Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 26-11-2021 Executado por Cliente (28-11-2021 10:25:05) Executando a partir de C:\Users\Cliente\Desktop Microsoft Windows 10 Pro Versão 21H2 19044.1348 (X64) (2020-07-30 14:05:58) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-4251501590-2440355686-2544988780-500 - Administrator - Disabled) Cliente (S-1-5-21-4251501590-2440355686-2544988780-1001 - Administrator - Enabled) => C:\Users\Cliente Convidado (S-1-5-21-4251501590-2440355686-2544988780-501 - Limited - Disabled) DefaultAccount (S-1-5-21-4251501590-2440355686-2544988780-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-4251501590-2440355686-2544988780-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.7.1 - Advanced Micro Devices, Inc.) Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.) Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform) CPUID CPU-Z 1.93 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.93 - CPUID, Inc.) CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.) CrystalDiskInfo 7.7.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.7.0 - Crystal Dew World) Discord (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.4.3 - DEV47APPS) Epic Games Launcher (HKLM-x32\...\{4FD72C51-C53D-481B-A88B-8D4CF216B76A}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version: - Ubisoft) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 53.0.8.0 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{BEEFBEEF-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1604.0 - Rockstar Games) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation) Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky Security Cloud (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.34 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.14527.20276 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Opera GX Stable 81.0.4196.61 (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Opera GX 81.0.4196.61) (Version: 81.0.4196.61 - Opera Software) Opera Stable 81.0.4196.60 (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Opera 81.0.4196.60) (Version: 81.0.4196.60 - Opera Software) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Python 3.9.7 (64-bit) (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\{0f0bf1a5-3ec1-459b-ab7c-916db941f50d}) (Version: 3.9.7150.0 - Python Software Foundation) Python 3.9.7 Core Interpreter (64-bit) (HKLM\...\{88D4EF59-607D-43AD-B7C7-F5A753740FD1}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Development Libraries (64-bit) (HKLM\...\{97496FC6-5044-4A2A-BACD-40A44F38D483}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Documentation (64-bit) (HKLM\...\{AA408E09-EBB3-470F-8D63-5AA0C46C2DA2}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Executables (64-bit) (HKLM\...\{870EC220-FEAE-481D-8B29-B4B0DF5402FA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 pip Bootstrap (64-bit) (HKLM\...\{F1280AA2-AAC3-41AB-9616-CCF00814E626}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Standard Library (64-bit) (HKLM\...\{05903EEF-72A2-4C1A-AD35-41AD6C7094A8}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Tcl/Tk Support (64-bit) (HKLM\...\{6E8EAD3C-6F0C-494C-9C12-E10C5B5EE7EA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Test Suite (64-bit) (HKLM\...\{67D79D6E-8497-4EE6-850B-834D3A27553F}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Utility Scripts (64-bit) (HKLM\...\{4110826A-903C-410C-9785-7848A51B9CC9}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{99719382-D7A9-4DC2-BF0C-C23B730A313D}) (Version: 3.9.7546.0 - Python Software Foundation) RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.52.574 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) RyzenMasterSDK (HKLM\...\{37D11883-FB47-4D75-92DF-4E88C199D270}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden Shotcut (HKLM\...\Shotcut) (Version: 21.05.18 - Meltytech, LLC) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Spotify (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Spotify) (Version: 1.1.72.439.gc253025e - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp) TLauncher (HKLM-x32\...\TLauncher2.82) (Version: 2.82 - TLauncher Inc.) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 114.1 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden uTorrent Web (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\utweb) (Version: 1.2.6 - BitTorrent, Inc.) Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation) WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Packages: ========= Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-09-16] (Microsoft Corporation) Lively Wallpaper -> C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.50.0_x86__97hta09mmv6hy [2021-11-25] (rocksdanister) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-11-02] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-11-02] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-24] (Microsoft Studios) [MS Ad] MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78 [2021-11-02] (Vbfnet Apps) [MS Ad] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.175.0_x64__dt26b99r8h8gj [2021-09-16] (Realtek Semiconductor Corp) Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.105.8561.2_x64__8wekyb3d8bbwe [2021-11-25] (ms-resource:PublisherDisplayName) TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj [2021-11-24] (Charles Milette) [Startup Task] ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-4251501590-2440355686-2544988780-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Cliente\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-4251501590-2440355686-2544988780-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-4251501590-2440355686-2544988780-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Cliente\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-4251501590-2440355686-2544988780-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Cliente\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Nenhum Arquivo ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google) ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-07-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\53.0.8.0\drivefsext.dll [2021-11-19] (Google LLC -> Google, Inc.) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\apps do Chrome\Rythm.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=caaeajojehapimlifbkjfngibobledod ==================== Módulos Carregados (Whitelisted) ============= 2021-01-06 13:34 - 2021-01-06 13:34 - 000017920 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 003567616 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2021-04-15 07:01 - 2021-04-15 07:01 - 000575488 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Device.dll 2021-04-15 07:01 - 2021-04-15 07:01 - 000048640 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Platform.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000039424 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000414720 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000025088 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000024576 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000023552 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000532992 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 001441792 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 001189888 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000134656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 006184448 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 006867456 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000735232 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 001104896 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000325120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 003668480 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000517120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000051712 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 004228608 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000171008 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 001085440 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000480256 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000205824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000329728 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000127488 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000390656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 095598080 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 005587968 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000462848 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 000188928 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2021-01-06 13:34 - 2021-01-06 13:34 - 002878464 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000055808 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000059392 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000284160 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000333824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000136704 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000090112 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000313856 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2021-01-06 13:35 - 2021-01-06 13:35 - 000091648 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\desktop.ini:CachedTiles [6854] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [8850] ==================== Modo de Segurança (Whitelisted) ================== ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-02] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-02] (Oracle America, Inc. -> Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\localhost -> localhost ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2021-08-10 18:15 - 2021-08-10 18:15 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts 2021-06-15 16:03 - 2021-09-13 10:32 - 000000445 _____ C:\Windows\system32\drivers\etc\hosts.ics ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Cliente\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg DNS Servers: 10.