Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 11-12-2021 Executado por teste (22-12-2021 15:53:16) Executando a partir de C:\Users\luize\Desktop Microsoft Windows 10 Home Single Language Versão 21H1 19043.1415 (X64) (2020-10-09 17:26:36) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-2542068703-144574761-1523392838-500 - Administrator - Enabled) => C:\Users\Administrador Convidado (S-1-5-21-2542068703-144574761-1523392838-501 - Limited - Disabled) DefaultAccount (S-1-5-21-2542068703-144574761-1523392838-503 - Limited - Disabled) teste (S-1-5-21-2542068703-144574761-1523392838-1001 - Administrator - Enabled) => C:\Users\luize testet (S-1-5-21-2542068703-144574761-1523392838-1004 - Administrator - Enabled) => C:\Users\testet WDAGUtilityAccount (S-1-5-21-2542068703-144574761-1523392838-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Norton Security (Disabled - Out of date) {1122B19A-E671-38EC-8EAC-87048FD4528D} AV: Norton Security (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E} FW: Norton Security (Disabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\uTorrent) (Version: 3.5.5.45966 - BitTorrent Inc.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Abuse for Windows - Full (HKLM-x32\...\Abuse for Windows - Full) (Version: - ) Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3004 - Acer Incorporated) Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1046-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 6.3.3 - AnyDesk Software GmbH) Apache NetBeans IDE 12.4 (HKLM\...\nbi-nb-all-12.4.0.0.210514) (Version: 12.4 - Apache NetBeans) ApowerREC V1.4.12.6 (HKLM-x32\...\{6F2998B2-21F7-4CEF-94B2-C3919D939CF9}_is1) (Version: 1.4.12.6 - Apowersoft LIMITED) App Explorer (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\Host App Service) (Version: 0.273.4.369 - SweetLabs) <==== ATENÇÃO App Explorer (HKU\S-1-5-21-2542068703-144574761-1523392838-1004\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ATENÇÃO App Explorer (HKU\S-1-5-21-2542068703-144574761-1523392838-500\...\Host App Service) (Version: 0.273.4.346 - SweetLabs) <==== ATENÇÃO Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden Assistente de Atualização do Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22329 - Microsoft Corporation) Cheat Engine 7.1 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine) CodeBlocks (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\CodeBlocks) (Version: 20.03 - The Code::Blocks Team) CPUID CPU-Z 1.96 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.96 - CPUID, Inc.) CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.) DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 5.7.0.1284 - Disc Soft Ltd) Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.) Discord (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\Discord) (Version: 0.0.310 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{ECDCFB08-3C8E-4072-93C1-7A3EFDFCF4F9}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Ferramentas de Build do Visual Studio 2017 (HKLM-x32\...\b15bc937) (Version: 15.9.38 - Microsoft Corporation) Fresco Logic USB Display Driver (HKLM\...\{FC11E022-A625-48EA-85EB-AF2AFEF05B06}) (Version: 2.1.34054.0 - Fresco Logic) GameRanger (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\GameRanger) (Version: - GameRanger Technologies) Git (HKLM\...\Git_is1) (Version: 2.34.1 - The Git Development Community) GitHub Desktop (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\GitHubDesktop) (Version: 2.9.0 - GitHub, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.31 - CRYPTOCOMPANY) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6576 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1713.2 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.38.2 - Tonec Inc.) Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation) Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation) Java SE Development Kit 8 Update 271 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180271}) (Version: 8.0.2710.9 - Oracle Corporation) Java(TM) SE Development Kit 10.0.2 (64-bit) (HKLM\...\{71307D56-8005-5F5E-9227-BFA2754D6E54}) (Version: 10.0.2.0 - Oracle Corporation) Java(TM) SE Development Kit 11.0.11 (64-bit) (HKLM\...\{7383FAC9-7481-5A92-A58B-85830D7B2AD3}) (Version: 11.0.11.0 - Oracle Corporation) Java(TM) SE Development Kit 16.0.2 (64-bit) (HKLM\...