Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 09-02-2023 01 Executado por gcero (10-02-2023 16:53:39) Executando a partir de C:\Users\gcero\Desktop Microsoft Windows 10 Pro Versão 21H2 19044.2486 (X64) (2022-02-23 20:43:03) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-1227366972-1033682769-3568798095-500 - Administrator - Disabled) Convidado (S-1-5-21-1227366972-1033682769-3568798095-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1227366972-1033682769-3568798095-503 - Limited - Disabled) gcero (S-1-5-21-1227366972-1033682769-3568798095-1001 - Administrator - Enabled) => C:\Users\gcero WDAGUtilityAccount (S-1-5-21-1227366972-1033682769-3568798095-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AGEIA PhysX v7.07.09 (HKLM-x32\...\{65F1CF63-31E0-450B-96F3-4A88BE7361A6}) (Version: 7.07.09 - AGEIA Technologies, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.1 - Advanced Micro Devices, Inc.) Aplicativo da área de trabalho Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 8.2.0.34 - Autodesk) AutoCAD 2019 - English (HKLM\...\{28B89EEF-2001-0409-2102-CF3F3A09B77D}) (Version: 23.0.46.0 - Autodesk) Hidden AutoCAD 2019 - Português - Brasil (Brazilian Portuguese) (HKLM\...\{28B89EEF-2001-0416-2102-CF3F3A09B77D}) (Version: 23.0.46.0 - Autodesk) Hidden Autodesk AutoCAD 2019 - Português - Brasil (Brazilian Portuguese) (HKLM\...\AutoCAD 2019 - Português - Brasil (Brazilian Portuguese)) (Version: 23.0.46.0 - Autodesk) Autodesk AutoCAD 2019 Language Pack - English (HKLM\...\AutoCAD 2019 - English) (Version: 23.0.46.0 - Autodesk) Autodesk Fusion 360 (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.15299 - Autodesk, Inc.) Autodesk Genuine Service (HKLM\...\{1C5DB7B1-CE18-438C-B071-3AD6B8ADA5A0}) (Version: 4.4.0.85 - Autodesk) Autodesk Material Library 2019 (HKLM-x32\...\{8F69EE2C-DC34-4746-9B47-7511147BD4B0}) (Version: 17.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2019 (HKLM-x32\...\{3AAA4C1B-51DA-487D-81A3-4234DBB9A8F9}) (Version: 17.11.3.0 - Autodesk) Branding64 (HKLM\...\{871DA3E4-7743-4CDB-B95E-995DA5DA9B23}) (Version: 1.00.0004 - Advanced Micro Devices, Inc.) Hidden Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0 - Banco Bradesco S.A.) Conexant SmartAudio HD (HKLM-x32\...\{7A630EC4-B56A-4709-B18F-769B4F80DD17}) (Version: 8.54.40.50 - Conexant) CPUID CPU-Z 1.99 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.99 - CPUID, Inc.) CPUID HWMonitor 1.45 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.45 - CPUID, Inc.) CrystalDiskInfo 8.15.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.15.2 - Crystal Dew World) CrystalDiskMark 8.0.4a (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4a - Crystal Dew World) Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.7.2.5 - Western Digital Corporation) Dell SupportAssist (HKLM\...\{B5DCDCBD-BBB3-4A09-A496-E2FB05EC56CE}) (Version: 3.13.0.236 - Dell Inc.) Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{5B678BC6-D551-458B-893D-B442B21ECD21}) (Version: 5.5.4.16189 - Dell Inc.) Hidden Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{dc44ee3f-d6c1-444d-a660-b0f1ac90b51d}) (Version: 5.5.4.16189 - Dell Inc.) Dell Touchpad (HKLM\...\Elantech) (Version: 15.3.0.14 - ELAN Microelectronic Corp.) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) Discord (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\Discord) (Version: 1.0.9004 - Discord Inc.) ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden FACEIT (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\FACEIT) (Version: 1.31.7 - FACEIT Ltd.) FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.1 - FACEIT LTD) Free Audio Editor (HKLM-x32\...\Free Audio Editor_is1) (Version: 1.1.37.825 - Digital Wave Ltd) Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.3.83.1205 - Digital Wave Ltd) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.3.80.705 - Digital Wave Ltd) Gamers Club AC Launcher 3.2.97 (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\79ac4417-2a6e-5545-a41f-fb03b7abc70c) (Version: 3.2.97 - EMAC LAB LTDA) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 110.0.5481.77 - Google LLC) Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google) iCloud Outlook (HKLM\...\{F054257C-600A-4918-B730-F6829E491781}) (Version: 13.0.0.201 - Apple Inc.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4242 - Intel Corporation) K-Lite Mega Codec Pack 16.