Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 
Hi
After I clicked in a suspicious "system warning" that opened all of a sudden while I was in the internet, my notebook started showing notifications of a supposed virus infection. The notification panel of my toolbar opens from time to time to say that it's infected by "skipalos.xyz". I had to turn the audio off to not be bothered by them.
I downloaded FRST64, but Windows didn't allow me to run it. I tried to run it in admin mode, but it popped a message saying Windows Defender wouldn't allow the system to open it. I booted in safe mode and could run the app. It opened in my pt-br language interface. I couldn't find no "All Users" checkbox. In the "Whitelist" field there was a "Drivers" box checked. In the "Optional Analysis" there was no "Drivers MD5" box.
When I booted back to normal mode, I could run FRST64 apparently with no problem. The scan result texts i post here were saved when I was in safe mode.
Thanks in advance,
Buho
Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-06-2023
Executado por Acer (administrador) em DESKTOP-AVQH55B (Acer Aspire A315-34) (24-06-2023 12:18:58)
Executando a partir de C:\Users\Acer\Desktop\FRST64.exe
Perfis Carregados: Acer
Plataforma: Microsoft Windows 10 Pro Versão 22H2 19045.3086 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Safe Mode (minimal)
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registro (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d19142d5a057a7c\RtkAudUService64.exe [3403400 2021-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Windows x64\Print Processors\HPCP1020PP: C:\Windows\System32\spool\prtprocs\x64\HPCP1020PP.DLL [65024 2012-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Print\Monitors\HP CP1020 LM: C:\WINDOWS\system32\HPCP1020LM.DLL [129024 2012-11-27] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Arquivo não assinado]
HKLM\...\Print\Monitors\PDFill Writer Monitor: C:\Program Files (x86)\PlotSoft\PDFill\PDFWriter\Driver\PDFillWriterMon.dll [38824 2021-06-12] (PlotSoft LLC -> Windows ® Codename Longhorn DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-10-04]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
==================== Tarefas Agendadas (Whitelisted) =================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {03611F31-C061-40D9-BDE7-452F2ED30E40} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {2A80966E-193D-4BCA-8ACC-82ECCA39AF49} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2BE0E859-46E4-4151-9D93-31DADD70DA0A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {49EEB3EA-BE26-4693-9B0A-4CB9DCDBD1DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {72168D45-CF76-4A52-B6F0-1315792E69BD} - System32\Tasks\R@1n-KMS\Office16ProPlus => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
Task: {73E0EA13-6FE0-4662-932C-7D4CF2494723} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Nenhum Arquivo)
Task: {9C2550A1-95C5-46A8-9CCF-8BE9B9463A3F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-10-02] (Google Inc -> Google Inc.)
Task: {B168383A-4DE3-4D37-AF19-F0854F55934A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB218FDE-4358-460C-916F-D97C8AF78E88} - System32\Tasks\Opera scheduled Autoupdate 1633344199 => C:\Users\Acer\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Nenhum Arquivo)
Task: {EE798EA4-5FCF-4F2F-89F1-36C633D62B7E} - System32\Tasks\R@1n-KMS\Windows100Professional => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-16] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {F85526F0-8FD7-4A32-931C-D1244B03FFB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FC2C86A5-3440-43FA-A2E6-AD2D46DA7BC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-10-02] (Google Inc -> Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9af3f316-f99b-462a-9994-eba83e45cd71}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fb0cc869-2ea3-41df-8922-3bdda88da227}: [DhcpNameServer] 192.168.15.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-24]
Edge Notifications: Default -> hxxps://www.jornalopcao.com.br
Edge Extension: (Edge relevant text changes) - C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-20]
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default [2023-06-24]
CHR Notifications: Default -> hxxps://novaescola.org.br; hxxps://skipalos.xyz
CHR Extension: (RoPro - Melhore sua experiência com o Roblox) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\adbacgifemdbhdkfppmeilbgppmhaobf [2023-03-12]
CHR Extension: (Text Mode) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\adelhekhakakocomdfejiipdnaadiiib [2022-05-01]
