Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 27-10-2022 Executado por FELIPE (27-10-2022 11:12:44) Executando a partir de C:\Users\FELIPE\Desktop Microsoft Windows 10 Pro Versão 21H1 19043.2130 (X64) (2020-09-26 15:30:40) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-4080567834-197202263-3443209586-500 - Administrator - Disabled) Convidado (S-1-5-21-4080567834-197202263-3443209586-501 - Limited - Disabled) DefaultAccount (S-1-5-21-4080567834-197202263-3443209586-503 - Limited - Disabled) FELIPE (S-1-5-21-4080567834-197202263-3443209586-1001 - Administrator - Enabled) => C:\Users\FELIPE joaog (S-1-5-21-4080567834-197202263-3443209586-1002 - Administrator - Enabled) => C:\Users\joaog WDAGUtilityAccount (S-1-5-21-4080567834-197202263-3443209586-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\uTorrent) (Version: 3.5.5.46348 - BitTorrent Inc.) µTorrent (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\uTorrent) (Version: 3.5.5.45852 - BitTorrent Inc.) Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_0) (Version: 26.0 - Adobe Inc.) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.) Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_3) (Version: 14.3 - Adobe Inc.) AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.30.28 - Advanced Micro Devices, Inc.) Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos) AWS Command Line Interface v2 (HKLM\...\{10284DC5-6FD0-44BE-A30D-C559A33EE848}) (Version: 2.7.34.0 - Amazon Web Services) Balanced (HKLM-x32\...\{24819F88-1B0B-4808-9982-5DC9C4AC7FA6}) (Version: 5.00.0000 - Advanced Micro Devices, Inc.) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Binance 1.27.0 (HKLM\...\Binance) (Version: 1.27.0 - BinanceTech) Blitz (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.17.38 - Blitz, Inc.) Chrome Remote Desktop Host (HKLM-x32\...\{FB790501-58A7-4D35-AC8D-9B1F03645910}) (Version: 107.0.5304.19 - Google LLC) Combin Scheduler (HKLM\...\{8FA70DF2-C024-40FB-9852-998BE8E78FBD}) (Version: 1.8.0.901 - Open Media LLC) Hidden Combin Scheduler (HKLM-x32\...\{f03954ef-d36f-4841-b312-740e787f1070}) (Version: 1.7.5.892 - Open Media LLC) CPUID CPU-Z 1.96 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.96 - CPUID, Inc.) Crucial Storage Executive (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Crucial Storage Executive 8.03.032022.04) (Version: 8.03.032022.04 - Crucial) CurseForge (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.195.2.1 - Overwolf app) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1744 - Disc Soft Ltd) Discord (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Discord (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\Discord) (Version: 0.0.309 - Discord Inc.) Docker Desktop (HKLM\...\Docker Desktop) (Version: 4.8.2 - Docker Inc.) DriverHub (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\DriverHub) (Version: 1.1.2.1563 - Rostpay ltd.) DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.4.3 - DEV47APPS) Epic Games Launcher (HKLM-x32\...\{CE693CEF-8D22-445C-BC66-C9B0C2FF12EC}) (Version: 1.1.267.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.) Ferramentas de Build do Visual Studio 2017 (HKLM-x32\...\ae7c58c1) (Version: 15.9.28307.1342 - Microsoft Corporation) FiveM (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\CitizenFX_FiveM) (Version: - Cfx.re) FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time) Gamers Club AC Launcher 3.1.56 (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\79ac4417-2a6e-5545-a41f-fb03b7abc70c) (Version: 3.1.56 - EMAC LAB LTDA) Gamers Club Anti-Cheat 3.1.18 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\5336d6e5-cfd5-580d-976b-0c07db708c28) (Version: 3.1.18 - Gamers Club Engeneering) Gamers Club Anti-Cheat 3.1.18 (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\5336d6e5-cfd5-580d-976b-0c07db708c28) (Version: 3.1.18 - Gamers Club Engeneering) Git (HKLM\...\Git_is1) (Version: 2.35.1.2 - The Git Development Community) GitHub Desktop (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\GitHubDesktop) (Version: 3.1.2 - GitHub, Inc.) God of War (HKLM-x32\...\FLT_GodOfWar) (Version: - ) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.119 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 65.0.4.0 - Google LLC) H2 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\H2) (Version: - ) HadesOT version 12.9 (HKLM-x32\...\{DA181CD1-0195-4C61-9D67-08A21F6D5A52}_is1) (Version: 12.9 - HadesOT Team) IntelliJ IDEA Community Edition 2022.1 (HKLM-x32\...\IntelliJ IDEA Community Edition 2022.1) (Version: 221.5080.210 - JetBrains s.r.o.) Java 8 Update 333 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180333F0}) (Version: 8.0.3330.2 - Oracle Corporation) Java(TM) SE Development Kit 17.0.3 (64-bit) (HKLM\...\{05A143A7-E923-580E-8FF9-D6D9679FEE40}) (Version: 17.0.3.0 - Oracle Corporation) Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden Kodi (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Kodi) (Version: 19.1.0.0 - XBMC Foundation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) League of Legends (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.9.315009 - Logitech) LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Macro Recorder 5.8.0 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.8.0 - Jitbit Software) Malwarebytes version 4.5.16.217 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.16.217 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Mi PC Suite (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\MiPhoneManager) (Version: - Xiaomi Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.52 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{B71DA3AB-24EC-9E95-A79B-7B5F92B0CEDD}) (Version: 10.1.22621.1846 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.15629.20208 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\OneDriveSetup.exe) (Version: 22.207.1002.0003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\OneDriveSetup.exe) (Version: 22.151.0717.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2017 X64 Debug Runtime - 14.16.27033 (HKLM\...\{FBB6370A-2B31-4E7F-9046-FEC401A98F12}) (Version: 14.16.27033 - Microsoft Corporation) Hidden Microsoft Visual C++ 2017 X86 Debug Runtime - 14.16.27033 (HKLM-x32\...\{54E71599-88E8-4A50-8435-BE40755DB005}) (Version: 14.16.27033 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29914 (HKLM\...\{5A23DBE2-A05C-4A9C-9C17-EA88BF5D7B43}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29914 (HKLM\...\{455DF12C-7D43-4EFF-AE2F-43C8AF2817A3}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29913 (HKLM-x32\...\{572DCD10-CF2E-43D1-8151-8BD9AC9086D0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29913 (HKLM-x32\...\{6236EBBD-F50F-40B3-B819-8DB0C608308C}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.72.2 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.52.1 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.8.3077.1211 - Microsoft Corporation) Microsoft Visual Studio Setup Configuration (HKLM-x32\...\{CBD54374-141A-4C71-AE46-3870CC7F0838}) (Version: 2.7.3111.17308 - Microsoft Corporation) Hidden Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{E5629267-C38E-4899-931E-A734A1499223}) (Version: 2.7.3111.17308 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Mir4Global Launcher (HKLM-x32\...\Mir4Launcher) (Version: 12 - Wemade) Mortal Kombat 11 (HKLM-x32\...\Mortal Kombat 11_is1) (Version: - ) Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 100.0 (x64 pt-BR)) (Version: 100.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 75.0 - Mozilla) MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden MySQL Connector C++ 8.0 (HKLM\...