Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 12-08-2023 Executado por Francisco Narde (12-08-2023 16:18:03) Executando a partir de D:\Desktop Microsoft Windows 10 Pro Versão 22H2 19045.3324 (X64) (2020-07-19 05:10:25) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-3907471261-615860086-2012423866-500 - Administrator - Disabled) Convidado (S-1-5-21-3907471261-615860086-2012423866-501 - Limited - Disabled) DefaultAccount (S-1-5-21-3907471261-615860086-2012423866-503 - Limited - Disabled) Francisco Narde (S-1-5-21-3907471261-615860086-2012423866-1001 - Administrator - Enabled) => C:\Users\Francisco Narde WDAGUtilityAccount (S-1-5-21-3907471261-615860086-2012423866-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA} FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) @BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0718.1 - GIGABYTE) Hidden @BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0718.1 - GIGABYTE) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 22.001.20117 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.0.327 - Adobe Systems Incorporated) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.0.49 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 4.06.10.651 - Advanced Micro Devices, Inc.) AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.89 - Advanced Micro Devices, Inc.) Hidden AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.19.0.0 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.4.10 - Advanced Micro Devices, Inc.) Hidden AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.7.2 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{c63a1907-428b-458b-935e-e61aad4aac6e}) (Version: 4.06.10.651 - Advanced Micro Devices, Inc.) Hidden APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Área de trabalho remota do Google Chrome (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\78afdc7becafbc9d1d312da7392eafce) (Version: 1.0 - Google\Chrome) Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft) Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft) Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft) Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft) AutoScreenRecorder 5 (HKLM-x32\...\AutoScreenRecorder 5_is1) (Version: 5.0.777 - Wisdom Software Inc.) AVG Driver Updater (HKLM\...\AVG Driver Updater) (Version: 23.2.3178.10414 - AVG) AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 23.2.5531.7786 - AVG) BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.12.115.2101 - now.gg, Inc.) BlueStacks Services (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\BlueStacksServices) (Version: 2.0.5 - now.gg, Inc.) BlueStacks X (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\BlueStacks X) (Version: 10.3.10.1006 - now.gg, Inc.) Boxoft Free OCR (freeware) (HKLM-x32\...\Boxoft Free OCR (freeware)_is1) (Version: - boxoft Solution) Branding64 (HKLM\...\{2A677A6A-43E8-4FE3-A273-07B0E27DADAE}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden CamStudio 2.7 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7 - CamStudio Open Source) CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform) CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n) CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC) C-Media High Definition Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008828}) (Version: 3.2 - C-Media Electronics, Inc.) CPUID CPU-Z 2.03 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.03 - CPUID, Inc.) CPUID CPU-Z Aorus 1.99 (HKLM\...\CPUID CPU-Z Aorus_is1) (Version: 1.99 - CPUID, Inc.) CPUID HWMonitor 1.48 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.48 - CPUID, Inc.) Crack1 version 0.5 (HKLM-x32\...\Crack1_is1) (Version: 0.5 - ) Crack4 version 0.5 (HKLM-x32\...\Crack4_is1) (Version: 0.5 - ) Crucial Storage Executive (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Crucial Storage Executive 7.12.122021.04) (Version: 7.12.122021.04 - Crucial) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DeepL (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - DeepL SE) EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.22.1227 - GIGABYTE) Hidden EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.22.1227 - GIGABYTE) EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.1227 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.1227 - GIGABYTE) Epic Games Launcher (HKLM-x32\...\{4A5076AD-020F-4BCE-B558-47C82911061F}) (Version: 1.3.23.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{A1EB595F-651D-4A04-99B0-A7065538B33C}) (Version: 2.0.38.0 - Epic Games, Inc.) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) Excel (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) Free Timer (HKLM-x32\...\{2AE4F065-5A3C-486D-81B4-161D4693303E}_is1) (Version: 4.0.0.0 - Comfort Software Group) Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Geeks3D FurMark 1.29.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.29.0.0 - Geeks3D) Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.171 - Google LLC) Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google) GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE) HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HDD Regenerator (HKLM-x32\...\{CC5DA723-D428-40D1-B82B-21EB64B1273C}) (Version: 20.11.0011 - Abstradrome) HuionTablet (HKLM-x32\...\HuionTablet) (Version: 15.6.3.132 - Shenzhen Huion Animation Technology Co.,LTD) K-Lite Codec Pack 13.7.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Linksys Wireless Manager (HKLM\...