CHR Extension: (Disable HTML5 Autoplay) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efdhoaajjjgckpbkoglidkeendpkolai [2021-10-15]
CHR Extension: (Bloco de notas - on-line) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefodpegbocmidnfphgggnjcicipaibk [2021-10-15]
CHR Extension: (Documentos Google off-line) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-24]
CHR Extension: (New Tab Redirect) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2021-10-15]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-02]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-04-29]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-06-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-11]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-11]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-11]
==================== Serviços (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952 2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-15] (philandro Software GmbH -> AnyDesk Software GmbH)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> )
S2 HPSIService; C:\WINDOWS\system32\HPSIsvc.exe [124536 2012-12-25] (Hewlett-Packard Company -> HP) [Arquivo não assinado]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [199608 2019-02-20] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Arquivo não assinado]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_af637998431fc64e\gna.sys [65528 2020-06-09] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-10] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um mês (criados) (Whitelisted) =========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-06-24 12:18 - 2023-06-24 12:19 - 000013500 _____ C:\Users\Acer\Desktop\FRST.txt
2023-06-24 12:18 - 2023-06-24 12:19 - 000000000 ____D C:\FRST
2023-06-24 12:16 - 2023-06-24 12:16 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-06-24 12:15 - 2023-06-24 12:18 - 000203558 _____ C:\WINDOWS\ntbtlog.txt
2023-06-24 11:36 - 2023-06-24 11:36 - 002383360 _____ (Farbar) C:\Users\Acer\Desktop\FRST64.exe
2023-06-24 09:41 - 2023-06-14 19:00 - 011766508 _____ C:\Users\Acer\Documents\Relatorio-de-Atividades-Sociassistenciais-2021 - Copia.pdf
2023-06-22 15:42 - 2023-06-22 15:43 - 010435551 _____ C:\Users\Acer\Downloads\Desenvolvimento regional no Brasil_políticas_estratégias e perspectivas.pdf
2023-06-21 14:48 - 2023-06-21 14:48 - 000861549 _____ C:\Users\Acer\Downloads\12_Panorama_princiapis_conceitos (2).pdf
2023-06-21 14:47 - 2023-06-21 14:47 - 000861549 _____ C:\Users\Acer\Downloads\12_Panorama_princiapis_conceitos (1).pdf
2023-06-16 21:28 - 2023-06-16 21:28 - 000861549 _____ C:\Users\Acer\Downloads\12_Panorama_princiapis_conceitos.pdf
2023-06-15 21:25 - 2023-06-15 21:25 - 000000000 ___HD C:\$WinREAgent
2023-06-15 14:48 - 2023-06-15 14:48 - 019897357 _____ C:\Users\Acer\Documents\Relatório de Atividades Socioasssitenciais 2020.pdf
2023-06-14 19:00 - 2023-06-14 19:00 - 011766508 _____ C:\Users\Acer\Documents\Relatorio-de-Atividades-Sociassistenciais-2021.pdf
2023-06-13 15:14 - 2023-06-13 15:14 - 000983036 _____ C:\WINDOWS\Minidump\061323-116015-01.dmp
2023-06-12 15:38 - 2023-06-12 17:45 - 007065933 _____ C:\Users\Acer\Downloads\consulta-de-cursos-autorizados-1.xlsx
2023-06-11 16:44 - 2023-06-11 16:44 - 000070029 _____ C:\Users\Acer\Desktop\favoritos_2023_06_11.html
2023-06-11 16:10 - 2023-06-11 16:10 - 000002386 _____ C:\Users\Acer\Desktop\Joelma - Chrome.lnk
2023-06-11 09:24 - 2023-06-11 09:24 - 000001285 _____ C:\Users\Acer\Downloads\20230611122415.xls
2023-06-11 09:11 - 2023-06-11 09:11 - 011400867 _____ C:\Users\Acer\Desktop\pnad-terceiro-trimestre.pdf
2023-06-09 18:05 - 2023-06-09 18:05 - 000751293 _____ C:\Users\Acer\Downloads\144-Texto do artigo-393-1-10-20200813.pdf
2023-06-09 17:12 - 2023-06-09 17:12 - 000376369 _____ C:\Users\Acer\Downloads\79977-Texto do artigo completo-110396-1-10-20140430 (1).pdf
2023-06-09 11:55 - 2023-06-09 11:55 - 000376369 _____ C:\Users\Acer\Downloads\79977-Texto do artigo completo-110396-1-10-20140430.pdf
2023-06-09 11:16 - 2023-06-09 11:16 - 000080970 _____ C:\Users\Acer\Downloads\bl.345084648_120463779927_002005202304.05252023072908.temp.output.pdf
2023-06-06 21:01 - 2023-06-06 21:02 - 000305572 _____ C:\Users\Acer\Downloads\MP - QD 03 LT 33 - JOELMA LOURENÇO DA ROCHA - CARNÊ 121 A 132.pdf
2023-06-03 12:51 - 2023-06-03 12:51 - 000212445 _____ C:\Users\Acer\Downloads\13140176 (3).pdf
2023-05-31 15:24 - 2023-05-31 15:24 - 005238890 _____ C:\Users\Acer\Downloads\Dissert_Jovens_Projetos de Vida_F.pdf
2023-05-31 15:24 - 2023-05-31 15:24 - 005238890 _____ C:\Users\Acer\Desktop\Dissert_Jovens_Projetos de Vida_F.pdf
2023-05-27 13:07 - 2023-05-27 13:07 - 000007130 _____ C:\Users\Acer\AppData\Local\recently-used.xbel