\{84539E3B-68B6-54F1-9CA3-EA920673C714}) (Version: 16.0.2.0 - Oracle Corporation) Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lazesoft Disk Image & Clone version 4.5 Home Edition (HKLM-x32\...\LS-EB1DCDDE-C48C-4815-AA22-4C5B9AEAF423_is1) (Version: 4.5 - Lazesoft) LibreOffice 7.2 Help Pack (Portuguese (Brazil)) (HKLM\...\{6BA641C5-1682-48B9-8C7B-7480C4A81931}) (Version: 7.2.1.2 - The Document Foundation) LibreOffice 7.2.1.2 (HKLM\...\{942CC03C-C118-4250-BD81-7BBB53A57FCE}) (Version: 7.2.1.2 - The Document Foundation) Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains) LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - ) Microsoft .NET SDK 5.0.401 (x64) (HKLM-x32\...\{b8f1fff9-9f10-4429-9ab6-a517f3f57a8f}) (Version: 5.4.121.42430 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.62 - Microsoft Corporation) Microsoft Office Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Retail - en-us) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Office Professional Plus 2021 - pt-br (HKLM\...\ProPlus2021Retail - pt-br) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2542068703-144574761-1523392838-1004\...\OneDriveSetup.exe) (Version: 21.139.0711.0001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2542068703-144574761-1523392838-500\...\OneDriveSetup.exe) (Version: 21.170.0822.0002 - Microsoft Corporation) Microsoft Project - en-us (HKLM\...\ProjectPro2021Retail - en-us) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Project - pt-br (HKLM\...\ProjectPro2021Retail - pt-br) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visio - en-us (HKLM\...\VisioPro2021Retail - en-us) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Visio - pt-br (HKLM\...\VisioPro2021Retail - pt-br) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30135 (HKLM-x32\...\{fa7f6d52-f85e-48ef-8f56-a37268aa5772}) (Version: 14.29.30135.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.63.1 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.11.35.61819 - Microsoft Corporation) Mozilla Firefox (x64 pt-PT) (HKLM\...\Mozilla Firefox 95.0.2 (x64 pt-PT)) (Version: 95.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.2.0 - Mozilla) Mozilla Thunderbird (x64 pt-BR) (HKLM\...\Mozilla Thunderbird 91.4.1 (x64 pt-BR)) (Version: 91.4.1 - Mozilla) MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden MySQL Workbench 8.0 CE (HKLM\...\{90AB709E-8C47-4765-B654-5005B3739938}) (Version: 8.0.22 - Oracle Corporation) Naruto The Way of the Ninja 2.0 (HKLM-x32\...\{97291EC1-734A-465E-8246-141D9A665077}) (Version: 2.0 - Phoenix Crew) Node.js (HKLM\...\{402B92D4-F32A-4800-87F6-45784E450326}) (Version: 14.17.6 - Node.js Foundation) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.4 - Notepad++ Team) NVIDIA Driver de gráficos 442.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.23 - NVIDIA Corporation) NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.14701.20248 - Microsoft Corporation) Hidden OpenVPN Connect (HKLM\...\{A3C05382-3570-4D7F-821D-74666EACABDE}) (Version: 3.3.1 - OpenVPN Technologies) Opera Stable 78.0.4093.231 (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\Opera 78.0.4093.231) (Version: 78.0.4093.231 - Opera Software) Opera Stable 82.0.4227.33 (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\Opera 82.0.4227.33) (Version: 82.0.4227.33 - Opera Software) Oracle VM VirtualBox 5.2.44 (HKLM\...\{E23E2611-1404-47EA-B5CA-EF08D152DD14}) (Version: 5.2.44 - Oracle Corporation) Outlive (HKLM-x32\...\Outlive) (Version: - ) Pacote de Driver do Windows - Fresco Logic (fl2000) AVClass (11/13/2017 2.1.34054.0) (HKLM\...\02B94313A3DAF5BA27BCC4FAEA0716A0F660086C) (Version: 11/13/2017 2.1.34054.0 - Fresco Logic) Pacote de Driver do Windows - Fresco Logic (lci_proxykmd) System (11/13/2017 2.1.34054.0) (HKLM\...\7C22E1F94C4AE5334C0BEE70551B20BEE3C293FA) (Version: 11/13/2017 2.1.34054.0 - Fresco Logic) Pacote de Driver do Windows - Fresco Logic (WUDFRd) Display (11/13/2017 2.1.34054.0) (HKLM\...\9328342CF3E5994E24BB0C09FBD875141BEF3984) (Version: 11/13/2017 2.1.34054.0 - Fresco Logic) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) Python 3.10.0 Core Interpreter (64-bit debug) (HKLM\...\{11247C45-2E6B-4217-9041-15982752F830}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Core Interpreter (64-bit) (HKLM\...\{B137EFE9-BD8A-4138-AC7F-360461C4EEAF}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Development Libraries (64-bit debug) (HKLM\...