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.8.0 - KLCP) LatencyMon 7.00 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.1.364056 - Logitech) Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Host - 6.0.9 (x64) (HKLM\...\{C30ABA3F-32C0-43D1-B3B8-9AEFD58A15D9}) (Version: 48.39.47157 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.14 (x64) (HKLM\...\{8D88F0E2-CE9B-4A6D-8309-FDC562195F5B}) (Version: 40.56.30907 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.9 (x64) (HKLM\...\{FD10B803-97FD-4867-9753-8784BC35D2F8}) (Version: 48.39.47157 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.14 (x64) (HKLM\...\{B810ACDF-1C0C-4108-9B92-12F1674FA444}) (Version: 40.56.30907 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation) Microsoft .NET Runtime - 6.0.9 (x64) (HKLM\...\{0B4F742D-2D47-4E95-B756-402822D31C48}) (Version: 48.39.47157 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.9 (x64) (HKLM-x32\...\{67950e91-8f8f-4d75-9252-7cca68ccdacc}) (Version: 6.0.9.31619 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.78 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.13801.20266 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.473 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219.473 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.473 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219.473 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30037 (HKLM-x32\...\{dfea0fad-88b2-4a1f-8536-3f8f9391f4ef}) (Version: 14.29.30037.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30037 (HKLM-x32\...\{01FAEC41-B3BC-44F4-B185-5E8475AEB855}) (Version: 14.29.30037 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30037 (HKLM-x32\...\{7D75664A-6C04-424C-82A1-EE88913E5F16}) (Version: 14.29.30037 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM\...\{4CD6FFC6-FA14-4016-A7A6-B7E3D6286331}) (Version: 40.56.30911 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM-x32\...\{d21a4f20-968a-4b0c-bf04-a38da5f06e41}) (Version: 5.0.14.30911 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Monitor da tecnologia Intel® Turbo Boost 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20148 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden PDFCreator (HKLM\...\{95E99A6B-9728-4009-BEBC-E9EAFEE648E2}) (Version: 4.4.1 - pdfforge GmbH) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.987 - Even Balance, Inc.) Python 2.7 (HKLM-x32\...\{20c31435-2a0a-4580-be8b-ac06fc243ca4}) (Version: 2.7.150 - Python Software Foundation) qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.0 - The qBittorrent project) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.026 - Dell Inc.) SimCity 3000 Unlimited (HKLM-x32\...\2086050016_is1) (Version: 2.0.0.3 - GOG.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.44.0 - TechPowerUp) Telegram Desktop (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.6.2 - Telegram FZ-LLC) Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation) Warsaw 2.34.0.7 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.34.0.7 - Topaz) WhatsApp (HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\WhatsApp) (Version: 2.2305.7 - WhatsApp) WinRAR 6.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.0 - win.rar GmbH) Packages: ========= Clipchamp -> C:\Program Files\WindowsApps\Clipchamp.Clipchamp_2.5.15.0_neutral__yxz26nhyzhsrt [2023-01-18] (Microsoft Corp.) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-06-15] (Microsoft Corporation) Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.13.5.0_x64__htrsf667h5kn2 [2022-12-15] (Dell Inc) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.45.5.0_x64__6rarf9sa4v8jt [2023-02-02] (Disney) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.3.139.0_x64__v10z8vjag6ke6 [2023-01-29] (HP Inc.) iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa [2022-12-21] (Apple Inc.) [Startup Task] Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-09] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0 [2023-02-04] (Spotify AB) [Startup Task] WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x64__8wekyb3d8bbwe [2022-12-21] (Microsoft Corporation) WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x86__8wekyb3d8bbwe [2022-12-21] (Microsoft Corporation) WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x64__8wekyb3d8bbwe [2023-02-04] (Microsoft Corporation) WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x86__8wekyb3d8bbwe [2023-02-04] (Microsoft