Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 11-12-2021 Executado por yago_ (15-12-2021 20:05:41) Executando a partir de C:\Users\yago_\OneDrive\Área de Trabalho Microsoft Windows 10 Pro Versão 20H2 19042.1415 (X64) (2021-05-13 01:54:12) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-1801482918-3813425490-1695444078-500 - Administrator - Disabled) Convidado (S-1-5-21-1801482918-3813425490-1695444078-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1801482918-3813425490-1695444078-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1801482918-3813425490-1695444078-504 - Limited - Disabled) yago_ (S-1-5-21-1801482918-3813425490-1695444078-1001 - Administrator - Enabled) => C:\Users\yago_ ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.6.2.1818 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.8.2 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) Blitz (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.16.10 - Blitz, Inc.) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.3.70.1004 - BlueStack Systems, Inc.) Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden Discord (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Discord) (Version: 1.0.9001 - Discord Inc.) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) FiveM (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC) Grand Line Adventures versão 1.0 (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\{4747C5CD-6350-4CBC-8DE4-56E1FFE07CC0}_is1) (Version: 1.0 - Grand Line Adventures) League of Legends (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) League of Legends PBE (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Riot Game league_of_legends.pbe) (Version: - Riot Games, Inc) Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProjectPro2019Volume - pt-br) (Version: 16.0.14701.20226 - Microsoft Corporation) Microsoft Office Standard 2019 - pt-br (HKLM\...\Standard2019Volume - pt-br) (Version: 16.0.14701.20226 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Teams) (Version: 1.4.00.31569 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visio Professional 2019 - pt-br (HKLM\...\VisioPro2019Volume - pt-br) (Version: 16.0.14701.20226 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MSI Afterburner 4.6.4 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 3 - MSI Co., LTD) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.102.48654 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{5a9bf80d-f8c0-49bc-86e6-1e9c962061fa}) (Version: latest - ppy Pty Ltd) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) RivaTuner Statistics Server 7.3.2 Beta 2 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 2 - Unwinder) RyzenMasterSDK (HKLM\...\{17BE94CF-FF53-4C12-81F5-E10EB6844849}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden Spotify (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Spotify) (Version: 1.1.74.631.g0b24d9ad - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) VALORANT (HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation) WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH) Packages: ========= Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-13] (Microsoft Studios) [MS Ad] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.175.0_x64__dt26b99r8h8gj [2021-05-12] (Realtek Semiconductor Corp) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1801482918-3813425490-1695444078-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\yago_\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21229.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-05-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-09-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-05-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Arquivo não assinado] ==================== Atalhos & WMI ======================== ==================== Módulos Carregados (Whitelisted) ============= 2021-11-26 17:20 - 2021-12-15 19:09 - 000415232 _____ () [Arquivo não assinado] \\?\C:\Users\yago_\AppData\Local\Programs\Blitz\resources\app.asar.unpacked\node_modules\leveldown\prebuilds\win32-ia32\node.napi.node 2021-03-09 19:47 - 2021-03-09 19:47 - 000017920 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 003567616 _____ () [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2020-03-19 06:40 - 2020-03-19 06:40 - 000912896 _____ () [Arquivo não assinado] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-core.dll 2020-03-19 06:40 - 2020-03-19 06:40 - 003109888 _____ () [Arquivo não assinado] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-s3.dll 2021-11-26 17:20 - 2021-12-15 19:09 - 002566656 _____ () [Arquivo não assinado] C:\Users\yago_\AppData\Local\Programs\Blitz\ffmpeg.dll 2021-11-26 17:20 - 2021-12-15 19:09 - 000357888 _____ () [Arquivo não assinado] C:\Users\yago_\AppData\Local\Programs\Blitz\libegl.dll 2021-11-26 17:20 - 2021-12-15 19:09 - 006827520 _____ () [Arquivo não assinado] C:\Users\yago_\AppData\Local\Programs\Blitz\libglesv2.dll 2021-05-13 14:06 - 2021-05-13 12:37 - 839683584 _____ () [Arquivo não assinado] C:\Users\yago_\AppData\Local\Temp\MsCtfMonitor.DLL 2021-07-07 06:37 - 2021-07-07 06:37 - 000562688 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Device.dll 2021-07-07 06:37 - 2021-07-07 06:37 - 000058880 _____ (Advanced Micro Devices) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Platform.dll 2021-08-24 18:38 - 2021-08-24 18:38 - 001704960 _____ (Advanced Micro Devices, Inc.) [Arquivo