Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 17-08-2023 01 Executado por Francisco Narde (20-08-2023 04:50:04) Executando a partir de D:\Desktop Microsoft Windows 10 Pro Versão 22H2 19045.3324 (X64) (2020-07-19 05:10:25) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-3907471261-615860086-2012423866-500 - Administrator - Disabled) Convidado (S-1-5-21-3907471261-615860086-2012423866-501 - Limited - Disabled) DefaultAccount (S-1-5-21-3907471261-615860086-2012423866-503 - Limited - Disabled) Francisco Narde (S-1-5-21-3907471261-615860086-2012423866-1001 - Administrator - Enabled) => C:\Users\Francisco Narde WDAGUtilityAccount (S-1-5-21-3907471261-615860086-2012423866-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA} FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) @BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0718.1 - GIGABYTE) Hidden @BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0718.1 - GIGABYTE) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 22.001.20117 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.0.327 - Adobe Systems Incorporated) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.0.49 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 4.06.10.651 - Advanced Micro Devices, Inc.) AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.89 - Advanced Micro Devices, Inc.) Hidden AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.19.0.0 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.4.10 - Advanced Micro Devices, Inc.) Hidden AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.7.2 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{c63a1907-428b-458b-935e-e61aad4aac6e}) (Version: 4.06.10.651 - Advanced Micro Devices, Inc.) Hidden APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Área de trabalho remota do Google Chrome (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\78afdc7becafbc9d1d312da7392eafce) (Version: 1.0 - Google\Chrome) Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft) Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft) Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft) Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft) AutoScreenRecorder 5 (HKLM-x32\...\AutoScreenRecorder 5_is1) (Version: 5.0.777 - Wisdom Software Inc.) AVG Driver Updater (HKLM\...\AVG Driver Updater) (Version: 23.2.3178.10414 - AVG) AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 23.2.5531.7786 - AVG) BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.12.115.2101 - now.gg, Inc.) BlueStacks Services (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\BlueStacksServices) (Version: 3.0.0 - now.gg, Inc.) BlueStacks X (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\BlueStacks X) (Version: 10.3.10.1006 - now.gg, Inc.) Boxoft Free OCR (freeware) (HKLM-x32\...\Boxoft Free OCR (freeware)_is1) (Version: - boxoft Solution) Branding64 (HKLM\...\{2A677A6A-43E8-4FE3-A273-07B0E27DADAE}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden CamStudio 2.7 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7 - CamStudio Open Source) CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform) CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n) CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC) C-Media High Definition Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008828}) (Version: 3.2 - C-Media Electronics, Inc.) CPUID CPU-Z 2.03 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.03 - CPUID, Inc.) CPUID CPU-Z Aorus 1.99 (HKLM\...\CPUID CPU-Z Aorus_is1) (Version: 1.99 - CPUID, Inc.) CPUID HWMonitor 1.48 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.48 - CPUID, Inc.) Crack1 version 0.5 (HKLM-x32\...\Crack1_is1) (Version: 0.5 - ) Crack4 version 0.5 (HKLM-x32\...\Crack4_is1) (Version: 0.5 - ) Crucial Storage Executive (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Crucial Storage Executive 7.12.122021.04) (Version: 7.12.122021.04 - Crucial) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DeepL (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - DeepL SE) EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.22.1227 - GIGABYTE) Hidden EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.22.1227 - GIGABYTE) EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.1227 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.1227 - GIGABYTE) Epic Games Launcher (HKLM-x32\...\{4A5076AD-020F-4BCE-B558-47C82911061F}) (Version: 1.3.23.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{A1EB595F-651D-4A04-99B0-A7065538B33C}) (Version: 2.0.38.0 - Epic Games, Inc.) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) Excel (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) Free Timer (HKLM-x32\...\{2AE4F065-5A3C-486D-81B4-161D4693303E}_is1) (Version: 4.0.0.0 - Comfort Software Group) Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Geeks3D FurMark 1.29.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.29.0.0 - Geeks3D) Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.173 - Google LLC) Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google) GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE) HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HDD Regenerator (HKLM-x32\...