Corporation) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{2B663ECE-5770-491c-A474-F98603C40681}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{2B93DB32-8D98-4438-93B5-5C2CC3441999}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{4AC6DFE1-607B-45B2-B289-D7FBCD44169C}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2019\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{74562BED-63D6-4234-A386-937DB6FA38AE}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{74D0CE91-F931-4FAC-BEA9-EE32E43EAD37}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2019\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{7C90F737-950A-49eb-B6C1-EE1744C75E97}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{868D9612-74A1-405b-9758-369138103193}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{BB9F1D04-94AB-40b7-ABAE-33D2637F6340}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\gcero\AppData\Local\Autodesk\webdeploy\production\540c9578410bc15ff261605667cfced82aa9ac6d\NPreview10.dll (Autodesk, Inc. -> ) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{CC3BE603-926A-40ae-9570-4258474F0364}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{DD0B2199-F2FD-41eb-B744-B06B100B9A43}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2019\en-US\acadficn.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{F5756047-E218-465a-AC4C-FD04238C4896}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{F9748CB6-1CCB-4557-905E-8D42C83AAEB6}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) CustomCLSID: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001_Classes\CLSID\{FC072C1A-25CB-49e7-8F79-F2A8B8C3289D}\InprocServer32 -> c:\program files (x86)\adobe\acrobat dc\pdfmaker\autocad\2019\64\acrobatacadic.dbx (Adobe Inc. -> Adobe Systems Incorporated) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2018-01-30] (Autodesk, Inc. -> Autodesk, Inc.) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2018-01-30] (Autodesk, Inc. -> Autodesk) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2021-11-18] (pdfforge GmbH -> pdfforge GmbH) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-05-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [Arquivo não assinado] ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) Shortcut: C:\Users\gcero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3D City Database\3DCityDB Importer Exporter.lnk -> C:\Users\gcero\3DCityDB-Importer-Exporter\3DCityDB-Importer-Exporter.bat () ==================== Módulos Carregados (Whitelisted) ============= 2021-03-09 18:58 - 2021-03-09 18:58 - 000017920 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 003567616 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2022-02-23 21:09 - 2014-05-13 21:06 - 000440320 ____N (Atheros) [Arquivo não assinado] C:\Windows\system32\athihvs.dll 2018-03-08 07:18 - 2018-03-08 07:18 - 000015360 _____ (NHibernate community) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\Iesi.Collections.dll 2020-11-11 20:57 - 2020-11-11 20:57 - 000537088 _____ (NHibernate.info) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\FluentNHibernate.dll 2022-02-23 19:57 - 2022-02-23 19:57 - 000181248 _____ (pdfforge GmbH) [Arquivo não assinado] C:\Windows\System32\pdfcmon.dll 2018-02-06 17:25 - 2018-02-06 17:25 - 000176640 _____ (rubicon IT GmbH) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.dll 2018-03-23 12:10 - 2018-03-23 12:10 - 000028160 _____ (rubicon IT GmbH) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.EagerFetching.dll 2021-02-17 04:19 - 2021-02-17 04:19 - 000124928 _____ (Stateless Contributors) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files\Dell\SupportAssistAgent\bin\stateless.dll 2021-12-17 05:45 - 2021-12-17 05:45 - 000258048 _____ (The Apache Software Foundation) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files\Dell\SupportAssistAgent\bin\log4net.