Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 27-12-2021
Executado por Usuario (04-01-2022 17:31:20)
Executando a partir de C:\Users\Usuario\Desktop
Microsoft Windows 10 Pro Versão 1909 18363.1556 (X64) (2019-11-13 16:58:22)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-2802420505-662629979-4225180187-500 - Administrator - Disabled)
Convidado (S-1-5-21-2802420505-662629979-4225180187-501 - Limited - Enabled)
DefaultAccount (S-1-5-21-2802420505-662629979-4225180187-503 - Limited - Disabled)
Usuario (S-1-5-21-2802420505-662629979-4225180187-1002 - Administrator - Enabled) => C:\Users\Usuario
WDAGUtilityAccount (S-1-5-21-2802420505-662629979-4225180187-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1046-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AdoptOpenJDK JRE with Hotspot 8.0.232.09 (x64) (HKLM\...\{D7307955-374A-4D68-9B25-29B8BB49B83B}) (Version: 8.0.232.09 - AdoptOpenJDK)
AdoptOpenJDK JRE with Hotspot 8.0.232.09 (x86) (HKLM-x32\...\{6D3C434E-3E4B-44C7-B4FB-4DA3AE852836}) (Version: 8.0.232.09 - AdoptOpenJDK)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Aplicativo Itaú (HKLM-x32\...\{4B6778AC-BABE-44D4-BDF3-1BA382F7D580}) (Version: 1.0.162 - Banco Itaú)
Aplicativos da Autodesk em destaque 2016-2019 (HKLM-x32\...\{79F5747D-A961-4CCD-88B0-41F004D79AEB}) (Version: 2.5.0 - Autodesk)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
AutoCAD 2019 - English (HKLM\...\{28B89EEF-2001-0409-2102-CF3F3A09B77D}) (Version: 23.0.46.0 - Autodesk) Hidden
Autodesk App Manager 2016-2019 (HKLM-x32\...\{C1BF29A7-2D9E-4E8D-A3C1-02F6B20B8AB7}) (Version: 2.5.0 - Autodesk)
Autodesk AutoCAD 2019 - English (HKLM\...\AutoCAD 2019 - English) (Version: 23.0.46.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.3.0 (HKLM-x32\...\{448BC38C-2654-48CD-BB43-F59A37854A3E}) (Version: 1.3.0.0 - Autodesk)
Autodesk Material Library 2019 (HKLM-x32\...\{8F69EE2C-DC34-4746-9B47-7511147BD4B0}) (Version: 17.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2019 (HKLM-x32\...\{3AAA4C1B-51DA-487D-81A3-4234DBB9A8F9}) (Version: 17.11.3.0 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.14.1.3 - Autodesk, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0.49 - Banco Bradesco S.A.)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.)
CPUID HWMonitor 1.42 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.42 - CPUID, Inc.)
CrystalDiskInfo 8.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.4.2.9 - Western Digital Corporation)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dell SupportAssist (HKLM\...\{E0659C89-D276-4B77-A5EC-A8F2F042E78F}) (Version: 3.10.4.18 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{900D0BCD-0B86-4DAA-B639-89BE70449569}) (Version: 5.4.1.14954 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{ec40a028-983b-4213-af2c-77ed6f6fe1d5}) (Version: 5.4.1.14954 - Dell Inc.)
Dell Touchpad (HKLM\...\Elantech) (Version: 15.3.0.14 - ELAN Microelectronic Corp.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
Discord (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
FACEIT (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\FACEIT) (Version: 1.31.5 - FACEIT Ltd.)
FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.0 - FACEIT LTD)
FARO LS 1.1.700.0 (64bit) (HKLM-x32\...\{FF6E9382-0B85-48DE-888F-76EFD9A87038}) (Version: 7.0.0.23 - FARO Scanner Production)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Free Audio Editor (HKLM-x32\...\Free Audio Editor_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.3.49.521 - Digital Wave Ltd)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.3.24.729 - Digital Wave Ltd)
Gamers Club AC Launcher 3.2.38 (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\79ac4417-2a6e-5545-a41f-fb03b7abc70c) (Version: 3.2.38 - EMAC LAB LTDA)
Gamers Club Anti-Cheat 3.1.22 (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\5336d6e5-cfd5-580d-976b-0c07db708c28) (Version: 3.1.22 - Gamers Club Engeneering)
Geeks3D FurMark 1.29.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.29.0.0 - Geeks3D)
Google Chrome (HKLM\...\{104B4CED-D037-33A4-B0A4-3995A7B733B9}) (Version: 96.0.4664.110 - Google LLC)
Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google)
HP DeskJet 2600 series Ajuda (HKLM-x32\...\{CF6446D7-ED6A-4738-80AE-0102E9494218}) (Version: 44.0.0 - HP)