\{A1E54191-B9E1-4158-A542-C4EE988A042F}) (Version: 8.0.30 - Oracle Corporation) MySQL Connector J (HKLM-x32\...\{0F825DE0-A8C8-493A-ACFA-FF56140D123B}) (Version: 8.0.30 - Oracle Corporation) MySQL Connector Net 8.0.30 (HKLM-x32\...\{E9DD761C-E0F3-487F-8481-D58674F95E7B}) (Version: 8.0.30 - Oracle) MySQL Connector Python v8.0.30 (HKLM\...\{B0C6B0AF-A679-4505-A816-05586019875F}) (Version: 8.0.30 - Oracle) MySQL Connector/ODBC 8.0 (HKLM\...\{A02F5AD7-2744-4911-A102-8253913CA59C}) (Version: 8.0.30 - Oracle Corporation) MySQL Documents 8.0 (HKLM-x32\...\{E5987E40-E1B8-4860-A0D6-517C41129617}) (Version: 8.0.30 - Oracle Corporation) MySQL Examples and Samples 8.0 (HKLM-x32\...\{C2996514-26FA-4006-8F43-91DE5C2320DC}) (Version: 8.0.30 - Oracle Corporation) MySQL Installer - Community (HKLM-x32\...\{62C1F379-51CB-4A25-9796-B50ADC6D8AA2}) (Version: 1.6.3.0 - Oracle Corporation) MySQL Router 8.0 (HKLM\...\{95CA9F7A-6FB8-4E19-95B1-1B2E0867B920}) (Version: 8.0.30 - Oracle Corporation) MySQL Server 8.0 (HKLM\...\{3E2EADC8-1B8E-4960-B21E-875199962D53}) (Version: 8.0.30 - Oracle Corporation) MySQL Shell 8.0.30 (HKLM\...\{581BE6D8-FA87-4C3F-BAD8-253680BEE5A3}) (Version: 8.0.30 - Oracle and/or its affiliates) MySQL Workbench 8.0 CE (HKLM\...\{C13035ED-BCB9-4824-A12D-269A7F8D182D}) (Version: 8.0.30 - Oracle Corporation) Node.js (HKLM\...\{FC8E0A42-D5A9-4AF2-A961-4EAC6C9605A0}) (Version: 16.16.0 - Node.js Foundation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.7 - Notepad++ Team) NVIDIA Driver de gráficos 512.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.15 - NVIDIA Corporation) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project) OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20156 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden OldBot PRO (HKLM-x32\...\{8FA48322-9AE9-42DF-8EDC-27768BE841B7}) (Version: 14.8.0 - OldBot) Hidden OldBot PRO (HKLM-x32\...\OldBot PRO 14.8.0) (Version: 14.8.0 - OldBot) OpenDNS Updater 2.2.1 (HKLM-x32\...\OpenDNS Updater) (Version: 2.2.1 - ) Opera GX Stable 91.0.4516.95 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Opera GX 91.0.4516.95) (Version: 91.0.4516.95 - Opera Software) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.204.2.2 - Overwolf Ltd.) Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) PagoderaOT versão 1.0 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\{175A2FA9-0B3B-4BAF-9341-A165D1579789}_is1) (Version: 1.0 - Pagodera) Paradox Launcher v2 (HKLM\...\{986898D9-7C26-4E7F-814C-9B5472FA3209}) (Version: 2.0.0.0 - Paradox Interactive) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) PostgreSQL 14 (HKLM\...\PostgreSQL 14) (Version: 14 - PostgreSQL Global Development Group) Postman x86_64 9.31.0 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Postman) (Version: 9.31.0 - Postman) PS3 Game Updates (HKLM-x32\...\PS3 Game Updates) (Version: - ) PuTTY release 0.76 (64-bit) (HKLM\...\{1E0D5689-40F1-4E46-ABBB-EAAC68B5CD89}) (Version: 0.76.0.0 - Simon Tatham) Python 3.9.13 (64-bit) (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\{f599560c-4808-4daa-85d8-15f363099f67}) (Version: 3.9.13150.0 - Python Software Foundation) Python 3.9.13 Add to Path (64-bit) (HKLM\...\{C1301BD6-81EE-4720-9981-EC2FD10AE9E2}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Core Interpreter (64-bit) (HKLM\...\{D7536B55-7339-436F-A2B3-8B8C0240DF32}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Development Libraries (64-bit) (HKLM\...\{A621340A-3F22-40D3-9CCD-50B048EBB48E}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Documentation (64-bit) (HKLM\...\{1FB094A5-7604-4C0F-A1FB-EAB7ED730DE2}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Executables (64-bit) (HKLM\...\{D497CDAE-43AC-4397-A1C6-B66A7A8F8010}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 pip Bootstrap (64-bit) (HKLM\...\{72964D30-1BFE-459F-B218-D267EBE0D5B2}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Standard Library (64-bit) (HKLM\...\{90A30DAB-6FD8-4CF8-BB8B-C0DB21C69F20}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Tcl/Tk Support (64-bit) (HKLM\...\{E7233E87-1712-40E0-8207-17C8D0157FCC}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Test Suite (64-bit) (HKLM\...\{7491B488-F171-4A97-935A-9098E7CE2A26}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Utility Scripts (64-bit) (HKLM\...\{618E9DD0-9212-486C-AB4A-023ACAB7CD36}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{1A8286E4-2F70-4165-B2BF-CC6B49664005}) (Version: 3.9.7806.0 - Python Software Foundation) Radmin Viewer 3.5.2 (HKLM-x32\...\{9F9073EA-5DCE-4B23-8A0C-C7D2C89AEADC}) (Version: 3.52.1.0000 - Famatech) Radmin VPN 1.2.1 (HKLM-x32\...\{CFECFDA8-C418-49E2-83ED-B3E62A8B08E4}) (Version: 1.2.4457 - Famatech) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.) Regram Later with Smart Caption (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\a7af2b9263191f5a1c65ade7befa98f0) (Version: 1.0 - Google\Chrome) Roblox Player for joaog (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for joaog (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\roblox-studio) (Version: - Roblox Corporation) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.55.661 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) RotMG Exalt Launcher (HKLM\...\RotMG Exalt Launcher 1.3) (Version: 1.3 - DECA Live Operations GmbH) RuneScape Launcher 2.2.6 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.6 - Jagex Ltd) SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Starbound Bounty Hunter (HKLM-x32\...\Starbound Bounty Hunter_is1) (Version: - ) Stardock Curtains 1.19.1 (HKLM-x32\...\Stardock Curtains 1.19.1) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) TeamSpeak 3 Client (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.10.5 - TeamViewer) Telegram Desktop version 4.2 (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.2 - Telegram FZ-LLC) Thea 2: The Shattering (HKLM-x32\...\1582025844_is1) (Version: 2.0603.0666c - GOG.com) Tibia (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\Tibia) (Version: - CipSoft GmbH) Twitch Studio (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.) Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden VALORANT (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\Riot Game valorant.live) (Version: - Riot Games, Inc) vcpp_crt.redist.clickonce (HKLM-x32\...\{608E7419-DAC9-4848-8A01-984897E19CA7}) (Version: 14.16.27033 - Microsoft Corporation) Hidden Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation) Visual Studio Professional 2019 (HKLM-x32\...\f92c6831) (Version: 16.8.30907.101 - Microsoft Corporation) vs_filehandler_amd64 (HKLM-x32\...\{E9439DB7-BF01-4820-8CB1-80957150AB86}) (Version: 16.8.30530 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{8990F1B6-F880-4E73-A2D9-7A611F4C38A1}) (Version: 16.8.30530 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{3C4B2ED3-2296-4203-A420-AC042BE8484D}) (Version: 16.8.30509 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{08AF5DA9-F3BD-4B59-8D99-C47CC4D53CAD}) (Version: 16.8.30530 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{83F0653B-B919-4E1A-BE66-89FAD3AB835C}) (Version: 16.8.30530 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsi (HKLM-x32\...\{BEEB2E56-91DB-4AFB-AC88-8E98B18DD889}) (Version: 16.8.30509 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsires (HKLM-x32\...\{0CF69879-DE2C-489D-8205-0A593EBD6888}) (Version: 16.8.30509 - Microsoft Corporation) Hidden WhatsApp (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\WhatsApp) (Version: 2.2238.7 - WhatsApp) WhatsApp (HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\WhatsApp) (Version: 2.2210.9 - WhatsApp) Winabler (HKLM-x32\...