\{CC5DA723-D428-40D1-B82B-21EB64B1273C}) (Version: 20.11.0011 - Abstradrome) HuionTablet (HKLM-x32\...\HuionTablet) (Version: 15.6.3.132 - Shenzhen Huion Animation Technology Co.,LTD) K-Lite Codec Pack 13.7.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Linksys Wireless Manager (HKLM\...\Linksys Wireless Manager) (Version: 4.9.9232.0 - Cisco Systems, Inc.) Logi Bolt (HKLM\...\LogiBolt) (Version: 1.2.6024.0 - Logi) Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.48.437015 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: 10.10.58 - Logitech) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.203 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0416-1000-0000000FF1CE}_ENTERPRISE_{51530CD1-8244-4E0F-B536-BCCC05325C7F}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0416-0000-0000000FF1CE}_ENTERPRISE_{51530CD1-8244-4E0F-B536-BCCC05325C7F}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0416-0000-0000000FF1CE}_ENTERPRISE_{AD3E8EF1-E885-4068-BC73-16C0649FEBF0}) (Version: - Microsoft) Hidden Microsoft Office Access MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0015-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-00BA-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0044-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-00A1-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001F-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-002C-0416-0000-0000000FF1CE}) (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{8A524694-0CA4-476A-9301-B1E9D70FC952}) (Version: - Microsoft) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version: - Microsoft) Hidden Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-0019-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007 (HKLM\...\{90120000-002A-0416-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-006E-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Portuguese (Brazil)) 2007 (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.153.0724.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 116.0.2 (x64 pt-BR)) (Version: 116.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla) MPC-HC 2.0.0 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 2.0.0 - MPC-HC Team) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project) ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Outlook (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Pacote de Driver do Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet) Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Pomotroid 0.13.0 (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\94bc756f-791e-5f51-856a-d5ab11c59b82) (Version: 0.13.0 - Christopher Murphy) PowerPoint (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden PureRef (HKLM-x32\...\PureRef) (Version: 1.11.1 - Idyllic Pixel) qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.3 - The qBittorrent project) QWXONormalizer (HKLM-x32\...\CHSINormalizer_is1) (Version: 6.105.17 - Nz Software) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9126.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) REDlauncher (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com) Revo Uninstaller 2.4.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.2 - VS Revo Group, Ltd.) RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.4 - Rockstar Games) RyzenMasterSDK (HKLM\...\{324EDD12-32C2-4D2D-9A54-52048B456257}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.1227 - GIGABYTE) Hidden SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.1227 - GIGABYTE) Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE) Spotify (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\Spotify) (Version: 1.2.18.999.g9b38fc27 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellar Photo Recovery (HKLM\...\Stellar Photo Recovery_is1) (Version: 11.1.0.0 - Stellar Information Technology Pvt Ltd.) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.1 - Krzysztof Kowalczyk) SumatraPDF (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\SumatraPDF) (Version: 3.4.6 - Krzysztof Kowalczyk) TeamViewer (HKLM\...\TeamViewer) (Version: 15.37.3 - TeamViewer) TikTok (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\d59969c1294b09b83df3d853b26b0754) (Version: 1.0 - Google\Chrome) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation) VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) Visual Studio 2010 SP1 Runtime x64 (HKLM\...\{F6305232-7952-4CCE-BDCD-9B2E66591C4A}) (Version: 1.0.0 - Microsoft Corporation) Visual Studio 2010 SP1 Runtime x86 (HKLM-x32\...\{AEA163A5-BA2F-4E63-9529-DE8606AC82A4}) (Version: 1.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Word (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) YouTube Music (HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\6c5703dffe21ecf14bfd52d011466875) (Version: 1.0 - Google\Chrome) Packages: ========= AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.23.10015.0_x64__0a9344xs7nr4m [2023-07-08] (Advanced Micro Devices Inc.) Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-14] (Microsoft Corporation) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-10] (Microsoft Corporation) EasyCast - Mirror Display -> C:\Program Files\WindowsApps\53887HaoCai.EasyCast-MirrorDisplay_1.6.2.0_x64__qrw73ppzkf79y [2023-06-04] (Hao Cai) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-08-09] (Instagram) KDE Connect -> C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8 [2023-04-29] (KDE e.V.) [Startup Task] Movie Maker - Video Editor -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_3.6.34.0_x64__bzg06mxvgh4fa [2023-07-05] (V3TApps) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.8040.0_x64__8wekyb3d8bbwe [2023-08-09] (Microsoft Studios) [MS Ad] TeamViewer: Remote Control -> C:\Program Files\WindowsApps\TeamViewer.31414B719FA93_15.0.100.0_x86__89446h4zmeyyt [2022-12-26] (TeamViewer) TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2023-06-15] (Bytedance Pte. Ltd.) Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.113.1341.553_neutral__8wekyb3d8bbwe [2023-01-13] (Microsoft Corporation) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_55Y6FHEK7QNKN55ESNMK4VBVZIQYNK4LKTQIF2SCK2UYOCE7A2AQ\DeepL.exe (DeepL SE -> DeepL SE) CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{ca31933b-b116-4444-9c6d-e5103390fb76}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2020\CamtasiaStudio.exe" -ToastActivated => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-3907471261-615860086-2012423866-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.153.0724.0003\FileSyncShell64.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Nenhum Arquivo ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.WIS1] => C:\WINDOWS\system32\wiscodecx64.dll [254808 2022-05-11] (Wisdom Software Inc. -> Wisdom Software Inc.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32-x32: [VIDC.WIS1] => wiscodecx64.dll ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__maonlnecdeecdljpahhnnlmhbmalehlm\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen --app-launch-source=4 ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__akpamiohjfcnimfljfndmaldlcfphjmp\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=akpamiohjfcnimfljfndmaldlcfphjmp --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen&__pwa=1 --app-launch-source=4 ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Pinterest.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jbdahlimgohfikaoinpdclkpciabakhf ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Revolution Ensino de Artes Visuais LTDA.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbkmngjoemiefmllohcogahigebcndgd ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb ShortcutWithArgument: C:\Users\Francisco Narde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Instagram.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=akpamiohjfcnimfljfndmaldlcfphjmp --app-url=hxxps://www.instagram.com/?utm_source=pwa_homescreen&__pwa=1 --app-launch-source=4 ==================== Módulos Carregados (Whitelisted) ============= 2022-12-29 14:10 - 2022-08-20 22:44 - 001160192 _____ () [Arquivo não assinado] [O arquivo está em uso] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.Core.dll 2023-08-19 05:53 - 2023-08-19 05:53 - 002306048 _____ () [Arquivo não assinado] \\?\C:\Users\Francisco Narde\AppData\Local\Temp\773664bc-198f-4610-bbb0-8cfe47c11474.tmp.node 2009-07-13 17:37 - 2009-07-13 17:37 - 000098304 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll 2021-05-16 02:12 - 2016-07-21 10:54 - 000137728 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2021-05-16 02:12 - 2017-09-12 10:34 - 001506304 _____ () [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2021-04-22 15:48 - 2021-04-22 15:48 - 001867264 _____ () [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000144896 _____ () [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000077824 _____ () [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll 2022-12-29 14:11 - 2022-08-19 04:38 - 175591424 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libcef.dll 2022-12-29 14:11 - 2022-08-19 03:11 - 000442880 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libEGL.dll 2022-12-29 14:11 - 2022-08-19 03:10 - 006480384 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libGLESv2.dll 2022-12-29 14:11 - 2022-08-19 03:07 - 004077568 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vk_swiftshader.dll 2022-12-29 14:11 - 2022-08-19 03:10 - 000828928 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vulkan-1.dll 2023-08-10 23:29 - 2023-08-17 09:20 - 002862080 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\ffmpeg.dll 2023-08-10 23:29 - 2023-08-17 09:20 - 000479232 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\libegl.dll 2023-08-10 23:29 - 2023-08-17 09:20 - 007513600 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\libglesv2.dll 2023-08-10 23:29 - 2023-08-17 09:20 - 005209088 _____ () [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\Programs\bluestacks-services\vk_swiftshader.dll 2020-07-29 