Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 01-12-2021 Executado por leopi (02-12-2021 20:24:24) Executando a partir de C:\Users\leopi\OneDrive\Área de Trabalho Microsoft Windows 10 Home Versão 20H2 19042.1348 (X64) (2021-07-21 00:49:42) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-860217186-209173525-3749562553-500 - Administrator - Disabled) Convidado (S-1-5-21-860217186-209173525-3749562553-501 - Limited - Disabled) DefaultAccount (S-1-5-21-860217186-209173525-3749562553-503 - Limited - Disabled) leopi (S-1-5-21-860217186-209173525-3749562553-1001 - Administrator - Enabled) => C:\Users\leopi WDAGUtilityAccount (S-1-5-21-860217186-209173525-3749562553-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {BAD274F4-FA00-8560-1CDE-6C830442BEFA} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Amazon Games (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\{4DD10B06-78A4-4E6F-AA39-25E9C38FA568}) (Version: 2.1.5699.1 - Amazon.com Services, Inc.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.09.01.140 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.11.3 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{1f00ea4b-bcb4-45fa-a4c8-bbcbfa0304ae}) (Version: 3.09.01.140 - Advanced Micro Devices, Inc.) Hidden Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.7.9 - Electronic Arts, Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 25.0.1.194 - Bitdefender) Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.21.270 - Bitdefender) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.3.145.1002 - BlueStack Systems, Inc.) BlueStacks X (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\BlueStacks X) (Version: 0.11.1.9 - BlueStack Systems, Inc.) Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden Discord (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{4FD72C51-C53D-481B-A88B-8D4CF216B76A}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) FiveM (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.13.2.0 - miHoYo Co.,Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) Knockout City (HKLM-x32\...\{C75F8E76-29EF-44D0-9762-4F6D65BF0111}) (Version: 3.1.0.0 - Electronic Arts, Inc.) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.41 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.41 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.14527.20276 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual Basic/C++ Runtime (x86) (HKLM-x32\...\{C5E3A69D-D391-45A6-A8FB-00B01E2B010D}) (Version: 1.1.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30130 (HKLM\...\{D121438D-80C5-443F-B982-8E89F5C0D770}) (Version: 14.29.30130 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30130 (HKLM\...\{ED7828EB-80D2-4343-9E64-0115FEE8E209}) (Version: 14.29.30130 - Microsoft Corporation) Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30130 (HKLM-x32\...\{65903554-0A65-4376-BCC0-63484BA17339}) (Version: 14.29.30130 - Microsoft Corporation) Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30130 (HKLM-x32\...\{B5E417DC-EB8F-4EBE-814A-54E0E0F22E86}) (Version: 14.29.30130 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{47C2CCDB-7A04-3797-992B-A84D3E90258F}) (Version: 10.0.60833 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Opera GX Stable 81.0.4196.61 (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\Opera GX 81.0.4196.61) (Version: 81.0.4196.61 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.107.49426 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{f9636d6f-9bff-4bdf-a26a-c6f839feab6f}) (Version: latest - ppy Pty Ltd) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Launcher (HKLM\...\Rockstar Games Launcher) (Version: 0.0.0.0 - Rockstar Games) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.49.529 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) RyzenMasterSDK (HKLM\...\{EA8C6C72-2CEE-4568-8CFA-F4B8C362C022}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH) The Seven Deadly Sins Global (HKLM-x32\...\SevenDeadlySinsGlobal) (Version: 1.4.1 - Netmarble F&C) TLauncher (HKLM-x32\...\TLauncher2.82) (Version: 2.82 - TLauncher Inc.) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft) VALORANT (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation) WinRAR 5.70 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.2 - win.rar GmbH) Zoom (HKU\S-1-5-21-860217186-209173525-3749562553-1001\...\ZoomUMX) (Version: 5.8.0 (1324) - Zoom Video Communications, Inc.) Packages: ========= Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-30] (Microsoft Studios) [MS Ad] Samsung Notes -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungNotes_4.2.66.0_x64__wyx1vj98g3asy [2021-12-01] (Samsung Electronics Co, Ltd.