\Winabler2.0.0.2) (Version: 2.0.0.2 - Kerry B. Rogers) WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows App Certification Kit Native Components (HKLM\...\{398B9866-66DD-753F-761B-E74A270435CC}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows App Certification Kit SupportedApiList x86 (HKLM-x32\...\{4FC3E9F0-8B10-DBFB-EA4B-FCA87274FC59}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows App Certification Kit x64 (HKLM-x32\...\{7718961C-5622-0714-906E-89E9751FA8F4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Desktop Extension SDK (HKLM-x32\...\{EC74C9E5-A88F-D4DF-1DD0-FA42FFBB298D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Desktop Extension SDK Contracts (HKLM-x32\...\{942262C5-DA88-830D-7140-C5BCC896DD60}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows IoT Extension SDK (HKLM-x32\...\{110B5402-97D4-DDA2-7B42-665D8325A44F}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows IoT Extension SDK Contracts (HKLM-x32\...\{AC8F20B3-36BB-DE22-CA37-43BC967B3F47}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Mobile Extension SDK (HKLM-x32\...\{B38CF8FF-C0D9-B11D-6484-B95A81C72DDC}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Mobile Extension SDK Contracts (HKLM-x32\...\{6FF4EDB8-56EA-640C-47CA-54C845F7D273}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK (HKLM-x32\...\{ED060DBD-1A21-7554-F2E1-06A0EE45900D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) Windows SDK ARM Desktop Tools (HKLM-x32\...\{EA15DC17-4379-6850-16FA-D6527641A8DD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Headers arm (HKLM-x32\...\{BFC2CA21-326B-90D1-B0E5-F1327411D4A5}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Headers arm64 (HKLM-x32\...\{441FA049-A2AB-7E8D-375D-5C9720CD3325}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Headers x64 (HKLM-x32\...\{492AAE4A-619E-64BF-6173-DB4E25D67533}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Headers x86 (HKLM-x32\...\{C971A14A-F045-BD6A-C670-05C7B74A37FE}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Libs arm (HKLM-x32\...\{323350A8-D3DC-2F8C-2976-E59E2C132B74}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Libs arm64 (HKLM-x32\...\{51ACC3C5-D131-0916-3F0C-59455F32E6B0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Libs x64 (HKLM-x32\...\{AE5CE40F-6C6D-C95F-FD37-D9EF7093CA99}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Libs x86 (HKLM-x32\...\{D5B8B2F7-680B-B6D4-6353-377C73C0F8A8}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Tools arm64 (HKLM-x32\...\{9D5486B4-7458-1A53-E92F-8CFD4AF85D4B}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Tools x64 (HKLM-x32\...\{8308EFA9-D647-6BF4-6525-349091FBD528}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Desktop Tools x86 (HKLM-x32\...\{F770E8F3-139B-0373-8692-BF619445B8C2}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK DirectX x64 Remote (HKLM\...\{90B0B603-7728-F869-3927-73232379BA5B}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK DirectX x86 Remote (HKLM-x32\...\{F84F82F2-4D6F-7EE7-A5EC-C57ECBAB3513}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK EULA (HKLM-x32\...\{2DD06060-C61D-7C3A-AA55-6E3FD9493D61}) (Version: 10.1.17763.132 - Microsoft Corporations) Hidden Windows SDK Facade Windows WinMD Versioned (HKLM-x32\...\{CA7A8A65-AB2E-43AA-4110-10C50115E211}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps (HKLM-x32\...\{1B278824-7541-EA8F-FFA1-8B73EC7146D5}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Contracts (HKLM-x32\...\{36AA7E63-76E9-E591-C985-272415268810}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps DirectX x86 Remote (HKLM-x32\...\{929C5E30-584A-9E44-2C03-08AA27927317}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Headers (HKLM-x32\...\{785711EA-DD49-D232-BB29-D48350CC458F}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Libs (HKLM-x32\...\{DAED8629-A799-B67F-9751-F3A1C60EE335}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Metadata (HKLM-x32\...\{A128C4CE-88C8-8BDF-FBE9-A517979E0BDD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Tools (HKLM-x32\...\{BA610F2C-C1FA-0A65-2B4D-8272223AC061}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK for Windows Store Managed Apps Libs (HKLM-x32\...\{9A0DC6A1-E91D-EB94-FB4D-41DDDE8A225D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Modern Non-Versioned Developer Tools (HKLM-x32\...\{FBA500B3-235D-41E5-D748-F9FFD2C881FD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Modern Versioned Developer Tools (HKLM-x32\...\{C1C8121A-6BDE-478E-3685-C09F9287D6F0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Redistributables (HKLM-x32\...\{70DB40AD-109B-C0CB-9DBF-8B1EDAEBFF61}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK Signing Tools (HKLM-x32\...\{58770E7F-37C0-70F9-6CBF-2B18503B0EE0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation) Windows Subsystem for Linux Update (HKLM\...\{F8474A47-8B5D-4466-ACE3-78EAB3BF21A8}) (Version: 5.10.102.1 - Microsoft Corporation) Windows Team Extension SDK (HKLM-x32\...\{A8B548F5-D495-BB71-F673-2D48FD7E764C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows Team Extension SDK Contracts (HKLM-x32\...\{F57D8118-1428-ECB8-0729-A577A9A1DEA8}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden X-Mouse Button Control 2.19.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.19.2 - Highresolution Enterprises) Zoom (HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\ZoomUMX) (Version: 5.11.1 (6602) - Zoom Video Communications, Inc.) Packages: ========= Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-21] (Microsoft Corporation) Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-21] (Microsoft Corporation) EarTrumpet -> C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.2.0.0_x86__1sdd7yawvg6ne [2022-08-12] (File-New-Project) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-11] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-11] (Microsoft Corporation) [MS Ad] Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2020-07-07] (Microsoft Platform Extensions) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad] Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.81.52842.0_x64__8wekyb3d8bbwe [2022-10-20] (Microsoft Corporation) [Startup Task] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_52.11010.438.0_x64__8wekyb3d8bbwe [2022-10-14] (Microsoft Corporation) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-03-07] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-17] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0 [2022-10-15] (Spotify AB) [Startup Task] TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj [2022-08-18] (Charles Milette) [Startup Task] Ubuntu on Windows -> C:\Program Files\WindowsApps\CanonicalGroupLimited.UbuntuonWindows_2004.2022.1.0_x64__79rhkp1fndgsc [2022-07-04] (Canonical Group Limited) WPS Office Suite - PDF, Word, Spreadsheet, Slide View & Edit -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOffice2019_11.2.11210.0_x86__924xes6e8q1tw [2022-08-15] (Kingsoft Office Software Corporation Limited) ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4080567834-197202263-3443209586-1001_Classes\CLSID\{0C0FA7FC-FCB1-4624-AE07-7D6B0B5F3EAA} -> [MEGAsync] => D:\Program Files (x86)\MEGAsync [2022-01-22 13:22] ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-06-04] (Notepad++ -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [Arquivo não assinado] ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-04-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => E:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2022-02-18] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => E:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2022-02-18] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-04-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-10-22] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [Arquivo