Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 20-03-2022 Executado por Diego (21-03-2022 13:34:12) Executando a partir de C:\Users\Diego\Downloads Microsoft Windows 10 Home Single Language Versão 21H2 19044.1586 (X64) (2020-10-26 03:34:38) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-1832640792-4251457729-1687516665-500 - Administrator - Disabled) Convidado (S-1-5-21-1832640792-4251457729-1687516665-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1832640792-4251457729-1687516665-503 - Limited - Disabled) Diego (S-1-5-21-1832640792-4251457729-1687516665-1001 - Administrator - Enabled) => C:\Users\Diego WDAGUtilityAccount (S-1-5-21-1832640792-4251457729-1687516665-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Security Cloud (Disabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} AV: Kaspersky Security Cloud (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58} FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1046-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - ) CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.) Dada Life Pack (HKLM\...\{11C245F4-D7CE-44D7-8A66-8F397280BA82}) (Version: 2.0 - Dada Life) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd) Discord (HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.) Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Intel® Hardware Accelerated Execution Manager (HKLM\...\{7516A945-5FC4-4563-8F5E-EECDBF61E84F}) (Version: 7.5.1 - Intel Corporation) Intel® Processor Identification Utility (HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\Utilitário para identificação do processador Intel® 6.0.0211) (Version: 6.0.0211 - Intel Corporation) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky Security Cloud (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.11.20.0 - Lenovo Group Ltd.) LibreOffice 6.0.1.1 (HKLM\...\{ACF8A736-E677-4C40-AE44-761DACFD31D0}) (Version: 6.0.1.1 - The Document Foundation) Malwarebytes version 4.5.6.180 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.6.180 - Malwarebytes) MCShield ::Anti-Malware Tool:: (HKLM-x32\...\MCShield) (Version: 3.0.5.28 - MyCity) Microsoft 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 99.0.1150.46 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\OneDriveSetup.exe) (Version: 22.033.0213.0002 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{5016990D-7F61-4A20-9451-A915D6616DD9}) (Version: 3.66.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14931.20010 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20094 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden REDRAGON Gaming Mouse (HKLM-x32\...\{5F85281F-2C9B-4690-948A-011A8A979CD4}}_is1) (Version: 1.0.40 - REDRAGON ZONE) Shotcut (HKLM\...\Shotcut) (Version: 21.02.27 - Meltytech, LLC) Software de dispositivo do Chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stremio (HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\Stremio) (Version: 4.4.142 - Smart Code Ltd) Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{80B42CAA-28C0-4FBD-A46E-D61F45E2F9FC}) (Version: 7.2 - Apple Inc.) Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{466D00D0-E7DE-47C2-8FE5-54A8009F5850}) (Version: 7.2 - Apple Inc.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - ) Utilitário para identificação do processador Intel® (HKLM-x32\...\{FBA6EC7C-C307-41BF-BFDA-1D799EE3E1D9}) (Version: 6.0.0211 - Intel Corporation) Hidden Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-3) (Version: 1.0.33.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 12.89 - NCH Software) WebAdvisor da McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.685 - McAfee, LLC) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-09] (Microsoft Corporation) Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_5.30.190.0_x86__q7m17pa7q8kj0 [2022-03-19] (Deezer SA) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.12.419.0_x64__rz1tebttyb220 [2022-03-04] (Dolby Laboratories) Duolingo - Cursos grátis de inglês, espanhol e francês -> C:\Program Files\WindowsApps\D5EA27B7.Duolingo-LearnLanguagesforFree_2017.112.1.0_x64__yx6k7tf7xvsea [2021-10-04] (Duolingo Inc.) Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-29] (Keeper Security Inc) Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-18] (LENOVO INCORPORATED.