\{0F8B8192-2B30-47FE-8E16-80925FDD2CF2}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Development Libraries (64-bit) (HKLM\...\{A8E320AF-B8C7-493C-97D8-6328C1CE721B}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Documentation (64-bit) (HKLM\...\{23A78F0F-0B41-497A-BB67-7E9AC3C20351}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Executables (64-bit debug) (HKLM\...\{5DCF5558-2232-4DAC-92CA-C1245808998F}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Executables (64-bit) (HKLM\...\{D623791F-7EBA-4794-BF56-79D4CFC6BE65}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 pip Bootstrap (64-bit) (HKLM\...\{D545AFB9-E0E8-4B43-897A-0EB97ED46859}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Standard Library (64-bit debug) (HKLM\...\{96832352-07CB-4D5C-A302-38C0317576D4}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Standard Library (64-bit) (HKLM\...\{BB3BA776-4C84-43FB-9CE6-5A37FFC23032}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Tcl/Tk Support (64-bit debug) (HKLM\...\{FB4CD9D5-E81C-4F8E-9CD3-9D0984F05F38}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Tcl/Tk Support (64-bit) (HKLM\...\{AE37C7FB-835D-4E31-851E-801D5C659A3E}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Test Suite (64-bit debug) (HKLM\...\{747C2029-482E-41F6-94D1-7AC38AEE3307}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Test Suite (64-bit) (HKLM\...\{6B61C3C6-43DE-4D58-BDC4-76170C7C7C32}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.10.0 Utility Scripts (64-bit) (HKLM\...\{578C5B87-CBE0-4720-90C0-46A917C4FE5C}) (Version: 3.10.150.0 - Python Software Foundation) Hidden Python 3.9.7 (64-bit) (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\{0f0bf1a5-3ec1-459b-ab7c-916db941f50d}) (Version: 3.9.7150.0 - Python Software Foundation) Python 3.9.7 Add to Path (64-bit) (HKLM\...\{832BFE8B-69A2-4E1D-8998-DFB9CBA4B4D3}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Core Interpreter (64-bit) (HKLM\...\{88D4EF59-607D-43AD-B7C7-F5A753740FD1}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Development Libraries (64-bit) (HKLM\...\{97496FC6-5044-4A2A-BACD-40A44F38D483}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Documentation (64-bit) (HKLM\...\{AA408E09-EBB3-470F-8D63-5AA0C46C2DA2}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Executables (64-bit) (HKLM\...\{870EC220-FEAE-481D-8B29-B4B0DF5402FA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 pip Bootstrap (64-bit) (HKLM\...\{F1280AA2-AAC3-41AB-9616-CCF00814E626}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Standard Library (64-bit) (HKLM\...\{05903EEF-72A2-4C1A-AD35-41AD6C7094A8}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Tcl/Tk Support (64-bit) (HKLM\...\{6E8EAD3C-6F0C-494C-9C12-E10C5B5EE7EA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Test Suite (64-bit) (HKLM\...\{67D79D6E-8497-4EE6-850B-834D3A27553F}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Utility Scripts (64-bit) (HKLM\...\{4110826A-903C-410C-9785-7848A51B9CC9}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{463B0974-B1E1-401E-8F59-B0F9F81258E4}) (Version: 3.10.7581.0 - Python Software Foundation) Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10434 - Qualcomm) Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.312 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8907.1 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) RogueKiller version 15.1.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 15.1.2.0 - Adlice Software) SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Sentinel System Driver Installer 7.5.0 (HKLM-x32\...\{FAEE61D3-2A5E-4F7F-926F-77AAC08CE4DD}) (Version: 7.5.0 - SafeNet, Inc.) Software de dispositivo do Chipset Intel® (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Titanfall 2 MULTi7 - ElAmigos versão 2.0.6.1 (HKLM-x32\...\{F794E8A5-6960-44A7-AB29-1ECE5DCCBFC6}_is1) (Version: 2.0.6.1 - Electronic Arts) Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Unreal Tournament 2004 (HKLM-x32\...\GOGPACKUT2004_is1) (Version: 2.0.0.6 - GOG.com) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) vcpp_crt.redist.clickonce (HKLM-x32\...\{608E7419-DAC9-4848-8A01-984897E19CA7}) (Version: 14.16.27033 - Microsoft Corporation) Hidden VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) VNC Viewer 6.21.406 (HKLM\...\{5D7DB751-3D0B-4F60-A3BF-24DB16451D73}) (Version: 6.21.406.44671 - RealVNC Ltd) vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-3) (Version: 1.0.54.