==================== Um mês (modificados) ==================
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2023-06-24 12:18 - 2021-10-04 09:07 - 000000000 ____D C:\Users\defaultuser0
2023-06-24 12:15 - 2021-10-04 09:06 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-24 12:15 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-06-24 12:13 - 2020-11-18 23:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-24 12:13 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 12:13 - 2019-12-07 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-06-24 11:25 - 2021-12-20 17:22 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-24 11:25 - 2021-10-02 22:27 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-24 11:11 - 2020-11-18 23:48 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 11:11 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 11:11 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-24 11:10 - 2020-11-18 23:48 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-24 11:07 - 2021-10-02 22:39 - 000000000 __SHD C:\Users\Acer\IntelGraphicsProfiles
2023-06-24 10:03 - 2021-10-03 22:05 - 000000000 ____D C:\Users\Acer\AppData\Roaming\Microsoft\Word
2023-06-24 09:41 - 2022-05-17 19:34 - 000000000 ____D C:\Users\Acer\Documents\Alfa
2023-06-23 18:09 - 2020-11-18 23:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-23 15:29 - 2021-10-02 22:19 - 000000000 ____D C:\Users\Acer\AppData\Local\Packages
2023-06-22 15:13 - 2021-11-17 15:22 - 000000000 ____D C:\Users\Acer\Documents\colégio
2023-06-20 14:46 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-19 14:47 - 2021-12-12 18:50 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2011729660-300043873-2358486370-1001
2023-06-19 14:47 - 2021-10-04 09:13 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2011729660-300043873-2358486370-1001
2023-06-19 14:47 - 2021-10-04 09:07 - 000002382 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-16 22:20 - 2021-10-04 11:48 - 000000000 ____D C:\Users\Acer\AppData\Roaming\Microsoft\Teams
2023-06-16 20:28 - 2021-10-04 14:59 - 000000000 ____D C:\Users\Acer\AppData\Roaming\Microsoft\Excel
2023-06-16 18:39 - 2021-10-04 09:17 - 001974386 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-16 18:39 - 2019-12-07 11:53 - 000826358 _____ C:\WINDOWS\system32\prfh0416.dat
2023-06-16 18:39 - 2019-12-07 11:53 - 000176274 _____ C:\WINDOWS\system32\prfc0416.dat
2023-06-16 18:30 - 2021-10-02 22:39 - 000000000 ____D C:\Intel
2023-06-16 18:27 - 2020-11-18 23:45 - 000433160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-16 18:25 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-16 18:25 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-16 15:20 - 2021-10-04 09:13 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-16 15:20 - 2021-10-04 09:13 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-06-15 21:35 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-15 21:32 - 2020-11-18 23:47 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-15 21:22 - 2021-10-02 23:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-15 21:04 - 2021-10-02 22:29 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-15 21:04 - 2021-10-02 22:29 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-15 21:01 - 2021-10-02 23:44 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-13 17:35 - 2021-10-04 09:07 - 000000000 ____D C:\Users\Acer
2023-06-13 15:19 - 2020-11-18 23:47 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-13 15:19 - 2020-11-18 23:47 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-13 15:14 - 2021-10-11 15:19 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-13 15:14 - 2021-10-03 21:47 - 805610597 _____ C:\WINDOWS\MEMORY.DMP
2023-06-10 18:16 - 2020-11-18 23:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-09 16:47 - 2022-05-17 19:36 - 000000000 ____D C:\Users\Acer\Documents\Uninter
2023-05-27 13:07 - 2021-11-29 22:15 - 000000000 ____D C:\Users\Acer\AppData\Local\gtk-2.0
2023-05-27 13:07 - 2021-11-29 22:14 - 000000000 ____D C:\Users\Acer\AppData\Local\babl-0.1
==================== Arquivos na raiz de alguns diretórios ========
2023-05-27 13:07 - 2023-05-27 13:07 - 000007130 _____ () C:\Users\Acer\AppData\Local\recently-used.xbel
2021-10-04 08:13 - 2021-10-04 08:13 - 000000017 _____ () C:\Users\Acer\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Não há correção automática para arquivos que não passaram na verificação.)
==================== Fim de FRST.txt ========================
Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 21-06-2023
Executado por Acer (24-06-2023 12:21:22)
Executando a partir de C:\Users\Acer\Desktop
Microsoft Windows 10 Pro Versão 22H2 19045.3086 (X64) (2021-10-04 12:13:49)
