 10:49 - 2021-07-07 10:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-07-07 10:49 - 2021-07-07 10:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-07-07 10:49 - 2021-07-07 10:49 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-07 10:49 - 2021-07-07 10:49 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-07 10:49 - 2021-07-07 10:49 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-07 10:49 - 2021-07-07 10:49 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-07 10:49 - 2021-07-07 10:49 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-07 10:48 - 2021-07-07 10:48 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-07-07 10:48 - 2021-07-07 10:48 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-07 10:48 - 2021-07-07 10:48 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-07-07 10:48 - 2021-07-07 10:48 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-07-07 10:48 - 2021-07-07 10:48 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-07-07 10:47 - 2021-07-07 10:47 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-07 10:47 - 2021-07-07 10:47 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-07 10:47 - 2021-07-07 10:47 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-07 10:46 - 2021-07-07 10:46 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-07 10:46 - 2021-07-07 10:46 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-07-07 10:46 - 2021-07-07 10:46 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-07-07 10:45 - 2021-07-07 10:45 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-07-07 10:45 - 2021-07-07 10:45 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-07-07 10:45 - 2021-07-07 10:45 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-07-07 10:24 - 2021-07-07 10:24 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\D3DSCache
2021-07-07 10:23 - 2021-07-07 10:23 - 000000000 ____D C:\Users\Logoterapia\AppData\LocalLow\Adobe
2021-07-07 10:09 - 2021-07-07 10:23 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\Adobe
2021-07-07 10:06 - 2021-07-26 12:16 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\PlaceholderTileLogoFolder
2021-07-06 19:40 - 2021-07-26 08:52 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-400714347-516547821-1503872166-1002
2021-07-06 19:40 - 2021-07-26 08:52 - 000000000 ___RD C:\Users\Logoterapia\OneDrive
2021-07-06 19:29 - 2021-07-28 17:08 - 000000000 ____D C:\Users\Logoterapia\Desktop\SEAD_2021
2021-07-06 19:24 - 2021-08-02 20:22 - 000000000 ____D C:\Users\Logoterapia\AppData\LocalLow\Mozilla
2021-07-06 19:24 - 2021-07-06 19:24 - 000000000 ____D C:\Users\Logoterapia\AppData\Roaming\Mozilla
2021-07-06 19:24 - 2021-07-06 19:24 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\Mozilla
2021-07-06 19:21 - 2021-07-07 11:49 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\Google
2021-07-06 19:14 - 2021-08-02 19:38 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-06 19:14 - 2021-08-02 19:38 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-07-06 19:13 - 2021-07-06 19:13 - 000000000 ____D C:\Program Files\Google
2021-07-06 19:10 - 2021-07-16 13:32 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-06 19:10 - 2021-07-16 13:32 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-06 19:09 - 2021-07-06 19:10 - 001310832 _____ (Google LLC) C:\Users\Famaqui\Downloads\ChromeSetup.exe
2021-07-06 12:27 - 2021-07-06 12:27 - 000000020 ___SH C:\Users\Logoterapia\ntuser.ini
2021-07-06 12:13 - 2021-07-06 12:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-07-06 11:46 - 2021-07-06 11:49 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-400714347-516547821-1503872166-1003
2021-07-06 11:11 - 2021-08-04 10:21 - 000000000 ____D C:\Program Files (x86)\Claro 3G
2021-07-06 11:11 - 2021-07-06 11:11 - 000001692 _____ C:\Users\Public\Desktop\Claro 3G.lnk
2021-07-06 11:11 - 2021-07-06 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Claro 3G
2021-07-06 11:11 - 2021-07-06 11:11 - 000000000 ____D C:\Program Files (x86)\InstallAffixationInfo
2021-07-06 11:11 - 2011-08-29 11:42 - 000123264 _____ (ZTE Incorporated) C:\WINDOWS\system32\Drivers\ZTEusbser6k.sys
2021-07-06 11:11 - 2011-08-29 11:42 - 000123264 _____ (ZTE Incorporated) C:\WINDOWS\system32\Drivers\ZTEusbnmea.sys
2021-07-06 11:11 - 2011-08-29 11:42 - 000123264 _____ (ZTE Incorporated) C:\WINDOWS\system32\Drivers\ZTEusbmdm6k.sys
2021-07-06 11:11 - 2011-08-29 11:42 - 000011776 _____ (MBB Incorporated) C:\WINDOWS\system32\Drivers\massfilter.sys
2021-06-24 19:28 - 2021-06-24 19:28 - 000092920 _____ C:\Users\Famaqui\AppData\Local\GDIPFONTCACHEV1.DAT
2021-06-24 17:46 - 2021-08-02 08:59 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-24 17:46 - 2021-08-02 08:59 - 000003524 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d762f7bbca0061
2021-06-17 12:23 - 2021-06-17 12:23 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-06-17 12:18 - 2021-06-17 12:18 - 000000020 ___SH C:\Users\Famaqui\ntuser.ini
2021-06-16 18:45 - 2021-07-22 09:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-16 18:45 - 2021-07-10 12:46 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-400714347-516547821-1503872166-1001
2021-06-16 18:45 - 2021-07-07 10:47 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-16 18:44 - 2021-06-16 18:45 - 000015243 _____ C:\WINDOWS\diagwrn.xml
2021-06-16 18:44 - 2021-06-16 18:45 - 000015243 _____ C:\WINDOWS\diagerr.xml
2021-06-16 18:40 - 2021-07-22 10:57 - 001651882 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-16 18:31 - 2021-07-26 08:52 - 000002403 _____ C:\Users\Logoterapia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-16 18:31 - 2021-07-10 12:46 - 000002391 _____ C:\Users\Famaqui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-16 18:31 - 2021-07-06 19:40 - 000000000 ____D C:\Users\Logoterapia
2021-06-16 18:31 - 2021-06-24 20:45 - 000000000 ____D C:\Users\Famaqui
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Modelos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Meus Documentos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Menu Iniciar
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Documents\Minhas Músicas
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Documents\Minhas Imagens
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Documents\Meus Vídeos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Dados de Aplicativos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Configurações Locais
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\AppData\Local\Histórico
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\AppData\Local\Dados de Aplicativos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Ambiente de Rede
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Logoterapia\Ambiente de Impressão
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Modelos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Meus Documentos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Menu Iniciar
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Documents\Minhas Músicas
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Documents\Minhas Imagens
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Documents\Meus Vídeos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Dados de Aplicativos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Configurações Locais
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\AppData\Local\Histórico
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\AppData\Local\Dados de Aplicativos
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Ambiente de Rede
2021-06-16 18:31 - 2021-06-16 18:31 - 000000000 _SHDL C:\Users\Famaqui\Ambiente de Impressão