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0 [2021-11-27] (Spotify AB) [Startup Task] ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-860217186-209173525-3749562553-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6} ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-23] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-23] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncShell64.dll [2021-11-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-11-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-23] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-23] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== ==================== Atalhos & WMI ======================== ==================== Módulos Carregados (Whitelisted) ============= 2021-11-20 11:47 - 2021-10-05 22:30 - 126961152 _____ () [Arquivo não assinado] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2021-11-20 11:47 - 2021-10-05 22:30 - 000384000 _____ () [Arquivo não assinado] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2021-11-20 11:47 - 2021-10-05 22:30 - 008006656 _____ () [Arquivo não assinado] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000017920 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 003567616 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2021-11-26 19:34 - 2021-11-26 19:35 - 104870912 _____ () [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\libcef.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000112128 _____ () [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\libegl.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 006227456 _____ () [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\libglesv2.dll 2021-07-07 05:37 - 2021-07-07 05:37 - 000562688 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Device.dll 2021-07-07 05:37 - 2021-07-07 05:37 - 000058880 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Platform.dll 2021-11-16 18:12 - 2021-11-16 18:12 - 001711616 _____ (Advanced Micro Devices, Inc.) [Arquivo não assinado] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll 2017-09-04 23:15 - 2017-09-04 23:15 - 004396032 _____ (Microsoft Corporation) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\D3DCompiler_47.dll 2021-11-20 11:47 - 2021-10-05 22:30 - 000983552 _____ (The Chromium Authors) [Arquivo não assinado] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000810496 _____ (The Chromium Authors) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\chrome_elf.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-11-23 18:06 - 2021-08-15 14:17 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000057856 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000039424 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000031232 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000415232 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000025088 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000025088 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000023552 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000532992 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 001455104 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 001227776 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000135680 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 006270976 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 006947328 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000740352 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000123392 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 001110528 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000326656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 003798528 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000440832 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000054784 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 004255744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000171520 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 001128448 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000206336 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000334336 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000133120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000396800 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 102854656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 005611008 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000463360 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000210432 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 002877440 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000056832 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000059392 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000267776 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000017408 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000290816 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000336896 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000134144 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000106496 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000325120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000045568 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2021-04-21 03:01 - 2021-04-21 03:01 - 000093184 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll 2021-11-26 19:33 - 2021-11-26 19:33 - 000047104 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\audio\qtaudio_windows.