Modo da Inicialização: Safe Mode (minimal)
==========================================================
==================== Contas: =============================
(Se uma entrada for incluída na fixlist, será removida.)
Acer (S-1-5-21-2011729660-300043873-2358486370-1001 - Administrator - Enabled) => C:\Users\Acer
Administrador (S-1-5-21-2011729660-300043873-2358486370-500 - Administrator - Disabled)
Convidado (S-1-5-21-2011729660-300043873-2358486370-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-2011729660-300043873-2358486370-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2011729660-300043873-2358486370-1000 - Limited - Disabled) => C:\Users\defaultuser0
WDAGUtilityAccount (S-1-5-21-2011729660-300043873-2358486370-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Reader X (10.1.0) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AA1000000001}) (Version: 10.1.0 - Adobe Systems Incorporated)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.14 - AnyDesk Software GmbH)
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
GIMP 2.10.28 (HKLM\...\GIMP-2_is1) (Version: 2.10.28 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
Herramientas de corrección de Microsoft Office 2016: español (HKLM-x32\...\{90160000-001F-0C0A-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP LaserJet Professional CP1020 Series (HKLM\...\HP LaserJet Professional CP1020 Series) (Version: - )
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7263 - Intel Corporation)
Intel® Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{69bc85f1-55f9-44f2-b5df-3840fe07854c}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Execution Engine (HKLM\...\{126EB132-7751-4ADC-9CC7-BD510D42C159}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2018.4.0.1088 - Intel Corporation)
Intel® Trusted Execution Engine (HKLM\...\{E6614D86-5A1C-47CB-9021-1A484133CF0B}) (Version: 1.1.1.1 - Intel Corporation) Hidden
Intel® Trusted Execution Engine Driver (HKLM\...\{A2FABF21-43EA-4B99-8F6C-6B8FB7C69F56}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® TXE Storage Proxy Driver (HKLM\...\{8573BE5F-2F6A-4B1B-8623-83D03AA6FB22}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Java 8 Update 361 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
K-Lite Codec Pack 7.7.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.7.0 - )
LetsView V1.1.6.3 (HKLM-x32\...\{6AA74BE4-9506-4D81-A07C-A40F883C2EA7}_is1) (Version: 1.1.6.3 - LetsView LIMITED)
Microsoft Access MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0015-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0090-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.51 - Microsoft Corporation)
Microsoft Excel MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0016-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-00BA-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0044-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office 64-bit Components 2016 (HKLM\...\{90160000-002A-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-00E1-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-00E2-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Proofing (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-002C-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM-x32\...\{90160000-001F-0409-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2016 (HKLM\...\{90160000-002A-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-006E-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2011729660-300043873-2358486370-1000\...\OneDriveSetup.exe) (Version: 21.170.0822.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2011729660-300043873-2358486370-1001\...\OneDriveSetup.exe) (Version: 23.114.0530.0001 - Microsoft Corporation)
Microsoft OneNote MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-00A1-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-001A-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0018-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-0019-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Skype for Business MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-012B-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Teams (HKU\S-1-5-21-2011729660-300043873-2358486370-1001\...\Teams) (Version: 1.6.00.4472 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{D2857CD6-4081-47F1-87CA-B07E07DEF31B}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{18C57F06-08E7-4595-86DF-DD1B5B38AC2A}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Word MUI (Portuguese (Brazil)) 2016 (HKLM-x32\...\{90160000-001B-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PDFill FREE PDF Editor Basic (HKLM\...\{26037138-C111-4BC5-88E8-DD2B2F2460C7}) (Version: 15.0 - PlotSoft LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8716.1 - Realtek Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.24 - Serpro - Serviço Federal de Processamento de Dados)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM-x32\...\{90160000-001F-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Roblox Player for Acer (HKU\S-1-5-21-2011729660-300043873-2358486370-1001\...\roblox-player) (Version: - Roblox Corporation)