2021-06-16 18:30 - 2021-08-02 09:05 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-16 18:30 - 2021-08-02 09:05 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-16 18:28 - 2021-08-04 10:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-16 18:28 - 2021-07-22 09:48 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-16 18:28 - 2021-07-14 23:17 - 000439632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-16 18:23 - 2021-06-16 18:28 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-06-16 18:19 - 2021-06-16 18:22 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-06-16 18:19 - 2021-06-16 18:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-06-16 18:14 - 2021-06-16 18:14 - 000000000 ____D C:\ProgramData\ssh
2021-06-16 18:05 - 2021-06-16 18:05 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-06-16 18:05 - 2021-06-16 18:05 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-06-16 18:05 - 2021-06-16 18:05 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-06-16 18:05 - 2021-06-16 18:05 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-06-16 18:04 - 2021-06-16 18:04 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-16 18:04 - 2021-06-16 18:04 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-06-16 18:04 - 2021-06-16 18:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-06-16 18:04 - 2021-06-16 18:04 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-06-16 18:04 - 2021-06-16 18:04 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-06-16 18:04 - 2021-06-16 18:04 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-06-16 18:04 - 2021-06-16 18:04 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-06-16 18:04 - 2021-06-16 18:04 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-06-16 18:03 - 2021-06-16 18:03 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-06-16 18:03 - 2021-06-16 18:03 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-06-16 18:03 - 2021-06-16 18:03 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-06-16 18:03 - 2021-06-16 18:03 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-06-16 18:03 - 2021-06-16 18:03 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-06-16 18:03 - 2021-06-16 18:03 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-06-16 18:03 - 2021-06-16 18:03 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-06-16 18:03 - 2021-06-16 18:03 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-16 18:02 - 2021-06-16 18:02 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-06-16 18:02 - 2021-06-16 18:02 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-06-16 18:02 - 2021-06-16 18:02 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-06-16 18:02 - 2021-06-16 18:02 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-06-16 18:02 - 2021-06-16 18:02 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-06-16 18:02 - 2021-06-16 18:02 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-06-16 18:01 - 2021-06-16 18:01 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-06-16 18:01 - 2021-06-16 18:01 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-06-16 18:01 - 2021-06-16 18:01 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-06-16 18:01 - 2021-06-16 18:01 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-06-16 18:01 - 2021-06-16 18:01 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-06-16 18:01 - 2021-06-16 18:01 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-06-16 18:00 - 2021-06-16 18:00 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-06-16 18:00 - 2021-06-16 18:00 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-06-16 18:00 - 2021-06-16 18:00 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-16 18:00 - 2021-06-16 18:00 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-06-16 18:00 - 2021-06-16 18:00 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-06-16 18:00 - 2021-06-16 18:00 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-16 17:59 - 2021-06-16 17:59 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-05-31 17:05 - 2021-06-16 13:56 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2021-05-31 16:21 - 2021-07-06 12:34 - 000000000 ____D C:\Users\Famaqui\AppData\Local\D3DSCache
2021-05-31 16:20 - 2021-08-02 20:22 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-31 16:20 - 2021-07-10 11:26 - 000000000 ____D C:\Users\Famaqui\AppData\LocalLow\Mozilla
2021-05-31 16:20 - 2021-07-06 13:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-31 16:20 - 2021-07-06 13:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-05-31 16:20 - 2021-07-06 12:13 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-31 16:20 - 2021-05-31 16:20 - 000001216 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-05-31 16:20 - 2021-05-31 16:20 - 000000000 ____D C:\Users\Famaqui\AppData\Roaming\Mozilla
2021-05-31 16:20 - 2021-05-31 16:20 - 000000000 ____D C:\Users\Famaqui\AppData\Local\Mozilla
2021-05-31 16:19 - 2021-05-31 16:19 - 000333176 _____ (Mozilla) C:\Users\Famaqui\Downloads\Firefox Installer.exe
2021-05-31 16:13 - 2021-07-29 12:31 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-31 16:13 - 2021-05-31 16:13 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2021-05-31 16:13 - 2021-05-31 16:13 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-05-31 16:12 - 2021-05-31 16:36 - 000000000 ____D C:\ProgramData\Adobe
2021-05-31 16:09 - 2021-07-10 11:05 - 000000000 ____D C:\Users\Famaqui\AppData\Local\Adobe
2021-05-31 15:31 - 2021-07-06 13:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-31 12:38 - 2021-06-27 22:47 - 000000000 ___DC C:\WINDOWS\Panther
2021-05-31 12:28 - 2021-05-31 12:28 - 000000000 ___HD C:\$WinREAgent
2021-05-31 12:17 - 2021-08-04 11:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-05-31 12:14 - 2021-05-31 12:19 - 000000000 ____D C:\Users\Famaqui\AppData\Local\Google
2021-05-31 12:01 - 2021-05-31 12:01 - 001149432 ____N (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2021-05-31 11:59 - 2021-06-16 18:30 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2021-05-31 11:58 - 2021-06-16 18:30 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-05-31 11:54 - 2021-05-31 11:54 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2021-05-31 11:54 - 2021-05-31 11:54 - 038636585 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-05-31 11:54 - 2021-05-31 11:54 - 007281960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-05-31 11:54 - 2021-05-31 11:54 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 006270296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2021-05-31 11:54 - 2021-05-31 11:54 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003769296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003677176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2021-05-31 11:54 - 2021-05-31 11:54 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003353720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003277000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 003159880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001294192 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001159312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000487576 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000416608 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000392768 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000378488 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000327168 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000191064 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000191032 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000154464 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000093800 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2021-05-31 11:54 - 2021-05-31 11:54 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2021-05-31 11:46 - 2021-05-31 12:09 - 000000000 ____D C:\ProgramData\ProductData
2021-05-31 11:46 - 2021-05-31 11:47 - 000000000 ____D C:\Users\Famaqui\AppData\LocalLow\IObit
2021-05-31 11:44 - 2021-05-31 12:09 - 000000000 ____D C:\Users\Famaqui\AppData\Roaming\IObit
2021-05-31 11:44 - 2021-05-31 11:47 - 000000000 ____D C:\ProgramData\IObit
2021-05-19 17:34 - 2021-06-16 18:28 - 000000000 ____D C:\Program Files\UNP