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000026112 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qgif.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000027136 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qico.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000243712 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qjpeg.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000223744 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qmng.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000020992 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qsvg.dll 2021-11-26 19:34 - 2021-11-26 19:34 - 000332288 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\imageformats\qtiff.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 001140224 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\platforms\qwindows.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 004943360 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Core.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 005022208 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Gui.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000626176 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Multimedia.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000877056 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Network.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 002908672 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Qml.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 003078656 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Quick.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000259072 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Svg.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 004718080 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Widgets.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000439296 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5WinExtras.dll 2021-11-26 19:35 - 2021-11-26 19:35 - 000159232 _____ (The Qt Company Ltd.) [Arquivo não assinado] D:\Arquivos de Programas\Battle.net\Battle.net.13177\Qt5Xml.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Users\leopi\Dados de Aplicativos:9e1811b514796fb3fd8d48513cdb9024 [394] AlternateDataStreams: C:\Users\leopi\AppData\Roaming:9e1811b514796fb3fd8d48513cdb9024 [394] ==================== Modo de Segurança (Whitelisted) ================== ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-860217186-209173525-3749562553-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2021-09-04] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2021-09-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-860217186-209173525-3749562553-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\leopi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [TCP Query User{8B3EE88B-022D-47C9-9E2D-9E8490109D1A}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (miHoYo Co.,Ltd. -> ) FirewallRules: [UDP Query User{BA272275-A3C9-4B7C-A35A-61621879832B}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (miHoYo Co.,Ltd. -> ) FirewallRules: [{625D38DF-4C47-4CEF-AF92-F4B495C6348A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{8B12F7DC-840C-4042-BA2D-4F0FA0F85C84}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{064CB46D-B602-4B86-80EB-3088F722E4C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0933509D-7C42-4DE8-A686-D6B82A4B7008}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{CBF48678-D5FC-4677-A5F0-62F58DFA23E3}] => (Allow) D:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) FirewallRules: [{4BB232AE-E542-4B16-9931-88CFF6CA78EC}] => (Allow) D:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) FirewallRules: [{FC5837A6-B304-4D67-BA3B-22FEE349EBA3}] => (Allow) D:\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [{62C967BA-BC1A-47F1-88B1-42207E5F0ECD}] => (Allow) D:\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [TCP Query User{413D0BEA-356F-43C9-ACB0-C291CDE8D7CE}C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.275\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.275\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{B49DD587-181B-4B70-8679-5734426CA7AC}C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.275\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.275\opera.exe => Nenhum Arquivo FirewallRules: [{51985F7E-19D3-4AC2-B96B-493263ACC0C6}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{B229D344-433E-44C6-A345-CBECF04CEB3B}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{4ADB641B-F383-44A3-9CE4-F0B035238B27}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{92C6A486-826A-469F-A0A8-B0DFA2F0E2B6}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{CDC1B824-430E-4BEB-A157-A4D69033C245}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{3A78E781-0A59-4904-B130-A1142F931FBF}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{103108FD-776F-484A-BFEA-7439A78981A6}] => (Allow) D:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{04AEE6A3-89B5-44A9-8FA8-390C02061CAF}] => (Allow) D:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{90185B7A-3B24-4B17-9206-8C1A151585A4}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{835A94DE-C574-44E4-A9E3-2CC5A967B8D1}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{35F6C8D5-D50E-4A5A-A761-3500AEDB8F74}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{FE424694-1A03-471D-AAC3-6A2225547A2C}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [TCP Query User{B35378CC-1AE1-4CE1-A02E-AB2240DC8448}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{27AF4F72-FB58-475D-B6D5-68EEC6CD2A78}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{CE69DF95-7AE7-4B23-AF38-A82B3E361E4E}C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.298\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.298\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{EA22A50D-8B97-4296-A976-FD786B02F52C}C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.298\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\77.0.4054.298\opera.exe => Nenhum Arquivo FirewallRules: [{E3F91666-8A43-4E92-818E-B4B50DAD95EA}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{E6DB2ED4-1046-43FA-8005-5A9F54987CBD}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [TCP Query User{DB998C69-A304-4E25-80A8-0B39536682AB}C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{988DAD17-A8BE-4F70-8A8E-118BE7535598}C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Nenhum Arquivo FirewallRules: [{6E1331F1-A368-418C-9DD4-4982D340E5F4}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Arquivo não assinado] FirewallRules: [{D50B2832-AC30-4A99-BA6B-E3749525BF49}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Arquivo não assinado] FirewallRules: [{3577FA99-45F1-4E3F-B8E4-607085735DF4}] => (Allow) C:\Program Files (x86)\Origin Games\Knockout City\KnockoutCity.exe (Velan Studios, Inc -> Velan Studios) FirewallRules: [{9B71B2AE-8D25-4C6C-B1F0-1475790A23CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{1FD0A1BB-1DE2-4B52-A7AC-DBCC3D670C10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{3CD8B40E-25D1-4417-93D0-4E38A1ADEB26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bro Falls Ultimate Showdown\Run.exe () [Arquivo não assinado] FirewallRules: [{DCA0FBC5-E055-4CC8-A124-022723411FDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bro Falls Ultimate Showdown\Run.exe () [Arquivo não assinado] FirewallRules: [{1B4D1F36-5A76-4B14-B20C-6144B0F733D3}] => (Allow) C:\Program Files (x86)\Origin Games\Knockout City\KnockoutCity.exe (Velan Studios, Inc -> Velan Studios) FirewallRules: [TCP Query User{502F7BD5-C766-46CE-9FF2-E4B0C5B1536E}C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Nenhum Arquivo FirewallRules: [UDP Query User{15D0BC1A-F736-4298-9585-919067B03A3B}C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Nenhum Arquivo FirewallRules: [{3D330F6D-8FA7-4DCA-AA38-2025D924E776}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe => Nenhum Arquivo FirewallRules: [{36BCFFF9-7B6A-4026-87E4-977D47A420B0}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe => Nenhum Arquivo FirewallRules: [TCP Query User{FDBD7EF5-85FB-4BE6-ACB1-F29DC6667115}C:\users\leopi\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{6656E71C-B746-4AE8-B474-15105F8A229F}C:\users\leopi\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\leopi\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{C2679427-6298-4075-AB55-C38336101FE0}] => (Allow) C:\Users\leopi\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{CC4F4C38-8695-4E02-8EF4-85F5DACD58AC}] => (Allow) C:\Users\leopi\AppData\Roaming\Zoom\bin\airhost.exe => Nenhum Arquivo FirewallRules: [{8E57940B-8BFD-483D-A41C-AA19F64D4548}] => (Allow) C:\Users\leopi\AppData\Roaming\Zoom\bin\airhost.exe => Nenhum Arquivo FirewallRules: [{AD5DDD5E-97F4-4413-9B41-8E0A5DCCFE47}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Bluestack Systems, Inc -> BlueStack Systems) FirewallRules: [{4BD16D53-021B-4219-B750-7326EC4F719D}] => (Allow) D:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{F5484763-E7BD-482F-A12F-E89B0BC34459}] => (Allow) D:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{5ECC2E40-A244-496E-BF57-E36E46867EBF}] => (Allow) D:\Steam\steamapps\common\Crab