\Linksys Wireless Manager) (Version: 4.9.9232.0 - Cisco Systems, Inc.) Logi Bolt (HKLM\...\LogiBolt) (Version: 1.2.6024.0 - Logi) Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.48.437015 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: 10.10.58 - Logitech) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.203 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0416-1000-0000000FF1CE}_ENTERPRISE_{51530CD1-8244-4E0F-B536-BCCC05325C7F}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0416-0000-0000000FF1CE}_ENTERPRISE_{51530CD1-8244-4E0F-B536-BCCC05325C7F}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office Access MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0015-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-00BA-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0044-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-00A1-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001F-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-002C-0416-0000-0000000FF1CE}) (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{8A524694-0CA4-476A-9301-B1E9D70FC952}) (Version: - Microsoft) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version: - Microsoft) Hidden Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0019-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007 (HKLM\...\{90120000-002A-0416-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-006E-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.153.0724.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 116.0.2 (x64 pt-BR)) (Version: 116.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla) MPC-HC 2.0.0 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 2.0.0 - MPC-HC Team) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project) ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Outlook (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Pacote de Driver do Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet) Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Pomotroid 0.13.0 (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\94bc756f-791e-5f51-856a-d5ab11c59b82) (Version: 0.13.0 - Christopher Murphy) PowerPoint (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden PureRef (HKLM-x32\...\PureRef) (Version: 1.11.1 - Idyllic Pixel) qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.3 - The qBittorrent project) QWXONormalizer (HKLM-x32\...\CHSINormalizer_is1) (Version: 6.105.17 - Nz Software) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9126.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) REDlauncher (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com) Revo Uninstaller 2.4.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.2 - VS Revo Group, Ltd.) RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.4 - Rockstar Games) RyzenMasterSDK (HKLM\...\{324EDD12-32C2-4D2D-9A54-52048B456257}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.1227 - GIGABYTE) Hidden SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.1227 - GIGABYTE) Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE) Spotify (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Spotify) (Version: 1.2.17.834.g26ee1129 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellar Photo Recovery (HKLM\...\Stellar Photo Recovery_is1) (Version: 11.1.0.0 - Stellar Information Technology Pvt Ltd.) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.1 - Krzysztof Kowalczyk) SumatraPDF (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\SumatraPDF) (Version: 3.4.6 - Krzysztof Kowalczyk) TeamViewer (HKLM\...\TeamViewer) (Version: 15.37.3 - TeamViewer) TikTok (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\d59969c1294b09b83df3d853b26b0754) (Version: 1.0 - Google\Chrome) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation) VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) Visual Studio 2010 SP1 Runtime x64 (HKLM\...\{F6305232-7952-4CCE-BDCD-9B2E66591C4A}) (Version: 1.0.0 - Microsoft Corporation) Visual Studio 2010 SP1 Runtime x86 (HKLM-x32\...\{AEA163A5-BA2F-4E63-9529-DE8606AC82A4}) (Version: 1.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Word (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) YouTube Music (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\6c5703dffe21ecf14bfd52d011466875) (Version: 1.0 - Google\Chrome) Packages: ========= AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.23.10015.0_x64__0a9344xs7nr4m [2023-07-08] (Advanced Micro Devices Inc.) Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-14] (Microsoft Corporation) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-10] (Microsoft Corporation) EasyCast - Mirror Display -> C:\Program Files\WindowsApps\53887HaoCai.EasyCast-MirrorDisplay_1.6.2.0_x64__qrw73ppzkf79y [2023-06-04] (Hao Cai) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-08-09] (Instagram) KDE Connect -> C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8 [2023-04-29] (KDE e.V.) [Startup Task] Movie Maker - Video Editor -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_3.6.34.0_x64__bzg06mxvgh4fa [2023-07-05] (V3TApps) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.8040.0_x64__8wekyb3d8bbwe [2023-08-09] (Microsoft Studios) [MS Ad] TeamViewer: Remote Control -> C:\Program Files\WindowsApps\TeamViewer.31414B719FA93_15.0.100.0_x86__89446h4zmeyyt [2022-12-26] (TeamViewer) TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2023-06-15] (Bytedance Pte. Ltd.) Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.113.1341.553_neutral__8wekyb3d8bbwe [2023-01-13] (Microsoft Corporation) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_55Y6FHEK7QNKN55ESNMK4VBVZIQYNK4LKTQIF2SCK2UYOCE7A2AQ\DeepL.exe (DeepL SE -> DeepL SE) CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{ca31933b-b116-4444-9c6d-e5103390fb76}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2020\CamtasiaStudio.exe" -ToastActivated => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.WIS1] => C:\WINDOWS\system32\wiscodecx64.dll [254808 2022-05-11] (Wisdom Software Inc. -> Wisdom Software Inc.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32-x32: [VIDC.WIS1] => wiscodecx64.dll ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__maonlnecdeecdljpahhnnlmhbmalehlm\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen --app-launch-source=4 ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__akpamiohjfcnimfljfndmaldlcfphjmp\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=akpamiohjfcnimfljfndmaldlcfphjmp --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen&__pwa=1 --app-launch-source=4 ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Pinterest.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jbdahlimgohfikaoinpdclkpciabakhf ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Revolution Ensino de Artes Visuais LTDA.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbkmngjoemiefmllohcogahigebcndgd ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=akpamiohjfcnimfljfndmaldlcfphjmp --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen&__pwa=1 --app-launch-source=4 ==================== Módulos Carregados (Whitelisted) ============= 2022-12-29 14:10 - 2022-08-20 22:44 - 001160192 _____ () [Arquivo não assinado] [O arquivo está em uso] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.Core.dll 2023-08-12 16:14 - 2023-08-12 16:14 - 002306560 _____ () [Arquivo não assinado] \\?\C:\Users\Francisco Narde\AppData\Local\Temp\a0db8c89-533f-499b-83aa-3b49e21f0b54.tmp.node 2009-07-13 17:37 - 2009-07-13 17:37 - 000098304 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll 2021-05-16 02:12 - 2016-07-21 10:54 - 000137728 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2021-05-16 02:12 - 2017-09-12 10:34 - 001506304 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2021-04-22 15:48 - 2021-04-22 15:48 - 001867264 _____ () [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000144896 _____ () [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000077824 _____ () [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll 2022-12-29 14:11 - 2022-08-19 04:38 - 175591424 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libcef.dll 2022-12-29 14:11 - 2022-08-19 03:11 - 000442880 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libEGL.dll 2022-12-29 14:11 - 2022-08-19 03:10 - 006480384 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libGLESv2.dll 2022-12-29 14:11 - 2022-08-19 03:07 - 004077568 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vk_swiftshader.dll 2022-12-29 14:11 - 2022-08-19 03:10 - 000828928 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vulkan-1.dll 2023-08-10 23:29 - 2023-07-18 04:27 - 002862080 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\ffmpeg.dll 2023-08-10 23:29 - 2023-07-18 04:27 - 000479232 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\libegl.dll 2023-08-10 23:29 - 2023-07-18 04:27 - 007513600 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\libglesv2.dll 2023-08-10 23:29 - 2023-07-18 04:27 - 005209088 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\vk_swiftshader.dll 2020-07-29 21:24 - 2016-05-31 03:37 - 000254464 _____ (C-MEDIA Electronics INC.) [Arquivo não assinado] C:\Program Files\Xear Audio Center\CPL\Driver\x64\vista\osConfLib.dll 2021-03-09 14:00 - 2021-03-09 14:00 - 000205824 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV3.dll 2021-11-05 17:07 - 2021-11-05 17:07 - 000236544 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Arquivo não assinado] C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\yccV3.dll 2009-07-13 17:37 - 2009-07-13 17:37 - 000152112 _____ (OPSWAT, Inc. -> ) [Arquivo não assinado] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll 2022-12-29 14:11 - 2022-08-19 03:16 - 001231872 _____ (The Chromium Authors) [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\chrome_elf.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBCURL.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBEAY32.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\SSLEAY32.dll 2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: ) [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll 2021-05-16 02:12 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [314] ==================== Modo de Segurança (Whitelisted) ================== ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll [2009-07-14] (Cisco-Linksys LLC -> Cisco Systems, Inc.) Handler-x32: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll [2009-07-14] (Cisco-Linksys LLC -> Cisco Systems, Inc.) Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Nenhum Arquivo (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\localhost -> localhost ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-10-30 00:14 - 2019-10-30 00:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3907471261-615860086-2012423866-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 177.92.143.254 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Firewall do Windows está habilitado. Network Binding: ============= Ethernet: Pure Networks Device Discovery Driver -> PNARP (enabled) Ethernet: Pure Networks Wireless Driver -> PURENDIS (enabled) Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled) ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe" HKLM\...