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) MSCONFIG\Services: AMD Crash Defender Service => 2 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: DriverUpdSvc => 2 MSCONFIG\Services: EasyAntiCheat => 3 MSCONFIG\Services: EpicOnlineServices => 3 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: KMS-R@1n => 2 MSCONFIG\Services: RtkAudioUniversalService => 2 MSCONFIG\Services: Steam Client Service => 3 HKLM\...\StartupApproved\Run: => "SecurityHealth" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "utweb" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\StartupApproved\Run: => "GoogleDriveFS" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{DF986501-98CE-41B7-996F-00CAFCBC3644}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F55CF64E-1B90-422C-9463-A77F9509CCF7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{71A35751-9957-4BF6-A63F-0B463183C677}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{72FF19E4-F01A-4B86-A054-5C7D9D45F1E3}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{9D3CB693-56AC-47CD-A2D1-8564E5A93072}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{AC3F300D-0F82-4BFD-A582-7B98D2CFD365}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{A1D49148-E894-4694-A4DE-3527A0415FF0}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{98C9DAD9-03BE-4153-BF69-3AE6B508B9E4}] => (Allow) D:\FORMATAR\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{0855954D-6AF4-48D0-AF90-9EA31190F1BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A7E36F7C-A453-4A07-92C6-23F80C762700}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{6D455DA7-E4B9-4319-A9BB-8850F0562C06}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{053D8E3D-2CC0-4019-A051-16BADEA96061}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AF7400B7-BC09-4C11-973C-E639EE8127D2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{E853BAB5-31F1-4DBE-8289-56A96F9AAF11}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{3953DF2F-EB92-40BD-90AC-3F93DA0C25C9}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => Nenhum Arquivo FirewallRules: [UDP Query User{4397A464-45B1-45D8-9E5B-3E19EC8C1142}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => Nenhum Arquivo FirewallRules: [{807820F8-DA98-4BDA-92BB-7A64F28BC781}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{38C99451-8676-41DB-8A4D-AD8375A54497}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{1F1E7E0A-A0D4-4D9B-84AE-CEB69263EA98}] => (Allow) E:\Grand Theft Auto V\GTA5.exe => Nenhum Arquivo FirewallRules: [{FA8E901F-D4C7-4CA0-BE81-46B164A1C22C}] => (Allow) E:\Grand Theft Auto V\GTA5.exe => Nenhum Arquivo FirewallRules: [TCP Query User{5395A24F-83D6-48F5-8BF7-9A52A3691FAC}C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{6F02746D-ED87-461E-844F-075987B75A4E}C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [TCP Query User{E6CA1BE9-7CE4-4CB2-A506-C7F40A9799D9}C:\users\cliente\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{B4FD12C2-D4F5-45A8-A2C8-78F38796EEB4}C:\users\cliente\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{6B67FC9B-E3ED-4996-88AF-1348E376F8CB}C:\users\cliente\appdata\roaming\.minecraft\versions\biomes n' creatures bnc-1.0.0\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\versions\biomes n' creatures bnc-1.0.0\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe => Nenhum Arquivo FirewallRules: [UDP Query User{8729134D-6085-43E5-9479-7A3B04F684CA}C:\users\cliente\appdata\roaming\.minecraft\versions\biomes n' creatures bnc-1.0.0\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\versions\biomes n' creatures bnc-1.0.0\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe => Nenhum Arquivo FirewallRules: [TCP Query User{4D028AEB-A9FB-4A3C-9470-3DCC809F1BB7}E:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) E:\games\call of duty - modern warfare 3\iw5sp.exe => Nenhum Arquivo FirewallRules: [UDP Query User{7B2AC4C3-842B-43F2-8FD6-7F2022CC8B86}E:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) E:\games\call of duty - modern warfare 3\iw5sp.exe => Nenhum Arquivo FirewallRules: [TCP Query User{50BE2939-F168-4C94-8D84-CB76C08387C3}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [UDP Query User{2BD9925E-043E-41D8-B8CD-3E1FC1B9006F}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [{133B4216-70A0-4F59-BEAC-4B818110F8A2}] => (Allow) C:\Program Files\AMD\CNext\CNext\amddvr.exe => Nenhum Arquivo FirewallRules: [{DF33C2FB-9748-457C-90D1-4A2CB1D56CC1}] => (Allow) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [{5CE9EA3B-B0A4-4370-B5C7-C974DD666433}] => (Allow) C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [{F0A2A5E0-C4AB-4B57-BBC4-94ACBB1A1F45}] => (Allow) C:\Program Files\AMD\CNext\CNext\AMDLink.