Game\Crab Game.exe () [Arquivo não assinado] FirewallRules: [{23DD2CA9-765D-4016-82A8-81DCE0C080A6}] => (Allow) D:\Steam\steamapps\common\Crab Game\Crab Game.exe () [Arquivo não assinado] FirewallRules: [TCP Query User{37801651-2E1F-4301-B8DE-E5C2E7BEE915}D:\epic games\gtav\gta5.exe] => (Allow) D:\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{E8C8E2F7-96B2-41A4-BA00-0F81A3669262}D:\epic games\gtav\gta5.exe] => (Allow) D:\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{3700046C-E781-4F64-8F9A-0F9D0F3E6517}C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{2B637DEC-989B-4417-9B93-C45086F59A04}C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{A6B66077-5DC6-4820-8909-764AEB4ECA22}C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{40334578-B1D1-458D-B933-9DB70204D44C}C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\leopi\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [{15C46A09-EB9F-44C6-B89B-95FBCA659B7E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E18AF473-4710-4037-BB60-D05C0CB243A0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{348A07DA-7869-4221-A3DB-D6A92CE20D0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6062A553-5CF5-4EAE-B82E-99596E7E8986}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7FBABF77-5952-4DE1-88D9-9C8C8E7A879F}] => (Allow) C:\Program Files (x86)\Origin Games\Knockout City\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{6723E5F3-26A6-4996-A563-F8C1A363919C}] => (Allow) C:\Program Files (x86)\Origin Games\Knockout City\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{6B0A15DD-70B7-44B8-8991-7C643790629A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3407E39D-D396-40FA-B3BC-7D0C48503E11}] => (Allow) D:\Steam\steamapps\common\FarCry5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{85EF14C9-05C3-42D8-B5CD-8E44A874E9B1}] => (Allow) D:\Steam\steamapps\common\FarCry5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{749CC0D4-F365-4CC0-9442-2D0E23FA0D71}] => (Allow) D:\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{2C4FF997-E4CD-48EE-90BC-2811356965AE}] => (Allow) D:\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{4F00D283-B1A7-401E-A09D-E50D67C84217}] => (Allow) D:\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{DE1B0A23-62E5-4A0C-99F0-1D3112D1963D}] => (Allow) D:\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{FADC78E6-2BC1-42BB-8A97-1119BE59165C}] => (Allow) D:\Steam\steamapps\common\XCOM 2\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [{6B4D2725-FE56-40EC-B8AC-B2A927897596}] => (Allow) D:\Steam\steamapps\common\XCOM 2\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [{97857FF0-2825-443B-8CC0-F5B87C5B5A60}] => (Allow) D:\Steam\steamapps\common\Raft\Raft.exe () [Arquivo não assinado] FirewallRules: [{902EEE8E-9FCB-480E-B396-840CB8FE4722}] => (Allow) D:\Steam\steamapps\common\Raft\Raft.exe () [Arquivo não assinado] FirewallRules: [{DAFFE1FD-2D4F-4BA6-B157-6BEDABBC3BEC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{38C9B400-5B47-4E77-892D-F26AD4FE5189}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CD96B6AC-C5C8-4FF8-B55E-5498D66FEA23}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BEDD6EDD-0BF1-49D1-8312-3AEE164B9611}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{545CF255-DDB0-479D-8317-1B8EBB4FBD70}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2079FF76-FB11-4240-A9F5-07FE661C50A4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F5D385FD-54C2-4369-A244-7F5C9DA0870C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E0D2CC68-1D18-44A7-83CE-9E8F8077F5D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{92CDE786-6F6E-4FFA-9BA5-39FBB2B658F1}] => (Allow) D:\Steam\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [Arquivo não assinado] FirewallRules: [{56DD9B14-20E5-4B66-9785-1EB600777F1F}] => (Allow) D:\Steam\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [Arquivo não assinado] FirewallRules: [{16563560-3CB8-4291-AFF5-0BEC0EAD94DE}] => (Allow) D:\Steam\steamapps\common\StateOfDecay2\StateOfDecay2\Binaries\Win64\StateOfDecay2-Win64-Shipping.exe (Undead Labs, LLC) [Arquivo não assinado] FirewallRules: [{B321D947-ADE4-4F14-B23D-A2E1D72611F5}] => (Allow) D:\Steam\steamapps\common\StateOfDecay2\StateOfDecay2\Binaries\Win64\StateOfDecay2-Win64-Shipping.exe (Undead Labs, LLC) [Arquivo não assinado] FirewallRules: [{7C9180AB-E2AE-41EC-B253-FCEF12755A5B}] => (Allow) D:\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [Arquivo não assinado] FirewallRules: [{EF8AF75A-DAB7-48EF-B612-4A6636CFC7EC}] => (Allow) D:\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe () [Arquivo não assinado] FirewallRules: [{994F13B1-8B83-422F-BF1C-156605A62F87}] => (Allow) D:\Steam\steamapps\common\Far Cry New Dawn\bin\FarCryNewDawn.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{4732B8C6-1F0F-4DCF-A389-09F2A7D95D39}] => (Allow) D:\Steam\steamapps\common\Far Cry New Dawn\bin\FarCryNewDawn.