==================== Três meses (modificados) ==================

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2021-08-04 11:08 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-04 11:04 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-03 14:24 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-02 09:05 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-26 08:53 - 2020-02-06 15:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-07-22 10:57 - 2019-12-07 11:53 - 000715446 _____ C:\WINDOWS\system32\prfh0416.dat
2021-07-22 10:57 - 2019-12-07 11:53 - 000140602 _____ C:\WINDOWS\system32\prfc0416.dat
2021-07-22 08:56 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-07-22 08:37 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-21 20:44 - 2020-02-15 12:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-07-17 12:17 - 2019-03-19 01:49 - 000000167 _____ C:\WINDOWS\win.ini
2021-07-15 11:19 - 2020-02-07 17:59 - 000000000 ____D C:\Users\Logoterapia\AppData\Local\Packages
2021-07-14 23:16 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-07-14 23:16 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-14 23:16 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-14 23:16 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-14 23:16 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-14 20:26 - 2020-02-15 12:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2021-07-14 20:14 - 2020-02-14 09:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-14 20:09 - 2020-02-14 09:44 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-14 19:55 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-07-10 12:46 - 2020-02-06 15:41 - 000000000 ___RD C:\Users\Famaqui\OneDrive
2021-07-10 11:05 - 2020-02-06 15:36 - 000000000 ____D C:\Users\Famaqui\AppData\Roaming\Adobe
2021-07-10 11:05 - 2020-02-06 15:36 - 000000000 ____D C:\Users\Famaqui\AppData\Local\Packages
2021-07-10 10:54 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-07-07 11:31 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-07-07 10:57 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing
2021-07-07 10:38 - 2020-02-06 15:53 - 000000000 ____D C:\ProgramData\Packages
2021-07-07 10:23 - 2020-02-07 17:59 - 000000000 ____D C:\Users\Logoterapia\AppData\Roaming\Adobe
2021-07-07 10:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-07-06 12:27 - 2020-02-07 17:59 - 000000000 ___RD C:\Users\Logoterapia\3D Objects
2021-07-06 12:27 - 2020-02-06 15:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-07-06 11:32 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ModemLogs
2021-07-06 11:11 - 2021-04-16 18:06 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