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) FirewallRules: [TCP Query User{12464407-6A84-4545-8317-3E20BC94535A}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [UDP Query User{286F7FC1-F337-45B8-9CB2-B9E513B7E44D}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{24E00917-304B-4109-99B6-0E31739E7A3D}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo FirewallRules: [UDP Query User{3B19159F-A359-4A39-BBAF-F3D7B0B8B764}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo FirewallRules: [TCP Query User{6DD30785-989D-4BFC-B9C2-7DA73EB1FC1B}C:\users\cliente\appdata\roaming\.minecraft\versions\zombie apocalypse (slow zombies) by forge labs zombie apocalypse slow version 1.7\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\versions\zombie apocalypse (slow zombies) by forge labs zombie apocalypse slow version 1.7\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe => Nenhum Arquivo FirewallRules: [UDP Query User{15ED0150-DE45-4001-AA12-6BFFC8AFBF1E}C:\users\cliente\appdata\roaming\.minecraft\versions\zombie apocalypse (slow zombies) by forge labs zombie apocalypse slow version 1.7\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.minecraft\versions\zombie apocalypse (slow zombies) by forge labs zombie apocalypse slow version 1.7\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe => Nenhum Arquivo FirewallRules: [{52FD032F-7068-408F-8C0A-523075A55152}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{730573CD-F13F-4C38-B000-2C3F03187132}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{82976E2E-065C-4F1B-B73E-9CDAE5110413}C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Nenhum Arquivo FirewallRules: [UDP Query User{A946C5C8-BB9E-49A5-BEF7-D7FE083EA81C}C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Nenhum Arquivo FirewallRules: [TCP Query User{DA55A74E-949E-4784-89A6-64DFA40C463C}C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Nenhum Arquivo FirewallRules: [UDP Query User{AD573EE5-E3AD-4F94-AAD8-1FAC4D85EFA9}C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cliente\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Nenhum Arquivo FirewallRules: [TCP Query User{0ECC5EF6-FE11-4085-AFB0-C6A0E6E6F5C9}E:\team speak\ts3client_win64.exe] => (Block) E:\team speak\ts3client_win64.exe => Nenhum Arquivo FirewallRules: [UDP Query User{44FA98D2-2E65-4B39-8C66-67B094F91CCA}E:\team speak\ts3client_win64.exe] => (Block) E:\team speak\ts3client_win64.exe => Nenhum Arquivo FirewallRules: [{0270128B-062A-4511-9942-043A475754E8}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{BE6F09D6-FFBF-400C-B7F2-CC6AF4E51C34}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{80107DCC-2E41-48CE-801C-DA26F6ED9F76}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{20E9DBA4-BD79-4E2A-A42F-E1A11CBF72E3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{02D37E1B-E724-456E-A6D4-2B7661436DF2}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{FBC725DA-9435-4AFA-A666-BBEF30286A7D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Nenhum Arquivo FirewallRules: [{0AB0AC8A-36F8-4399-A020-0C36A950732A}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{9A96E3CC-A2EA-4991-81CA-CF027041BDEA}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{681E6906-436B-4982-96C4-8523DDD58E4E}E:\riot games\riot client\riotclientservices.exe] => (Allow) E:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo FirewallRules: [UDP Query User{03F0EE8C-A849-411A-BCAE-F58C7D01D933}E:\riot games\riot client\riotclientservices.exe] => (Allow) E:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo FirewallRules: [TCP Query User{58D806EA-FD09-4307-9C32-9F6D92560E2F}C:\users\cliente\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cliente\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{965DF9E8-2A79-4BD6-AD19-AED663334F91}C:\users\cliente\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cliente\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{65BD4448-B877-40F3-8CE1-C7E9E6B610D9}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes) FirewallRules: [{6B8D085E-5216-4B16-B288-594443A09D2F}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe () [Arquivo não assinado] FirewallRules: [{A7F49480-F063-441F-B85F-BF05F208F781}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe () [Arquivo não assinado] FirewallRules: [{1FBF8395-145B-4E8E-8AC8-9104D703551C}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> ) FirewallRules: [{E37F7FC0-B52C-483D-9386-67374F3C5C40}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes) FirewallRules: [{52BE658F-FB5D-48B3-A7B3-61CD770FA782}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe () [Arquivo não assinado] FirewallRules: [{B12C5B56-3216-4471-B6A9-6C40E7E10568}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe () [Arquivo não assinado] FirewallRules: [{92CC0408-98C4-4440-9116-4E8DEF68750D}] => (Allow) E:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> ) FirewallRules: [TCP Query User{7B0D7787-CEE6-457D-A03B-1091E43190AC}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) FirewallRules: [UDP Query User{2D2B8561-F7D7-4302-9A41-3E1A6F80245A}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) FirewallRules: [TCP Query User{D7AC483A-9466-46C4-B289-1AF79FB85B12}C:\users\cliente\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cliente\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Nenhum Arquivo FirewallRules: [UDP Query User{ED1CB188-5A7A-4639-B948-AD3EE30EC5F7}C:\users\cliente\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cliente\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Nenhum Arquivo FirewallRules: [TCP Query User{45F58B88-9541-41A1-A3F4-5D8D90A165A2}C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{4B47730A-ABC5-42F3-BBFC-BF1100B15771}C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Nenhum Arquivo FirewallRules: [{5FB1EB49-1912-4BA5-A07E-CDEFE1AA6A37}] => (Allow) E:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado] FirewallRules: [{834CC00B-F6B9-49B7-97C9-075D1CFB5B07}] => (Allow) E:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Arquivo não assinado] FirewallRules: [{5BABEA2C-D1A0-409E-BBA6-9BD90F1FAF9A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{865B9F91-7077-48CA-BD54-1CACA6F183CA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{6EBD45BE-0035-4C96-BE0C-3A3254AFC233}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{75D609D0-1002-4618-B7D7-5D21038FF4CD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [TCP Query User{F9C9F722-82FD-4577-93C3-D50AEEB59075}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [UDP Query User{A3018766-F48E-4954-B72A-227CD002150F}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [TCP Query User{B9134B65-8CA8-45C9-B86D-995B61A9E9A1}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [UDP Query User{690E1B48-8F77-4948-ADAE-FC2D3071AD92}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [TCP Query User{C0F6D51A-7912-41C2-B923-83CEBD26F8D6}C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{5FA2A264-2E08-4462-B843-7ED972CED3D3}C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Nenhum Arquivo FirewallRules: [{A754187B-EAD8-40E4-9179-19D8F69052DC}] => (Allow) E:\SteamLibrary\steamapps\common\eFootball PES 2021\PES2021.exe (Konami Digital Entertainment Co., Ltd.) [Arquivo não assinado] FirewallRules: [{E78AB5FB-1003-4F83-8C8E-D342B10E1A9F}] => (Allow) E:\SteamLibrary\steamapps\common\eFootball PES 2021\PES2021.exe (Konami Digital Entertainment Co., Ltd.) [Arquivo não assinado] FirewallRules: [TCP Query User{57FDBD22-5AB3-483E-B28D-7811B14BBD54}C:\users\cliente\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{8C99448A-DEF9-424F-83D2-2AF4E941D1F6}C:\users\cliente\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\cliente\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{64D4D328-A4C9-4A71-9024-296BF7321BFC}] => (Allow) C:\Program Files\BlueStacks_msi2\HD-Player.exe => Nenhum Arquivo FirewallRules: [{C918AFEB-82A3-4524-8B90-C8BED5ADD01A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{13FB3B3C-CB63-4E97-BF88-AF866C78DAFB}E:\steamlibrary\steamapps\common\drunken wrestlers 2\dw2.exe] => (Allow) E:\steamlibrary\steamapps\common\drunken wrestlers 2\dw2.exe => Nenhum Arquivo FirewallRules: [UDP Query User{ADC26AB9-D10A-41AA-AD43-97ECAAEFA3E2}E:\steamlibrary\steamapps\common\drunken wrestlers 2\dw2.exe] => (Allow) E:\steamlibrary\steamapps\common\drunken wrestlers 2\dw2.exe => Nenhum Arquivo FirewallRules: [{21629BE1-DD55-42A4-A6E6-8091EE30010B}] => (Allow) C:\Users\Cliente\AppData\Local\Programs\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{80CF85FD-F55C-4534-8A42-609677B18FF2}] => (Allow) E:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe => Nenhum Arquivo FirewallRules: [{2C784E20-AC73-4901-BBF6-8CD4B82B8FA3}] => (Allow) E:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe => Nenhum Arquivo FirewallRules: [{7BBC65F4-FDAD-4E8B-BBB4-DB4AADC3857A}] => (Allow) E:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe => Nenhum Arquivo FirewallRules: [{366D1EBD-CA19-40B9-AE44-5C2C0419720D}] => (Allow) E:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe => Nenhum Arquivo FirewallRules: [{1065527F-DB57-4E28-9FB2-D5E8E7AFBA7C}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{87F5FCE6-2D1C-4C50-B473-FA5302B45497}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{498EC66F-B3DF-4A5B-BF4F-CF207014D39F}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{53347122-4774-4603-8BA4-558030A74F95}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{CCEDDBF8-58D6-479F-AC50-037B5FF789BA}] => (Allow) E:\Download - Jogos\Ubisoft Game Launcher\games\Assassin's Creed Chronicles India\Binaries\Win32\ACCGame-Win32-Shipping.exe => Nenhum Arquivo FirewallRules: [{C8393489-A78E-495B-B8A9-5A260E40C919}] => (Allow) E:\Download - Jogos\Ubisoft Game Launcher\games\Assassin's Creed Chronicles India\Binaries\Win32\ACCGame-Win32-Shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{E6E63FC1-FB91-42EE-9DAE-A1CA7E9122AB}C:\users\cliente\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Block) C:\users\cliente\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [UDP Query User{CD88CF0D-7B2B-4E31-98D9-1119B3EAA1C4}C:\users\cliente\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Block) C:\users\cliente\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [{95165D5E-5429-48F0-86D6-46DF1670A0FD}] => (Allow) C:\Users\Cliente\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{BD04EC77-3469-4A9A-A6E3-CB9FF6770A8A}] => (Allow) C:\Users\Cliente\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{EBC837BC-C8CC-4063-99D3-9625A1591F1E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{3E1C2EE4-D437-45F6-8CF1-8A2A11D72566}C:\users\cliente\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\cliente\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{DEEBD584-8204-4BD3-9BFE-B8D8C7BF2068}C:\users\cliente\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\cliente\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{93E76F6E-407F-4088-BD19-68DE51C8C7D8}C:\users\cliente\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cliente\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{6AE2BCD7-31E7-4D85-9B41-0119C059C3D8}C:\users\cliente\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cliente\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{B0452C97-EEE9-4471-A558-9E5BB1C7AC84}E:\download - jogos\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\download - jogos\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [UDP Query User{5F636CB7-F967-426D-BA1B-49951D5B80C3}E:\download - jogos\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\download - jogos\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{BE73DDBC-E0CF-4B82-AF57-6F758A9C2A0B}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{2D9BFE8C-26EF-4131-92A4-D7856EECBA71}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{ADED203E-6CCF-4160-9319-0EA09CDF6F4C}C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{4B490588-E9D6-406A-83F5-B7BE8C8A8BBE}C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\cliente\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [{F7836DE4-A8F2-410F-B0D0-24B2E1C40B4C}] => (Allow) E:\SteamLibrary\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation) FirewallRules: [{0A95E3C3-A839-47A7-907F-663D84EF4BBA}] => (Allow) E:\SteamLibrary\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation) FirewallRules: [{14D471BA-5B5A-4614-8C7E-70751D8CF9F4}] => (Allow) C:\Users\Cliente\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{0DFA54F3-B58B-4BBD-8EC9-F1E498168D06}] => (Allow) C:\Users\Cliente\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{12A5D6DB-5604-4115-90D2-84A4FDFBBAD3}C:\program files (x86)\dragon ball figher z\red\binaries\win64\red-win64-shipping.exe] => (Allow) C:\program files (x86)\dragon ball figher z\red\binaries\win64\red-win64-shipping.exe => Nenhum Arquivo FirewallRules: [UDP Query User{5A7DE1E1-F97C-4BF1-B0A2-E624D9851B6F}C:\program files (x86)\dragon ball figher z\red\binaries\win64\red-win64-shipping.exe] => (Allow) C:\program files (x86)\dragon ball figher z\red\binaries\win64\red-win64-shipping.exe => Nenhum Arquivo FirewallRules: [TCP Query User{35CF3944-B3B5-4794-B6B9-3ED02E10FEEA}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [UDP Query User{A12500E1-0CBB-48CB-96CD-4742AA6D52FF}E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) E:\download - jogos\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment) FirewallRules: [{A4B76451-6D31-4330-A1C8-9DA1C2E54DA1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A322AC63-DA6C-4E25-BAC5-A189EA1854EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C603FF48-9B0E-4D81-B5CF-01420390D952}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1F996DF6-9050-41D0-AC60-C09A7D00F422}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E1FA77CE-24E1-4170-9756-981FBECD3694}] => (Allow) C:\Users\Cliente\AppData\Local\Programs\Opera\81.0.4196.60\opera.exe (Opera Software AS -> Opera Software) ==================== Pontos de Restauração ========================= 09-11-2021 22:20:29 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 19-11-2021 21:25:42 Ponto de Verificação Agendado 26-11-2021 17:10:47 Instalador de Módulos do Windows 26-11-2021 17:11:52 Instalador de Módulos do Windows 26-11-2021 17:16:51 Instalador de Módulos do Windows 26-11-2021 17:17:36 Instalador de Módulos do Windows 27-11-2021 14:35:33 Instalador de Módulos do Windows ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (11/28/2021 10:13:18 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry Error: (11/28/2021 10:08:21 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (11/28/2021 10:07:59 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (11/28/2021 10:07:06 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORIDADE NT) Description: Falha na inicialização do registro de certificado SCEP para WORKGROUP\DESKTOP-9U4R564$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sun, 28 Nov 2021 13:07:05 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: ce534979-6c9f-4f86-b8ea-91f6cfd58751 Método: GET(829ms) Estágio: GetCACaps Não encontrado (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (11/28/2021 12:13:28 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (11/28/2021 12:13:06 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (11/28/2021 12:12:24 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORIDADE NT) Description: Falha na inicialização do registro de certificado SCEP para WORKGROUP\DESKTOP-9U4R564$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sun, 28 Nov 2021 03:12:23 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 165263ea-166b-4237-a83c-f017c59b06f7 Método: GET(891ms) Estágio: GetCACaps Não encontrado (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (11/28/2021 12:01:16 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0xC004F074 Argumento de linha de comando: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Erros de Sistema: ============= Error: (11/28/2021 10:11:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Serviço do Kaspersky VPN Secure Connection 5.3 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço. Error: (11/28/2021 10:11:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço DCIService foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (11/28/2021 10:11:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Serviço Clique para Executar do Microsoft Office foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. Error: (11/28/2021 10:11:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço PnkBstrA foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (11/28/2021 10:06:41 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 1) (User: AUTORIDADE NT) Description: Erro fatal de hardware. Um registro descrevendo a condição encontra-se na seção de dados deste evento. Error: (11/28/2021 10:02:05 AM) (Source: rt640x64) (EventID: 2) (User: ) Description: Realtek PCIe GbE Family Controller has a Hardware IO error. Error: (11/28/2021 12:37:23 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9U4R564) Description: O servidor {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} não se registrou no DCOM dentro do tempo limite necessário. Error: (11/28/2021 12:11:28 AM) (Source: rt640x64) (EventID: 2) (User: ) Description: Realtek PCIe GbE Family Controller has a Hardware IO error. CodeIntegrity: =============== Date: 2021-11-28 10:08:52 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2021-11-28 10:07:10 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Informações da Memória =========================== BIOS: Daten Tecnologia Ltda DA305 07/21/2020 placa-mãe: Daten Tecnologia Ltda DA3PRO Processador: AMD Ryzen 3 2200G with Radeon Vega Graphics Percentagem de memória em uso: 25% RAM física total: 14262.25 MB RAM física disponível: 10689.44 MB Virtual Total: 16438.25 MB Virtual disponível: 11801.66 MB ==================== Drives ================================ Drive c: (Sistema) (Fixed) (Total:222.95 GB) (Free:90.86 GB) NTFS Drive e: (Novo volume) (Fixed) (Total:465.63 GB) (Free:91.78 GB) NTFS \\?\Volume{a6f8ce40-c95a-4678-9df5-70a89afde365}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS \\?\Volume{c9596b37-b5e7-410f-ac37-e1a74276eb14}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 399E6E96) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fim de Addition.txt =======================