não assinado] ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\joaog\AppData\Local\MEGAsync\ShellExtX64.dll [2022-05-02] (Mega Limited -> ) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-20] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\nvshext.dll [2022-06-03] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-10-22] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\OldNewExplorer64.dll [2019-09-23] (www.startisback.com) [Arquivo não assinado] ==================== Codecs (Whitelisted) ==================== ==================== Atalhos & WMI ======================== ==================== Módulos Carregados (Whitelisted) ============= 2022-09-28 09:32 - 2022-09-27 20:41 - 000156160 _____ () [Arquivo não assinado] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2021-12-08 12:30 - 2021-12-08 12:30 - 000269312 _____ () [Arquivo não assinado] C:\Program Files\MySQL\MySQL Server 8.0\bin\jemalloc.dll 2022-07-06 22:31 - 2022-07-06 22:31 - 000045568 _____ () [Arquivo não assinado] C:\Program Files\MySQL\MySQL Server 8.0\lib\plugin\component_reference_cache.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 002246144 _____ () [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libxml2.dll 2022-05-10 23:53 - 2022-03-22 18:11 - 000086528 _____ () [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\ZLIB1.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 001850401 _____ (Free Software Foundation) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libiconv-2.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 000475769 _____ (Free Software Foundation) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libintl-9.dll 2022-04-19 07:20 - 2022-04-19 07:20 - 000344064 _____ (Free Time) [Arquivo não assinado] D:\Program Files (x86)\FormatFactory\ShellEx_108.dll 2022-07-06 22:27 - 2022-07-06 22:27 - 000598528 _____ (Google Inc.) [Arquivo não assinado] C:\Program Files\MySQL\MySQL Server 8.0\bin\libprotobuf-lite.dll 2018-01-20 05:34 - 2018-01-20 05:34 - 000373248 _____ (IntelleSoft) [Arquivo não assinado] C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\BugTrapU-x64.dll 2019-12-07 06:10 - 2019-12-07 11:56 - 000820736 _____ (Microsoft Corporation) [Arquivo não assinado] C:\WINDOWS\System32\cscui.dll 2019-12-07 11:55 - 2019-12-06 13:26 - 004443136 _____ (Microsoft Corporation) [Arquivo não assinado] C:\WINDOWS\system32\MLS6.dll 2019-12-07 06:10 - 2019-12-07 06:10 - 000383488 _____ (Microsoft Corporation) [Arquivo não assinado] C:\WINDOWS\SYSTEM32\MSCOREE.DLL 2019-12-07 11:55 - 2019-12-06 13:34 - 000182784 _____ (Microsoft Corporation) [Arquivo não assinado] C:\WINDOWS\System32\NLSData0416.dll 2022-05-10 23:53 - 2022-03-22 18:11 - 000052736 _____ (MingW-W64 Project. All rights reserved.) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libwinpthread-1.dll 2022-05-10 23:53 - 2022-03-22 18:11 - 000303616 _____ (PostgreSQL Global Development Group) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\LIBPQ.dll 2021-11-24 14:45 - 2021-11-24 14:45 - 001342976 _____ (Stardock Software, Inc) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\Stardock\Curtains\Curtains64.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 028399104 _____ (The ICU Project) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\icudt67.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 002686976 _____ (The ICU Project) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\icuin67.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 001934336 _____ (The ICU Project) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\icuuc67.dll 2022-05-04 12:17 - 2022-05-04 12:17 - 003441664 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] C:\Program Files\MySQL\MySQL Server 8.0\bin\libcrypto-1_1-x64.dll 2022-05-04 12:17 - 2022-05-04 12:17 - 000688128 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] C:\Program Files\MySQL\MySQL Server 8.0\bin\libssl-1_1-x64.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 002853376 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libcrypto-1_1-x64.dll 2022-05-10 23:51 - 2022-03-22 18:11 - 000684544 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\libssl-1_1-x64.dll 2022-03-07 13:48 - 2019-09-23 23:51 - 000255488 _____ (www.startisback.com) [Arquivo não assinado] C:\OldNewExplorer32.dll 2022-03-07 13:48 - 2019-09-23 23:51 - 000261632 _____ (www.startisback.com) [Arquivo não assinado] C:\OldNewExplorer64.dll 2022-05-10 23:53 - 2022-03-22 18:11 - 000113152 _____ (Yann Collet) [Arquivo não assinado] E:\Program Files\PostgreSQL\14\bin\liblz4.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Modo de Segurança (Whitelisted) ================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKU\S-1-5-21-4080567834-197202263-3443209586-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-11-12 07:00:22&bName= SearchScopes: HKU\S-1-5-21-4080567834-197202263-3443209586-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Sem Nome -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\OldNewExplorer64.dll [2019-09-23] (www.startisback.com) [Arquivo não assinado] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_333\bin\ssv.dll [2022-05-02] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_333\bin\jp2ssv.dll [2022-05-02] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Sem Nome -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\OldNewExplorer32.dll [2019-09-23] (www.startisback.com) [Arquivo não assinado] BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-28] (Microsoft Corporation -> Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Corporation) [Arquivo não assinado] (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2020-05-24 08:17 - 2022-09-21 17:49 - 000001054 _____ C:\WINDOWS\system32\drivers\etc\hosts 192.168.1.8 host.docker.internal 192.168.1.8 gateway.docker.internal 127.0.0.1 kubernetes.docker.internal 2022-03-31 14:11 - 2022-10-27 11:09 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 172.18.0.1 DESKTOP-CSC3DBJ.mshome.net # 2027 10 2 26 14 9 3 611 ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;E:\Program Files (x86)\VMware\VMware Player\bin\;C:\Python39\Scripts\;C:\Python39\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\ProgramData\chocolatey\bin;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\joaog\AppData\Local\Microsoft\WindowsApps;C:\adb;C:\Program Files\Git\cmd;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\PuTTY\;E:\Program Files\PostgreSQL\14\bin;C:\Program Files\Docker\Docker\resources\bin;C:\ProgramData\DockerDesktop\version-bin;D:\Program Files\nodejs\;C:\Program Files\Amazon\AWSCLIV2\;C:\Program Files\Terraform;;C:\Program Files\Crucial\Crucial Storage Executive HKU\S-1-5-21-4080567834-197202263-3443209586-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\FELIPE\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper HKU\S-1-5-21-4080567834-197202263-3443209586-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\joaog\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall do Windows está habilitado. Network Binding: ============= vEthernet (WSL): VMware Bridge Protocol -> vmware_bridge (enabled) VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled) Ethernet 4: VMware Bridge Protocol -> vmware_bridge (enabled) Ethernet 3: VMware Bridge Protocol -> vmware_bridge (enabled) VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled) Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled) Radmin VPN: VMware Bridge Protocol -> vmware_bridge (enabled) ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: GalaxyClientService => 3 MSCONFIG\Services: GalaxyCommunication => 3 MSCONFIG\Services: Hamachi2Svc => 2 MSCONFIG\Services: LMIGuardianSvc => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: Rockstar Service => 3 MSCONFIG\Services: RvControlSvc => 3 MSCONFIG\Services: TeamViewer => 2 HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKLM\...