Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 21-05-2023 Executado por diego (21-05-2023 11:46:53) Executando a partir de C:\Users\diego\Downloads Microsoft Windows 10 Home Versão 21H2 19044.2728 (X64) (2022-02-10 21:37:11) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= (Se uma entrada for incluída na fixlist, será removida.) Administrador (S-1-5-21-4052114847-882577224-1913720889-500 - Administrator - Disabled) Convidado (S-1-5-21-4052114847-882577224-1913720889-501 - Limited - Disabled) DefaultAccount (S-1-5-21-4052114847-882577224-1913720889-503 - Limited - Disabled) diego (S-1-5-21-4052114847-882577224-1913720889-1001 - Administrator - Enabled) => C:\Users\diego WDAGUtilityAccount (S-1-5-21-4052114847-882577224-1913720889-504 - Limited - Disabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) 4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.272-p - Innova Co. SARL) Aplicativo Itaú (HKLM-x32\...\{215CACF7-0910-4B53-83BE-B54A2C9BD0B7}) (Version: 1.0.179 - Banco Itaú) ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS) ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.43.0 - ASUSTek COMPUTER INC.) Hidden ASUS AIOFan HAL (HKLM-x32\...\{2e3d34f7-20ec-4a4a-bfb6-2c74633e412d}) (Version: 1.1.43.0 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM-x32\...\{c398adfb-d090-4897-8845-baca53f7ecde}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.2.8.0 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM-x32\...\{c289ca16-807e-4373-92c3-29ef5dc2119a}) (Version: 1.2.8.0 - ASUSTeK COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.11 - ASUSTek COMPUTER INC.) Hidden ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS Framework Service (HKLM-x32\...\{cf5b2f79-6f67-4543-b5d5-6f1fb9ad6d06}) (Version: 2.1.2.3 - ASUSTek COMPUTER INC.) ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.1.2.3 - ASUSTek COMPUTER INC.) Hidden ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 3.00.10 - ASUSTek Computer Inc.) ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.93 - ASUSTeK Computer Inc.) Hidden AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.16 - ASUS) Hidden AURA DRAM Component (HKLM-x32\...\{41a78792-5489-400c-a567-b78d40b8c878}) (Version: 1.1.16 - ASUS) Hidden AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.21 - ASUS) AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.21 - ASUS) AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.05.29 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{abff099e-96f5-4bf4-9c6e-6f435f9f6c55}) (Version: 3.05.29 - ASUSTeK Computer Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty (HKLM-x32\...\Call of Duty) (Version: - Blizzard Entertainment) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) ClickUp (HKLM\...\{89B4FA4C-0638-43F3-BCB9-ED69FB9C2283}) (Version: 3.1.2.0 - ClickUp) ConnectX (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\4184562592.acsnconnectx.azurewebsites.net) (Version: - acsnconnectx.azurewebsites.net) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Diablo IV Beta (HKLM-x32\...\Diablo IV Beta) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Discord) (Version: 1.0.9007 - Discord Inc.) ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.39.5 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{09239bb1-d62b-4710-991f-f8cf987be42b}) (Version: 1.1.39.5 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.6 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{fb849319-e131-4301-9dc9-458db90abe1d}) (Version: 1.0.9.6 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{4A5076AD-020F-4BCE-B558-47C82911061F}) (Version: 1.3.23.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.) GeeGeeClient (HKLM\...\{F945CE8F-4A8F-48A1-BE86-847AAC50F74C}) (Version: 1.2.4.0 - WonderPeople) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 113.0.5672.127 - Google LLC) IRPF2022 (HKLM-x32\...\IRPF2022) (Version: 1.6 - Receita Federal do Brasil) Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) League of Legends PBE (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Riot Game league_of_legends.pbe) (Version: - Riot Games, Inc) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.3.396302 - Logitech) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 113.0.1774.50 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.50 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.16327.20248 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\OneDriveSetup.exe) (Version: 22.012.0117.0003 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Teams) (Version: 1.6.00.11166 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD) NVIDIA Driver de áudio HD 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation) NVIDIA Driver de gráficos 526.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.98 - NVIDIA Corporation) NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation) NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16327.20248 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.22100 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.122.52971 - Electronic Arts, Inc.) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.223.0.30 - Overwolf Ltd.) Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.2 - Patriot Memory) Hidden Patriot Viper DRAM RGB (HKLM-x32\...\{fdc098ce-d76c-4e2e-a0a6-01a24e9a1f7d}) (Version: 1.0.9.2 - Patriot Memory) Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.5 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{387596e5-692e-4baf-bec2-3338d555df7a}) (Version: 1.0.6.5 - Patriot Memory) PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden Porofessor.gg (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.290 - Overwolf app) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder) ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.1.0 - ASUSTek COMPUTER INC.) Royal Quest LA (HKLM-x32\...