não assinado] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll 2021-06-03 18:37 - 2021-06-03 18:37 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-06-03 18:37 - 2021-06-03 18:37 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll 2021-06-03 18:37 - 2021-06-03 18:37 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-08-03 19:40 - 2021-06-03 18:37 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000057856 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000039424 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000031744 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000414720 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000025088 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000024576 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000023552 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000532992 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 001441792 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 001189888 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000134656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 006184448 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 006867456 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000735232 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000120832 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 001104896 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000325120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 003668480 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000517120 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000051712 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 004228608 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000171008 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 001085440 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000480256 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000205824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000329728 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000127488 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000390656 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 095598080 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 005587968 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000462848 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000188928 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 002878464 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000055808 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000059392 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000262144 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000284160 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000333824 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000136704 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000090112 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000313856 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000017920 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2021-03-09 19:47 - 2021-03-09 19:47 - 000091648 _____ (The Qt Company Ltd.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Modo de Segurança (Whitelisted) ================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-04] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\yago_\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\girl_twilight_clouds_156445_1920x1080.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKU\S-1-5-21-1801482918-3813425490-1695444078-1001\...\StartupApproved\Run: => "OneDrive" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [TCP Query User{72DFDC20-1725-404C-A28D-667B34DE8DE8}C:\users\yago_\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\yago_\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{6ED5163C-C2DD-42D1-8529-4449048EF966}C:\users\yago_\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\yago_\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{99C1DF6B-819B-4970-AE66-E268A3EA4717}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{4B551F8B-B574-45F1-9996-C9547B1204F1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{A608FED8-0C5F-4C5E-8249-5D70461B0F8D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{E70CA330-D78F-49A6-8E18-E7E6F649B7C2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{7F0BE16E-1DBB-4D94-952D-298676D5C776}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{93362CBE-5FFF-422A-81B8-BDC6500A6BB9}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{3E9A3D69-7018-4A84-99B3-AB6249C0C5D7}] => (Allow) E:\Program Files\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{2DB192BA-6AEC-47CD-BEF1-9C3720B6EB26}] => (Allow) E:\Program Files\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{84FC4722-6BFC-4DB7-BE55-17B8649D9E47}] => (Allow) E:\Program Files\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{FC3192E6-7F7C-45C5-80FD-A637665C0086}] => (Allow) E:\Program Files\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{A88351FB-2198-45C7-AF21-7CDDB4A3E519}E:\program files\battlefield 4\bf4.exe] => (Block) E:\program files\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [UDP Query User{0F8F7A24-F12D-4E4E-A25A-271E0E490FAD}E:\program files\battlefield 4\bf4.exe] => (Block) E:\program