HP DeskJet 2600 series Software básico do dispositivo (HKLM\...\{762C001A-5C6E-487F-B160-E2A73464D07D}) (Version: 43.3.2478.18107 - HP Inc.)
HP Dropbox Plugin (HKLM-x32\...\{0E317A5C-E816-42A3-ABF5-E3EF44DACD06}) (Version: 36.0.100.66344 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{E378164C-7A57-4B60-A86C-D5DA4FD0AC19}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{01841008-D75C-447A-90A7-BA96287E6384}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{72D64F2C-8290-446B-A657-80EA5BEF253D}) (Version: 36.0.100.66344 - HP)
HP OneDrive Plugin (HKLM-x32\...\{379920B1-9CA6-4CCA-9A0D-721F6C4C576A}) (Version: 36.0.0.0 - HP)
HP SharePoint Plugin (HKLM-x32\...\{D5CB6398-A20C-4A1E-BF09-31EDE8771388}) (Version: 43.0.0.0 - HP)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
K-Lite Mega Codec Pack 15.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.14430.20298 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Project - pt-br (HKLM\...\ProjectProRetail - pt-br) (Version: 16.0.14430.20298 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{D06A5649-3BDB-4F2C-9C38-AB25CD5102E2}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.63.2 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{070C55FA-FB9D-46DD-B30B-4B520A83A66A}) (Version: 1.20.146.0 - Microsoft)
Monitor da tecnologia Intel® Turbo Boost 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 95.0.2 (x64 pt-BR)) (Version: 95.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20298 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20298 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Opera Stable 82.0.4227.23 (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\Opera 82.0.4227.23) (Version: 82.0.4227.23 - Opera Software)
Opera Stable 82.0.4227.43 (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\Opera 82.0.4227.43) (Version: 82.0.4227.43 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
PyCharm Community Edition 2020.1.1 (HKLM-x32\...\PyCharm Community Edition 2020.1.1) (Version: 201.7223.92 - JetBrains s.r.o.)
Python Launcher (HKLM-x32\...\{406A47EE-C4AE-4944-BADE-1B543A443873}) (Version: 3.8.7072.0 - Python Software Foundation)
QGIS 3.16.11 'Hannover' (HKLM\...\{E09A57CD-6BFD-1015-8980-BE058C569609}) (Version: 3.16.11 - QGIS.org)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.98.0213 - Electronic Arts)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Tekla BIMsight (HKLM\...\{4EDD824B-F4F9-4BA3-857F-3A712553736D}) (Version: 1.10 - Trimble Solutions Corporation)
Tekla Model Sharing Foundation, Clash Check 2.7 (HKLM-x32\...\{8DFA9AE5-A5BD-4976-952F-75E95E72D6BD}) (Version: 2.7.0 - Tekla Corporation)
Tekla Model Sharing Foundation, SketchUp Plugin 1.39 (HKLM-x32\...\{815A3CBE-A089-4D46-AA20-F6A446A7D6EA}) (Version: 1.39 - Tekla Corporation)
Tekla Model Sharing Foundation, WebViewerXml plugin 1.9 (HKLM-x32\...\{4614B232-B595-4CF2-A4A6-DC6D29D11051}) (Version: 1.9.0 - Tekla Corporation)
Telegram Desktop version 3.3 (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.3 - Telegram FZ-LLC)
Trimble Connect (HKLM\...\{CDD37B47-18D6-4742-836B-1C3487A86F85}) (Version: 1.8.2.169 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, BSQ Import Plugin 1.6 (x86 build) (HKLM-x32\...\{8C3EA90B-CFEC-41F8-8053-084A78084EAC}) (Version: 1.6 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, DGN plugin 1.39 (x64 build) (HKLM\...\{1256F9EB-56A4-4A2A-A766-836ED45DFE59}) (Version: 1.39 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, DWG plugin 1.42 (x64 build) (HKLM\...\{8CAC805E-2A2C-4CC1-A2B1-AA98F82026B2}) (Version: 1.42 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, IFC plugin 5.34 (x64 build) (HKLM\...\{2C97BFCF-D053-4B14-8A4F-9DB3A6C487AD}) (Version: 5.34 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, LandXML plugin 1.20 (x86 build) (HKLM-x32\...\{B5C13BC8-0942-4809-9C51-971B204639CB}) (Version: 1.20 - Trimble Solutions Corporation)
Trimble Solutions ImportSDK, STEP/IGES plugin 3.15 (x64 build) (HKLM\...\{CC0283C2-0E4F-4EE1-AF60-BB57022BA43F}) (Version: 3.15 - Trimble Solutions Corporation)
Warsaw 2.23.1.1 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.23.1.1 - Topaz)
WhatsApp (HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\WhatsApp) (Version: 2.2147.16 - WhatsApp)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare Filmora9(Build 9.3.0) (HKLM\...\Wondershare Filmora9_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)