Suplemento Microsoft Salvar como PDF ou XPS para programas do Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0416-0000-0000000FF1CE}) (Version: 12.0.4518.1019 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C270D21B-2327-49B8-85F7-395133A93C75}) (Version: 8.92.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{76A22428-2400-4521-96AF-7AC4A6174CA5}) (Version: 1.25.0.0 - Microsoft Corporation) Hidden
Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-2011729660-300043873-2358486370-1001\...\ZoomUMX) (Version: 5.10.4 (5035) - Zoom Video Communications, Inc.)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.34.12.0_x64__kgqvnymyfvs32 [2023-06-03] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.245.300.0_x64__kgqvnymyfvs32 [2023-06-16] (king.com)
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4979.0_x64__8j3eq9eme6ctt [2023-05-27] (INTEL CORP) [Startup Task]
GraphoGame Brasil -> C:\Program Files\WindowsApps\GraphoGame.GraphoGameBrasil_1.1.7.0_x64__420v5yvywca5a [2022-11-11] (Grapho Group Oy)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_7.5.0.0_x86__h6adky7gbf63m [2023-06-03] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-10-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-10-02] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.32.260.0_x64__dt26b99r8h8gj [2022-01-24] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-22] (Microsoft Studios) [MS Ad]
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.851.1712.0_x64__8wekyb3d8bbwe [2023-06-09] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.851.1712.0_x86__8wekyb3d8bbwe [2023-06-09] (Microsoft Corporation)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-10-02] (WinZip Computing)
==================== Análise Personalizada CLSID (Whitelisted): ==============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2011729660-300043873-2358486370-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Acer\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23034.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2011729660-300043873-2358486370-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\Acer\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2010-03-15] () [Arquivo não assinado]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2010-03-15] () [Arquivo não assinado]
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2010-03-15] () [Arquivo não assinado]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2010-03-15] () [Arquivo não assinado]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2010-03-15] () [Arquivo não assinado]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2010-03-15] () [Arquivo não assinado]
==================== Codecs (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [243200 2011-06-24] () [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.YV12] => C:\Windows\SysWOW64\xvidvfw.dll [243200 2011-06-24] () [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2011-07-16] (fccHandler) [Arquivo não assinado]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [74752 2011-08-29] () [Arquivo não assinado]
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\Users\Acer\Desktop\Joelma - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=pin
ShortcutWithArgument: C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=pin
==================== Módulos Carregados (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Modo de Segurança (Whitelisted) ==================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
==================== Associação (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Conteúdo: =========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2016-07-16 08:47 - 2016-07-16 08:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Outras Áreas ===========================
(Atualmente não há nenhuma correção automática para esta seção.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2011729660-300043873-2358486370-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2011729660-300043873-2358486370-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: O Suporte não está conectado à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Se uma entrada for incluída na fixlist, será removida.)