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [TCP Query User{622B179F-CBE6-4186-893E-9EB8AB5CDF3D}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe => Nenhum Arquivo FirewallRules: [UDP Query User{738F2438-8ABF-4F00-874F-D83F61913A90}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe => Nenhum Arquivo FirewallRules: [TCP Query User{267D45B9-4FEF-4FD6-AF06-DCA4B6524335}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{A4B6345B-4A09-41E6-B74B-A5B067E6C2CF}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{3786C015-B210-4A4A-BA50-6AB4283258D5}D:\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) D:\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe (Firaxis Games) [Arquivo não assinado] FirewallRules: [UDP Query User{313F1818-E453-4E83-9A5A-EFCE1FE9BA40}D:\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) D:\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe (Firaxis Games) [Arquivo não assinado] FirewallRules: [{998F0643-C309-48DF-8D60-BC2DAA525070}] => (Allow) D:\Steam\steamapps\common\Black Desert Online SA\BlackDesertPatcher32.pae.exe (PearlAbyss Corp. -> ) FirewallRules: [{E43D4FD6-DDDD-4381-B999-5D6B906CE307}] => (Allow) D:\Steam\steamapps\common\Black Desert Online SA\BlackDesertPatcher32.pae.exe (PearlAbyss Corp. -> ) FirewallRules: [{23797DB9-C778-4194-82FE-087C22D0D384}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.41\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{57602667-0ACB-47FF-A9B3-6832A0C6197C}] => (Allow) D:\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Arquivo não assinado] FirewallRules: [{2A9DD5C3-1498-4F4A-9166-44B55EF381EE}] => (Allow) D:\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Arquivo não assinado] FirewallRules: [{D29F8DA1-0689-4E53-93F0-57DE6F7D6A32}] => (Allow) D:\Steam\steamapps\common\SCP Escape Together\SCP_ET.exe () [Arquivo não assinado] FirewallRules: [{CB75655A-0B2F-4391-BF1B-D7873D64FA7F}] => (Allow) D:\Steam\steamapps\common\SCP Escape Together\SCP_ET.exe () [Arquivo não assinado] ==================== Pontos de Restauração ========================= 21-11-2021 19:18:29 DirectX instalado 24-11-2021 19:39:46 Instalador de Módulos do Windows 29-11-2021 18:58:05 DirectX instalado 02-12-2021 20:15:55 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 02-12-2021 20:16:13 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (12/02/2021 12:37:53 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (12/02/2021 12:24:01 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (12/01/2021 12:59:01 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_SNOOZED. Error: (11/25/2021 07:49:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (11/18/2021 05:26:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (11/11/2021 09:57:25 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (11/04/2021 01:47:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Error: (10/29/2021 02:45:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Não foi possível concluir o otimizador de armazenamento otimizar novamente em (D:) devido a: A operação solicitada não é compatível com o hardware que contém o volume. (0x8900002A) Erros de Sistema: ============= Error: (12/02/2021 06:57:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} não se registrou no DCOM dentro do tempo limite necessário. Error: (12/02/2021 02:35:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor Windows.Media.Capture.Internal.AppCaptureShell não se registrou no DCOM dentro do tempo limite necessário. Error: (12/02/2021 01:01:37 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} não se registrou no DCOM dentro do tempo limite necessário. Error: (12/01/2021 07:18:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor Windows.Media.Capture.Internal.AppCaptureShell não se registrou no DCOM dentro do tempo limite necessário. Error: (12/01/2021 02:52:41 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento do sistema que ocorreu às 14:29:24 do dia ‎01/‎12/‎2021 não era esperado. Error: (12/01/2021 02:52:23 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORIDADE NT) Description: 3221225684Ocorrência de erro fatal em processamento de dados de restauração. Error: (11/30/2021 09:16:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor Windows.Media.Capture.Internal.AppCaptureShell não se registrou no DCOM dentro do tempo limite necessário. Error: (11/29/2021 09:43:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QEOK3) Description: O servidor {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} não se registrou no DCOM dentro do tempo limite necessário. Windows Defender: ================ Date: 2021-11-28 17:48:38 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nome: HackTool:Win32/AutoKMS Gravidade: Alto Categoria: Ferramenta Caminho: file:_C:\Windows\OInstall.exe; file:_C:\Windows\System32\Tasks\OInstall->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F4C9C8DF-4FDE-4A57-B351-8C4A45E60F97}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OInstall; taskscheduler:_C:\Windows\System32\Tasks\OInstall Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Sistema Usuário: AUTORIDADE NT\SISTEMA Nome do Processo: Unknown Versão da Inteligência de Segurança: AV: 1.353.1751.0, AS: 1.353.1751.0, NIS: 1.353.1751.0 Versão do Mecanismo: AM: 1.1.18700.4, NIS: 1.1.18700.4 Date: 2021-11-28 17:08:04 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {8BAF31DF-3E01-492D-89F9-9839ED620524} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2021-11-22 17:20:27 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nome: HackTool:Win32/AutoKMS Gravidade: Alto Categoria: Ferramenta Caminho: file:_C:\Users\leopi\OneDrive\Office 2021 HayDadicas\Office 2021 HayDadicas\setup.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Proteção em Tempo Real Usuário: DESKTOP-M6QEOK3\leopi Nome do Processo: C:\Program Files\Microsoft OneDrive\OneDrive.exe Versão da Inteligência de Segurança: AV: 1.353.1409.0, AS: 1.353.1409.0, NIS: 1.353.1409.0 Versão do Mecanismo: AM: 1.1.18700.4, NIS: 1.1.18700.4 Date: 2021-11-22 17:20:02 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nome: HackTool:Win32/AutoKMS Gravidade: Alto Categoria: Ferramenta Caminho: file:_C:\Users\leopi\OneDrive\Office 2021 HayDadicas\Office 2021 HayDadicas\setup.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Proteção em Tempo Real Usuário: DESKTOP-M6QEOK3\leopi Nome do Processo: C:\Program Files\Microsoft OneDrive\OneDrive.exe Versão da Inteligência de Segurança: AV: 1.353.1409.0, AS: 1.353.1409.0, NIS: 1.353.1409.0 Versão do Mecanismo: AM: 1.1.18700.4, NIS: 1.1.18700.4 Date: 2021-11-22 17:19:53 Description: Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado. Para obter mais informações, veja a seguir: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nome: HackTool:Win32/AutoKMS Gravidade: Alto Categoria: Ferramenta Caminho: file:_C:\Users\leopi\OneDrive\Office 2021 HayDadicas\Office 2021 HayDadicas\setup.exe Origem da Detecção: Computador local Tipo da Detecção: Concreto Fonte da Detecção: Proteção em Tempo Real Usuário: DESKTOP-M6QEOK3\leopi Nome do Processo: C:\Program Files\Microsoft OneDrive\OneDrive.exe Versão da Inteligência de Segurança: AV: 1.353.1409.0, AS: 1.353.1409.0, NIS: 1.353.1409.0 Versão do Mecanismo: AM: 1.1.18700.4, NIS: 1.1.18700.4 Event[0]: Date: 2021-11-24 13:59:07 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Monitoramento do Comportamento Código do Erro: 0x80004005 Descrição do erro: Erro não especificado Motivo: O driver de filtro requer um mecanismo atualizado para funcionar. É necessário instalar as últimas atualizações da inteligência de segurança para habilitar a proteção em tempo real. Date: 2021-11-23 15:57:20 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Monitoramento do Comportamento Código do Erro: 0x80004005 Descrição do erro: Erro não especificado Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema. Date: 2021-11-23 15:57:19 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Monitoramento do Comportamento Código do Erro: 0x80004005 Descrição do erro: Erro não especificado Motivo: A proteção em tempo real parou de funcionar por um motivo desconhecido. Reinicie o serviço para recuperar. CodeIntegrity: =============== Date: 2021-12-02 20:07:34 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bitdefender Antivirus Free\bdamsi\265489687200912704\antimalware_provider64.dll that did not meet the Microsoft signing level requirements. Date: 2021-12-02 20:06:37 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bitdefender Antivirus Free\bdamsi\265489687200912704\antimalware_provider64.dll that did not meet the Windows signing level requirements. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. P5.40 07/09/2019 placa-mãe: ASRock A320M-HD Processador: AMD Ryzen 3 3200G with Radeon Vega Graphics Percentagem de memória em uso: 36% RAM física total: 16312.43 MB RAM física disponível: 10360.5 MB Virtual Total: 18744.43 MB Virtual disponível: 9092.13 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:237.92 GB) (Free:41.06 GB) NTFS Drive d: () (Fixed) (Total:930.88 GB) (Free:139.93 GB) NTFS \\?\Volume{647a01f9-aeb9-49bd-afb0-b0f34356fd90}\ (Recuperação) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS \\?\Volume{497e0231-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS \\?\Volume{497e0231-0000-0000-0000-107e3b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.06 GB) NTFS \\?\Volume{bbcc7e5e-e0db-4f20-ba66-aa59fde73850}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 497E0231) Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=515 MB) - (Type=27) ==================== Fim de Addition.txt =======================