Packages:
=========
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-24] (Microsoft Corporation)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.10.7.0_x64__htrsf667h5kn2 [2021-12-24] (Dell Inc)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_128.1.219.0_x64__v10z8vjag6ke6 [2021-12-24] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.14.0_x86__8xx8rvfyw5nnt [2021-12-24] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-12-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-12-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-12-24] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0 [2021-12-24] (Spotify AB) [Startup Task]

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2802420505-662629979-4225180187-1002_Classes\CLSID\{4AC6DFE1-607B-45B2-B289-D7FBCD44169C}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2019\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2802420505-662629979-4225180187-1002_Classes\CLSID\{74D0CE91-F931-4FAC-BEA9-EE32E43EAD37}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2019\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2802420505-662629979-4225180187-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2802420505-662629979-4225180187-1002_Classes\CLSID\{930e604a-cc01-4d06-8d7a-5a07914f3afb}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2019\CamtasiaStudio.exe" -ToastActivated => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2802420505-662629979-4225180187-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2019\en-US\acadficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2018-01-30] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2018-01-30] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Arquivo não assinado]

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [Arquivo não assinado] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [Arquivo não assinado] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2019-11-16 21:09 - 2014-05-13 21:06 - 000440320 ____N (Atheros) [Arquivo não assinado] C:\Windows\system32\athihvs.dll
2019-11-13 16:33 - 2012-08-01 13:05 - 000030208 _____ (Conexant Systems, Inc.) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files\Conexant\SA3\SmartAudio.Creative.dll
2019-11-13 15:13 - 2019-11-13 15:13 - 000116736 _____ (pdfforge GmbH) [Arquivo não assinado] C:\Windows\System32\pdfcmon.dll
2020-11-20 14:10 - 2020-11-20 14:10 - 001638912 _____ (Robert Simpson, et al.) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [Arquivo não assinado] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-12-15 16:45 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-12-15 16:45 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-12-15 16:45 - 2020-01-13 10:01 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2142]
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [134]
AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [210]
AlternateDataStreams: C:\ProgramData\TEMP:D78D6FF7 [154]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== Associação (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)

HKU\S-1-5-21-2802420505-662629979-4225180187-1002\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation)

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\localhost -> localhost

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-03-19 01:49 - 2021-08-01 13:43 - 000000878 ____R C:\Windows\system32\drivers\etc\hosts
0.0.0.0 127.0.0.1 
0.0.0.0 license.piriform.com 

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\AdoptOpenJDK\jre-8.0.232.09-hotspot\bin;C:\Program Files (x86)\AdoptOpenJDK\jre-8.0.232.09-hotspot\bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\Desktop\86ab66de9449a62a4357ff4a9affec5b.jpg
DNS Servers: 192.168.15.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