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-4) (Version: 1.0.54.1 - LunarG, Inc.) Hidden WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation) WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Zoom (HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\ZoomUMX) (Version: 5.7.8 (1247) - Zoom Video Communications, Inc.) Packages: ========= abFiles -> C:\Program Files\WindowsApps\AcerIncorporated.abFiles_1.0.7.0_x86__48frkmn4z8aw4 [2021-09-24] (Acer Incorporated) abPhoto -> C:\Program Files\WindowsApps\AcerIncorporated.6245439DEEE9E_1.0.10.0_x86__48frkmn4z8aw4 [2021-10-21] (Acer Incorporated) Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2021-12-22] (Amazon.com) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-09-24] (Autodesk Inc.) Booking.com -> C:\Program Files\WindowsApps\Booking.com_1.0.1606.2210_x64__96rgg7pjt343r [2021-09-24] (CN=Acer Incorporated) Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-09-24] (Microsoft Corporation) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-24] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.11.265.0_x64__rz1tebttyb220 [2021-12-16] (Dolby Laboratories) eBay -> C:\Program Files\WindowsApps\eBay_1.0.1606.2210_x64__96rgg7pjt343r [2021-09-24] (CN=Acer Incorporated) Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.27.5.0_x86__q4d96b2w5wcc2 [2021-12-18] (Evernote) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-16] (HP Inc.) Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2021-12-08] (Keeper Security Inc) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-09-24] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-09-24] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-16] (Microsoft Studios) [MS Ad] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_51.10913.5796.0_x64__8wekyb3d8bbwe [2021-12-02] (Microsoft Corporation) Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2021-09-24] (MAGIX) One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2021.922.2.0_x64__8kea50m9krsh2 [2021-12-08] (Code Spark) Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2021-12-08] (Plex) Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.15.163.0_x64__43tkc6nmykmb6 [2021-12-08] (Ookla) Ubuntu 20.04 LTS -> C:\Program Files\WindowsApps\CanonicalGroupLimited.Ubuntu20.04onWindows_2004.2021.825.0_x64__79rhkp1fndgsc [2021-12-09] (Canonical Group Limited) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-12-31] (Notepad++ -> ) ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Nenhum Arquivo ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.) [Arquivo não assinado] ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Nenhum Arquivo ContextMenuHandlers2: [DaemonShellExtDriveUltra] -> {F0E53CA3-02F8-40AE-9470-309F0309036F} => C:\Program Files\DAEMON Tools Ultra\dtshl64.dll [2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) ContextMenuHandlers3: [DaemonShellExtImageUltra] -> {B5EBA666-2B94-4C7A-9CAA-A4539F329646} => C:\Program Files\DAEMON Tools Ultra\dtshl64.dll [2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado] ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Nenhum Arquivo ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.) [Arquivo não assinado] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Nenhum Arquivo ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4b34c18659561116\igfxDTCM.dll [2019-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Arquivo não assinado] ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.) [Arquivo não assinado] ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Nenhum Arquivo ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\luize\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" ShortcutWithArgument: C:\Users\luize\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Suporte - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Módulos Carregados (Whitelisted) ============= 2021-06-14 09:04 - 2021-06-14 09:04 - 002772480 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\ffmpeg.dll 2021-06-14 09:04 - 2021-06-14 09:04 - 000379904 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\libegl.dll 2021-06-14 09:04 - 2021-06-14 09:04 - 007863296 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\libglesv2.dll 2021-06-14 09:04 - 2021-06-14 09:04 - 000147456 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\resources\app.asar.unpacked\keytar.node 