MSCONFIG\Services: QHActiveDefense =>
HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKU\S-1-5-21-2011729660-300043873-2358486370-1001\...\StartupApproved\Run: => "OneDrive"
==================== Regras do Firewall (Whitelisted) ================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{E9731FF4-BFD5-448A-8371-C74E81892C87}] => (Allow) C:\Users\Acer\AppData\Local\Programs\Opera\79.0.4143.72\opera.exe => Nenhum Arquivo
FirewallRules: [{03978EAF-8A0E-4429-9B78-DD4980AC4E71}] => (Allow) C:\Users\Acer\AppData\Local\Programs\Opera\64.0.3417.73\opera.exe => Nenhum Arquivo
FirewallRules: [{92A3360E-7CA0-4F55-B6AC-2516A8202E38}] => (Allow) C:\Users\Acer\AppData\Roaming\DRPSu\bin\tools\aria2c.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{D1F5BBBB-E08A-40F6-BED9-20F80ADFE8CE}E:\6 - sdi_rus\sdi_x64_r1904.exe] => (Allow) E:\6 - sdi_rus\sdi_x64_r1904.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{7AA0FB38-5FED-4DAD-86A9-A0B5A16E641E}E:\6 - sdi_rus\sdi_x64_r1904.exe] => (Allow) E:\6 - sdi_rus\sdi_x64_r1904.exe => Nenhum Arquivo
FirewallRules: [{F6587A46-A461-435A-9689-3742E9E8D73B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F7032112-4E99-4519-B8E4-B33E1DA204FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FFB129E-CFD3-4F40-B9E6-56A705F3AFF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C5060AD-3006-40B5-B8DB-1EFFD3D53576}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C8C5CBA-1ACB-42D3-87E2-25C1DCD71A63}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe => Nenhum Arquivo
FirewallRules: [{C9684CD8-101A-4B41-B1CF-E3D2047AE7A4}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe => Nenhum Arquivo
FirewallRules: [{E6FA6AFB-493D-428D-A752-E0E00E43C8F0}] => (Allow) C:\Users\Acer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{10AF2200-499B-49C6-AAF6-5EADB166F78F}] => (Allow) C:\Users\Acer\AppData\Roaming\Zoom\bin\airhost.exe => Nenhum Arquivo
FirewallRules: [{55D25D74-DBC6-4BDA-B902-2BF9A90D637A}] => (Allow) C:\Users\Acer\AppData\Roaming\Zoom\bin\airhost.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{5B975630-CBD6-4B0C-ADE8-9AC2D8A24E2A}C:\users\acer\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\acer\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{25B8CDF6-A274-4891-A12A-0E1445823A5A}C:\users\acer\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\acer\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{58F5E0E5-80B4-4D56-BFAC-BC66CB210919}] => (Allow) C:\Windows\KMS-R@1n.exe => Nenhum Arquivo
FirewallRules: [{25A813B9-2013-46F9-9A90-8BC185267980}] => (Allow) C:\Windows\KMS-R@1n.exe => Nenhum Arquivo
FirewallRules: [{2C17B7C5-9C41-4358-8C69-0077FEF3DD4D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE3DEBDE-AA8D-4899-95AB-02C848AC61C2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{736F61CC-D4E8-4E2F-827D-F05E05A24825}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44E7A150-1A19-4BA0-9AFD-2269B04CB88D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C74733D3-B0AC-4128-8409-0788E1865CD7}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe (Apowersoft Ltd -> LetsView)
FirewallRules: [{1D487152-0A69-4232-8F6D-8E5EEF31F339}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe (Apowersoft Ltd -> LetsView)
