Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 15-08-2022
Executado por Gustavo (18-08-2022 19:35:16)
Executando a partir de C:\Users\Gustavo\Desktop
Microsoft Windows 10 Home Single Language Versão 21H2 19044.1889 (X64) (2022-05-16 12:28:39)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-1313191931-3257093791-2744857122-500 - Administrator - Disabled)
Convidado (S-1-5-21-1313191931-3257093791-2744857122-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1313191931-3257093791-2744857122-503 - Limited - Disabled)
Gustavo (S-1-5-21-1313191931-3257093791-2744857122-1001 - Administrator - Enabled) => C:\Users\Gustavo
WDAGUtilityAccount (S-1-5-21-1313191931-3257093791-2744857122-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000020250}) (Version: 2.1.20250 - Acer)
Acer Jumpstart (HKLM-x32\...\{E3930B59-5669-4BAB-A329-D56C1427C613}) (Version: 3.3.19180.100 - Acer)
Acer Network Optimizer (HKLM-x32\...\{3C8FA4F4-8471-4C60-9002-9B9F78B7B483}) (Version: 4 - Acer)
App Explorer (HKU\S-1-5-19\...\Host App Service) (Version: 0.273.4.157 - SweetLabs) <==== ATENÇÃO
App Explorer (HKU\S-1-5-20\...\Host App Service) (Version: 0.273.4.157 - SweetLabs) <==== ATENÇÃO
App Explorer (HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\Host App Service) (Version: 0.273.4.447 - SweetLabs) <==== ATENÇÃO
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3042 - Acer Incorporated)
Counter Strike Source WaRzOnE (HKLM-x32\...\{3F77C740-D6C8-4BDB-B730-49C8D8BCA9ED}) (Version: 2.0 - Warzone) Hidden
Counter Strike Source WaRzOnE (HKLM-x32\...\Counter Strike Source WaRzOnE 2.0) (Version: 2.0 - Warzone)
Discord (HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Dynamic Application Loader Host Interface Service (HKLM\...\{D492644D-815B-48F6-B079-6E1FE92FCFDE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{4A5076AD-020F-4BCE-B558-47C82911061F}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.81 - Google LLC)
GoTrust ID Plugin 2.0.12.36 (HKLM\...\GoTrust ID Plugin) (Version: 2.0.12.36 - GoTrust ID Inc.)
Intel(R) Chipset Device Software (HKLM\...\{351A0D24-F6F1-4105-AA50-5D2CCC71E0DD}) (Version: 10.1.18019.8144 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{FAAE0394-ABCB-4F37-92BB-D3C13D1E5985}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{EFB39384-98DF-4AF3-BB36-C0FE040ED65C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1946.12.0.1328 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{BBAB3E9C-40B0-4313-AB14-6E9C3EE18E84}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{E39976AA-3238-4B09-9B64-FD91FE76CA69}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{099DEF6A-8427-43D8-A38A-54A097E94C85}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{069F5815-595A-463E-B3BF-84346E949BFD}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.6911 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.5.13.208 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.13.208 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 104.0.1293.54 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 104.0.1293.54 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation)
Microsoft Office Standard 2019 - pt-br (HKLM\...\Standard2019Volume - pt-br) (Version: 16.0.15427.20210 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BACA8ED0-DB44-468A-9D76-7D4588B90D60}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{3FED85F2-4004-4F8A-B65B-DDC1F6013FAA}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.22.27821 (HKLM\...\{6E2C7A8E-B17A-4637-9CE9-F0B1157CF378}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.22.27821 (HKLM\...\{0093C20C-273D-4397-B623-515CB8616CB9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.25.28508 (HKLM-x32\...\{0FA68574-690B-4B00-89AA-B28946231449}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.25.28508 (HKLM-x32\...\{2BC3BD4D-FABA-4394-93C7-9AC82A263FE2}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
MSVCRT Redists (HKLM\...\{76E3BD00-CE55-11EA-B409-00155D43CFCE}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MTA:SA v1.5.9 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.9 - Multi Theft Auto)
NitroSense Service (HKLM\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3016 - Acer Incorporated)
NVIDIA Driver de áudio HD 1.3.39.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.14 - NVIDIA Corporation)
NVIDIA Driver de gráficos 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20148 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3038 - Acer Incorporated)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8929.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Software de dispositivo do Chipset Intel® (HKLM-x32\...\{4551f75f-3c54-4f09-8221-8c8a061bad00}) (Version: 10.1.18019.8144 - Intel(R) Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
User Experience Improvement Program Service (HKLM\...\{323EA05D-046D-449D-9D7C-89243C957CCE}) (Version: 5.00.3010 - Acer Incorporated)
VALORANT (HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
VEGAS Pro 18.0 (HKLM\...\{75111FE1-CE55-11EA-8B12-00155D43CFCE}) (Version: 18.0.284 - VEGAS)
Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)