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000039424 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000414720 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000025088 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000024576 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000023552 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000532992 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 001441792 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 001189888 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000134656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 006184448 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 006867456 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000735232 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000120832 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 001104896 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000325120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 003668480 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000517120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000051712 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 004228608 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000171008 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 001085440 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000480256 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000205824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000329728 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000127488 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000390656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 095598080 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 005587968 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000462848 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000188928 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 002878464 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000055808 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000059392 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000262144 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000284160 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000333824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000136704 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000090112 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000313856 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2021-03-09 18:58 - 2021-03-09 18:58 - 000091648 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll 2016-12-18 08:55 - 2016-12-18 08:55 - 000097280 _____ (Tunnel Vision Laboratories, LLC) [Arquivo não assinado] C:\Program Files\Dell\SupportAssistAgent\bin\Antlr3.Runtime.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData:chnpbmzkyg [274] AlternateDataStreams: C:\ProgramData:YXVtLmh6aQ [7122] AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aDXs4 [2614] AlternateDataStreams: C:\Users\All Users:chnpbmzkyg [274] AlternateDataStreams: C:\Users\All Users:YXVtLmh6aQ [7122] AlternateDataStreams: C:\Users\Todos os Usuários:chnpbmzkyg [274] AlternateDataStreams: C:\Users\Todos os Usuários:YXVtLmh6aQ [7122] AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:chnpbmzkyg [274] AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:YXVtLmh6aQ [7122] ==================== Modo de Segurança (Whitelisted) ================== ==================== Associação (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer (Whitelisted) ========== HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-1227366972-1033682769-3568798095-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-23] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gcero\Desktop\567297.jpg DNS Servers: 192.168.15.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. Network Binding: ============= Ethernet: Topaz OFD Network Monitor -> nt_wsddntf (enabled) Wi-Fi: Topaz OFD Network Monitor -> nt_wsddntf (enabled) ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App" HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service " HKLM\...\StartupApproved\Run32: => "CORSAIR iCUE Software" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\StartupFolder: => "Monitor da tecnologia Intel® Turbo Boost 2.6.lnk" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A226A5D78F2E64B75A8F7520DE803B0F" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "vidnotifier.exe" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "utweb" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "LGHUB" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "FACEIT" HKU\S-1-5-21-1227366972-1033682769-3568798095-1001\...