Network Binding:
=============
Ethernet: Diebold Network Monitor -> nt_wsddntf (enabled) 
Wi-Fi: Diebold Network Monitor -> nt_wsddntf (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AdAppMgrSvc => 2
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run32: => "HDD Regenerator"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "msnmsgr"
HKU\S-1-5-21-2802420505-662629979-4225180187-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{F229E847-715E-4560-B25F-B2D507DE4757}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1278CF74-DC35-455D-A7F3-BE4B4737D63B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1C28D4BF-F26E-4155-91C0-8A2B347BC04B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{55337E7B-6794-4C90-9590-195E5E4F758A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CAFFC508-2CB7-4D04-A963-301953BE524F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B1255BA1-FFA9-4C65-A51B-819A66ABCE4D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BF7CF1BD-9F7E-48DE-A216-1BDD1AE2EDBA}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Nenhum Arquivo
FirewallRules: [{A9367D84-17A6-49BC-8440-F68F15A1AD79}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe => Nenhum Arquivo
FirewallRules: [{08CA8859-CC75-42CD-AD80-D2FFA5B95D3A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0C4534B6-4705-4409-B236-4BE9679495C5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{701C8848-079A-47FA-BD40-A1E1D4813ED7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{00A7D9E2-7A65-44CB-A493-91B548E9C816}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7A92CA12-FE65-4522-BF9F-531204AC099B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{77D48831-FE18-4BE6-AC0E-DEF9448F2AE8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{20E0233E-0B71-48BA-9C0D-1215042CDC76}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ED625EFF-504A-4C94-8F91-61992F1021BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EEB35AD4-2F51-40E2-BE24-A66A431BD419}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{445C2999-4013-418F-A44F-3006D15F8C97}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{84557DAA-B6DB-40B6-8C53-E492F53CF4B1}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{884409E2-D1E4-4F16-91D6-7BF773056682}] => (Allow) LPort=5357
FirewallRules: [{80175F56-68F8-4140-BD09-8D1BF2A595B0}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F64BA36D-492B-42D0-8B30-7068786E7DAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cursed Treasure 2\Cursed TD2.exe () [Arquivo não assinado]
FirewallRules: [{AF9F0AD1-1B9E-45C0-80CA-98B7A11980B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cursed Treasure 2\Cursed TD2.exe () [Arquivo não assinado]
FirewallRules: [{C28C568E-A32D-4D01-A2EA-EE469B047F35}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5A979F15-9BE4-440E-9EC0-B22BD19CBC7A}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{62385334-53E0-45B7-BF5B-8B4CAA9F773A}] => (Allow) C:\Program Files (x86)\InstallShield Installation Information\{BB281145-A521-2EF3-B593-C5D534DC9911}\orchestrator.exe (MS) [Arquivo não assinado]
FirewallRules: [{050BF33A-FBC3-4980-93D3-B2D81F14E1A9}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{8D666B48-6D10-4811-817C-3E3B1E922FA5}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{091A3DA4-CF18-4030-8C32-19330487AE7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{CF7E6461-5568-47E5-A135-BCA583D7BB9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{A6C25E46-2D2A-49D6-A4DE-B50285714BC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio Demo\bin\x64\factorio.exe => Nenhum Arquivo
FirewallRules: [{F63128BE-BFF3-4AD9-8324-AE9D70D7B20E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio Demo\bin\x64\factorio.exe => Nenhum Arquivo
FirewallRules: [{02D56520-C941-480F-8F6B-ECFD84331C7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GIBZ\GIBZ.exe (Torrunt.net) [Arquivo não assinado]
FirewallRules: [{7AFF0BCE-0C17-44B7-A9F1-D2C17083BE62}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GIBZ\GIBZ.exe (Torrunt.net) [Arquivo não assinado]
FirewallRules: [{45941221-F556-41AA-ACE9-EBA3955FB3C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\bit Dungeon II\bitDungeonII.exe () [Arquivo não assinado]
FirewallRules: [{3AABD1D7-43E8-4ECA-8E1D-E1AD9902E15B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\bit Dungeon II\bitDungeonII.exe () [Arquivo não assinado]
FirewallRules: [{0D194D60-6C62-4E6C-981D-B50EBCCA3BFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Arquivo não assinado]
FirewallRules: [{A44AE0B4-971F-42BC-9532-9B79C6F13449}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Arquivo não assinado]
FirewallRules: [{C1964F93-D141-466F-95D3-46AEB8C1BF7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\bit Dungeon III\bd3.exe () [Arquivo não assinado]
FirewallRules: [{1BFE7459-B3C4-4E82-864A-BDB271245575}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\bit Dungeon III\bd3.exe () [Arquivo não assinado]
FirewallRules: [{38A7EE7F-86CD-4961-A12A-6F94BE73F790}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Screen Grabber Pro\AceThinker Screen Grabber Pro.exe => Nenhum Arquivo
FirewallRules: [{90FDC3B9-8EE9-4116-821D-65B68267917A}] => (Allow) C:\Program Files (x86)\AceThinker\AceThinker Screen Grabber Pro\AceThinker Screen Grabber Pro.exe => Nenhum Arquivo