files\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{3BBB0F41-D9C7-472F-BF29-9A1E73300B8F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{270A6E8A-AFA1-4806-B571-353BC13372B1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{22D4A976-CE2C-4503-9525-CBAD5AEEAF9F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{30A82710-2863-4CE6-887C-1C376131E13A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{B3F16009-E5CE-4BA1-B527-D7C0B78CB877}C:\users\yago_\appdata\local\programs\blitz\blitz.exe] => (Block) C:\users\yago_\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [UDP Query User{7F1B9133-6A7D-40E4-B218-E9257F8E4CC0}C:\users\yago_\appdata\local\programs\blitz\blitz.exe] => (Block) C:\users\yago_\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [TCP Query User{6292D2EF-B1DE-4763-A4BB-85EEBC4ADF7D}E:\riot games\riot client\riotclientservices.exe] => (Block) E:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{70CAF9C2-F48D-47EF-985F-6D0ECF2C9479}E:\riot games\riot client\riotclientservices.exe] => (Block) E:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{FA469846-91F3-4D34-9C2D-8A4F2F591DC1}C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{6CFEE346-F5C2-4E3A-83A6-29B639A62130}C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{52B84B70-F013-4645-A32A-F42598381F16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Arquivo não assinado] FirewallRules: [{1FD8123E-01A6-418E-B5D0-95530347951A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Arquivo não assinado] FirewallRules: [{B39D1296-6C65-469B-B08E-DAD7D601112F}] => (Allow) E:\Program Files\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{1F4D095E-B5BF-438F-8C15-B91AED6C1ADB}] => (Allow) E:\Program Files\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{918CC77D-004E-4EB8-8F69-FB9CA5469E9D}] => (Allow) E:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{F0E9AC5B-9A1A-4D65-958F-4CC5AE6464C6}] => (Allow) E:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [TCP Query User{63F16A82-BDC7-4639-84FD-2D069404D07F}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{99DF36F2-24DA-4B92-A09E-C68BDA131545}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{1058CA67-A580-43CA-80C4-7317106C41B0}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{2A157229-F787-42D4-A1BD-25BABB1F21C3}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{062BF4AC-7142-41EA-8212-1A62B0622596}C:\users\yago_\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yago_\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{337C53DE-BF7E-4CC7-BFA5-0E64CA30A050}C:\users\yago_\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yago_\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{BA7D454A-5045-4268-9850-AF6E164C85CF}C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{CB18A3D9-E4A0-4451-BA06-EF68067446B8}C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\yago_\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{F7E73AD2-DDED-4FF8-86F0-CE687E85896E}E:\riot games\riot client\riotclientservices.exe] => (Block) E:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{573ED4ED-0AE4-425D-8F08-A7876B0FB2A0}E:\riot games\riot client\riotclientservices.exe] => (Block) E:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{8A87517E-E952-47B0-BAA6-0F4CCBF09F15}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Bluestack Systems, Inc -> BlueStack Systems) FirewallRules: [{DBD22FCE-C4B8-41F5-9AF5-B1FB0118BDC2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{4C763FA3-67FF-4860-B39A-D242DB9CAB62}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{9E2ACA4A-85DA-42D6-9AF1-1CA930819D88}C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Block) C:\users\yago_\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{2288FE9E-95CC-4571-B87D-81F449AFF8A4}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Block) C:\program files (x86)\soundwire server\soundwireserver.exe => Nenhum Arquivo FirewallRules: [UDP Query User{6224E187-B75F-425D-A968-A186994FD00A}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Block) C:\program files (x86)\soundwire server\soundwireserver.exe => Nenhum Arquivo FirewallRules: [{40B83F74-119C-48C1-BA5D-D5D03DDA77D2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B9ED1788-3420-4B42-9C11-FD388D44E862}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{41056739-2A97-4144-A92D-96298E823E0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{98A4392D-38F1-4E99-8BC5-3CC27AE4F0AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{550E0A74-CBAE-4BE8-9C5D-3D828789614B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Pontos de Restauração ========================= ATENÇÃO: A Restauração do Sistema está desabilitada (Total:111.16 GB) (Free:30.3 GB) (27%) ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (12/15/2021 08:06:01 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: A Central de Segurança não validou o chamador com o erro %1. Error: (12/15/2021 08:05:01 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: A Central de Segurança não validou o chamador com o erro %1. Error: (12/15/2021 08:04:33 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Error: (12/15/2021 08:04:28 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Error: (12/15/2021 08:04:23 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Error: (12/15/2021 08:04:18 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Error: (12/15/2021 08:04:13 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Error: (12/15/2021 08:04:08 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erro ao atualizar o status para