==================== Arquivos na raiz de alguns diretórios ========

2021-07-26 21:05 - 2021-07-26 21:05 - 000007597 _____ () C:\Users\Famaqui\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Não há correção automática para arquivos que não passaram na verificação.)

==================== Fim de FRST.txt ========================

 

 

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 03-08-2021
Executado por Famaqui (04-08-2021 11:13:34)
Executando a partir de C:\Users\Logoterapia\Desktop
Windows 10 Pro Versão 21H1 19043.1110 (X64) (2021-06-16 21:45:35)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-400714347-516547821-1503872166-500 - Administrator - Disabled)
Convidado (S-1-5-21-400714347-516547821-1503872166-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-400714347-516547821-1503872166-503 - Limited - Disabled)
Famaqui (S-1-5-21-400714347-516547821-1503872166-1001 - Administrator - Enabled) => C:\Users\Famaqui
Logoterapia (S-1-5-21-400714347-516547821-1503872166-1002 - Limited - Enabled) => C:\Users\Logoterapia
WDAGUtilityAccount (S-1-5-21-400714347-516547821-1503872166-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version:  - Microsoft)
Claro 3G (HKLM-x32\...\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}) (Version: 1.0.0.1 - )
D-Link DWA-131 - V5.02b04 (HKLM-x32\...\{B7C11488-750D-4E48-A9A4-7207A335984D}) (Version: 5.00.0000 - D-Link)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.131 - Google LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.62 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-400714347-516547821-1503872166-1002\...\OneDriveSetup.exe) (Version: 21.129.0627.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 89.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 89.0.2 (x86 pt-BR)) (Version: 89.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 88.0.1 - Mozilla)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Packages:
=========
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-03] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-14] (Microsoft Corporation) [MS Ad]
MSN Clima -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2021-07-06] (Microsoft Corporation) [MS Ad]

==================== Exame Personalizado CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)

==================== Codecs (Whitelisted) ====================

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============


==================== Alternate Data Streams (Whitelisted) ========

==================== Modo de Segurança (Whitelisted) ==================

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-03-19 01:49 - 2019-03-19 01:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-400714347-516547821-1503872166-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-400714347-516547821-1503872166-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 200.169.119.222 - 200.169.119.221
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-400714347-516547821-1503872166-1002\...\StartupApproved\Run: => "OneDrive"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{62565AD9-1E82-47F4-A9B6-30DBAA379E27}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9E838B19-07DC-44C3-9EC7-62F04FD895EC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{969321D7-151A-4D33-8786-E24CA9C8C308}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{0692F06E-E0E5-4174-AB53-EC255C47F4DA}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-LINK CORPORATION -> D-Link Corp.)
FirewallRules: [UDP Query User{59684D04-B950-46FA-91FC-7353F85BFDAE}C:\users\famaqui\appdata\local\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate\downloads\anydesk (1).exe] => (Allow) C:\users\famaqui\appdata\local\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate\downloads\anydesk (1).exe => Nenhum Arquivo
FirewallRules: [TCP Query User{596A7BFE-9CD2-466B-A7C4-B1E56BFEF841}C:\users\famaqui\appdata\local\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate\downloads\anydesk (1).exe] => (Allow) C:\users\famaqui\appdata\local\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate\downloads\anydesk (1).exe => Nenhum Arquivo
FirewallRules: [{154DFF74-53C7-4D72-9D01-C895BA2293C3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{618F3D23-BC4C-4225-8D62-FCBA7A5535D7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F9A42304-F829-404B-B6AC-B69B24632EBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4158276-6CE5-448B-8DCD-079049EE71D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9AB31CFF-8DB3-400E-BE7D-1345422DA005}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F51070C0-0430-4116-B16E-D2A157D080AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5C494392-E07A-429D-A7D0-738D5616238B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{35872A06-0EBD-491F-9C28-EC977D9C92DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{187CF299-F8AF-4C1A-9C84-21F915FFD58D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{39BF65BC-E226-4385-B2FB-234C6328DF7F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{45EC96E8-65C2-4E32-8AD1-D8C2187DCA2E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{014BC51B-4FAE-473E-84F7-A6E4517FC15E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3AF037D3-710E-477C-BFFC-193177E4FC58}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