\StartupApproved\Run: => "TuneupUI.exe" HKLM\...\StartupApproved\Run: => "LogiBolt" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Spotify" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{9820E554-9556-46F9-B598-67CACF3D5DAF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{9C304BA4-B50F-42F9-A3D6-C21307EA17D5}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{9FB4A524-1418-48EA-9CA1-EEFE2996AAEC}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{CC02A231-1E92-4692-9160-F9FB1BC045DF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{C4E4D91B-5010-4D75-AC19-DC97FA48A5C8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A67CFB93-3C0D-4986-B00B-8EBA41331D12}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{520AFDFE-E6E5-46E6-A75B-500D89AAA5BE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{352922EB-B910-4D91-8BF5-F5E7E3EAEADD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{28227C47-8C78-4AB5-A250-A68C2E51F461}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{BC73F1D7-B766-45D2-8E1C-FC65E2D403A1}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{FDFF5C35-93E8-4AFF-A5EF-4D74BB41CC89}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{4902CB23-C124-45F2-8210-9E1018DFEC08}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{85B86BCE-4FB9-49CE-B371-83A2B9C6E464}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5B86F4D0-51D0-48EE-B972-8B63EFE7AEE6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{542D5240-7891-4318-BE94-0BD96DE3C5B1}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{18AE2004-F849-4A0D-8583-C30F4C944981}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{AA24679B-2A0E-48C2-8AFC-5B6E02524A38}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{3DA78CD7-C958-4F16-B6DD-750783634655}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{57DE18FE-73A7-48FD-A730-5EEC3F83BE7A}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{CAC6E061-A134-41F1-88DC-9E63853E40ED}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{E36F36F0-879C-41F9-AAD6-025D3FE7AC65}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{034256CB-65EE-47D1-B7D2-5F6B50ED65DF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{75D29164-CE22-4094-BDD5-476DFCD09BF3}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{4ACCB619-B18D-4996-AA70-6EFCAC7E7401}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{417C9ECF-82D7-4A0A-8D80-EFE64EF690AA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{9B8DF069-347D-406A-9AC0-CA543CAA775D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{75BC230B-ABF8-4A82-A157-A9E3D21BDD88}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{101F461B-96F9-4E61-B286-ED0ABB0BFCCC}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{3963202D-2571-401C-9F75-779BDF226983}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{896D9D5D-5599-4B58-B27F-59C97EA3ABCD}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{56A9773C-4873-4555-A44D-AF262156CA26}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{C1ED3C26-7440-4FF3-9203-5164E83E79B7}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{F4F6BFE9-4922-4321-962D-EAA95DEB261C}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{68C3751E-0053-48E4-8BE5-460A6EEC492D}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{568FE5A3-CD62-4D71-9553-88F29B9155E3}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.) FirewallRules: [{B649955B-0297-412E-A757-E4658BF46667}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{4110ACCE-35F7-41DB-BBB0-167F0C3C643C}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC) FirewallRules: [{4EBC6F92-C910-4819-AB53-6058AF1B98E2}] => (Allow) LPort=9009 FirewallRules: [{C287F76A-046F-48FF-95D8-CEA004016E4B}] => (Allow) LPort=9009 FirewallRules: [{9C1C74AD-8851-4598-90BB-9BC34CF8E669}] => (Allow) LPort=9009 FirewallRules: [{41BEB25C-8BB7-43BC-91B6-1C587C10C6DD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D34B8691-E7C5-4C64-AB65-9DA7F48F708D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DEA6651A-4912-4585-A23D-E32222F7BBE4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BA01FDD2-8571-4DAC-B4C4-2DBF00B15EF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{31999579-4038-4208-B41E-5B696EB75982}] => (Allow) LPort=9009 FirewallRules: [{9AF74869-61F0-4115-B363-894236202D82}] => (Allow) LPort=9009 FirewallRules: [{6AB205C7-E839-45FC-B1D1-55878B431A0C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1C5A3173-39A7-4167-8988-0FDC66296406}] => (Allow) LPort=9009 FirewallRules: [{06AA49D0-E66B-438A-84D4-EEDF302F196A}] => (Allow) LPort=9009 FirewallRules: [{CA9F8466-0E7F-46DF-A48B-FA20B13F3F87}] => (Allow) D:\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.) FirewallRules: [{DBE6F400-7804-4C09-BE3E-00E4F1D43886}] => (Allow) D:\BlueStacks X\Cloud Game.exe (Now.gg, INC -> COMPANY NAME) FirewallRules: [{3CE3E9E6-B8E0-4A64-9A9D-E022293EF5E3}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems) FirewallRules: [{2822B512-99C8-4534-835F-B01C13864544}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.) FirewallRules: [{CE8D0D0F-A852-4ED7-A59A-703BB9D59472}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C4386C0F-3068-453C-BF4D-74539802CDB4}] => (Allow) LPort=9009 