\StartupApproved\Run: => "GogGalaxy" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{8D728495-69EA-4876-8664-90397143933C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{9F89B7BC-8E96-4091-A2D2-30C04AF6584F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A1EE82A1-518C-4081-AA48-C5705F50E846}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{7333BD48-5E43-42BE-B59B-D1C38952E95B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{F8F6BC06-91B9-4B2B-91C9-2895EF737280}C:\users\gcero\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\gcero\appdata\local\discord\app-1.0.9004\discord.exe => Nenhum Arquivo FirewallRules: [UDP Query User{D83CED3F-D59F-4983-AFAA-7A9A2934A011}C:\users\gcero\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\gcero\appdata\local\discord\app-1.0.9004\discord.exe => Nenhum Arquivo FirewallRules: [{BFA1BD7C-0814-484D-803A-EC044463767F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5C9C0C6C-F587-44D9-B96F-EC567B68CACA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C69585B9-5E98-40D8-9E13-8A21FD9B0719}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{1258A304-4589-482A-9848-B84698BDF01F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{84894201-9D72-4F86-9080-E31862613762}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe (Unity Technologies ApS) [Arquivo não assinado] FirewallRules: [{686F286A-5DF4-4164-B0CD-6F5C06BA475D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe (Unity Technologies ApS) [Arquivo não assinado] FirewallRules: [{85538C00-4AB3-4935-BB16-94EDF0E5F1C6}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => Nenhum Arquivo FirewallRules: [{288F5DBA-44D8-4613-B713-41BF04E0BB4C}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => Nenhum Arquivo FirewallRules: [{EA62E5A5-6F23-4ABC-BB85-98C957F2E578}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{24DC9225-3F81-45C0-BA53-3875F3E2B446}] => (Allow) C:\Users\gcero\Desktop\Programs\AAct Network v1.1.4 Portable\AAct_Network_x64.exe => Nenhum Arquivo FirewallRules: [{890480D4-BC89-40BC-BDD5-0FE56584D425}] => (Allow) C:\Users\gcero\Desktop\Programs\AAct Network v1.1.4 Portable\AAct_Network_x64.exe => Nenhum Arquivo FirewallRules: [{65337AF5-5756-480B-8354-8619EABB2AAA}] => (Allow) LPort=1688 FirewallRules: [TCP Query User{A96C7D18-7F71-4870-9BFE-4DB868F0EFF2}C:\program files\ultimaker cura 4.13.1\cura.exe] => (Allow) C:\program files\ultimaker cura 4.13.1\cura.exe => Nenhum Arquivo FirewallRules: [UDP Query User{1CBEF0E2-D183-475B-8458-BA5741FB5AF2}C:\program files\ultimaker cura 4.13.1\cura.exe] => (Allow) C:\program files\ultimaker cura 4.13.1\cura.exe => Nenhum Arquivo FirewallRules: [{46554015-A6A2-4FCF-8C4C-BCF6AD2D27FC}] => (Allow) C:\Program Files\Topaz OFD\Warsaw\core.exe (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD) FirewallRules: [{6EAC2F82-D6B2-462F-BBCF-6A36137BEFF1}] => (Allow) LPort=8501 FirewallRules: [{20458CBD-9755-46AE-8CE8-8361A8FD92D1}] => (Allow) LPort=8501 FirewallRules: [TCP Query User{EB66E2A2-C898-4D64-BB92-84F3A96556F7}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{9B90FBDF-4EBD-4785-B24C-871D43478382}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{A07C0342-4F8B-4B60-87C6-613CD91FED73}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1023C96C-5CF8-49FB-A5BD-3BA9AE1A4FBF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AA59D2B4-0F46-40BE-A5C0-FF8F3A269383}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{7CDF335C-F014-4E5A-9ADC-08AFDBAE648A}C:\users\gcero\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\gcero\appdata\local\faceit\app-1.31.7\faceit.exe (FACE IT LIMITED -> FACEIT Ltd.) FirewallRules: [UDP Query User{98E17691-D4B6-4F5F-9D70-4F074B06D278}C:\users\gcero\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\gcero\appdata\local\faceit\app-1.31.7\faceit.exe (FACE IT LIMITED -> FACEIT Ltd.) FirewallRules: [{E4A449C7-F228-4CE1-A858-2B2DF0ED29F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{3C0B0AD2-0671-48C1-A8F1-CED78F42FDF2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{DFCBEF6A-8E7A-4B33-8E69-A73FDFC47B75}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{1D1EDFD0-24B8-4C28-AAA6-0F3F58A2CA59}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{FEA51B88-6AC9-4039-8C59-E1A2FCE9BFC2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{10A7832C-E0E8-4CF2-AB0C-4C98AD10E979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{36229E18-0169-4F38-B407-A5DC39D3C78C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9603419E-615F-40A4-A3BB-2909929C9645}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5C89571A-32CE-4A75-9B28-DEB15930B8D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2953C0E8-AB8A-46B7-95CF-BFF8130F04F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6BC76379-8BB3-4D19-B3C0-F0C657BAC603}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8172A33F-7428-4D07-