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2202.9.0_x64__k1h2ywk1493x8 [2022-02-25] (LENOVO INC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-25] (Microsoft Studios) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2022.218.1.0_x64__8kea50m9krsh2 [2022-03-02] (Code Spark) Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-12-05] (Plex) Portal da conta da Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.) Screen Recorder Pro For Win10 -> C:\Program Files\WindowsApps\57506winuwp.ScreenRecorderProForWin10_2.0.8.0_x86__2h241tqkdbv36 [2021-12-15] (winuwp) Simple Minesweeper -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMinesweeper_2.0.14.0_x64__kx24dqmazqk8j [2021-03-23] (Random Salad Games LLC) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Nenhum Arquivo ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2022-02-17] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Nenhum Arquivo ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2022-02-17] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2022-02-17] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxDTCM.dll [2018-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2022-02-17] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== ==================== Atalhos & WMI ======================== ==================== Módulos Carregados (Whitelisted) ============= ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Users\Public\AppData:CSM [478] ==================== Modo de Segurança (Whitelisted) ================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10454__180101__yaie SearchScopes: HKU\S-1-5-21-1832640792-4251457729-1687516665-1001 -> DefaultScope {0ED6097E-63CE-4EAF-882B-538289ED72F5} URL = SearchScopes: HKU\S-1-5-21-1832640792-4251457729-1687516665-1001 -> {0ED6097E-63CE-4EAF-882B-538289ED72F5} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-03-10] (McAfee, LLC -> McAfee, LLC) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-03-10] (McAfee, LLC -> McAfee, LLC) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Nenhum Arquivo (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\localhost -> localhost ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2017-03-18 18:03 - 2018-09-05 17:09 - 000000837 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Diego\Desktop\GODIE.jpg DNS Servers: 181.213.132.3 - 181.213.132.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: DAX2API => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: EasyAntiCheat => 3 MSCONFIG\Services: EpicOnlineServices => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: npggsvc => 3 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: uncheater_bgl => 3 HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "USB Gamepad" HKLM\...\StartupApproved\Run: => "Riot Vanguard" HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "USB Gamepad" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\StartupFolder: => "5A7LV98M6MU654i.lnk" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\StartupFolder: => "sv6BN0X06VsZnR7.lnk" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\StartupFolder: => "PJkJ2P8Ljsj195H.lnk" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_E645C02DD85363918E4F96458C83B102" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-1832640792-4251457729-1687516665-1001\...\StartupApproved\Run: => "EADM" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [UDP Query User{01C120E2-808B-477D-8607-E1DEB2CE5E3E}C:\users\diego\desktop\among us\among us\among us.exe] => (Block) C:\users\diego\desktop\among us\among us\among us.exe => Nenhum Arquivo FirewallRules: [TCP Query User{7BE3A99A-B151-4BFD-B2B7-CC9DFC196042}C:\users\diego\desktop\among us\among us\among us.exe] => (Block) C:\users\diego\desktop\among us\among us\among us.exe => Nenhum Arquivo FirewallRules: [UDP Query User{E1369FF1-2A18-435E-A87B-D2ABCA4C7864}C:\users\diego\desktop\anydesk.exe] => (Allow) C:\users\diego\desktop\anydesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [TCP Query User{612C70A2-0457-46B8-A445-BDA1EB71AEC7}C:\users\diego\desktop\anydesk.exe] => (Allow) C:\users\diego\desktop\anydesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [UDP Query User{B9DD4276-FEC2-4969-AE6C-E3009CBDD769}D:\games\call of duty - black ops\blackops.exe] => (Block) D:\games\call of duty - black ops\blackops.exe => Nenhum Arquivo FirewallRules: [TCP Query User{96ECD9E8-7C19-4E5F-B8E8-302214B666B9}D:\games\call of duty - black ops\blackops.exe] => (Block) D:\games\call of duty - black ops\blackops.exe => Nenhum Arquivo FirewallRules: [{F2CE74CE-A7AC-407A-967F-48470CBF588D}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => Nenhum Arquivo FirewallRules: [UDP Query User{E37CA661-8BEB-4D5A-99C1-D99CCAEA4C26}C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe => Nenhum Arquivo FirewallRules: [TCP Query User{9FD2EACF-37A9-4B8D-A186-3F5EC97DC046}C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe => Nenhum Arquivo FirewallRules: [UDP Query User{F04603C2-66F5-4A2C-BA72-39FE4CCDB74B}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{54AC8EA0-CFE8-4085-9438-378AAC4DA79F}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => Nenhum