21:24 - 2016-05-31 03:37 - 000254464 _____ (C-MEDIA Electronics INC.) [Arquivo não assinado] C:\Program Files\Xear Audio Center\CPL\Driver\x64\vista\osConfLib.dll 2021-03-09 14:00 - 2021-03-09 14:00 - 000205824 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV3.dll 2021-11-05 17:07 - 2021-11-05 17:07 - 000236544 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Arquivo não assinado] C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\yccV3.dll 2009-07-13 17:37 - 2009-07-13 17:37 - 000152112 _____ (OPSWAT, Inc. -> ) [Arquivo não assinado] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll 2022-12-29 14:11 - 2022-08-19 03:16 - 001231872 _____ (The Chromium Authors) [Arquivo não assinado] C:\Users\Francisco Narde\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\chrome_elf.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBCURL.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBEAY32.dll 2023-06-23 09:22 - 2023-06-23 09:22 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\SSLEAY32.dll 2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: ) [Arquivo não assinado] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll 2019-10-30 02:42 - 2014-12-22 14:54 - 000110207 _____ (Un4seen Developments) [Arquivo não assinado] C:\Program Files (x86)\FreeTimer\bass.dll 2019-10-30 02:42 - 2014-11-28 15:54 - 000021772 _____ (Un4seen Developments) [Arquivo não assinado] C:\Program Files (x86)\FreeTimer\bassflac.dll 2019-10-30 02:42 - 2014-10-20 15:08 - 000017733 _____ (Un4seen Developments) [Arquivo não assinado] C:\Program Files (x86)\FreeTimer\basswma.dll 2021-05-16 02:12 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Arquivo não assinado] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [314] ==================== Modo de Segurança (Whitelisted) ================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll [2009-07-14] (Cisco-Linksys LLC -> Cisco Systems, Inc.) Handler-x32: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll [2009-07-14] (Cisco-Linksys LLC -> Cisco Systems, Inc.) Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Nenhum Arquivo (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\localhost -> localhost ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-10-30 00:14 - 2023-08-19 05:50 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3907471261-615860086-2012423866-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 177.92.143.254 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Firewall do Windows está habilitado. Network Binding: ============= Ethernet: Pure Networks Device Discovery Driver -> PNARP (enabled) Ethernet: Pure Networks Wireless Driver -> PURENDIS (enabled) Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled) ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe" HKLM\...\StartupApproved\Run: => "TuneupUI.exe" HKLM\...\StartupApproved\Run: => "LogiBolt" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-3907471261-615860086-2012423866-1001\...\StartupApproved\Run: => "Spotify" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{9820E554-9556-46F9-B598-67CACF3D5DAF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{9C304BA4-B50F-42F9-A3D6-C21307EA17D5}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{9FB4A524-1418-48EA-9CA1-EEFE2996AAEC}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{CC02A231-1E92-4692-9160-F9FB1BC045DF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{C4E4D91B-5010-4D75-AC19-DC97FA48A5C8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A67CFB93-3C0D-4986-B00B-8EBA41331D12}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{520AFDFE-E6E5-46E6-A75B-500D89AAA5BE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{352922EB-B910-4D91-8BF5-F5E7E3EAEADD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{28227C47-8C78-4AB5-A250-A68C2E51F461}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{BC73F1D7-B766-45D2-8E1C-FC65E2D403A1}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{FDFF5C35-93E8-4AFF-A5EF-4D74BB41CC89}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{4902CB23-C124-45F2-8210-9E1018DFEC08}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{85B86BCE-4FB9-49CE-B371-83A2B9C6E464}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5B86F4D0-51D0-48EE-B972-8B63EFE7AEE6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{542D5240-7891-4318-BE94-0BD96DE3C5B1}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{18AE2004-F849-4A0D-8583-C30F4C944981}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{AA24679B-2A0E-48C2-8AFC-5B6E02524A38}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{3DA78CD7-C958-4F16-B6DD-750783634655}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{57DE18FE-73A7-48FD-A730-5EEC3F83BE7A}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{CAC6E061-A134-41F1-88DC-9E63853E40ED}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{E36F36F0-879C-41F9-AAD6-025D3FE7AC65}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{034256CB-65EE-47D1-B7D2-5F6B50ED65DF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{75D29164-CE22-4094-BDD5-476DFCD09BF3}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{4ACCB619-B18D-4996-AA70-6EFCAC7E7401}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{417C9ECF-82D7-4A0A-8D80-EFE64EF690AA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{9B8DF069-347D-406A-9AC0-CA543CAA775D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{75BC230B-ABF8-4A82-A157-A9E3D21BDD88}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{101F461B-96F9-4E61-B286-ED0ABB0BFCCC}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{3963202D-2571-401C-9F75-779BDF226983}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{896D9D5D-5599-4B58-B27F-59C97EA3ABCD}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_22.1203.1291.