9F23-FCDE64B68DF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8BB7AFEF-7DB8-4372-9B0D-248238F6D108}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6A1C7896-99DF-46DC-8BDA-337DE59DC2D2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{CEBF3B8B-98D4-4DAE-8091-E44A0A81FDE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0F4BE3FE-031F-46A7-895A-64021BE277C0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C2A59FCD-78CB-49E5-B5E7-23A59B908818}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E36B87B7-E911-499F-A096-B35189F1562A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DE22E4E7-F253-424A-A478-2363164D518F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado] FirewallRules: [{33305C9D-9EB2-44AE-9D92-20F911F94567}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado] ==================== Pontos de Restauração ========================= 31-01-2023 16:43:35 Instalador de Módulos do Windows 02-02-2023 06:56:53 Instalador de Módulos do Windows 03-02-2023 13:03:58 Instalador de Módulos do Windows 05-02-2023 08:20:04 Instalador de Módulos do Windows 06-02-2023 14:21:01 Instalador de Módulos do Windows 08-02-2023 06:49:51 Instalador de Módulos do Windows 09-02-2023 14:16:39 Instalador de Módulos do Windows ==================== Dispositivos Apresentando Falhas No Gerenciador ============ Name: HL-DT-ST DVDRWBD CT40N Description: CD-ROM Drive Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Unidades de CD-ROM padrão) Service: cdrom Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (02/10/2023 04:47:06 PM) (Source: ESENT) (EventID: 623) (User: ) Description: SearchIndexer (9464,D,23) Windows: O armazenamento de versão desta instância (0) alcançou o tamanho máximo de 128 Mb. É provável que uma transação de longa duração esteja impedindo a limpeza do armazenamento de versão e fazendo com que ele aumente em tamanho. As atualizações serão rejeitadas até que a transação de longa duração tenha sido completamente confirmada ou revertida. Possível transação de execução demorada: ID de sessão: 0x00000228F3C31580:0x142f08 Contexto de sessão: 0x00000000 ID do Thread do Contexto de sessão: 0x0000000000001318 Limpeza: 1 Rastreamento de sessão: 45861@16:47:06 57573@16:47:00 Error: (02/10/2023 04:46:59 PM) (Source: ESENT) (EventID: 623) (User: ) Description: SearchIndexer (9464,D,23) Windows: O armazenamento de versão desta instância (0) alcançou o tamanho máximo de 128 Mb. É provável que uma transação de longa duração esteja impedindo a limpeza do armazenamento de versão e fazendo com que ele aumente em tamanho. As atualizações serão rejeitadas até que a transação de longa duração tenha sido completamente confirmada ou revertida. Possível transação de execução demorada: ID de sessão: 0x00000228F3C31580:0x142420 Contexto de sessão: 0x00000000 ID do Thread do Contexto de sessão: 0x0000000000002E0C Limpeza: 1 Rastreamento de sessão: 45861@16:46:59 57573@16:46:55 Error: (02/10/2023 04:37:15 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa SecHealthUI.exe versão 10.0.19041.2075 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção. ID do Processo: 273c Hora de Início: 01d93d85e9bae79c Hora de Término: 4294967295 Caminho do Aplicativo: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe ID do Relatório: b3aa76da-0999-4640-b108-016eb3d6434f Nome completo do pacote com falha: Microsoft.Windows.SecHealthUI_10.0.19041.1865_neutral__cw5n1h2txyewy ID do aplicativo relativo ao pacote com falha: SecHealthUI Tipo com falha: Cross-process Error: (02/10/2023 06:52:25 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: AUDIODG.EXE, versão: 10.0.19041.1865, carimbo de data/hora: 0x61fdcc50 Nome do módulo com falha: CX64AP71.dll, versão: 4.80.70.0, carimbo de data/hora: 0x501ae8c8 Código de exceção: 0xc0000005 Deslocamento da falha: 0x0000000000106baa ID do processo com falha: 0x2f50 Hora de início do aplicativo com falha: 0x01d93d33d5b98994 Caminho do aplicativo com falha: C:\Windows\system32\AUDIODG.EXE Caminho do módulo com falha: C:\Windows\system32\CX64AP71.dll ID do Relatório: 69c42e19-e8b5-4376-a8c5-bbffa80571b3 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (02/10/2023 06:50:07 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: ExtendScreen.exe, versão: 1.0.0.0, carimbo de data/hora: 0xe51b4a77 Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.19041.2486, carimbo de data/hora: 0xca518c9d Código de exceção: 0xc000041d Deslocamento da falha: 0x0012e292 ID do