FirewallRules: [TCP Query User{C6D54B47-9CC0-449C-9796-938ED709FF10}C:\program files (x86)\letsview\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\letsview\letsview\wxmcast.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [UDP Query User{4E0053D5-F6F4-471E-A7EB-18CF54AF7795}C:\program files (x86)\letsview\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\letsview\letsview\wxmcast.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{902224D0-60E1-4675-8DE4-F1E57280D42D}] => (Block) C:\program files (x86)\letsview\letsview\wxmcast.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{59503114-40D8-4105-B41F-52CBBEB1CD65}] => (Block) C:\program files (x86)\letsview\letsview\wxmcast.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [TCP Query User{14074D0B-C717-43A5-88C9-86966FE23B0A}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{9856E38C-2DFF-40F5-9F22-9F407819D27F}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{CDE842F5-F86D-4518-9301-9828B0AD9E1F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{94CF1150-A93F-415B-8C38-349AED30A498}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{C778479F-D767-4DDE-82EC-D08C614FA7CD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{CBEEDE0A-942A-47CA-AD45-786FA8CE7E70}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EF49168C-5469-498A-93B9-39279E345BC0}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{5D5A4CC3-2FD9-401F-AFF2-12EDE8763F20}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{BDF8B33B-FA10-4EEB-8FB7-8372C8A2FDBE}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{4F75F275-5751-4373-B28E-261FB148F4BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D06775C6-069D-49B0-A0E1-D631AACDECBB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C0DFE5A0-0711-4C53-91A7-EA7C524655F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{40C5277A-9694-453A-B3E6-4C7E8077AF54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2E92C8AE-BA76-4A3D-864D-1C249E45A5A1}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.51\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Pontos de Restauração =========================
05-06-2023 18:52:14 Ponto de Verificação Agendado
15-06-2023 21:23:30 Instalador de Módulos do Windows
==================== Dispositivos Apresentando Falhas No Gerenciador ============
Name: Driver de Infraestrutura de Virtualização Microsoft Hyper-V
Description: Driver de Infraestrutura de Virtualização Microsoft Hyper-V
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Vid
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Erros no Log de eventos: ========================
Erros em Aplicativos:
==================
Error: (06/24/2023 12:16:03 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Users\Acer\AppData\Roaming\Zoom\bin\Zoom.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_a8625c1886757984.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_60b5254171f9507e.manifest.
Error: (06/24/2023 12:16:03 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Users\Acer\AppData\Roaming\Zoom\bin\Zoom.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_a8625c1886757984.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_60b5254171f9507e.manifest.
Error: (06/24/2023 12:13:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado.
.