2021-06-14 09:04 - 2021-06-14 09:04 - 005676544 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\resources\app.asar.unpacked\napi.node 2021-06-14 09:04 - 2021-06-14 09:04 - 000690688 _____ () [Arquivo não assinado] C:\Program Files\OpenVPN Connect\resources\app.asar.unpacked\pkcs11.node 2020-08-17 20:42 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [Arquivo não assinado] C:\Program Files\7-Zip\7-zip.dll 2021-09-30 18:04 - 2008-05-22 23:25 - 000043520 _____ (MagicISO, Inc.) [Arquivo não assinado] C:\Program Files (x86)\MagicISO\misosh64.dll 2021-10-22 11:11 - 2021-10-22 11:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll 2021-10-22 11:11 - 2021-10-22 11:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Users\luize:.repos [258] ==================== Modo de Segurança (Whitelisted) ================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180104__ya[browser] HKU\S-1-5-21-2542068703-144574761-1523392838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE HKU\S-1-5-21-2542068703-144574761-1523392838-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE HKU\S-1-5-21-2542068703-144574761-1523392838-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE SearchScopes: HKU\S-1-5-21-2542068703-144574761-1523392838-1001 -> DefaultScope {D861811D-BBD9-4234-B040-4CD0608B165D} URL = SearchScopes: HKU\S-1-5-21-2542068703-144574761-1523392838-1001 -> {D861811D-BBD9-4234-B040-4CD0608B165D} URL = BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-07-31] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-07-31] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2017-03-18 18:03 - 2021-11-08 12:46 - 000000833 _____ C:\WINDOWS\system32\drivers\etc\hosts 2018-01-05 18:41 - 2020-12-24 18:15 - 000000522 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 192.168.0.12 Luiz.mshome.net # 2025 12 2 23 21 15 9 448 9 5 717 192.168.0.10 Luiz.mshome.net # 2025 6 2 10 17 40 46 106 8 3 16 21 49 5 717 ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Users\luize\AppData\Local\Programs\Python\Python39\Scripts\;C:\Users\luize\AppData\Local\Programs\Python\Python39\;C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\nodejs\;C:\ProgramData\chocolatey\bin;C:\Program Files\dotnet\;C:\Program Files\Git\cmd HKU\S-1-5-21-2542068703-144574761-1523392838-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\luize\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper HKU\S-1-5-21-2542068703-144574761-1523392838-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg HKU\S-1-5-21-2542068703-144574761-1523392838-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 181.213.132.2 - 181.213.132.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall do Windows está habilitado. Network Binding: ============= Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Conexão Local: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) VirtualBox Host-Only Network #3: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "cmsc" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "CryptoTab Browser" HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive" HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData" HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\StartupFolder: => "Enviar para o OneNote.lnk" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "IDMan" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "RemoteFilesTrayIcon" HKU\S-1-5-21-2542068703-144574761-1523392838-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-2542068703-144574761-1523392838-500\...\StartupApproved\Run: => "OneDrive" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{BE9B402A-FD87-4547-AD61-E67D8DFF6CCD}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{360B66A1-A347-430F-9B06-60B0B447041D}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{B82EC18C-AFBA-4842-A79F-D142D41ABB8B}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{9466343E-268E-4B6A-B6F9-3EE8621B5EBC}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [TCP Query User{3EBF565E-9B7E-4B78-B87C-D96C2D35499C}C:\users\luize\appdata\local\programs\opera\opera.exe] => (Block) C:\users\luize\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{8B667043-5169-4328-A962-32BF23E45591}C:\users\luize\appdata\local\programs\opera\opera.exe] => (Block) C:\users\luize\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{740AB884-68B6-4C65-816B-73531C0F95CA}] => (Allow) C:\Program Files\RealVNC\VNC Viewer\vncviewer.exe (RealVNC Ltd -> RealVNC Ltd) FirewallRules: [{0DA5C10F-D186-401B-BC00-AA6CD9F12E7E}] => (Allow) C:\Program Files\RealVNC\VNC Viewer\vncviewer.exe (RealVNC Ltd -> RealVNC Ltd) FirewallRules: [{E2537916-1742-4CD7-A3B3-1BF7E41EF611}] => (Allow) C:\Program Files\RealVNC\VNC Viewer\vncviewer.exe (RealVNC Ltd -> RealVNC Ltd) FirewallRules: [{6C5DC14A-D50C-4F43-BB22-971613AAD053}] => (Allow) C:\Program Files\RealVNC\VNC Viewer\vncviewer.exe (RealVNC Ltd -> RealVNC Ltd) FirewallRules: [TCP Query User{A9E8CC53-B364-4C9E-B5A4-49FB7F633083}C:\projectignis\anime\edopro.exe] => (Allow) C:\projectignis\anime\edopro.