Packages:
=========
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3030.0_x64__48frkmn4z8aw4 [2021-12-16] (Acer Incorporated)
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.52074.0_x64__8wekyb3d8bbwe [2022-08-15] (Microsoft Corporation)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3042.0_x64__48frkmn4z8aw4 [2022-05-16] (Acer Incorporated)
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-18] (Microsoft Corporation)
Dropbox - promoção -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_22.4.17.0_x64__xbfy0k16fey96 [2022-07-23] (Dropbox Inc.)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2022-03-28] (GoTrustID Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-07-20] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-12-16] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1032.0_x64__8j3eq9eme6ctt [2022-08-15] (INTEL CORP)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1560.21.216.0_x64__8xx8rvfyw5nnt [2022-07-20] (Meta) [Startup Task]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-28] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_52.10801.429.0_x64__8wekyb3d8bbwe [2022-08-12] (Microsoft Corporation)
NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3016.0_x64__48frkmn4z8aw4 [2021-12-13] (Acer Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-08-15] (NVIDIA Corp.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.6428.0_x64__ypz87dpxkv292 [2021-12-13] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2021-12-13] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3038.0_x64__48frkmn4z8aw4 [2022-02-07] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2021-12-16] (Realtek Semiconductor Corp)
User Experience Improvement Program V5 -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgramV_5.0.3010.0_x64__48frkmn4z8aw4 [2021-12-13] (Acer Incorporated)
Waves MaxxAudio For Acer -> C:\Program Files\WindowsApps\WavesAudio.20761030F5EAC_1.0.67.0_x64__fh4rh281wavaa [2021-12-16] (Waves Audio)

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_d5a6e6f281879e92\nvshext.dll [2022-07-28] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\WINDOWS\system32\$Acer$.cmd:48CE61F693 [3442]
AlternateDataStreams: C:\WINDOWS\system32\$Acer$.cmd:6015BCEB7F [3314]
AlternateDataStreams: C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc:169D67954B [3442]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [862]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Jumpstart.lnk:066B8E0935 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Jumpstart.lnk:D65AE47B5F [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk:4C32B9D343 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Planet9 Link.url:A63BF68F5C [3442]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-1313191931-3257093791-2744857122-1001 -> DefaultScope {D3256245-096F-4121-A593-74C1F23EBB0C} URL = 
SearchScopes: HKU\S-1-5-21-1313191931-3257093791-2744857122-1001 -> {D3256245-096F-4121-A593-74C1F23EBB0C} URL = 
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2021-12-13 18:08 - 2021-12-13 18:08 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gustavo\Desktop\forza-horizon-5-1920x1080_947875-mm-90.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