processo com falha: 0x33ac Hora de início do aplicativo com falha: 0x01d93d350b73df17 Caminho do aplicativo com falha: C:\Users\gcero\Desktop\Monitor Hardware\en-defaultú¿Ëó+-¦µú®\ExtendScreen.exe Caminho do módulo com falha: C:\Windows\System32\KERNELBASE.dll ID do Relatório: b6c880e9-8dbd-4066-8f14-bdaf9c4361c5 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (02/10/2023 06:50:02 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: ExtendScreen.exe, versão: 1.0.0.0, carimbo de data/hora: 0xe51b4a77 Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.19041.2486, carimbo de data/hora: 0xca518c9d Código de exceção: 0xe0434352 Deslocamento da falha: 0x0012e292 ID do processo com falha: 0x33ac Hora de início do aplicativo com falha: 0x01d93d350b73df17 Caminho do aplicativo com falha: C:\Users\gcero\Desktop\Monitor Hardware\en-defaultú¿Ëó+-¦µú®\ExtendScreen.exe Caminho do módulo com falha: C:\Windows\System32\KERNELBASE.dll ID do Relatório: 766b9272-1416-41c1-aa59-8723cf6ea5f9 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (02/10/2023 06:50:02 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplicativo: ExtendScreen.exe Versão do Framework: v4.0.30319 Descrição: O processo foi terminado devido a uma exceção sem tratamento. Informações da Exceção: System.Xml.XmlException em System.Xml.XmlTextReaderImpl.Throw(System.Exception) em System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[]) em System.Xml.XmlTextReaderImpl.ParseText(Int32 ByRef, Int32 ByRef, Int32 ByRef) em System.Xml.XmlTextReaderImpl.ParseText() em System.Xml.XmlTextReaderImpl.ParseElementContent() em System.Xml.XmlTextReaderImpl.Read() em System.Xml.XmlTextReader.Read() em System.Xml.XmlTextReaderImpl.Skip() em System.Xml.XmlTextReader.Skip() em System.Configuration.XmlUtil.StrictSkipToNextElement(System.Configuration.ExceptionAction) em System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean) em System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean) em System.Configuration.BaseConfigurationRecord.ScanSections(System.Configuration.XmlUtil) em System.Configuration.BaseConfigurationRecord.InitConfigFromFile() Informações da Exceção: System.Configuration.ConfigurationErrorsException em System.Configuration.ConfigurationSchemaErrors.ThrowIfErrors(Boolean) em System.Configuration.BaseConfigurationRecord.ThrowIfParseErrors(System.Configuration.ConfigurationSchemaErrors) em System.Configuration.BaseConfigurationRecord.ThrowIfInitErrors() em System.Configuration.ClientConfigurationSystem.OnConfigRemoved(System.Object, System.Configuration.Internal.InternalConfigEventArgs) Informações da Exceção: System.Configuration.ConfigurationErrorsException em System.Configuration.ConfigurationManager.PrepareConfigSystem() em System.Configuration.ConfigurationManager.GetSection(System.String) em System.Configuration.PrivilegedConfigurationManager.GetSection(System.String) em System.Diagnostics.DiagnosticsConfiguration.GetConfigSection() em System.Diagnostics.DiagnosticsConfiguration.Initialize() em System.Diagnostics.DiagnosticsConfiguration.get_Sources() em System.Diagnostics.TraceSource.Initialize() em System.Net.Logging.InitializeLogging() em System.Net.Logging.get_On() em System.Net.ComNetOS..cctor() Informações da Exceção: System.TypeInitializationException em System.Net.ServicePointManager..cctor() Informações da Exceção: System.TypeInitializationException em System.Net.ServicePointManager.EnsureConfigurationLoaded() em System.Uri.ParseRemaining() em System.Uri.InitializeUri(System.ParsingError, System.UriKind, System.UriFormatException ByRef) em System.Uri.CreateThis(System.String, Boolean, System.UriKind) em System.Uri..ctor(System.String) em System.Windows.Forms.ThreadExceptionDialog..ctor(System.Exception) em System.Windows.Forms.Application+ThreadContext.OnThreadException(System.Exception) em System.Windows.Forms.Control.WndProcException(System.Exception) em System.Windows.Forms.Control+ControlNativeWindow.OnThreadException(System.Exception) em System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr) Error: (02/10/2023 06:49:37 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: ExtendScreen.exe, versão: 1.0.0.0, carimbo de data/hora: 0xe51b4a77 Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.19041.2486, carimbo de data/hora: 0xca518c9d Código de exceção: 0xc000041d Deslocamento da falha: 0x0012e292 ID do processo com falha: 0x1d80 Hora de início do aplicativo com falha: 0x01d93d34ee097cf9 