\StartupApproved\Run32: => "RadminVPN" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\StartupFolder: => "IQTray.lnk" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\StartupFolder: => "RoundedTB.lnk" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "OpenDNS Updater" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "GogGalaxy" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "Combin Scheduler" HKU\S-1-5-21-4080567834-197202263-3443209586-1001\...\StartupApproved\Run: => "Docker Desktop" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "NordVPN" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-4080567834-197202263-3443209586-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{0770D114-CE63-4980-B638-B6A774D0B4F9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{9D4EF43D-AF80-4A76-B18D-99D74B5962BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{B7FBFCCB-E005-4197-B53B-4609F9730571}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{A13EDDF6-B72F-4347-9664-FB130E919881}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{00074218-701C-4D83-9264-31D6BCEF2DD1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{3C382DC1-DA9B-48E4-90EA-C6AF236B040C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{B6AD430A-886D-4D1F-B153-EA072808C170}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{D18AB2BC-80E7-4D6D-A547-4813F58247F4}] => (Allow) D:\Program Files (x86)\.minecraft\TLauncher.exe (TLauncher Inc. -> TLauncher Inc.) FirewallRules: [{51197883-0DEA-472A-8BFE-90F619B48DEF}] => (Allow) D:\Program Files (x86)\.minecraft\TLauncher.exe (TLauncher Inc. -> TLauncher Inc.) FirewallRules: [{25855C82-5692-4252-BC37-379EBD08C7B8}] => (Allow) D:\Program Files (x86)\.minecraft\TLauncher.exe (TLauncher Inc. -> TLauncher Inc.) FirewallRules: [{2D0ECD5D-4E1C-4DF5-A132-85A3B06A3CCF}] => (Allow) D:\Program Files (x86)\.minecraft\TLauncher.exe (TLauncher Inc. -> TLauncher Inc.) FirewallRules: [UDP Query User{EEF08155-9B61-4121-8E35-EA9D4BE3CBB9}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{9D28B9E7-4BE2-4F2F-89BC-59DFBFA5121E}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{8FD3FB4B-A9AD-4C39-B51D-2D9496C35E45}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{55A39177-43E8-4D12-8EBB-3BAEA0FAD084}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{A71BC936-38AA-46E0-98B2-687D8C41A8B2}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{43882ACE-C35A-4604-AE47-5EF4B421AA04}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{F83C3D81-B923-47EB-AF7F-76FD60B9A83D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{5C7772D5-6460-4163-8996-C64A5EB95923}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{14D955CD-EDC8-451B-9CEA-BD688932E944}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{D885CBF6-E3E6-4CB1-A32C-0DE8830894ED}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8AE1255D-B5EE-4A5E-A74B-16384E62AFD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe () [Arquivo não assinado] FirewallRules: [{A7AF9B56-7E2A-4C5B-B3A3-1A8E5C724487}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe () [Arquivo não assinado] FirewallRules: [{3A3D5E21-D451-483B-9013-6D45A57A864A}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{06EBA30F-41DD-4A89-871A-FE8765097FA5}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{40347FF3-AE36-4EDE-80BC-2AA20B06390D}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (LogMeIn, Inc. -> LogMeIn, Inc.) FirewallRules: [{232C636C-4023-4874-BAA1-2E467B287CFF}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (LogMeIn, Inc. -> LogMeIn, Inc.) FirewallRules: [{5D7AB1DF-1ABB-4B24-B5C8-2C33627E4CCB}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{035EF81B-F1FA-4DE0-B1BD-33B020EBF5B7}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.) FirewallRules: [{0067DCAF-780C-4A18-A972-A67C95FF7557}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (LogMeIn, Inc. -> LogMeIn, Inc.) FirewallRules: [{8F076AA7-F4B0-4A6B-B777-46D926CBA9BA}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (LogMeIn, Inc. -> LogMeIn, Inc.) FirewallRules: [TCP Query User{981B2A0A-C3E0-4C85-A360-ABE5500CF5BD}D:\program files (x86)\steamcmd\steamapps\common\u3ds\unturned.exe] => (Allow) D:\program files (x86)\steamcmd\steamapps\common\u3ds\unturned.exe (Smartly Dressed Games Ltd. -> ) [Arquivo não assinado] FirewallRules: [UDP Query User{00811172-8672-472D-8605-8FE804520795}D:\program files (x86)\steamcmd\steamapps\common\u3ds\unturned.exe] => (Allow) D:\program files (x86)\steamcmd\steamapps\common\u3ds\unturned.exe (Smartly Dressed Games Ltd. -> ) [Arquivo não assinado] FirewallRules: [TCP Query User{01D843F1-63EA-4062-8A16-3C0BA5D1BBF7}C:\users\felipe\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\felipe\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [UDP Query User{44A5644A-E2B1-4D9A-86CC-9207E44D4AB7}C:\users\felipe\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\felipe\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [TCP Query User{00611612-11E8-4126-97F8-0F34EEB661C8}C:\users\felipe\desktop\among us\among us.exe] => (Allow) C:\users\felipe\desktop\among us\among us.exe () [Arquivo não assinado] FirewallRules: [UDP Query User{AF9841E6-43C9-42F5-BA93-ECCF962FB64C}C:\users\felipe\desktop\among us\among us.exe] => (Allow) C:\users\felipe\desktop\among us\among us.exe () [Arquivo não assinado] FirewallRules: [{6BA94519-D562-4170-93BC-E219469F2447}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{AE22533E-0317-4A65-8B86-31DB10560487}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{F1BDC021-1718-4504-8CBA-7B818B1BCBA4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{B3FF1768-F2D8-483C-B7DE-125B2AC8DE03}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{86186059-F84A-4CB5-91E9-122982630249}C:\users\joaog\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\joaog\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{F46A0992-F93D-4F69-9A21-7AA70FFCFD2E}C:\users\joaog\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\joaog\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [TCP Query User{B06BF05E-0540-4EFC-B282-27FEC70CBCB8}D:\program files (x86)\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) D:\program files (x86)\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [UDP Query User{66F313A6-F5A0-4C26-82FB-DF955E956174}D:\program files (x86)\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) D:\program files (x86)\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [TCP Query User{977DC2FC-7143-4273-B527-A5E9C5067290}D:\program files (x86)\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) D:\program files (x86)\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{BA199FC7-BD51-493B-A4FE-AFA43ACE6C48}D:\program files (x86)\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) D:\program files (x86)\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [{5F43AADC-1FC3-431F-A072-317FD29448C2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Valheim\valheim.exe () [Arquivo não assinado] FirewallRules: [{5AD1EA30-6A91-4890-AEC4-EC1428ECE093}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Valheim\valheim.exe () [Arquivo não assinado] FirewallRules: [{25E6A154-8074-420F-955A-E5915520E129}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{19922B20-5CFD-4493-9A3F-A48E6722DC88}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{9D79B931-E43D-4533-8B83-75A82CF30687}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [Arquivo não assinado] FirewallRules: [UDP Query User{797E4D7C-0616-4657-831D-48576AB5FC66}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [Arquivo não assinado] FirewallRules: [{5FA3DEEE-74EE-45E7-9DB4-C213E28B7BB4}] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [Arquivo não assinado] FirewallRules: [{85AD62B5-945D-4456-A455-168CC41C9ACE}] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [Arquivo não assinado] FirewallRules: [{C4654F0F-9863-498C-B5FC-4471A371DC3C}] => (Allow) C:\Users\FELIPE\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{8462F866-18B0-49EE-8372-11F05027C115}] => (Allow) C:\Users\FELIPE\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{AECE81D1-44C2-4D40-8DE6-C436CA9AAC2E}C:\users\felipe\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\felipe\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{70D5F168-C640-47B3-A190-5CF7CE102678}C:\users\felipe\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\felipe\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{4B176A66-9C53-4B05-8D11-8C6E72B69553}] => (Block) C:\users\felipe\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{A3D415A5-2756-41B3-9018-7D425D278D30}] => (Block) C:\users\felipe\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [TCP Query User{C44E979D-FDE1-4C3B-AA64-5D0726C7D67C}D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe] => (Allow) D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe (WB Games, Inc.) [Arquivo não assinado] FirewallRules: [UDP Query User{B80571C5-570C-460C-BF60-06C4C41A0291}D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe] => (Allow) D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe (WB Games, Inc.) [Arquivo não assinado] FirewallRules: [{7669B577-34F7-407A-B68F-645313B77366}] => (Block) D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe (WB Games, Inc.) [Arquivo não assinado] FirewallRules: [{C79C56E8-D66D-49A2-9281-A8A2CE15B0EC}] => (Block) D:\program files (x86)\mortal kombat 11\binaries\retail\mk11.exe (WB Games, Inc.) [Arquivo não assinado] FirewallRules: [TCP Query User{5BC21313-90B7-4981-B256-01F60FAECEBF}D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{0A3087EA-90FE-440B-B836-3C1DEC56224C}D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [{93198AF9-084A-4A6C-9C2F-7636DE2773FB}] => (Block) D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [{1EAE83BB-E1C7-4B9C-9A15-923C969E0DFA}] => (Block) D:\program files (x86)\curseforge\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{5C0AD8B9-FA96-47F7-B5F0-159E54BAF5FC}C:\users\joaog\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\joaog\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司) FirewallRules: [UDP Query User{5DB90F0B-D08B-4EED-A053-EF22B6DA5CA7}C:\users\joaog\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\joaog\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司) FirewallRules: [{2F607982-6BC2-4150-BD71-CEB9F3A8BBCC}] => (Allow) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (Famatech Corp. -> Famatech Corp.) FirewallRules: [TCP Query User{6D0A5D34-8112-4E6E-A23B-DFA7514DD47B}C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{1299D7E8-AA47-4E46-9D19-993132562D20}C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1EAA8165-8FEF-4AA4-A5F7-3875429C01AC}] => (Block) C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4A836BF1-5CD2-406E-8115-28F4BE48710E}] => (Block) C:\users\felipe\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DA891D60-47D0-423A-B641-41D3A1E1853F}] => (Allow) C:\Users\joaog\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc) FirewallRules: [{7A6824F8-6528-4F86-A06F-DA9B2AFFE583}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4328E3E7-3D5A-46E0-9B36-EEFCE54AA754}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.) FirewallRules: [{F60E3FF2-00F8-48D1-9741-4EAB9D8B5200}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.) FirewallRules: [TCP Query User{EF0956FA-DC25-4FFD-9719-E3607824F80F}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [UDP Query User{C1BC5260-9CAB-4EFC-A575-C5C0B2396A20}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [{60D88B9B-D742-4976-8DC4-B728B679419A}] => (Block) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [{959D04E6-1CEF-4590-B3CE-2A25E31BAECD}] => (Block) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [{F5C76232-C648-4C9F-B11C-2749E2EBE2CC}] => (Allow) C:\Users\FELIPE\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{A93E2136-7B11-4D84-9DA0-A4B25B431FAD}] => (Allow) C:\Users\FELIPE\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{93A3FD12-1C9F-46D5-AEE3-1A2DE705989D}] => (Allow) C:\Users\FELIPE\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [TCP Query User{AEE45870-9A9F-437E-9E54-761164C71B36}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{D67022AF-E372-4D2C-8A61-1C061795AB66}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{F1E56432-1320-4DAF-9DA0-D024AFD804C9}] => (Block) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{0DCFE69B-9C68-46F1-9174-858C07F726BE}] => (Block) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{7DA2D9CE-CB37-425D-A192-177E6CCD966A}] => (Allow) E:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [{60BF4949-0C12-4460-8403-12D02E7327B6}] => (Allow) E:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [{B89EE2B6-210A-4A5E-9B4D-6267CBB3CE3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CF63974B-7524-4296-86F1-EFF2B0DCA544}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CDCE4012-0FF8-4FE7-A85F-BFDABADEE5AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{1A3D3E51-F45D-4601-8B70-B4CC5313FC75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{6CBD8309-E09E-41FA-8677-CB3057C73114}E:\program files\epic games\gtav\gta5.exe] => (Allow) E:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> TODO: ) FirewallRules: [UDP Query User{7C836C8F-63F7-487F-B554-51FAC459DFD0}E:\program files\epic games\gtav\gta5.exe] => (Allow) E:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> TODO: ) FirewallRules: [{D4FBA61C-E33C-4625-8A7F-B5FAA8016322}] => (Block) E:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> TODO: ) FirewallRules: [{0085F645-A6F2-4B2D-9F11-1CF3B8793A98}] => (Block) E:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> TODO: ) FirewallRules: [{78C95B3D-A51C-45B3-9C7C-1F788F202935}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{4BAD246C-9424-49FB-8299-C172FC37D5BC}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{7BFDB4F1-90E9-4505-BC4B-2AABD2FA2E1A}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{C1764788-90C4-4286-BCE1-36462E556B7E}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{E4D4BB40-D47A-4BBB-B134-E5FBC9D9AE33}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{1FBAF222-E471-4F30-8961-7C612548385E}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{945280DF-0FBA-4F30-AA75-3761E960C776}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{D2FFEA70-A66A-4F76-B2C0-B341C66D9FD2}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{009866A9-A94A-4C2A-95FC-0BD15CD44F9F}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{9B9818CD-11D1-4E7B-B7DE-D5518CF338FE}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{DD247541-1BCC-4101-A7A2-FB6269E188DB}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{773BAB7D-5FB7-4CF7-8ECB-B93B8AEBBC10}] => (Allow) C:\Program Files (x86)\Common Files\BattlEye\BEService_tibia.