Network Binding:
=============
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1313191931-3257093791-2744857122-1001\...\StartupApproved\Run: => "ut"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{61D5B53A-61C3-4F5B-8823-A4FE54397D9A}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{A0917F8C-739F-4AC9-B3E0-374A06E814BF}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB11D69A-7F07-4908-8D04-1104D591F04B}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{892DD0CA-1A81-465A-88B5-43C056C793C5}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [UDP Query User{23864C66-5BD4-4B1F-95E2-6A385746E7B2}D:\utorrent\farming.simulator.22.antonio.carraro-p2p\farming simulator 22\x64\farmingsimulator2022game.exe] => (Block) D:\utorrent\farming.simulator.22.antonio.carraro-p2p\farming simulator 22\x64\farmingsimulator2022game.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{558C0F0E-B042-4035-A9DC-041249D5179B}D:\utorrent\farming.simulator.22.antonio.carraro-p2p\farming simulator 22\x64\farmingsimulator2022game.exe] => (Block) D:\utorrent\farming.simulator.22.antonio.carraro-p2p\farming simulator 22\x64\farmingsimulator2022game.exe => Nenhum Arquivo
FirewallRules: [{4F297A30-93F6-495B-8487-904DD5B57532}] => (Allow) D:\Tudo\steamapps\common\Stumble Guys\Stumble Guys.exe () [Arquivo não assinado]
FirewallRules: [{1DC5FA63-FF04-45CD-8DC2-F922CDC26111}] => (Allow) D:\Tudo\steamapps\common\Stumble Guys\Stumble Guys.exe () [Arquivo não assinado]
FirewallRules: [{C2CC2F77-F69E-4C19-9129-F5A03EEBE4B2}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{7840C504-A2FA-4D93-94BB-AFC3E63E1B36}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{1611CDB0-E459-43F3-A3F3-9183AD95E0E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{2091F2B4-993C-48A9-BE12-50F522B7620D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{31BD75CD-1D75-4DE6-8211-046B8C3FED64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{039E8598-872E-496F-8EA6-D8149BF88FDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DFEC4787-0B80-4503-A0B0-0304C99A4C01}D:\games\farming simulator 22\x64\farmingsimulator2022game.exe] => (Block) D:\games\farming simulator 22\x64\farmingsimulator2022game.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{ED4A8BD4-1EB8-476A-A8D0-337AFC67F27B}D:\games\farming simulator 22\x64\farmingsimulator2022game.exe] => (Block) D:\games\farming simulator 22\x64\farmingsimulator2022game.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{0E6E739C-30FA-4463-BD67-B8A385EA36B3}D:\tudo\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) D:\tudo\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{46EBF069-CABD-4941-A75D-F5B447F24FDA}D:\tudo\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) D:\tudo\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Nenhum Arquivo
FirewallRules: [{366243B6-400D-458E-A5FC-03D7D0FEF8DB}] => (Allow) C:\Users\Gustavo\AppData\Roaming\uTorrent\uTorrent.exe => Nenhum Arquivo
FirewallRules: [{77AB8132-506B-4BE0-8740-499507BE9DF1}] => (Allow) C:\Users\Gustavo\AppData\Roaming\uTorrent\uTorrent.exe => Nenhum Arquivo
FirewallRules: [{001B15D0-9452-4348-A713-0E220B8478E7}] => (Allow) D:\Tudo\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CEDCFA8B-69D7-45C4-A9D8-B4E702E6ACDF}] => (Allow) D:\Tudo\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{56C67616-E5DE-48B6-BEC7-0ADC27DB5875}C:\program files\rockstar games\gta san andreas\gta_sa.exe] => (Block) C:\program files\rockstar games\gta san andreas\gta_sa.exe () [Arquivo não assinado]
FirewallRules: [TCP Query User{26E0667E-40D6-4731-95B3-89AE816534C6}C:\program files\rockstar games\gta san andreas\gta_sa.exe] => (Block) C:\program files\rockstar games\gta san andreas\gta_sa.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{06F12EE2-DBFC-4AE4-B4D9-0C54E4D58DDD}C:\riot games\riot client\riotclientservices.exe] => (Block) C:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{4724C3FB-7CFF-4ECC-8FA8-6DDDB14D848C}C:\riot games\riot client\riotclientservices.exe] => (Block) C:\riot games\riot client\riotclientservices.exe => Nenhum Arquivo
FirewallRules: [{BF2D4F3C-B268-4908-812B-35D2F2B40F82}] => (Allow) D:\Tudo\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4BA839A6-C046-4997-991C-F783F5F285B9}] => (Allow) D:\Tudo\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{40948A6F-C24E-42BE-8E4B-7144AA87A111}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A8A7D94B-031E-4C89-8043-22BF9239A619}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{603075C5-09FD-45E7-A765-58A76A78850B}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{6F275F60-F383-40E0-A993-E9CD612D0658}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [TCP Query User{63AAA5C6-6F5F-41EC-97FC-60ACD007193C}D:\epic games\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) D:\epic games\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{22FDC69B-64A3-45D0-9C5C-22F62D2CD79A}D:\epic games\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) D:\epic games\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{380060E1-E344-48FD-8D48-11928408821F}D:\games\dayz origins 1.18\dayz_x64.exe] => (Block) D:\games\dayz origins 1.18\dayz_x64.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{3C6C34EE-A0D1-4A1A-BE11-568EB140EAA0}D:\games\dayz origins 1.18\dayz_x64.exe] => (Block) D:\games\dayz origins 1.18\dayz_x64.exe => Nenhum Arquivo
FirewallRules: [{FA86688C-83B0-4D3D-87A4-0BC7791C3279}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{8483E1B8-698C-4081-B5AC-0368AA546168}] => (Allow) D:\Tudo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{5F90C306-B414-4CDE-B1DB-188F710AB064}] => (Allow) D:\Tudo\steamapps\common\Deduction\Deduction.exe () [Arquivo não assinado]
FirewallRules: [{61E7CA31-AF72-467B-A205-62197D534A40}] => (Allow) D:\Tudo\steamapps\common\Deduction\Deduction.exe () [Arquivo não assinado]
FirewallRules: [{977DE82A-2C26-4C3F-A854-30D75F247C17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8DA26EBA-ADA6-4D8E-88E0-8B6586481D5A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B28E5B4-EC22-4F53-9F91-9CCED4E0B213}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{40777D4C-89D6-41BD-96B1-64A0F5843B17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2D496EB9-227B-4465-83AA-1344E92BEE46}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{882F90A3-FFEE-46CD-A605-F11E974A4971}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF9ECF67-5E21-49C5-901A-9FF2760DF614}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2495A775-43DA-4639-917C-27365183E496}] => (Allow) D:\Tudo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{0D115CCF-14FD-4D25-9FB8-ABD92FE87A0B}D:\games\riot games\riot client\riotclientservices.exe] => (Block) D:\games\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{487D648B-0957-40E0-928B-C05565A1DD85}D:\games\riot games\riot client\riotclientservices.exe] => (Block) D:\games\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{F43362B7-5C55-4CA8-9930-01829ABF631A}D:\games\cs source\hl2.exe] => (Block) D:\games\cs source\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{B5C172D5-C832-4FC5-85CD-1D41A2F7F2E9}D:\games\cs source\hl2.exe] => (Block) D:\games\cs source\hl2.exe (Valve -> )
FirewallRules: [{33129633-1DF2-4295-8DEA-00D973FD546E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{D199FFBE-76CC-4A23-9993-C658BC7E1067}D:\games\call of duty modern warfare remastered\h1_sp64_ship.exe] => (Block) D:\games\call of duty modern warfare remastered\h1_sp64_ship.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{6FD51EC5-220B-4C17-92A5-870BDF326FF8}D:\games\call of duty modern warfare remastered\h1_sp64_ship.exe] => (Block) D:\games\call of duty modern warfare remastered\h1_sp64_ship.exe => Nenhum Arquivo
FirewallRules: [{0D046673-7147-46BC-A733-A67BB2C950F0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{71507A2E-6721-4FB4-BC6B-A3D0DD3DF4A6}D:\games\cs source\srcds.exe] => (Allow) D:\games\cs source\srcds.exe () [Arquivo não assinado]
FirewallRules: [UDP Query User{CE882450-5992-4901-B1B2-D2A8740D056D}D:\games\cs source\srcds.exe] => (Allow) D:\games\cs source\srcds.exe () [Arquivo não assinado]
FirewallRules: [TCP Query User{52B1A225-06F8-493E-8091-DF8E01183675}C:\users\gustavo\appdata\local\discord\app-1.0.9006\discord.exe] => (Block) C:\users\gustavo\appdata\local\discord\app-1.0.9006\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{DA5D2C29-090B-4463-BDEB-A055E3AD0320}C:\users\gustavo\appdata\local\discord\app-1.0.9006\discord.exe] => (Block) C:\users\gustavo\appdata\local\discord\app-1.0.9006\discord.exe (Discord Inc. -> Discord Inc.)