Caminho do aplicativo com falha: C:\Users\gcero\Desktop\Monitor Hardware\en-defaultú¿Ëó+-¦µú®\ExtendScreen.exe Caminho do módulo com falha: C:\Windows\System32\KERNELBASE.dll ID do Relatório: a90f0959-6270-44ab-9351-a8989399e6ec Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Erros de Sistema: ============= Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Dell Data Vault Collector foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Dell TechHub foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Dell Data Vault Processor foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Dell Data Vault Service API foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço Componente de Segurança Bradesco foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Serviço Clique para Executar do Microsoft Office foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço LGHUB Updater Service foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 5000 milissegundos: Reiniciar o serviço. Error: (02/10/2023 04:46:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço FlexNet Licensing Service 64 foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Windows Defender: ================ Date: 2023-02-10 16:37:16 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {FC6C98A6-B863-4BC2-BB99-5A192E02BF10} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Completa Usuário: DESKTOP-TH9B0OM\gcero Date: 2023-02-10 16:37:16 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nome: PUABundler:Win32/uTorrent_BundleInstaller Gravidade: Baixo Categoria: Software Potencialmente Indesejado Caminho: file:_C:\$Recycle.Bin\S-1-5-21-1227366972-1033682769-3568798095-1001\$RE94E6N.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Usuário Usuário: DESKTOP-TH9B0OM\gcero Nome do Processo: Unknown Versão da Inteligência de Segurança: AV: 1.381.3395.0, AS: 1.381.3395.0, NIS: 1.381.3395.0 Versão do Mecanismo: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-02-10 16:31:11 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nome: PUABundler:Win32/uTorrent_BundleInstaller Gravidade: Baixo Categoria: Software Potencialmente Indesejado Caminho: file:_C:\$Recycle.Bin\S-1-5-21-1227366972-1033682769-3568798095-1001\$RE94E6N.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Proteção em Tempo Real Usuário: DESKTOP-TH9B0OM\gcero Nome do Processo: C:\Windows\explorer.exe Versão da Inteligência de Segurança: AV: 1.381.3395.0, AS: 1.381.3395.0, NIS: 1.381.3395.0 Versão do Mecanismo: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-02-10 16:22:21 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nome: PUABundler:Win32/uTorrent_BundleInstaller Gravidade: Baixo Categoria: Software Potencialmente Indesejado Caminho: file:_C:\$Recycle.Bin\S-1-5-21-1227366972-1033682769-3568798095-1001\$RE94E6N.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Proteção em Tempo Real Usuário: DESKTOP-TH9B0OM\gcero Nome do Processo: C:\Windows\explorer.exe Versão da Inteligência de Segurança: AV: 1.381.3395.0, AS: 1.381.3395.0, NIS: 1.381.3395.0 Versão do Mecanismo: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-02-10 16:22:08 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {EA4AC0CE-C0ED-4966-9EE3-98A94C4BBB37} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: DESKTOP-TH9B0OM\gcero  CodeIntegrity: =============== Date: 2023-02-10 16:09:30 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Topaz OFD\Warsaw\wslbdhm64.dll that did not meet the Microsoft signing level requirements. Date: 2023-02-10 09:31:46 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Informações da Memória =========================== BIOS: Dell Inc. A14 05/17/2018 placa-mãe: Dell Inc. 0PXH02 Processador: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz Percentagem de memória em uso: 44% RAM física total: 16259.3 MB RAM física disponível: 8974.77 MB Virtual Total: 18691.3 MB Virtual disponível: 10180.14 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.2 GB) (Free:292.27 GB) (Model: WDC WDS500G2B0A) NTFS \\?\Volume{c82ad428-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS \\?\Volume{c82ad428-0000-0000-0000-305074000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C82AD428) Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=519 MB) - (Type=27) ========================================================== Disk: 1 (Size: 29.8 GB) (Disk ID: 21AD8077) Partition: GPT. ==================== Fim de Addition.txt =======================