ATENÇÃO: A Restauração do Sistema está desabilitada (Total:110.93 GB) (Free:74.24 GB) (67%)

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (08/04/2021 11:03:13 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa SystemSettings.exe versão 10.0.19041.1081 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 5f4

Hora de Início: 01d78931fb671e8e

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID do Relatório: cf711d2d-0800-4653-8df9-3f01dbf67a2e

Nome completo do pacote com falha: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

ID do aplicativo relativo ao pacote com falha: microsoft.windows.immersivecontrolpanel

Tipo com falha: Quiesce

Error: (07/30/2021 02:44:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ShellExperienceHost.exe, versão: 10.0.19041.610, carimbo de data/hora: 0x5d4af3f4
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.19041.1110, carimbo de data/hora: 0x4809adf2
Código de exceção: 0xc0000409
Deslocamento da falha: 0x000000000010bd3e
ID do processo com falha: 0x1bcc
Hora de início do aplicativo com falha: 0x01d7853c4141e794
Caminho do aplicativo com falha: C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 3044a2c2-d45c-4a24-b304-43ad661b2c9c
Nome completo do pacote com falha: Microsoft.Windows.ShellExperienceHost_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: App

Error: (07/19/2021 08:30:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa SystemSettings.exe versão 10.0.19041.1081 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 1264

Hora de Início: 01d77c90f8506838

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID do Relatório: 50093640-a8d4-4fbe-8fd1-524e1200f644

Nome completo do pacote com falha: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

ID do aplicativo relativo ao pacote com falha: microsoft.windows.immersivecontrolpanel

Tipo com falha: Quiesce

Error: (07/15/2021 09:05:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa SystemSettings.exe versão 10.0.19041.1081 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 4dc

Hora de Início: 01d7797024afaed0

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID do Relatório: de651d3a-0c45-478e-8954-8b7028da131a

Nome completo do pacote com falha: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

ID do aplicativo relativo ao pacote com falha: microsoft.windows.immersivecontrolpanel

Tipo com falha: Quiesce

Error: (07/10/2021 10:55:04 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={A4AE9779-CB40-46D7-9AFB-CCED617F0A56}: o usuário DESKTOP-5J8O8HF\Famaqui discou uma conexão de nome Banda Larga 3G que falhou. O código do erro retornado na falha é 797.

Error: (07/06/2021 02:29:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa UIMain.exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 914

Hora de Início: 01d7728c6cd0c106

Hora de Término: 214

Caminho do Aplicativo: C:\Program Files (x86)\Claro 3G\UIMain.exe

ID do Relatório: 858f0029-0b13-41bf-bc57-1e36d8b9b291

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (07/06/2021 02:28:40 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={DB9D500B-5843-49B2-BAF2-DA8A5DBE8E11}: o usuário DESKTOP-5J8O8HF\Famaqui discou uma conexão de nome Banda Larga 3G que falhou. O código do erro retornado na falha é 720.

Error: (07/06/2021 02:26:24 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={50E7B95B-2AE3-44EC-BCCA-93084B58F816}: o usuário DESKTOP-5J8O8HF\Famaqui discou uma conexão de nome Banda Larga 3G que falhou. O código do erro retornado na falha é 618.


Erros de Sistema:
=============
Error: (08/03/2021 08:27:57 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: AUTORIDADE NT)
Description: Verificação de volume criptografado: as informações de volume em H: não podem ser lidas.

Error: (07/30/2021 03:56:03 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/30/2021 03:52:02 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/30/2021 03:48:00 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/30/2021 03:43:58 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/30/2021 12:58:07 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/30/2021 12:24:35 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-5J8O8HF)
Description: A ativação do CLSID {A1F4E726-8CF1-11D1-BF92-0060081ED811} atingiu o tempo limite durante a espera pela parada do serviço stisvc.

Error: (07/29/2021 09:35:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5J8O8HF)
Description: O servidor Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca não se registrou no DCOM dentro do tempo limite necessário.