SECURITY_PRODUCT_STATE_ON. Erros de Sistema: ============= Error: (12/15/2021 07:08:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço AMDRyzenMasterDriverV17 devido ao seguinte erro: Não é possível criar um arquivo já existente. Error: (12/15/2021 07:08:06 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: C:\Device\HarddiskVolume43 Error: (12/15/2021 09:21:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço AMDRyzenMasterDriverV17 devido ao seguinte erro: Não é possível criar um arquivo já existente. Error: (12/15/2021 09:21:22 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: C:\Device\HarddiskVolume43 Error: (12/15/2021 09:21:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço AppXSvc depende do serviço StateRepository, mas não foi possível iniciá-lo devido ao seguinte erro: A operação foi concluída com êxito. Error: (12/15/2021 09:21:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Audiosrv devido ao seguinte erro: Não foi possível iniciar o serviço devido a uma falha de logon. Error: (12/15/2021 09:21:02 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: O serviço Audiosrv não pôde fazer logon como NT AUTHORITY\LocalService com a senha configurada atualmente devido ao seguinte erro: Não há suporte para o pedido. Para verificar se o serviço está configurado corretamente, use o snap-in de Serviços do Console de Gerenciamento Microsoft. Error: (12/15/2021 09:20:02 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: C:\Device\HarddiskVolume43 Windows Defender: ================ Date: 2021-12-15 19:09:44 Description: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe foi impedido de modificar %userprofile%\Videos pelo Acesso Controlado a Pastas. Hora da detecção: 2021-12-15T22:09:44.778Z Usuário: DESKTOP-ABPT85V\yago_ Caminho: %userprofile%\Videos Nome do Processo: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe Versão da Inteligência de Segurança: 1.355.292.0 Versão do Mecanismo: 1.1.18800.4 Versão do Produto: 4.18.2110.6 Date: 2021-12-15 19:09:04 Description: C:\Users\yago_\AppData\Roaming\Spotify\Spotify.exe foi impedido de modificar %userprofile%\Music pelo Acesso Controlado a Pastas. Hora da detecção: 2021-12-15T22:09:04.623Z Usuário: DESKTOP-ABPT85V\yago_ Caminho: %userprofile%\Music Nome do Processo: C:\Users\yago_\AppData\Roaming\Spotify\Spotify.exe Versão da Inteligência de Segurança: 1.355.292.0 Versão do Mecanismo: 1.1.18800.4 Versão do Produto: 4.18.2110.6 Date: 2021-12-15 09:23:05 Description: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe foi impedido de modificar %userprofile%\Videos pelo Acesso Controlado a Pastas. Hora da detecção: 2021-12-15T12:23:05.142Z Usuário: DESKTOP-ABPT85V\yago_ Caminho: %userprofile%\Videos Nome do Processo: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe Versão da Inteligência de Segurança: 1.355.292.0 Versão do Mecanismo: 1.1.18800.4 Versão do Produto: 4.18.2110.6 Date: 2021-12-15 01:23:54 Description: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe foi impedido de modificar %userprofile%\Videos pelo Acesso Controlado a Pastas. Hora da detecção: 2021-12-15T04:23:54.675Z Usuário: DESKTOP-ABPT85V\yago_ Caminho: %userprofile%\Videos Nome do Processo: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe Versão da Inteligência de Segurança: 1.355.273.0 Versão do Mecanismo: 1.1.18800.4 Versão do Produto: 4.18.2110.6 Date: 2021-12-15 01:23:42 Description: C:\Users\yago_\AppData\Roaming\Spotify\Spotify.exe foi impedido de modificar %userprofile%\Music pelo Acesso Controlado a Pastas. Hora da detecção: 2021-12-15T04:23:42.892Z Usuário: DESKTOP-ABPT85V\yago_ Caminho: %userprofile%\Music Nome do Processo: C:\Users\yago_\AppData\Roaming\Spotify\Spotify.exe Versão da Inteligência de Segurança: 1.355.273.0 Versão do Mecanismo: 1.1.18800.4 Versão do Produto: 4.18.2110.6 Event[0]: Date: 2021-12-14 11:20:44 Description: Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança. Nova Versão da Inteligência de Segurança: Versão da Inteligência de Segurança anterior: 1.355.242.0 Fonte da Atualização: Servidor do Microsoft Update Tipo da Inteligência de Segurança: Antivírus Tipo da atualização: Completa Usuário: AUTORIDADE NT\SISTEMA Versão Atual do Mecanismo: Versão Anterior do Mecanismo: 1.1.18800.4 Código de Erro: 0x8024001e Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. F30 04/16/2019 placa-mãe: Gigabyte Technology Co., Ltd. AB350M-DS3H V2-CF Processador: AMD Ryzen 5 1600 Six-Core Processor Percentagem de memória em uso: 73% RAM física total: 8140.48 MB RAM física disponível: 2120.9 MB Virtual Total: 15564.48 MB Virtual disponível: 6145.01 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.16 GB) (Free:30.3 GB) NTFS Drive d: (Reservado pelo Sistema) (Fixed) (Total:0.34 GB) (Free:0.11 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)] Drive e: () (Fixed) (Total:915.66 GB) (Free:696.93 GB) NTFS \\?\Volume{516b3171-3160-4abc-bb18-58a33fdf1b2b}\ (Recuperação) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS \\?\Volume{f6b30952-1713-409c-8b98-7d22ab6dc44a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Size: 111.8 GB) (Disk ID: 6D0F8BF7) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F87AD1D1) Partition 1: (Not Active) - (Size=518 MB) - (Type=82) Partition 2: (Not Active) - (Size=15 GB) - (Type=83) Partition 3: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=915.7 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt =======================