Arquivo FirewallRules: [{E20B1B52-8834-45AC-8937-896541526BB6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Nenhum Arquivo FirewallRules: [{1335A70F-AF7A-415A-87A1-CF3C8478E767}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Nenhum Arquivo FirewallRules: [{77987EF8-7D0C-44AC-90AB-2596A70D654C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{4DD2CE80-D7E0-4A5C-8A05-F2BBAF5C5E7A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{BE6D2446-E6BE-40E1-984B-BBE2164F59DD}C:\program files (x86)\bomber world\bomberman.exe] => (Allow) C:\program files (x86)\bomber world\bomberman.exe => Nenhum Arquivo FirewallRules: [TCP Query User{83EA2150-55D4-492C-98AF-9B1E42DDAC3B}C:\program files (x86)\bomber world\bomberman.exe] => (Allow) C:\program files (x86)\bomber world\bomberman.exe => Nenhum Arquivo FirewallRules: [UDP Query User{92E2103A-DAB0-4821-BAC3-D5D53D36C705}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe => Nenhum Arquivo FirewallRules: [TCP Query User{1DA1C73C-0677-4CF6-963C-8BA725F57BCD}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe => Nenhum Arquivo FirewallRules: [UDP Query User{72D52DF1-784F-45A5-92E3-8A51A913CEF3}C:\users\diego\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio\stremio.exe (Smart Code Ltd. -> Smart Code Ltd.) [Arquivo não assinado] FirewallRules: [TCP Query User{81AEAF11-E646-413A-9422-E7E89A91EB79}C:\users\diego\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio\stremio.exe (Smart Code Ltd. -> Smart Code Ltd.) [Arquivo não assinado] FirewallRules: [{F8C42E71-9882-4A1E-8BBE-A653E3E768CF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{ACA73805-E7B7-447A-B8E1-B6D476A5FA24}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe => Nenhum Arquivo FirewallRules: [{6DA59F0C-7973-4A95-B9E7-B531AFF7F76B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe => Nenhum Arquivo FirewallRules: [{9E8CD700-4BB8-4823-B492-D15AE628923F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{A5A127B2-B4BF-46F9-8717-E8F8938E6764}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Nenhum Arquivo FirewallRules: [{B7A62A1A-0DE0-4089-9F2D-02FD692141BA}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Nenhum Arquivo FirewallRules: [{EC287388-8772-46FF-BD5D-FD145A6F730D}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D4242F42-EFBE-469F-8F0B-F59E9E572145}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Nenhum Arquivo FirewallRules: [{23D544A9-F12A-40F1-8FEE-81D588A493E2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Nenhum Arquivo FirewallRules: [{A34C7F42-0B66-4740-8FBF-53197FFEEA3E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Nenhum Arquivo FirewallRules: [{7CBAA68F-0C9C-4915-8A0C-5445C2D2904F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Nenhum Arquivo FirewallRules: [{A931C955-3562-4ED7-B7D8-5A9ABD6182D3}] => (Allow) C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe => Nenhum Arquivo FirewallRules: [{B1433A26-D147-41E9-A929-7C4F0C575236}] => (Allow) C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe => Nenhum Arquivo FirewallRules: [TCP Query User{05CD57C6-890C-40FE-8D9D-D1A43CBA2F37}C:\users\diego\appdata\local\temp\commongamedownloader\268_1526647609_4163\teniodl.exe] => (Allow) C:\users\diego\appdata\local\temp\commongamedownloader\268_1526647609_4163\teniodl.exe => Nenhum Arquivo FirewallRules: [UDP Query User{B23437AC-63C7-4D4B-803E-C699DF15AD07}C:\users\diego\appdata\local\temp\commongamedownloader\268_1526647609_4163\teniodl.exe] => (Allow) C:\users\diego\appdata\local\temp\commongamedownloader\268_1526647609_4163\teniodl.exe => Nenhum Arquivo FirewallRules: [TCP Query User{744165DD-1DD1-4E1D-ACF7-92BB806550F3}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Nenhum Arquivo FirewallRules: [UDP Query User{9CA1A79E-A70D-485B-9964-90AEC98095DD}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Nenhum Arquivo FirewallRules: [TCP Query User{CF68FBB8-D3CA-4E64-94C3-B7E2A8732053}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Nenhum Arquivo FirewallRules: [UDP Query User{2874AEFB-1FD4-4A69-8DDA-0DEC077017A0}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Nenhum Arquivo FirewallRules: [TCP Query User{925CBC38-B7C8-4FDD-AD7D-2EA8CF009F16}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [UDP Query User{49853092-FE32-4C65-B657-11039974FB94}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{182FD954-698A-4866-AE8B-205D17CD0A2A}C:\program files (x86)\counter-strike 1.6 2017 complete\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6 2017 complete\hl.exe => Nenhum Arquivo FirewallRules: [UDP Query User{D6489DA0-763B-47CC-90E9-F1B659538216}C:\program files (x86)\counter-strike 1.6 2017 complete\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6 2017 