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{56A9773C-4873-4555-A44D-AF262156CA26}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{C1ED3C26-7440-4FF3-9203-5164E83E79B7}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{F4F6BFE9-4922-4321-962D-EAA95DEB261C}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{68C3751E-0053-48E4-8BE5-460A6EEC492D}] => (Allow) C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe (98B52D9A-DF7C-493E-BADC-37004A92EFC8 -> ) FirewallRules: [{568FE5A3-CD62-4D71-9553-88F29B9155E3}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.) FirewallRules: [{B649955B-0297-412E-A757-E4658BF46667}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{4110ACCE-35F7-41DB-BBB0-167F0C3C643C}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC) FirewallRules: [{4EBC6F92-C910-4819-AB53-6058AF1B98E2}] => (Allow) LPort=9009 FirewallRules: [{C287F76A-046F-48FF-95D8-CEA004016E4B}] => (Allow) LPort=9009 FirewallRules: [{9C1C74AD-8851-4598-90BB-9BC34CF8E669}] => (Allow) LPort=9009 FirewallRules: [{31999579-4038-4208-B41E-5B696EB75982}] => (Allow) LPort=9009 FirewallRules: [{9AF74869-61F0-4115-B363-894236202D82}] => (Allow) LPort=9009 FirewallRules: [{1C5A3173-39A7-4167-8988-0FDC66296406}] => (Allow) LPort=9009 FirewallRules: [{06AA49D0-E66B-438A-84D4-EEDF302F196A}] => (Allow) LPort=9009 FirewallRules: [{CA9F8466-0E7F-46DF-A48B-FA20B13F3F87}] => (Allow) D:\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.) FirewallRules: [{DBE6F400-7804-4C09-BE3E-00E4F1D43886}] => (Allow) D:\BlueStacks X\Cloud Game.exe (Now.gg, INC -> COMPANY NAME) FirewallRules: [{3CE3E9E6-B8E0-4A64-9A9D-E022293EF5E3}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems) FirewallRules: [{2822B512-99C8-4534-835F-B01C13864544}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.) FirewallRules: [{CE8D0D0F-A852-4ED7-A59A-703BB9D59472}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C4386C0F-3068-453C-BF4D-74539802CDB4}] => (Allow) LPort=9009 FirewallRules: [{A7521BE5-0DCD-49D5-AA77-4E5CBC143FA5}] => (Allow) LPort=9009 FirewallRules: [{E7B4E475-E4F9-4350-B420-B861C69C9F05}] => (Allow) LPort=9009 FirewallRules: [{C1C4D0DB-971E-437A-978F-48F5C96E5AB7}] => (Allow) LPort=9009 FirewallRules: [{A4BCBED8-26FB-43E2-B62E-61967DF2E15E}] => (Allow) LPort=9009 FirewallRules: [{E23EF5E1-3F9B-43A7-BBE3-E50930E1F65E}] => (Allow) LPort=9009 FirewallRules: [{659CD0DD-6267-4891-87B6-0E3C7BEEF897}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C23FFC1E-30F4-4EE1-ACC9-716A5F6E93BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3394B484-8DEE-4025-8D5E-C08AFF54396C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1E8C8D79-7654-46B5-813A-23D24871149F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{FDE7A497-5A23-4C6C-B46C-5FA366A601E6}] => (Allow) LPort=9009 FirewallRules: [{714DAB3A-CD23-44C1-93BB-505A8B61B975}] => (Allow) LPort=9009 FirewallRules: [{C29F3BDD-000F-4120-B3E1-AAABF34D5173}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B41DF905-2EBE-4F04-8FD3-45EB8F76BDE4}] => (Allow) LPort=9009 FirewallRules: [{45234FD5-5071-4C13-82B9-18B3B339069F}] => (Allow) LPort=9009 FirewallRules: [{480C6602-A8F0-4CD4-AA2D-AB8069EA5E9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Nenhum Arquivo FirewallRules: [{9E6EFAB9-EFA3-4B1E-B67D-E4ECCBA59176}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Nenhum Arquivo FirewallRules: [{01DF0815-250E-4BEF-A399-C43432F6D46B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Nenhum Arquivo FirewallRules: [{C9B70DF6-3CB5-42AC-9DE3-6A0E1C192420}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Nenhum Arquivo FirewallRules: [{614B31A9-02D5-4867-813A-D30E9AC01298}] => (Allow) LPort=9009 FirewallRules: [TCP Query User{B3F3099E-8173-4E56-9AC3-9D7ADC929019}C:\users\francisco narde\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\francisco narde\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{582EC562-1083-4383-8C95-57205C970906}C:\users\francisco narde\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\francisco narde\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{3B825D0B-8F93-4B1B-B78D-B1ACF7DD816B}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado] FirewallRules: [UDP Query User{4FA7CFA9-565C-4333-89D5-FAFC1701B3C9}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado] ==================== Pontos de Restauração ========================= 