==================== Pontos de Restauração =========================

ATENÇÃO: A Restauração do Sistema está desabilitada (Total:118.12 GB) (Free:43.13 GB) (37%)

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (08/17/2022 04:50:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: AppMonitorPlugIn.exe, versão: 5.0.3010.0, carimbo de data/hora: 0x5fb52a6c
Nome do módulo com falha: AppMonitorPlugIn.exe, versão: 5.0.3010.0, carimbo de data/hora: 0x5fb52a6c
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000005203
ID do processo com falha: 0x1690
Hora de início do aplicativo com falha: 0x01d8b25757df4e36
Caminho do aplicativo com falha: C:\Program Files\Acer\User Experience Improvement Program Service\Plugin\AppMonitor\AppMonitorPlugIn.exe
Caminho do módulo com falha: C:\Program Files\Acer\User Experience Improvement Program Service\Plugin\AppMonitor\AppMonitorPlugIn.exe
ID do Relatório: cf091837-0d9b-4498-b7b4-d17c6f0bccea
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (08/15/2022 07:23:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa srcds.exe versão 0.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 7ec

Hora de Início: 01d8b0f5960ec205

Hora de Término: 3

Caminho do Aplicativo: D:\Games\CS Source\srcds.exe

ID do Relatório: 9e408084-f6f4-4454-8df3-fc18a991a4f1

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (08/15/2022 07:18:55 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-3N1VM6QM)
Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status.

Error: (08/15/2022 06:39:04 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-3N1VM6QM)
Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status.

Error: (08/15/2022 06:30:41 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-3N1VM6QM)
Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status.