Windows Defender:
================
Date: 2021-08-04 10:19:13
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {9AA06346-1B97-4062-8034-A9D05C7C9D4D}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-08-02 09:07:34
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {BE328646-056C-4EF3-8FD5-C8E98E41AFC4}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-07-30 09:23:00
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {D70AEAA1-A2FF-4A52-9A47-8B2536172CDE}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-07-29 09:08:52
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {D9CD6D42-D3D6-4703-98F5-2CFEBFB87C32}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-07-28 09:24:17
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {EFA45D3B-95F3-4470-BF18-48FA10EE65B3}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2021-07-22 08:56:15
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar carregar a inteligência de segurança e tentará reverter para uma versão válida.
Tentativa de Inteligência de Segurança: Backup
Código de Erro: 0x80004004
Descrição do Erro: Operação anulada 
Versão da Inteligência de Segurança: 1.343.1390.0;1.343.1390.0
Versão do Mecanismo: 1.1.18300.4

Date: 2021-07-22 08:56:14
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar carregar a inteligência de segurança e tentará reverter para uma versão válida.
Tentativa de Inteligência de Segurança: Atual
Código de Erro: 0x80004004
Descrição do Erro: Operação anulada 
Versão da Inteligência de Segurança: 1.343.1461.0;1.343.1461.0
Versão do Mecanismo: 1.1.18300.4

==================== Informações da Memória =========================== 

BIOS: Itautec ST 4253, 0006- SL2 01/20/2009
placa-mãe: Itautec S.A. ST 4253
Processador: Intel(R) Pentium(R) Dual CPU E2140 @ 1.60GHz
Percentagem de memória em uso: 81%
RAM física total: 2038.24 MB
RAM física disponível: 370.3 MB
Virtual Total: 5778.59 MB
Virtual disponível: 1025.33 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.93 GB) (Free:74.24 GB) NTFS
Drive f: (DWA-131) (CDROM) (Total:0.11 GB) (Free:0 GB) UDF
Drive g: (ZTEMODEM) (CDROM) (Total:0.03 GB) (Free:0 GB) CDFS

\\?\Volume{2bd2c32a-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.35 GB) (Free:0.32 GB) NTFS
\\?\Volume{2bd2c32a-0000-0000-0000-20d21b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=356 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=524 MB) - (Type=27)

==================== Fim de Addition.txt =======================

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Tarde! Annluciap /!\

 

> Copie estas informações que estão no Spoiler,para o Bloco de Notas.
> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

 

7n1UbBWO_t.jpg

 

 

start::
closeprocesses:
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
HKU\S-1-5-21-400714347-516547821-1503872166-1002\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
startpowershell:
sfc /scannow
DISM /Online /Cleanup-image /Restorehealth
endpowershell:
SystemRestore: On
emptytemp:
reboot:
end::

 

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

< Este script foi elaborado exclusivamente para este computador,portanto peço aos visitantes que não o utilize em outras "máquinas". >

 

[]s

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa noite, DigRam!

 

Segue abaixo o relatório.

 

Obrigada!

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 03-08-2021
Executado por Famaqui (05-08-2021 22:01:41) Run:1
Executando a partir de C:\Users\Logoterapia\Desktop
Perfis Carregados: Famaqui & Logoterapia
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
closeprocesses:
HKU\S-1-5-21-400714347-516547821-1503872166-1001\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
HKU\S-1-5-21-400714347-516547821-1503872166-1002\...\MountPoints2: {e8a76c62-d52c-11eb-ad1c-0023549f654e} - "G:\Windows/AutoRun.exe" 
startpowershell:
sfc /scannow
DISM /Online /Cleanup-image /Restorehealth
endpowershell:
SystemRestore: On
emptytemp:
reboot:

*****************

Processos fechados com sucesso.
HKU\S-1-5-21-400714347-516547821-1503872166-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e} => removido (a) com sucesso.
HKU\S-1-5-21-400714347-516547821-1503872166-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e} => removido (a) com sucesso.

========= Powershell: =========


 
 
 I n i c i a n d o   v e r i f i c a þ Ò o   d e   a r q u i v o s .   O   p r o c e s s o   l e v a r ß   a l g u n s   m i n u t o s   p a r a   s e r   c o n c l u Ý d o . 
 
 
 
 
 
 I n i c i a n d o   f a s e   d e   v e r i f i c a þ Ò o   d e   v e r i f i c a þ Ò o   d o   s i s t e m a . 
 
 
 
 V e r i f i c a þ Ò o   0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   2 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   3 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   4 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   5 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   6 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   7 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   8 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 0 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 1 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 2 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 3 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 4 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 5 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 6 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 7 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 8 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   9 9 %   c o n c l u Ý d a . 
 V e r i f i c a þ Ò o   1 0 0 %   c o n c l u Ý d a . 
 
 
 
 
 A   P r o t e þ Ò o   d e   R e c u r s o s   d o   W i n d o w s   e n c o n t r o u   a r q u i v o s   c o r r o m p i d o s   e   o s   r e p a r o u   c o m   Û x i t o . 
 