20-08-2023 02:22:12 Ponto de Verificação Agendado ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (08/20/2023 02:11:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: kdeconnectd.exe, versão: 0.0.0.0, carimbo de data/hora: 0x644ae5ff Nome do módulo com falha: kdeconnectcore.dll, versão: 0.0.0.0, carimbo de data/hora: 0x644ae5eb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000002ba6e ID do processo com falha: 0x4214 Hora de início do aplicativo com falha: 0x01d9d27a984b6a4d Caminho do aplicativo com falha: C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectd.exe Caminho do módulo com falha: C:\Program Files\WindowsApps\KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8\bin\kdeconnectcore.dll ID do Relatório: c603cb09-2ee3-433d-adff-b5942e40474b Nome completo do pacote com falha: KDEe.V.KDEConnect_23.400.1322.0_x64__7vt06qxq7ptv8 ID do aplicativo relativo ao pacote com falha: KDEe.V.KDEConnect Error: (08/19/2023 09:20:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: HD-Player.exe, versão: 5.12.115.2101, carimbo de data/hora: 0x64d0a6ae Nome do módulo com falha: atio6axx.dll, versão: 31.0.21023.2010, carimbo de data/hora: 0x64b73abb Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000194b0bc ID do processo com falha: 0x433c Hora de início do aplicativo com falha: 0x01d9d2f67f9e9c26 Caminho do aplicativo com falha: C:\Program Files\BlueStacks_nxt\HD-Player.exe Caminho do módulo com falha: C:\WINDOWS\System32\DriverStore\FileRepository\u0394246.inf_amd64_d7748c83520c2dbe\B394106\atio6axx.dll ID do Relatório: 7e95f09a-6540-434a-97fe-0b4b703e743f Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (08/19/2023 05:52:42 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORIDADE NT) Description: O hive do usuário é carregado por outro processo (Bloqueio de Registro). Nome do processo: C:\Windows\System32\svchost.exe, PID: 3468, ProfSvc PID: 1528. Error: (08/19/2023 05:52:42 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORIDADE NT) Description: O hive do usuário é carregado por outro processo (Bloqueio de Registro). Nome do processo: C:\Program Files\AVG\TuneUp\TuneupSvc.exe, PID: 3996, ProfSvc PID: 1528. Error: (08/19/2023 05:15:22 AM) (Source: thermald) (EventID: 0) (User: ) Description: System.Runtime.Remoting.RemotingException: Porta Ocupada: Todas as instâncias de pipes estão ocupadas. Server stack trace: em System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout) em System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout) em System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream) em System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg) Exception rethrown at [0]: em System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) em System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) em Gigabyte.EnvironmentControl.Common.HardwareMonitor.IHardwareMonitorControl.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage) em Gigabyte.Engine.EnvironmentControl.HardwareMonitor.HardwareMonitorControlModule.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage) em thermald.MainWindow.InitEngineObjects(Boolean& pbShutdown, Boolean& pbPopupWarningWindow) Error: (08/16/2023 09:26:28 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado. . Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante. Operação: Obtendo Dados do Gravador Contexto: Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220} Nome do Gravador: System Writer ID de Instância de Gravador: {9d974b9a-f577-408e-bb33-a726d026aed5} Error: (08/16/2023 01:22:58 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em DADOS (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (08/15/2023 09:15:58 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Erros de Sistema: ============= Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (08/20/2023 04:50:50 AM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. CodeIntegrity: =============== Date: 2023-08-12 16:09:17 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-08-12 15:12:49 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2023-08-12 15:08:49 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\x86\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2023-08-12 12:11:20 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. F23 08/08/2018 placa-mãe: Gigabyte Technology Co., Ltd. A320M-S2H-CF Processador: AMD Ryzen 5 1600 Six-Core Processor Percentagem de memória em uso: 54% RAM física total: 16334.19 MB RAM física disponível: 7434.05 MB Virtual Total: 23502.19 MB Virtual disponível: 5086.17 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.2 GB) (Free:4.89 GB) (Model: SanDisk SSD PLUS 120GB) NTFS Drive d: (DADOS) (Fixed) (Total:465.76 GB) (Free:44.88 GB) (Model: ST3500630NS) NTFS \\?\Volume{d98abf9f-1a79-4d58-a9b5-398042f89375}\ (Recuperação) (Fixed) (Total:0.49 GB) (Free:0.03 GB) NTFS \\?\Volume{0990eebf-b0b4-4327-b1ac-08645c296b25}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1932D53D) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=42) ==================== Fim de Addition.txt =======================