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [UDP Query User{AB64C34B-9681-401D-AB75-9BFA7DEC3A29}C:\projectignis\anime\edopro.exe] => (Allow) C:\projectignis\anime\edopro.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [TCP Query User{B306B251-C71B-44F7-8068-D5F530A43CD6}C:\projectignis\anime\edopro - copia.exe] => (Allow) C:\projectignis\anime\edopro - copia.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [UDP Query User{B56CB796-6CC8-41EA-A0C7-C4B1FD728797}C:\projectignis\anime\edopro - copia.exe] => (Allow) C:\projectignis\anime\edopro - copia.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [TCP Query User{8072128A-A0E5-4ECA-A2C9-6157DFD539EC}C:\outlive\outlive.exe] => (Allow) C:\outlive\outlive.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [UDP Query User{C5211FD4-525F-43BC-9DBB-1ADBD241397D}C:\outlive\outlive.exe] => (Allow) C:\outlive\outlive.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [TCP Query User{CE6C64B7-0263-4F45-9647-10D06DD81D86}C:\projectignis\edopro.exe] => (Allow) C:\projectignis\edopro.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [UDP Query User{07591E82-A47A-44FB-99E5-5A7A7F15ACE2}C:\projectignis\edopro.exe] => (Allow) C:\projectignis\edopro.exe (Project Ignis) [Arquivo não assinado] FirewallRules: [{ACEC6895-963D-4E96-8E26-207B1A126C2C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4FF00483-36C9-432E-BDC3-D2A9B1AF65AC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{62253C2A-3813-4585-84AF-EC941843A0D9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{4294FFAD-DD0C-46D2-B67D-017B824E4703}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{EDF6284F-B601-4301-98D5-73A8EFE452A8}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{ED78F894-BA58-4E1E-B516-7C2122A184B4}C:\ccoutlive\outlive - copia.exe] => (Allow) C:\ccoutlive\outlive - copia.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [UDP Query User{37AF55A1-49D1-4253-ADEE-9C7A330FA87C}C:\ccoutlive\outlive - copia.exe] => (Allow) C:\ccoutlive\outlive - copia.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [TCP Query User{0C0AAB7D-B3C3-4353-AED3-144A0DB1B4B7}C:\users\luize\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\luize\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{32725EB1-2791-4F62-872E-FF355CA88FE2}C:\users\luize\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\luize\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{3613B771-AEFC-45F9-A236-ADD93E786FC3}] => (Allow) C:\Users\luize\AppData\Local\Programs\Opera\82.0.4227.23\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{0BC2DE68-E8F7-49FC-A29A-1F81826A079B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2E04F2D3-931D-4750-A2ED-4BA3D304DA3F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BBB4CFBB-DBA7-4744-BF2D-350A6591725F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6EFDEAE9-1225-4E2C-A7B0-53F3256D078E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{FB15A885-F718-41D0-8A5B-A7763EC33DE1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{C664FAA9-8EF2-401B-B077-895B988AD4C7}C:\outlive\outlive - copia.exe] => (Allow) C:\outlive\outlive - copia.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [UDP Query User{83647149-AEA2-4E2F-B6A8-FE535360FDC8}C:\outlive\outlive - copia.exe] => (Allow) C:\outlive\outlive - copia.