 
 P a r a   r e p a r o s   o n l i n e ,   o s   d e t a l h e s   s Ò o   i n c l u Ý d o s   n o   a r q u i v o   d e   l o g   C B S   l o c a l i z a d o   e m 
 
 
 w i n d i r \ L o g s \ C B S \ C B S . l o g .   P o r   e x e m p l o ,   C : \ W i n d o w s \ L o g s \ C B S \ C B S . l o g .   P a r a   r e p a r o s 
 
 
 o f f l i n e ,   o s   d e t a l h e s   s Ò o   i n c l u Ý d o s   n o   a r q u i v o   d e   l o g   f o r n e c i d o   p e l o   s i n a l i z a d o r   / O F F L O G F I L E . 
 
 
 

Ferramenta de Gerenciamento e Manutenção de Imagens de Implantação
Versão: 10.0.19041.844

Versão da Imagem: 10.0.19043.1110


[==                         3.8%                           ] 

[==                         4.2%                           ] 

[==                         4.2%                           ] 

[==                         4.5%                           ] 

[==                         4.9%                           ] 

[===                        5.4%                           ] 

[===                        5.7%                           ] 

[===                        6.2%                           ] 

[===                        6.7%                           ] 

[====                       7.2%                           ] 

[====                       7.8%                           ] 

[====                       8.5%                           ] 

[=====                      9.2%                           ] 

[=====                      10.1%                          ] 

[======                     10.4%                          ] 

[======                     11.4%                          ] 

[=======                    12.4%                          ] 

[=======                    13.4%                          ] 

[========                   14.3%                          ] 

[========                   15.3%                          ] 

[=========                  16.2%                          ] 

[=========                  17.1%                          ] 

[==========                 17.7%                          ] 

[==========                 18.6%                          ] 

[===========                19.6%                          ] 

[===========                20.5%                          ] 

[============               21.0%                          ] 

[============               21.9%                          ] 

[============               22.0%                          ] 

[============               22.3%                          ] 

[=============              22.6%                          ] 

[=============              22.9%                          ] 

[=============              23.3%                          ] 

[=============              23.4%                          ] 

[=============              23.8%                          ] 

[=============              23.8%                          ] 

[=============              24.0%                          ] 

[=============              24.1%                          ] 

[=============              24.1%                          ] 

[==============             24.4%                          ] 

[==============             25.3%                          ] 

[===============            26.1%                          ] 

[===============            27.1%                          ] 

[================           28.1%                          ] 

[================           29.1%                          ] 

[=================          30.0%                          ] 

[=================          30.7%                          ] 

[==================         31.4%                          ] 

[==================         32.2%                          ] 

[===================        32.8%                          ] 

[===================        33.4%                          ] 

[===================        34.1%                          ] 

[===================        34.4%                          ] 

[====================       35.1%                          ] 

[====================       35.6%                          ] 

[====================       35.7%                          ] 

[====================       35.8%                          ] 

[====================       36.0%                          ] 

[====================       36.0%                          ] 

[=====================      36.2%                          ] 

[=====================      36.4%                          ] 

[=====================      36.5%                          ] 

[=====================      36.7%                          ] 

[=====================      36.7%                          ] 

[=====================      37.0%                          ] 

[=====================      37.1%                          ] 

[=====================      37.4%                          ] 

[=====================      37.7%                          ] 

[=====================      37.7%                          ] 

[=====================      37.9%                          ] 

[======================     38.1%                          ] 

[======================     38.5%                          ] 

[======================     38.6%                          ] 

[======================     39.0%                          ] 

[=======================    39.7%                          ] 

[=======================    40.5%                          ] 

[=======================    40.9%                          ] 

[=======================    41.4%                          ] 

[========================   41.7%                          ] 

[========================   41.7%                          ] 

[========================   42.0%                          ] 

[========================   42.4%                          ] 

[========================   42.6%                          ] 

[========================   43.0%                          ] 

[=========================  43.2%                          ] 

[=========================  43.5%                          ] 

[=========================  43.7%                          ] 

[=========================  43.8%                          ] 

[=========================  44.2%                          ] 

[=========================  44.4%                          ] 

[=========================  44.7%                          ] 

[========================== 45.0%                          ] 

[========================== 45.3%                          ] 

[========================== 45.7%                          ] 

[===========================46.6%                          ] 

[===========================46.7%                          ] 

[===========================47.7%                          ] 

[===========================48.5%                          ] 

[===========================48.8%                          ] 

[===========================49.8%                          ] 

[===========================50.8%                          ] 

[===========================51.8%                          ] 

[===========================52.5%                          ] 

[===========================52.6%                          ] 

[===========================52.6%                          ] 

[===========================52.6%                          ] 

[===========================52.7%                          ] 

[===========================52.8%                          ] 

[===========================52.9%                          ] 

[===========================53.0%                          ] 

[===========================53.0%                          ] 

[===========================53.1%                          ] 

[===========================53.1%                          ] 

[===========================53.1%                          ] 

[===========================53.1%                          ] 

[===========================53.2%                          ] 

[===========================53.2%                          ] 

[===========================53.3%                          ] 

[===========================53.4%                          ] 