FirewallRules: [{2A205712-0AA6-43B0-AD90-01C411F4815B}] => (Allow) C:\Users\Usuario\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe => Nenhum Arquivo
FirewallRules: [{685F7C8D-A6C7-4B7D-B7BE-67EC06858849}] => (Allow) C:\Users\Usuario\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe => Nenhum Arquivo
FirewallRules: [{F10DB2D6-C3C9-41EA-B268-118C9D48A615}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A8936B80-1859-473B-A880-3870642CBE24}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C0E3F50B-1B37-45B8-85EE-CF705D273B8F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D6F49838-1C2C-4E91-805C-AD3439F7C52E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7A13BF75-C21A-47DE-B9AD-D125A0E5C309}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5FE1A46A-1992-4860-9A76-21FB63BBBF74}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{283D536B-3319-4687-A537-DADFED44B55F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C3F1C2A3-B312-4E4B-961A-1343F01E7EDC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9DC3E7AB-E4D8-4593-8261-56EFC8822179}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C9D44B48-8ECE-479A-AE3B-DDE759E64EE8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{43D2E12D-BC7C-4A7B-89A4-28433D12F329}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93648D01-9FF2-4B51-AA0F-E7C4FB44304E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8B0BCFE-0094-42C0-BB03-D83FEF88D7D6}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller.exe => Nenhum Arquivo
FirewallRules: [{67DE65AA-082C-4B95-8079-AD35A1B898C3}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller.exe => Nenhum Arquivo
FirewallRules: [{9DD83B58-A5CC-4E62-B61D-8D844360EC2F}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred)
FirewallRules: [{299A3166-5244-4F1E-A215-527DC77DFBA9}] => (Allow) C:\Users\Usuario\Desktop\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred)
FirewallRules: [TCP Query User{4F1AB98F-9965-46C5-9982-A453987AA907}C:\program files\trimble\trimble connect\trimbleconnect.exe] => (Allow) C:\program files\trimble\trimble connect\trimbleconnect.exe (Trimble Solutions Corporation -> Trimble)
FirewallRules: [UDP Query User{344BE9C6-0264-4A35-8169-B30787BC81EF}C:\program files\trimble\trimble connect\trimbleconnect.exe] => (Allow) C:\program files\trimble\trimble connect\trimbleconnect.exe (Trimble Solutions Corporation -> Trimble)
FirewallRules: [{D284BCAE-CCE6-4E31-8538-BB56C3824130}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BCDEA8F6-2EB6-40CB-9422-4DD13E82B5E2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BA1C6EB1-C719-4B0D-87DA-07980D9318D5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6DBC06AE-E29B-4E4C-94C1-2B8482170ED1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{75586BB6-DAAD-45F4-AD00-BDEC8904F299}C:\users\usuario\appdata\local\programs\opera\opera.exe] => (Block) C:\users\usuario\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{74720020-4EA1-458A-ACDB-7DC78AAD9FE4}C:\users\usuario\appdata\local\programs\opera\opera.exe] => (Block) C:\users\usuario\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{EE698EB1-9598-4D5A-8D48-2A2892AEEFB5}C:\users\usuario\appdata\local\programs\gcac-launcher\gamers club ac launcher.exe] => (Allow) C:\users\usuario\appdata\local\programs\gcac-launcher\gamers club ac launcher.exe (EMAC LAB SOFTWARE LTDA -> EMAC LAB LTDA)
FirewallRules: [UDP Query User{3FB6A2A5-7E3D-483D-8419-0375E48C0817}C:\users\usuario\appdata\local\programs\gcac-launcher\gamers club ac launcher.exe] => (Allow) C:\users\usuario\appdata\local\programs\gcac-launcher\gamers club ac launcher.exe (EMAC LAB SOFTWARE LTDA -> EMAC LAB LTDA)
FirewallRules: [TCP Query User{C01FE5A1-6FD3-42A4-BC5E-5CE610557F1B}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{DFFA0B3F-3CB9-49BD-8FDC-996ED37C7CCC}C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa8140.38967\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{D19EDF38-7147-487C-89BB-5000F48F4745}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{52AAA61C-B0F2-4C05-A3FF-058E1CC01D3D}C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa4344.46048\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{1D4A2363-C8FA-4F24-B2E2-15F288FD000D}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{AF28845C-9609-4BDA-BA14-E2D57AFEB064}C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa9444.30585\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{8A57AA4B-6AD6-45FB-8446-B3E4EEDCA341}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{5F85E264-4671-4F2C-AAED-38E7B2CE7DF3}C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa13060.18665\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{CD251D81-AF24-4603-A889-02AC7CDE48C7}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{A059A70B-8B00-4690-8CBF-ED937DE151BC}C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe] => (Allow) C:\users\usuario\appdata\local\temp\rar$exa3004.42570\office 2020 by apkgames\files\bin\kmss.exe => Nenhum Arquivo
FirewallRules: [{4CF428E3-AA76-47AF-923D-82DC8FFDD0C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fort Defense\Game.exe () [Arquivo não assinado]
FirewallRules: [{0D580FD7-7904-4F5E-BF0D-595AB67F7C07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fort Defense\Game.exe () [Arquivo não assinado]
FirewallRules: [{1AE4EC49-BFCF-4F3F-B702-B8D30BE46109}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