FirewallRules: [{A7521BE5-0DCD-49D5-AA77-4E5CBC143FA5}] => (Allow) LPort=9009 ==================== Pontos de Restauração ========================= ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (08/12/2023 04:06:32 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa NRnR.exe versão 4.5.0.192 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção. ID do Processo: 4aa4 Hora de Início: 01d9cd4bed106a0d Hora de Término: 4294967295 Caminho do Aplicativo: D:\Desktop\NRnR.exe ID do Relatório: c454ed61-700e-49db-8028-42c1b91ad139 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Tipo com falha: Top level window is idle Error: (08/12/2023 03:54:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x2084 Hora de início do aplicativo com falha: 0x01d9cd4d1a0a2204 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: 13d22bfc-45c4-4a2c-922f-6771e5938542 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/12/2023 01:49:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: VCRUNTIME140.dll, versão: 14.29.30133.0, carimbo de data/hora: 0x60ff28cc Código de exceção: 0xc000041d Deslocamento da falha: 0x000000000000140c ID do processo com falha: 0x4104 Hora de início do aplicativo com falha: 0x01d9ccd32ad0c234 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\Program Files\BlueStacks_nxt\VCRUNTIME140.dll ID do Relatório: f89304cd-2c59-40a7-852a-9afbed3b9f0a Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/12/2023 01:49:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: VCRUNTIME140.dll, versão: 14.29.30133.0, carimbo de data/hora: 0x60ff28cc Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000000140c ID do processo com falha: 0x4104 Hora de início do aplicativo com falha: 0x01d9ccd32ad0c234 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\Program Files\BlueStacks_nxt\VCRUNTIME140.dll ID do Relatório: aae93adf-4788-4528-a753-acfc0719f4bc Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/11/2023 01:59:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x3950 Hora de início do aplicativo com falha: 0x01d9cc099ddee6f7 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: bc7cd6fa-da40-4536-894f-100fba699d60 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/11/2023 01:08:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x4894 Hora de início do aplicativo com falha: 0x01d9cc012ad89f61 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: 46a72f3a-2ba1-41a1-b4cc-807c375dfb7a Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/11/2023 12:08:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x3038 Hora de início do aplicativo com falha: 0x01d9cbff089a85d7 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: e0cc409f-9ac9-4ff7-81c9-381b3d05306f Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/10/2023 11:53:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x142c Hora de início do aplicativo com falha: 0x01d9cbfd01fb6138 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: 674e2edf-7da6-4b9d-b57f-57d66c294570 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Erros de Sistema: ============= Error: (08/12/2023 04:13:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço AMDRyzenMasterDriverV20 devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (08/12/2023 04:13:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço AvgWscReporter devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (08/12/2023 04:13:34 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Falha na inicialização do despejo de memória! Error: (08/12/2023 04:13:34 PM) (Source: volmgr) (EventID: 45) (User: ) Description: O sistema não teve êxito ao carregar o driver do despejo de memória. Error: (08/12/2023 04:13:08 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: O serviço AVG Antivirus não foi desligado corretamente após receber um controle de pré-desligamento. Error: (08/12/2023 03:08:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço AMDRyzenMasterDriverV20 devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (08/12/2023 03:08:33 PM) (Source: volmgr) (EventID: 45) (User: ) Description: O sistema não teve êxito ao carregar o driver do despejo de memória. Error: (08/12/2023 03:08:24 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Falha na inicialização do despejo de memória! CodeIntegrity: =============== Date: 2023-08-12 16:09:17 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-08-12 15:12:49 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2023-08-12 15:08:49 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\x86\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2023-08-12 12:11:20 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. F23 08/08/2018 placa-mãe: Gigabyte Technology Co., Ltd. A320M-S2H-CF Processador: AMD Ryzen 5 1600 Six-Core Processor Percentagem de memória em uso: 27% RAM física total: 16334.19 MB RAM física disponível: 11873.92 MB Virtual Total: 23758.19 MB Virtual disponível: 16429.31 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.2 GB) (Free:7.45 GB) (Model: SanDisk SSD PLUS 120GB) NTFS Drive d: (DADOS) (Fixed) (Total:465.76 GB) (Free:50.42 GB) (Model: ST3500630NS) NTFS \\?\Volume{d98abf9f-1a79-4d58-a9b5-398042f89375}\ (Recuperação) (Fixed) (Total:0.49 GB) (Free:0.03 GB) NTFS \\?\Volume{0990eebf-b0b4-4327-b1ac-08645c296b25}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1932D53D) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=42) ==================== Fim de Addition.txt =======================