[===========================53.4%                          ] 

[===========================53.4%                          ] 

[===========================53.5%                          ] 

[===========================53.6%                          ] 

[===========================53.7%                          ] 

[===========================53.7%                          ] 

[===========================53.8%                          ] 

[===========================53.9%                          ] 

[===========================53.9%                          ] 

[===========================54.0%                          ] 

[===========================54.0%                          ] 

[===========================54.0%                          ] 

[===========================54.1%                          ] 

[===========================54.2%                          ] 

[===========================54.3%                          ] 

[===========================54.3%                          ] 

[===========================54.3%                          ] 

[===========================54.4%                          ] 

[===========================54.4%                          ] 

[===========================54.5%                          ] 

[===========================54.6%                          ] 

[===========================54.6%                          ] 

[===========================54.6%                          ] 

[===========================54.6%                          ] 

[===========================54.7%                          ] 

[===========================54.8%                          ] 

[===========================54.8%                          ] 

[===========================54.8%                          ] 

[===========================54.9%                          ] 

[===========================54.9%                          ] 

[===========================55.0%                          ] 

[===========================55.1%                          ] 

[===========================55.2%                          ] 

[===========================55.3%                          ] 

[===========================55.3%                          ] 

[===========================55.4%                          ] 

[===========================55.5%                          ] 

[===========================55.5%                          ] 

[===========================55.6%                          ] 

[===========================55.7%                          ] 

[===========================55.8%                          ] 

[===========================55.8%                          ] 

[===========================56.4%                          ] 

[===========================56.6%                          ] 

[===========================56.8%                          ] 

[===========================57.1%=                         ] 

[===========================57.7%=                         ] 

[===========================58.7%==                        ] 

[===========================59.5%==                        ] 

[===========================62.3%====                      ] 

[===========================84.9%=================         ] 

[==========================100.0%==========================] 
Operação de restauração concluída com êxito.
A operação foi concluída com êxito.

========= Fim de Powershell: =========

SystemRestore: On => completado

=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25090926 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 127083642 B
Edge => 1268944 B
Chrome => 18428513 B
Firefox => 63029903 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 125174 B
Famaqui => 235002863 B
Logoterapia => 243656113 B

RecycleBin => 0 B
EmptyTemp: => 688.4 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 22:17:22 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Tarde! Annluciap /!\

 

Houve melhoras? 

Tudo Ok?  :smile:

 

[]s

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa tarde, DigRam!

 

Sim! Agora não há mais tela preta e lentidão. :smile:

 

Está tudo ok!

 

Uma pergunta: Por que é a terceira vez que aparece um autorun.exe no dispositivo USB de acesso à rede? Será que estou fazendo algo "indevido"? Quais são as tuas dicas/sugestões, por favor?

 

Muito obrigada!

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite! Annluciap /!\

 

start::
CloseProcesses:
StartRegedit:
Windows Registry Editor Version 5.00

 

HKEY_CURRENT_USER\S-1-5-21-400714347-516547821-1503872166-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e}

HKEY_CURRENT_USER\S-1-5-21-400714347-516547821-1503872166-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e} 
EndRegedit:
Emptytemp:
Reboot:
End::

 

Copie estas informações a um Bloco de Notas.

Salve-as ao desktop com o nome fixlist.

------

Abra a FRST e clique Corrigir.

Após a reinicialização,verifique se ficou Ok?

------

Outra opção é estabelecer um valor ao registro,com dword igual a 4.

 

kECIXUFo_o.jpg

 

Reinicie após o valor!

 

[]s

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom dia, DigRam!

 

Realizei a primeira opção!

 

Segue o relatório da correção.

 

Obrigada!

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 11-08-2021
Executado por Famaqui (13-08-2021 09:03:20) Run:2
Executando a partir de C:\Users\Logoterapia\Desktop
Perfis Carregados: Famaqui & Logoterapia
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CloseProcesses:
StartRegedit:
Windows Registry Editor Version 5.00
 
HKEY_CURRENT_USER\S-1-5-21-400714347-516547821-1503872166-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e}
HKEY_CURRENT_USER\S-1-5-21-400714347-516547821-1503872166-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8a76c62-d52c-11eb-ad1c-0023549f654e} 
EndRegedit:
Emptytemp:
Reboot:

*****************

Processos fechados com sucesso.
Registro ====> A opera��o foi conclu�da com �xito.

=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4232942 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 23613382 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 21240 B
Famaqui => 38017399 B
Logoterapia => 387709951 B

RecycleBin => 0 B
EmptyTemp: => 440.4 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 09:03:50 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Bom Dia! Annluciap /!\

 

Citar

E numa terceira opção, existe a tentativa pela diretiva de grupo,para desabilitar o AutoRun.

Tudo Ok?

 

[]s

 

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

PROBLEMA RESOLVIDO 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.