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [{680EE711-C554-483C-8F2C-EEC9832DFEC6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3974F241-80A2-4B4E-A02E-054CCAF3C4C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6E2B804A-4B4D-4FF8-B84D-6ECF4A6FD548}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{96832B5F-F544-46A0-B012-F6C65E4032D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{858EF78F-E633-4D0D-BD58-B1DC76A16A8A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{69F79443-6246-4DAB-9717-4BD986160D30}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{873DFAF0-AE56-4C07-BF00-5EADD7577A83}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C4C2AD6F-099D-49D3-8902-4BDDABD52EB0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7BEA70FD-E82D-40D9-8CD5-B28A90B92C5B}] => (Allow) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{BE4B5EC4-8FEA-4E6C-B788-3C9E72C4DEB8}] => (Allow) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{519AD887-B595-416C-96FF-B786FC23E8A2}] => (Allow) C:\Outlive\Outlive.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [{D7F88700-AE87-4C86-8E7F-93278CAE60D7}] => (Allow) C:\Outlive\Outlive.exe (Continuum Entertainment) [Arquivo não assinado] FirewallRules: [TCP Query User{1CD0335F-0C4F-49D7-9CBF-2419BD12BFF6}C:\program files\java\jdk-11.0.11\bin\java.exe] => (Allow) C:\program files\java\jdk-11.0.11\bin\java.exe FirewallRules: [UDP Query User{72397E26-80BB-4680-AB3C-B5DC2319D9AA}C:\program files\java\jdk-11.0.11\bin\java.exe] => (Allow) C:\program files\java\jdk-11.0.11\bin\java.exe FirewallRules: [{05F0A0EF-359B-4293-8783-B84DB4B6914A}] => (Allow) C:\Users\luize\AppData\Local\Programs\Opera\82.0.4227.33\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{44EC7E7C-FE3C-44CF-830C-099908DA9B20}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{29F47440-7ACC-48B0-978E-2434D3C94D2A}C:\users\luize\appdata\local\programs\opera\opera.exe] => (Block) C:\users\luize\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{F398ADF1-C5B1-429C-AB1C-410C6CCB579D}C:\users\luize\appdata\local\programs\opera\opera.exe] => (Block) C:\users\luize\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{DD6EB604-9878-4FB0-BAB6-BD0CD2534C4F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{1DF701D9-AAF9-41FC-B9CB-3BC68950F38E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{D4420984-B0BE-42A1-B187-E261660C1D0F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{967BF74B-1F54-4605-9F2D-56AF046DF650}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{25B8569C-001F-496B-99EC-CF145396B025}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{F8841C48-A697-429E-A997-4A9D72917329}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Pontos de Restauração ========================= 21-12-2021 11:50:53 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============ Name: LogMeIn Hamachi Virtual Ethernet Adapter Description: LogMeIn Hamachi Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LogMeIn Inc. Service: Hamachi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Detection Verification Description: Detection Verification Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (12/22/2021 08:46:18 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: RAVBg64.exe, versão: 1.0.296.1, carimbo de data/hora: 0x5d9d9331 Nome do módulo com falha: RAVBg64.exe, versão: 1.0.296.1, carimbo de data/hora: 0x5d9d9331 Código de exceção: 0xc000041d Deslocamento da falha: 0x0000000000013ac9 ID do processo com falha: 0x21e4 Hora de início do aplicativo com falha: 0x01d7f7292a4303c4 Caminho do aplicativo com falha: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Caminho do módulo com falha: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ID do Relatório: f70d7199-0437-4846-9f9a-24f7c1fad518 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (12/22/2021 08:45:44 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: RAVBg64.exe, versão: 1.0.296.1, carimbo de data/hora: 0x5d9d9331 Nome do módulo com falha: RAVBg64.exe, versão: 1.0.296.1, carimbo de data/hora: 0x5d9d9331 Código de exceção: 0xc0000005 Deslocamento da falha: 0x0000000000013ac9 ID do processo com falha: 0x21e4 Hora de início do aplicativo com falha: 0x01d7f7292a4303c4 Caminho do aplicativo com falha: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Caminho do módulo com falha: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ID do Relatório: 8675459f-3b30-402a-8740-061dfa888047 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (12/22/2021 12:25:42 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (12/22/2021 12:25:42 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (12/22/2021 12:25:42 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (12/22/2021 12:25:42 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (12/21/2021 09:18:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: nvcplui.exe, versão: 8.1.940.0, carimbo de data/hora: 0x5e342d61 Nome do módulo com falha: nvgames.dll, versão: 26.21.14.4223, carimbo de data/hora: 0x5e342e4e Código de exceção: 0xc0000005 Deslocamento da falha: 0x00000000000f8ba9 ID do processo com falha: 0x3b90 Hora de início do aplicativo com falha: 0x01d7f6c917435e9d Caminho do aplicativo com falha: C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe Caminho do módulo com falha: C:\Program Files\NVIDIA Corporation\Display\nvgames.dll ID do Relatório: 38e74768-8087-4676-a0f4-fb923e296798 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (12/21/2021 09:17:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Speedtest.exe versão 0.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção. ID do Processo: 3a00 Hora de Início: 01d7f6c5ce70a482 Hora de Término: 4294967295 Caminho do Aplicativo: C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.15.163.0_x64__43tkc6nmykmb6\Speedtest.exe ID do Relatório: 91a699b3-2404-45b4-9204-b2fa8454eb14 Nome completo do pacote com falha: Ookla.SpeedtestbyOokla_1.15.163.0_x64__43tkc6nmykmb6 ID do aplicativo relativo ao pacote com falha: App Tipo com falha: Quiesce Erros de Sistema: ============= Error: (12/22/2021 08:43:08 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Serviço Serviço de transferência inteligente de tela de fundo suspenso ao iniciar. Error: (12/22/2021 08:42:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Dashlane Upgrade Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (12/22/2021 08:42:51 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Dashlane Upgrade Service. Error: (12/22/2021 08:39:50 AM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: O servidor Windows.Internal.StateRepository.FileTypeAssociation não se registrou no DCOM dentro do tempo limite necessário. Error: (12/22/2021 08:39:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (12/22/2021 08:39:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (45000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (12/22/2021 08:39:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço LogMeIn Hamachi Tunneling Engine devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (12/22/2021 08:39:04 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (45000 milissegundos) ao aguardar a conexão do serviço LogMeIn Hamachi Tunneling Engine. Windows Defender: ================ Date: 2021-12-22 11:56:35 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {767EE9D1-71B5-4C33-AD71-2B8ECE79A848} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2021-12-21 09:57:15 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {BD40A16B-7A46-4853-BCEE-11F8FEF98EE7} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2021-12-21 09:38:04 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {8ADA69F0-AD2E-4F08-A9E1-49FC08B7F737} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2021-12-20 10:34:49 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {BD28ADED-5BCE-4857-AC11-F14C672BA014} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2021-12-20 10:08:01 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {26732634-3E9A-4E9F-8397-68EB06AFF926} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA  CodeIntegrity: =============== Date: 2021-10-11 08:50:38 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-10-06 14:41:53 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Users\luize\AppData\Local\Programs\Opera\opera.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2021-09-24 23:24:31 Description: Windows blocked file \Device\HarddiskVolume3\Windows\System32\scrobj.dll which has been disallowed for protected processes. ==================== Informações da Memória =========================== BIOS: Insyde Corp. V2.02 01/03/2019 placa-mãe: KBL Charmander_KL Processador: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Percentagem de memória em uso: 69% RAM física total: 12163.6 MB RAM física disponível: 3741.21 MB Virtual Total: 14019.6 MB Virtual disponível: 5033.6 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:930.4 GB) (Free:147.14 GB) NTFS \\?\Volume{8238215a-dd40-4ffe-a704-9404d8c0b086}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.49 GB) NTFS \\?\Volume{f9ee3fe3-957c-480a-98c7-b579adf04f21}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 1996C788) Partition: GPT. ==================== Fim de Addition.txt =======================