Error: (08/13/2022 08:32:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vgtray.exe, versão: 1.12.0.126, carimbo de data/hora: 0x62d5d356
Nome do módulo com falha: vgtray.exe, versão: 1.12.0.126, carimbo de data/hora: 0x62d5d356
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000721e4
ID do processo com falha: 0x2e78
Hora de início do aplicativo com falha: 0x01d8af6c69a3c2a4
Caminho do aplicativo com falha: C:\Program Files\Riot Vanguard\vgtray.exe
Caminho do módulo com falha: C:\Program Files\Riot Vanguard\vgtray.exe
ID do Relatório: 6f27b302-9183-421a-95a8-949259619d35
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (08/13/2022 08:30:03 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-3N1VM6QM)
Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status.

Error: (08/13/2022 08:26:01 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-3N1VM6QM)
Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status.


Erros de Sistema:
=============
Error: (08/15/2022 07:19:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200b: NVIDIA - Display - 27.21.14.5167.

Error: (08/15/2022 07:18:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço NVIDIA LocalSystem Container foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 6000 milissegundos: Reiniciar o serviço.

Error: (08/15/2022 07:18:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço NVIDIA LocalSystem Container terminou com o erro: 
Um executável de comando genérico retornou um resultado que indica falha.

Error: (08/15/2022 06:40:51 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: O computador foi reinicializado após uma verificação de erro. Essa verificação foi: 0x00000162 (0xffffd785b5482080, 0xffffd785b6028870, 0x00000000ffffffff, 0x0000000000000000). Um despejo de memória foi salvo em: C:\WINDOWS\MEMORY.DMP. Id de Relatório: ed7393cb-5be7-4a5f-a0a0-978515849cdb.

Error: (08/15/2022 06:40:46 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 18:22:11 do dia ‎15/‎08/‎2022 não era esperado.

Error: (08/15/2022 06:22:11 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 16:16:34 do dia ‎15/‎08/‎2022 não era esperado.

Error: (08/15/2022 04:16:34 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 16:06:23 do dia ‎15/‎08/‎2022 não era esperado.

Error: (08/15/2022 04:02:08 PM) (Source: Schannel) (EventID: 4103) (User: AUTORIDADE NT)
Description: Erro fatal ao criar uma credencial TLS cliente. O estado do erro interno é 10013.


Windows Defender:
================
Date: 2022-08-17 17:27:55
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {8DB267B2-4EEC-4C44-AE8D-84AA1CA4A262}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-08-12 18:38:14
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {CB41516F-9897-4AA5-9229-0C2A8D91BE07}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-08-10 16:09:38
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {6965FB19-0C06-4288-AF25-4317DBB075B4}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-08-08 20:32:42
Description: 
Microsoft Defender Antivírus detectou malware ou outro software potencialmente indesejado.
Para obter mais informações, veja a seguir:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Raccoon.RE!MTB&threatid=2147828046&enterprise=0
Nome: Trojan:Win32/Raccoon.RE!MTB
Gravidade: Grave
Categoria: Cavalo de Tróia
Caminho: process:_pid:2552,ProcessStart:133044751602370407
Origem da Detecção: Desconhecido
Tipo da Detecção: Concreto
Fonte da Detecção: Sistema
Usuário: AUTORIDADE NT\SISTEMA
Nome do Processo: C:\Users\Gustavo\AppData\Local\Temp\Rar$EXb10000.21134\Setup.exe
Versão da Inteligência de Segurança: AV: 1.371.1673.0, AS: 1.371.1673.0, NIS: 1.371.1673.0
Versão do Mecanismo: AM: 1.1.19500.2, NIS: 1.1.19500.2

Date: 2022-08-07 17:50:36
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {B807B8FD-44B7-4D9B-9B3E-B40AF5CAA6B0}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
﻿
CodeIntegrity:
===============
Date: 2022-08-18 19:35:04
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória =========================== 

BIOS: Insyde Corp. V1.33 11/17/2020
placa-mãe: CFL Octavia_CFS
Processador: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Percentagem de memória em uso: 62%
RAM física total: 8029.05 MB
RAM física disponível: 2998.96 MB
Virtual Total: 15197.05 MB
Virtual disponível: 8722.6 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:118.12 GB) (Free:43.13 GB) (Model: IM2P33F8BR1-128GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:759 GB) (Model: WDC WD10SPZX-21Z10T0) NTFS

\\?\Volume{16be7b4b-642b-4fd4-a802-f55a18e191d2}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.54 GB) NTFS
\\?\Volume{37643d2d-6101-40ac-8154-600eb2696b0d}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Tabela de Partições ====================

==================== Fim de Addition.txt =======================