complete\hl.exe => Nenhum Arquivo FirewallRules: [TCP Query User{E8CFE08C-A137-4AAF-A4A1-47D045423431}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe => Nenhum Arquivo FirewallRules: [UDP Query User{E8C8B7A8-39FA-429A-BEBD-1217473BA7D0}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe => Nenhum Arquivo FirewallRules: [TCP Query User{5A22690D-FAB5-4E32-8FF3-A184ADC5E8C4}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe => Nenhum Arquivo FirewallRules: [UDP Query User{51A57DB1-EDBA-42A1-A351-E1E7235714FB}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe => Nenhum Arquivo FirewallRules: [{F639638B-05C1-427A-A685-117C680B9786}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A9DF3222-8799-46B9-BA03-CAB7E2552F13}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{639F73BC-3B6F-4A98-B2B7-8EC8E0A27128}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{67E4A792-2F23-4600-A8B9-4AB8FEA76093}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{2AABEF03-A9BF-46D9-88ED-2BC9F3BBD414}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{76DCB0F8-5603-4EC6-81B3-A0F73C33F9AF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{4C5801E8-AA7F-4485-A361-6D3E8CA0A2BC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{3E623DC3-8A99-48A4-A4F7-C3047562080F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{8D605244-B41C-4BE5-BDF8-3CD8005EB88C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe (Hewlett-Packard Co.) [Arquivo não assinado] FirewallRules: [{2353253E-900F-4213-AD91-61ED2F1D7A24}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{DA81E7AB-4C08-4F7A-A5A7-DF84CB0F7007}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{CF493004-2CBE-4EC5-AD1B-0C3C6334B35D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett Packard -> Hewlett-Packard) FirewallRules: [{06923238-89C6-44FF-A1E1-306B201FFD66}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{0D9F7EF2-4939-4E0C-BD00-269FB438FC9A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{45181D5C-B9D7-4F5A-8D87-86DAF9112737}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard) FirewallRules: [TCP Query User{D628F65A-ADB6-4AA4-BC00-0A594E6A2B84}C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe => Nenhum Arquivo FirewallRules: [UDP Query User{114720A3-6BB1-4355-988E-5F06F6445B0B}C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\node.exe => Nenhum Arquivo FirewallRules: [TCP Query User{159BC979-1E45-4E1E-9A51-E0BB8C440F1B}C:\program files\dnplayerext2\ldboxheadless.exe] => (Block) C:\program files\dnplayerext2\ldboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation) FirewallRules: [UDP Query User{B9A36A96-872F-400C-A82A-98EF37FF9EE0}C:\program files\dnplayerext2\ldboxheadless.exe] => (Block) C:\program files\dnplayerext2\ldboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation) FirewallRules: [{7DB97AAA-E958-44C0-80BA-A4550447BE33}] => (Allow) C:\Games\Counter-Strike WaRzOnE\hl.exe => Nenhum Arquivo FirewallRules: [{F398DAC2-06D4-492D-8AD8-C7647219D2B9}] => (Allow) C:\Games\Counter-Strike WaRzOnE\hl.exe => Nenhum Arquivo FirewallRules: [TCP Query User{03BF4A1E-775E-474C-A91F-68A0A9658ECA}C:\games\counter-strike warzone\hl.exe] => (Allow) C:\games\counter-strike warzone\hl.exe => Nenhum Arquivo FirewallRules: [UDP Query User{1ADDCD25-DF86-4940-B680-ECD2A78CE609}C:\games\counter-strike warzone\hl.exe] => (Allow) C:\games\counter-strike warzone\hl.exe => Nenhum Arquivo FirewallRules: [TCP Query User{32EEE2AD-5A59-41F6-83AE-57C2A5F25DE1}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe => Nenhum Arquivo FirewallRules: [UDP Query User{C483C56A-53EA-49CF-8839-E73B3B8885C2}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe => Nenhum Arquivo FirewallRules: [TCP Query User{04BB4680-9FB0-4A21-A4DF-6728E280737B}C:\program files (x86)\steam\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe => Nenhum Arquivo FirewallRules: [UDP Query User{2B632EBD-15E9-46F5-8EF8-8F08A7AA8A23}C:\program files (x86)\steam\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{190339A3-59A7-40D7-B118-3C81CEA524C2}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{94DBC769-84DF-4541-A701-D35152DC099C}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{B60FD993-470B-49A1-A620-F346D5D23401}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Block) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe => Nenhum Arquivo FirewallRules: [UDP Query User{317C58BA-3414-404C-9697-3D6E653D9D82}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Block) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe => Nenhum Arquivo FirewallRules: [TCP Query User{D63BC6A9-13C2-47F8-BC22-24C7F7801429}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe => Nenhum Arquivo FirewallRules: [UDP Query