Error: (06/24/2023 12:13:06 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Error: (06/24/2023 12:11:09 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4084,R,98) TILEREPOSITORYS-1-5-18: Erro -1023 (0xfffffc01) ao abrir o arquivo de log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/24/2023 12:04:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10064,R,98) TILEREPOSITORYS-1-5-18: Erro -1023 (0xfffffc01) ao abrir o arquivo de log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/24/2023 11:49:40 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8124,R,98) TILEREPOSITORYS-1-5-18: Erro -1023 (0xfffffc01) ao abrir o arquivo de log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/24/2023 11:43:53 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9284,R,98) TILEREPOSITORYS-1-5-18: Erro -1023 (0xfffffc01) ao abrir o arquivo de log C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Erros de Sistema:
=============
Error: (06/24/2023 12:22:48 PM) (Source: DCOM) (EventID: 10005) (User: AUTORIDADE NT)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço EventSystem com argumentos "Não Disponível" para executar o servidor:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Error: (06/24/2023 12:22:38 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço WSearch com argumentos "Não Disponível" para executar o servidor:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (06/24/2023 12:22:38 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço ShellHWDetection com argumentos "Não Disponível" para executar o servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (06/24/2023 12:22:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço BITS com argumentos "Não Disponível" para executar o servidor:
{4991D34B-80A1-4291-83B6-3328366B9097}
Error: (06/24/2023 12:22:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço BITS com argumentos "Não Disponível" para executar o servidor:
{F087771F-D74F-4C1A-BB8A-E16ACA9124EA}
Error: (06/24/2023 12:22:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço BITS com argumentos "Não Disponível" para executar o servidor:
{6D18AD12-BDE3-4393-B311-099C346E6DF9}
Error: (06/24/2023 12:22:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço BITS com argumentos "Não Disponível" para executar o servidor:
{03CA98D6-FF5D-49B8-ABC6-03DD84127020}
Error: (06/24/2023 12:22:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-AVQH55B)
Description: O DCOM obteve o erro "1084" ao tentar iniciar o serviço BITS com argumentos "Não Disponível" para executar o servidor:
{659CDEA7-489E-11D9-A9CD-000D56965251}
Windows Defender:
================
Date: 2023-06-22 18:41:06
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {4D834221-7E77-460C-ACB1-BBD158981F8C}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Date: 2023-06-22 16:31:16
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {B10DA3D3-056F-468A-9C35-369F685F2F6F}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Date: 2023-06-21 17:57:15
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {7F4132A9-4918-47D0-97D2-17399C3831C0}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Date: 2023-06-19 19:16:53
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {16FDBA89-FCB5-4436-AFC3-A239A0CE7B0C}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Date: 2023-06-19 17:42:17
Description:
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {27CC0CB0-26A1-4A3F-A9E7-1BF86745CC8F}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Event[0]:
Date: 2023-06-24 12:16:04
Description:
O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x8007043c
Descrição do erro: Não é possível compartilhar este serviço no modo de segurança
Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema.
Date: 2023-06-13 15:14:52
Description:
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança e tentará reverter para uma versão anterior.
Tentativa de Inteligência de Segurança: Atual
Código de erro: 0x80501102
Descrição de Erro: Problema inesperado. Instale todas as atualizações disponíveis e tente iniciar o programa novamente. Para obter informações sobre como instalar atualizações, consulte Ajuda e Suporte.
Versão de Inteligência de Segurança: 1.391.1206.0;1.391.1206.0
Versão do Motor: 1.1.23050.3
Date: 2023-06-06 15:31:12
Description:
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança:
Versão da Inteligência de Segurança anterior: 1.391.536.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo:
Versão Anterior do Mecanismo: 1.1.23050.3
Código de Erro: 0x80072efd
Descrição do Erro: Uma conexão com o servidor não pôde ser estabelecida
CodeIntegrity:
===============
Date: 2023-06-24 12:12:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
Date: 2023-06-24 11:38:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Informações da Memória ===========================
BIOS: Insyde Corp. V1.09 01/15/2021
placa-mãe: GLK Rose_GL
Processador: Intel® Celeron® N4020 CPU @ 1.10GHz
Percentagem de memória em uso: 42%
RAM física total: 3902.67 MB
RAM física disponível: 2242.71 MB
Virtual Total: 5630.67 MB
Virtual disponível: 4194.23 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.5 GB) (Free:168.33 GB) (Model: ADATA SU630) NTFS
\\?\Volume{4889a42f-fe3f-447b-9847-a9cda44266b3}\ (Recuperação) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{e6585842-9bed-42de-8b62-de1a266b9504}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{5596f74f-819b-4612-b232-502736475f1b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Tabela de Partições ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fim de Addition.txt =======================