25-12-2021 13:31:46 25_12 - Antes de atualizar drive GPU
25-12-2021 15:09:03 AMDCleanupUtility Restore Point
26-12-2021 11:30:16 26_12 - Antes de instalar drives
03-01-2022 12:16:19 Ponto de Verificação Agendado
04-01-2022 17:25:53 AdwCleaner_BeforeCleaning_04/01/2022_17:25:53

==================== Dispositivos Apresentando Falhas No Gerenciador ============

Name: Monitor Genérico PnP
Description: Monitor Genérico PnP
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Tipos de monitor padrão)
Service: monitor
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Adaptador de Vídeo Básico da Microsoft
Description: Adaptador de Vídeo Básico da Microsoft
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Tipos padrão de vídeo)
Service: BasicDisplay
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (01/04/2022 05:26:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance.  hr = 0x8007045b, O sistema está sendo desligado.
.

Error: (01/04/2022 05:26:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]

Error: (01/04/2022 05:26:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance.  hr = 0x8007045b, O sistema está sendo desligado.
.

Error: (01/04/2022 05:26:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]

Error: (01/04/2022 05:05:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ZA-Scan.exe, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.18362.1474, carimbo de data/hora: 0xf0a6699c
Código de exceção: 0xc0000409
Deslocamento da falha: 0x001146d2
ID do processo com falha: 0xb4c
Hora de início do aplicativo com falha: 0x01d801a674e45a7c
Caminho do aplicativo com falha: C:\Users\Usuario\Desktop\ZA-Scan.exe
Caminho do módulo com falha: C:\Windows\System32\KERNELBASE.dll
ID do Relatório: cef37617-c8d7-4122-ae24-39551cebc661
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (01/03/2022 04:03:37 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance.  hr = 0x8007045b, O sistema está sendo desligado.
.

Error: (01/03/2022 04:03:37 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]

Error: (01/02/2022 05:20:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: AUDIODG.EXE, versão: 10.0.18362.1533, carimbo de data/hora: 0x66e9554c
Nome do módulo com falha: CX64AP71.dll, versão: 4.80.70.0, carimbo de data/hora: 0x501ae8c8
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000106baa
ID do processo com falha: 0x1878
Hora de início do aplicativo com falha: 0x01d7fffe3d6bff5c
Caminho do aplicativo com falha: C:\Windows\system32\AUDIODG.EXE
Caminho do módulo com falha: C:\Windows\system32\CX64AP71.dll
ID do Relatório: 97da51f5-f3f0-44bb-bbe5-738ea901a826
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:


Erros de Sistema:
=============
Error: (01/04/2022 05:31:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço wuauserv terminou com o erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (01/04/2022 05:31:10 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {E60687F7-01A1-40AA-86AC-DB1CBF673334} não se registrou no DCOM dentro do tempo limite necessário.

Error: (01/04/2022 05:29:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço wuauserv terminou com o erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (01/04/2022 05:27:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço DigitalWave.Update.Service devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (01/04/2022 05:27:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (60000 milissegundos) ao aguardar a conexão do serviço DigitalWave.Update.Service.

Error: (01/04/2022 05:26:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dell Hardware Support foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 60000 milissegundos: Reiniciar o serviço.

Error: (01/04/2022 05:26:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dell Data Vault Collector foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (01/04/2022 05:26:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dell Data Vault Processor foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.