User{FD4193E2-5EE9-48E1-BB37-3B18D63544B6}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe => Nenhum Arquivo FirewallRules: [TCP Query User{FB0F880D-932A-4F11-A92D-796FBDDBEA82}C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe] => (Block) C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe => Nenhum Arquivo FirewallRules: [UDP Query User{0B1B46FD-CA36-4441-AFC1-050DAB1386F2}C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe] => (Block) C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe => Nenhum Arquivo FirewallRules: [TCP Query User{AC7C97DC-5D20-4366-BE89-75ECA97C07D8}C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe] => (Block) C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe => Nenhum Arquivo FirewallRules: [UDP Query User{E104809E-5C90-4FDE-87A7-2B4A53F466C3}C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe] => (Block) C:\program files (x86)\r.g.games\test drive unlimited gold\testdriveunlimited.exe => Nenhum Arquivo FirewallRules: [TCP Query User{38B18C06-77ED-4399-85F8-725B1BD296D2}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Block) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe => Nenhum Arquivo FirewallRules: [UDP Query User{D871592A-9708-4388-9CB9-40E5418E358B}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Block) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe => Nenhum Arquivo FirewallRules: [TCP Query User{2DBD9D1B-F9CB-4ECD-8826-0940F0EE24FB}C:\program files (x86)\atari\tdu2\uplauncher.exe] => (Block) C:\program files (x86)\atari\tdu2\uplauncher.exe => Nenhum Arquivo FirewallRules: [UDP Query User{BEB98A6F-B76D-499C-8E55-9313F4FD0BAA}C:\program files (x86)\atari\tdu2\uplauncher.exe] => (Block) C:\program files (x86)\atari\tdu2\uplauncher.exe => Nenhum Arquivo FirewallRules: [TCP Query User{55CE88B5-E806-4072-AF30-A2DACD98FB8F}C:\program files (x86)\atari\tdu2\testdrive2.exe] => (Allow) C:\program files (x86)\atari\tdu2\testdrive2.exe => Nenhum Arquivo FirewallRules: [UDP Query User{B6382B61-8C3F-4086-AADD-FBCD5E0F723C}C:\program files (x86)\atari\tdu2\testdrive2.exe] => (Allow) C:\program files (x86)\atari\tdu2\testdrive2.exe => Nenhum Arquivo FirewallRules: [TCP Query User{ED8C386E-3013-4B52-AC95-5F8E1051560A}C:\program files (x86)\steam\steamapps\common\need for speed\nfs16.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\need for speed\nfs16.exe => Nenhum Arquivo FirewallRules: [UDP Query User{C5C87AE5-38C5-4F02-AFAD-AFAAD21BC1C9}C:\program files (x86)\steam\steamapps\common\need for speed\nfs16.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\need for speed\nfs16.exe => Nenhum Arquivo FirewallRules: [TCP Query User{0150C568-C43D-4949-90C6-7C7B2BC59FC7}C:\users\diego\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Arquivo não assinado] FirewallRules: [UDP Query User{4B503604-2A13-4544-BBDB-9979A35FA7D1}C:\users\diego\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\diego\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Arquivo não assinado] FirewallRules: [{7FE68C80-3A25-4916-A180-B5B5AE508B03}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{CCAAE3C9-EFAF-48DF-AA14-AF00BA7E2D2F}C:\users\diego\appdata\local\discord\app-1.0.9003\discord.exe] => (Allow) C:\users\diego\appdata\local\discord\app-1.0.9003\discord.exe (Discord Inc. -> Discord Inc.) FirewallRules: [UDP Query User{479F83C2-8366-4345-A54B-7D134DBEE05B}C:\users\diego\appdata\local\discord\app-1.0.9003\discord.exe] => (Allow) C:\users\diego\appdata\local\discord\app-1.0.9003\discord.exe (Discord Inc. -> Discord Inc.) FirewallRules: [{B9AA2FF2-8A31-4307-9F88-C4C7325B683D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BrainOut\bin\javaw.exe FirewallRules: [{9B22D739-8312-49FC-A434-5A09AEB8A11F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BrainOut\bin\javaw.exe ==================== Pontos de Restauração ========================= 16-03-2022 01:07:52 Ponto de Verificação Agendado 20-03-2022 14:24:47 AdwCleaner_BeforeCleaning_20/03/2022_14:21:21 20-03-2022 16:40:53 AdwCleaner_BeforeCleaning_20/03/2022_16:40:49 20-03-2022 21:38:20 AdwCleaner_BeforeCleaning_20/03/2022_21:38:16 21-03-2022 13:24:00 AdwCleaner_BeforeCleaning_21/03/2022_13:23:56 ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (03/20/2022 04:42:41 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (03/20/2022 04:42:41 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (03/20/2022 03:50:24 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (03/20/2022 03:50:24 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (03/20/2022 03:50:24 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (03/20/2022 03:50:24 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (03/20/2022 03:02:56 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW. hr = 0x8007001f, Um dispositivo conectado ao sistema não está funcionando. . Operação: Executando Operação Assíncrona Contexto: Estado Atual: DoSnapshotSet Error: (03/20/2022 02:24:38 PM) (Source: SPP) (EventID: 16389) (User: ) Description: O gravador COM+ REGDB Writer apresentou erro com repetição durante a criação de cópia de sombra. Tentando novamente... Mais informações: . Erros de Sistema: ============= Error: (03/21/2022 01:33:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço System Interface Foundation Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (03/21/2022 01:25:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço System Interface Foundation Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (03/21/2022 01:25:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Serviço do Kaspersky VPN Secure Connection 5.3 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço. Error: (03/21/2022 01:25:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço LenovoVantageService foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (03/21/2022 01:25:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço Intel(R) Content Protection HECI Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (03/21/2022 01:25:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço McAfee WebAdvisor foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 1 milissegundos: Reiniciar o serviço. Error: (03/21/2022 01:25:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Windows Presentation Foundation Font Cache 3.0.0.0 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (03/21/2022 01:25:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Serviço Clique para Executar do Microsoft Office foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Windows Defender: ================ Date: 2022-03-20 14:16:21 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {4AC73F0A-3EA5-4564-BEFA-4AAAB253D246} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Completa Usuário: LAPTOP-8SR4EU2K\Diego Date: 2022-03-20 12:23:51 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {8CD6FAD4-C140-4CA6-ACE1-46D08536A3AF} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Completa Usuário: LAPTOP-8SR4EU2K\Diego Date: 2022-03-19 14:32:20 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {7966D10D-BCBE-465B-9FE5-E738BD6D7F72} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Completa Usuário: LAPTOP-8SR4EU2K\Diego Date: 2022-03-17 20:39:03 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {239FB2EA-73CD-4AD5-8A52-EB88B1055871} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2022-03-15 20:44:00 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {03BD8CED-9448-453D-BCE1-D35000C05840} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Event[0]: Date: 2022-02-14 21:47:21 Description: Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança. Nova Versão da Inteligência de Segurança: Versão da Inteligência de Segurança anterior: 1.359.215.0 Fonte da Atualização: Servidor do Microsoft Update Tipo da Inteligência de Segurança: Antivírus Tipo da atualização: Completa Usuário: AUTORIDADE NT\SISTEMA Versão Atual do Mecanismo: Versão Anterior do Mecanismo: 1.1.18900.3 Código de Erro: 0x80070102 Descrição do Erro: O tempo limite de espera foi atingido. Date: 2022-02-10 15:55:23 Description: Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança. Nova Versão da Inteligência de Segurança: Versão da Inteligência de Segurança anterior: 1.357.303.0 Fonte da Atualização: Centro de Proteção contra Malware da Microsoft Tipo da Inteligência de Segurança: Antivírus Tipo da atualização: Completa Usuário: AUTORIDADE NT\SERVIÇO DE REDE Versão Atual do Mecanismo: Versão Anterior do Mecanismo: 1.1.18900.2 Código de Erro: 0x80070102 Descrição do Erro: O tempo limite de espera foi atingido. CodeIntegrity: =============== Date: 2022-03-21 13:17:52 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-03-21 11:53:28 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Informações da Memória =========================== BIOS: LENOVO 4WCN47WW 06/30/2020 placa-mãe: LENOVO Cairo 5A Processador: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Percentagem de memória em uso: 50% RAM física total: 8066.72 MB RAM física disponível: 4020.73 MB Virtual Total: 9922.72 MB Virtual disponível: 5999.16 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:631.24 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.89 GB) NTFS \\?\Volume{00d7aba4-43e6-4bdd-a6a9-4a075b217607}\ () (Fixed) (Total:0.98 GB) (Free:0.41 GB) NTFS \\?\Volume{f13d6afc-4ece-4581-aee6-31801d4dc349}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: CA9ABEDA) Partition: GPT. ==================== Fim de Addition.txt =======================