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{F1DB952E-C5BA-472F-B2FF-715AD90A61A4}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{82CB87F2-7B24-449D-9729-75759161DFFA}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{FC313D57-DD95-4006-BCAC-0BAEB231659F}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{5637E4A0-67D6-4635-BF54-545933655CF7}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{3D40126D-C909-41AB-979D-A7D6BF0092A5}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{EA41BEAF-F918-4FDD-B7C9-73ECD4EA8B97}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{28A740A5-362F-4DED-9FF7-119243F39A99}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{25F8BAC2-27D0-42B3-A52A-532E8B28BE60}] => (Allow) C:\Users\FELIPE\AppData\Local\Tibia\packages\Tibia\bin\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{568F9BFC-2BF3-4C5E-A659-8CFD525A5579}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{F6D588A4-21E1-4822-BFCA-06AFDAEA1447}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [TCP Query User{831AEBD5-C964-40ED-AFBC-D181E5AF909D}D:\program files\nodejs\node.exe] => (Allow) D:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [UDP Query User{1A32E25E-49D1-4305-81D8-05B880BD388E}D:\program files\nodejs\node.exe] => (Allow) D:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{90D1EA1B-ED36-478E-9D1E-768ED6E15E57}] => (Allow) D:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{E47F7B35-989A-41C0-9E11-4FC05BBA65E9}] => (Allow) D:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{732AEB2D-935F-403A-B2FC-36943D33A7CF}] => (Allow) D:\Program Files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{CF485E29-3731-4DA0-9340-394E7C10C20E}] => (Allow) D:\Program Files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{EEC8525B-F791-4FDB-86AB-312511ED6C88}] => (Allow) D:\Program Files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{E86BA032-8969-40BB-B670-EB3F161E723E}] => (Allow) D:\Program Files\nodejs\node.exe (OpenJS Foundation -> Node.js) FirewallRules: [{18ED78BA-8BA8-4231-91A6-79036F109916}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\RotMG Exalt Launcher.exe (Deca Live Operations GmbH -> ) FirewallRules: [{8C9D44BA-79A3-4166-A9A1-ED85E6B72F28}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\RotMG Exalt Launcher.exe (Deca Live Operations GmbH -> ) FirewallRules: [TCP Query User{DE699F7F-3308-418A-97AD-3F40519146A7}D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe] => (Allow) D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{29D29C5F-FAD1-41F4-ADF7-70C43E330797}D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe] => (Allow) D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{8DA4311A-AAE0-4B4B-881F-A9D512328B1A}] => (Block) D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{711FF8B3-69AB-42C1-AF12-AF5CC03FC07E}] => (Block) D:\program files\jetbrains\intellij idea community edition 2022.1\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [TCP Query User{F93FDD27-06CD-45E1-B78E-A14093D362E3}C:\program files\docker\docker\resources\com.docker.backend.exe] => (Allow) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.) FirewallRules: [UDP Query User{20E7E040-FE6E-4A98-9956-DCA61D24B378}C:\program files\docker\docker\resources\com.docker.backend.exe] => (Allow) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.) FirewallRules: [{41141137-1B2E-417D-85B4-272F767AFCC2}] => (Block) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.) FirewallRules: [{080606AA-A9E1-4276-B7D4-4553060F46D7}] => (Block) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.) FirewallRules: [TCP Query User{805205DC-47E7-4C47-AF8B-720F31B65155}D:\program files\java\jdk-17.0.3\bin\javaw.exe] => (Allow) D:\program files\java\jdk-17.0.3\bin\javaw.exe FirewallRules: [UDP Query User{B151DFFF-0133-4061-A3D2-8A05DC4C8D47}D:\program files\java\jdk-17.0.3\bin\javaw.exe] => (Allow) D:\program files\java\jdk-17.0.3\bin\javaw.exe FirewallRules: [{F5DE5E85-0729-44CD-A641-65C42F28F69E}] => (Block) D:\program files\java\jdk-17.0.3\bin\javaw.exe FirewallRules: [{D581F11C-56A4-4EB0-930F-A9767B420001}] => (Block) D:\program files\java\jdk-17.0.3\bin\javaw.exe FirewallRules: [TCP Query User{6A86D976-DAA1-4939-B683-873B46B2C9D3}D:\program files\java\jdk-17.0.3\bin\java.exe] => (Allow) D:\program files\java\jdk-17.0.3\bin\java.exe FirewallRules: [UDP Query User{087BE95E-F633-43F7-BBEE-5B8DF262F6F8}D:\program files\java\jdk-17.0.3\bin\java.exe] => (Allow) D:\program files\java\jdk-17.0.3\bin\java.exe FirewallRules: [{F65F1108-2948-4E8E-B9E2-85E60813907A}] => (Block) D:\program files\java\jdk-17.0.3\bin\java.exe FirewallRules: [{D804A4C8-493B-4E09-B2C2-BFF22870BAFF}] => (Block) D:\program files\java\jdk-17.0.3\bin\java.exe FirewallRules: [{A45341D3-C29F-4F88-B942-DCE9A5E0DA65}] => (Allow) D:\Program Files (x86)\Overwolf\0.204.2.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{9AAD72B0-6691-4DC4-8B62-FD8968E64AA7}] => (Allow) D:\Program Files (x86)\Overwolf\0.204.2.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{751C0C42-90FB-489A-873E-43A5D72D11A4}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\107.0.5304.19\remoting_host.exe (Google LLC -> Google LLC) FirewallRules: [{28EF90E6-F157-4D4E-BE61-F748C43622DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.89.3403.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C5492E33-28D7-48A4-80BC-09F321AFCB54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.89.3403.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{666B9464-053B-4BF4-8581-D4C7FBDD5D12}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.89.3403.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BBF345FA-59A1-46A8-8501-2AB5730B5A5B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.89.3403.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4A7D6768-2494-49FF-9CE8-B54670E567FD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F2434D3A-E1A2-4DB0-AF08-6B72D97E1870}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{346D665E-E6F1-4612-A775-B0ACCFD7AEC8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{68815D37-7894-4A00-8EBF-A2FA31ED5A4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A12BFB20-AC9A-49FF-93F7-00886D7D226F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E8ED1391-A2C9-4418-B61D-0D8EE20BD91E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A94E1745-3447-4480-A938-81C62F375942}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DA020235-E54E-436F-A127-3C9DAE186EC7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{336E53EE-2932-4F61-A734-0A36248F92B5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.196.785.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D30BAB60-4F29-41AF-9C01-F67C02E10460}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{18CEB1EB-A2EC-43C3-BC00-7002331AB296}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{7A70DB41-D249-4479-9212-034A6C4E83FA}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe FirewallRules: [UDP Query User{9148960F-B699-4F47-ACCE-51A34A1279DC}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe FirewallRules: [{A42E6926-6859-4C38-80B0-0476B467CB30}] => (Block) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe FirewallRules: [{5BE9243C-A9B8-4707-8B0B-FE408BF0D318}] => (Block) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe ==================== Pontos de Restauração ========================= 27-10-2022 11:07:34 Restore Point Created by FRST ==================== Dispositivos Apresentando Falhas No Gerenciador ============ ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (10/27/2022 11:08:11 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (10/27/2022 11:08:11 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (10/27/2022 11:08:11 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado. . Error: (10/27/2022 11:08:11 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado. ] Error: (10/27/2022 11:07:34 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado. . Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante. Operação: Obtendo Dados do Gravador Contexto: Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220} Nome do Gravador: System Writer ID de Instância de Gravador: {e5a07817-61f4-425a-aed6-de11f20bf17a} Error: (10/25/2022 10:20:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Explorer.EXE, versão: 10.0.19041.2075, carimbo de data/hora: 0x51953cb8 Nome do módulo com falha: ntdll.dll, versão: 10.0.19041.2130, carimbo de data/hora: 0xb5ced1c6 Código de exceção: 0xc0000374 Deslocamento da falha: 0x00000000000ff6a9 ID do processo com falha: 0x5b3c Hora de início do aplicativo com falha: 0x01d8e866dddf6faf Caminho do aplicativo com falha: C:\WINDOWS\Explorer.EXE Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll ID do Relatório: 7d17b378-754c-41ff-aea7-2b666c83a6f2 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (10/24/2022 11:02:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: gameinputsvc.exe, versão: 0.2210.22621.1846, carimbo de data/hora: 0x79ac3219 Nome do módulo com falha: ntdll.dll, versão: 10.0.19041.2130, carimbo de data/hora: 0xb5ced1c6 Código de exceção: 0xc0000374 Deslocamento da falha: 0x00000000000ff6a9 ID do processo com falha: 0x2f34 Hora de início do aplicativo com falha: 0x01d8e815e5df96df Caminho do aplicativo com falha: C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll ID do Relatório: bd820d15-f6b1-405b-af54-c3a8de8de7dd Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (10/24/2022 11:01:50 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa explorer.exe versão 10.0.19041.2075 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção. ID do Processo: 5418 Hora de Início: 01d8e79bc5e9ba56 Hora de Término: 0 Caminho do Aplicativo: C:\Windows\explorer.exe ID do Relatório: 3b380332-21f6-4abb-bbdc-f9fe9801ddcb Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Tipo com falha: Cross-thread Erros de Sistema: ============= Error: (10/27/2022 11:08:47 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço VMUSBArbService terminou com o erro: O sistema não pode encontrar o arquivo especificado. Error: (10/27/2022 11:08:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço NetMsmqActivator depende do serviço MSMQ, mas não foi possível iniciá-lo devido ao seguinte erro: Não foi possível iniciar o serviço ou grupo de dependência. Error: (10/27/2022 11:08:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço MSMQ depende do serviço MQAC, mas não foi possível iniciá-lo devido ao seguinte erro: O Windows não pode verificar a assinatura digital deste arquivo. Talvez uma alteração recente de hardware ou software tenha instalado um arquivo com uma assinatura incorreta ou danificado, ou talvez o arquivo seja um software mal-intencionado de origem desconhecida. Error: (10/27/2022 11:08:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço MSMQ depende do serviço MQAC, mas não foi possível iniciá-lo devido ao seguinte erro: O Windows não pode verificar a assinatura digital deste arquivo. Talvez uma alteração recente de hardware ou software tenha instalado um arquivo com uma assinatura incorreta ou danificado, ou talvez o arquivo seja um software mal-intencionado de origem desconhecida. Error: (10/27/2022 11:08:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço MQAC devido ao seguinte erro: O Windows não pode verificar a assinatura digital deste arquivo. Talvez uma alteração recente de hardware ou software tenha instalado um arquivo com uma assinatura incorreta ou danificado, ou talvez o arquivo seja um software mal-intencionado de origem desconhecida. Error: (10/27/2022 11:08:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CSC3DBJ) Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário. Error: (10/27/2022 08:25:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Steam Client Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (10/27/2022 08:25:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Steam Client Service. Windows Defender: ================ Date: 2022-10-27 09:07:45 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {E22A8034-DCA9-4767-A8E5-865B034F5779} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2022-10-26 08:53:26 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {E86D7218-5320-492D-882B-59FD42BBF311} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2022-10-25 11:21:46 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {A4D711B7-F66E-4A22-A9E6-318EFF6D801A} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2022-10-25 10:52:52 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {0000832B-33FC-4302-8B90-05A45AE05D35} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Date: 2022-10-25 10:46:15 Description: O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão. ID do Exame: {DB1FEC97-4779-405D-8517-6977E2C8FF4E} Tipo de Exame: Antimalware Parâmetros do Exame: Verificação Rápida Usuário: AUTORIDADE NT\SISTEMA Event[0]: Date: 2022-10-25 12:43:18 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Em Tempo de Acesso Código do Erro: 0x8007043c Descrição do erro: Não é possível compartilhar este serviço no modo de segurança Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema. Date: 2022-10-25 11:41:44 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Em Tempo de Acesso Código do Erro: 0x8007043c Descrição do erro: Não é possível compartilhar este serviço no modo de segurança Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema. Date: 2022-10-22 18:14:02 Description: O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou. Recurso: Em Tempo de Acesso Código do Erro: 0x8007043c Descrição do erro: Não é possível compartilhar este serviço no modo de segurança Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema. CodeIntegrity: =============== Date: 2022-10-27 11:08:47 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\mqac.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2022-10-27 11:08:42 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tap0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2022-10-26 12:45:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Windows\SysWOW64\mscoree.dll that did not meet the Microsoft signing level requirements. Date: 2022-10-26 12:45:20 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\mscoree.dll that did not meet the Microsoft signing level requirements. Date: 2022-10-26 09:51:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-10-26 09:12:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\OldNewExplorer64.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. 2006 11/13/2019 placa-mãe: ASUSTeK COMPUTER INC. PRIME B450M-GAMING/BR Processador: AMD Ryzen 5 3600 6-Core Processor Percentagem de memória em uso: 46% RAM física total: 16315.34 MB RAM física disponível: 8743.98 MB Virtual Total: 33723.34 MB Virtual disponível: 21908.11 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.16 GB) (Free:10.48 GB) (Model: CT120BX500SSD1) NTFS Drive d: () (Fixed) (Total:465.76 GB) (Free:102.24 GB) (Model: ST500DM002-1BD142) NTFS Drive e: (Zadak M.2) (Fixed) (Total:476.94 GB) (Free:107.52 GB) (Model: ZADAK TWSG3 512GB) NTFS \\?\Volume{bda834a9-067e-45c4-b6b6-a3788202ae3d}\ (Recuperação) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS \\?\Volume{a86fe376-1887-42f3-a1ff-ef2d7457ba69}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FFDF02FD) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 0FCA6B28) Partition 1: (Not Active) - (Size=476.9 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt =======================