Windows Defender:
================
Date: 2022-01-04 17:00:39.977
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {452A7DDC-15C1-45AF-96E9-D46318F8DB5C}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: DESKTOP-I5G2Q4N\Usuario

Date: 2022-01-02 14:28:54.605
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {05506A01-894C-4BAC-B6A3-4719444C46CD}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-01-01 11:33:49.916
Description: 
Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado.
Para obter mais informações, veja a seguir:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Nome: Trojan:Win32/Tiggre!rfn
Gravidade: Grave
Categoria: Cavalo de Tróia
Caminho: file:_C:\Users\Usuario\Downloads\Crack.rar
Origem da Detecção: Computador local
Tipo da Detecção: FastPath
Fonte da Detecção: Usuário
Usuário: DESKTOP-I5G2Q4N\Usuario
Nome do Processo: Unknown
Versão da Inteligência de Segurança: AV: 1.355.1234.0, AS: 1.355.1234.0, NIS: 1.355.1234.0
Versão do Mecanismo: AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-01 11:33:49.914
Description: 
Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado.
Para obter mais informações, veja a seguir:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nome: HackTool:Win32/AutoKMS
Gravidade: Alto
Categoria: Ferramenta
Caminho: containerfile:_C:\Users\Usuario\Downloads\Office 2020 by ApkGames.rar; file:_C:\Users\Usuario\Downloads\Office 2020 by ApkGames.rar->Office 2020 by ApkGames\setup.exe
Origem da Detecção: Computador local
Tipo da Detecção: Concreto
Fonte da Detecção: Usuário
Usuário: DESKTOP-I5G2Q4N\Usuario
Nome do Processo: Unknown
Versão da Inteligência de Segurança: AV: 1.355.1234.0, AS: 1.355.1234.0, NIS: 1.355.1234.0
Versão do Mecanismo: AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-01 11:33:49.911
Description: 
Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado.
Para obter mais informações, veja a seguir:
https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/AutInject.CP&threatid=2147780364&enterprise=0
Nome: VirTool:Win32/AutInject.CP
Gravidade: Grave
Categoria: Ferramenta
Caminho: file:_C:\Users\Usuario\AppData\Roaming\XsIFHGJDtKPLGWOf\Cominciata.xlm; file:_C:\Users\Usuario\AppData\Roaming\XsIFHGJDtKPLGWOf\J; file:_C:\Users\Usuario\AppData\Roaming\zOONnDYbqMmrswTL\k; file:_C:\Users\Usuario\AppData\Roaming\zOONnDYbqMmrswTL\Mantenere.swf
Origem da Detecção: Computador local
Tipo da Detecção: Concreto
Fonte da Detecção: Usuário
Usuário: DESKTOP-I5G2Q4N\Usuario
Nome do Processo: Unknown
Versão da Inteligência de Segurança: AV: 1.355.1234.0, AS: 1.355.1234.0, NIS: 1.355.1234.0
Versão do Mecanismo: AM: 1.1.18800.4, NIS: 1.1.18800.4
Event[0]:

Date: 2021-12-29 07:11:02.403
Description: 
O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x8007043c
Descrição do erro: Não é possível compartilhar este serviço no modo de segurança 
Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema.

Date: 2021-12-26 15:12:35.894
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.355.894.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.18800.4
Código de Erro: 0x80080005
Descrição do Erro: Falha na execução do servidor 

Date: 2021-12-26 11:26:04.913
Description: 
O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x8007043c
Descrição do erro: Não é possível compartilhar este serviço no modo de segurança 
Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema.

Date: 2021-12-25 13:49:54.401
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.355.794.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.18800.4
Código de Erro: 0x80080005
Descrição do Erro: Falha na execução do servidor 

Date: 2021-12-25 00:20:09.061
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.355.794.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.18800.4
Código de Erro: 0x80080005
Descrição do Erro: Falha na execução do servidor 

==================== Informações da Memória =========================== 

BIOS: Dell Inc. A14 05/17/2018
placa-mãe: Dell Inc. 0DNMM8
Processador: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentagem de memória em uso: 46%
RAM física total: 8067.35 MB
RAM física disponível: 4355.34 MB
Virtual Total: 10499.35 MB
Virtual disponível: 6498.18 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.19 GB) (Free:284.22 GB) NTFS

\\?\Volume{c82ad428-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.57 GB) (Free:0.16 GB) NTFS

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C82AD428)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 29.8 GB) (Disk ID: 21AD8077)

Partition: GPT.

==================== Fim de Addition.txt =======================