\4game2.0_rq-la_live) (Version: rq-20221204.04 - Innova Co. SARL) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer (HKLM\...\TeamViewer) (Version: 15.41.10 - TeamViewer) Telegram Desktop (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.1 - Telegram FZ-LLC) Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.11.0 - Unified Intents AB) Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.2 - PD) Hidden Universal Holtek RGB DRAM (HKLM-x32\...\{6870588f-9f28-488b-a169-cf548ad6b393}) (Version: 1.0.0.2 - PD) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation) VALORANT (HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation) WinRAR 6.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.0 - win.rar GmbH) Packages: ========= ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.6.3.0_x64__qmba6cd70vzyy [2023-05-04] (ASUSTeK COMPUTER INC.) AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.60961.0_x64__8wekyb3d8bbwe [2023-04-23] (Microsoft Corporation) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.52.5.0_x64__6rarf9sa4v8jt [2023-05-17] (Disney) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-02-10] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-02-10] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-15] (NVIDIA Corp.) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-05-21] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0 [2023-05-17] (Spotify AB) [Startup Task] ==================== Análise Personalizada CLSID (Whitelisted): ============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-4052114847-882577224-1913720889-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\diego\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23089.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4052114847-882577224-1913720889-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> "C:\Users\diego\AppData\Local\Microsoft\OneDrive\22.012.0117.0003\Microsoft.SharePoint.exe" => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-4052114847-882577224-1913720889-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> "C:\Users\diego\AppData\Local\Microsoft\OneDrive\22.012.0117.0003\Microsoft.SharePoint.exe" => Nenhum Arquivo ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\nvshext.dll [2022-11-15] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Arquivo não assinado] ==================== Atalhos & WMI ======================== ==================== Módulos Carregados (Whitelisted) ============= 2021-12-23 15:51 - 2021-12-23 15:51 - 000477696 _____ () [Arquivo não assinado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node 2021-12-23 15:51 - 2021-12-23 15:51 - 000471040 _____ () [Arquivo não assinado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node 2021-12-23 15:51 - 2021-12-23 15:51 - 000454656 _____ () [Arquivo não assinado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node 2022-02-10 18:48 - 2021-12-10 17:55 - 000093184 _____ () [Arquivo não assinado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll 2021-12-23 15:51 - 2021-12-23 15:51 - 000081920 _____ () [Arquivo não assinado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll 2020-05-26 17:08 - 2020-05-26 17:08 - 002831360 _____ (Apache Software Foundation) [Arquivo não assinado] C:\Program Files (x86)\LightingService\log4cxx.dll 2021-12-27 09:04 - 2021-12-27 09:04 - 000047104 _____ (CTI) [Arquivo não assinado] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\MsIo32_ENE.dll 2022-03-03 21:49 - 2022-03-03 21:49 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll 2022-03-03 21:49 - 2022-03-03 21:49 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll 2022-02-10 18:48 - 2021-12-10 17:55 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll 2022-02-10 18:48 - 2021-12-10 17:55 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll 2022-08-08 19:03 - 2022-08-08 19:02 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2023-03-16 10:44 - 2022-08-08 19:02 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Whitelisted) ======== (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3314] AlternateDataStreams: C:\ProgramData\rsEngine.config.backup:CF02139FF4 [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [3314] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [3314] ==================== Modo de Segurança (Whitelisted) ================== ==================== Associação (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-01-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2023-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts Conteúdo: ========================= (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Outras Áreas =========================== (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-4052114847-882577224-1913720889-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\diego\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\Fundo.png DNS Servers: 192.168.18.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Se uma entrada for incluída na fixlist, será removida.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "Riot Vanguard" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "utweb" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-4052114847-882577224-1913720889-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_7468C28B0B2B1BB91765C621F18F928B" ==================== Regras do Firewall (Whitelisted) ================ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{DE41E5BE-5246-4FFF-A36D-6FE165840DD2}] => (Allow) LPort=3074 FirewallRules: [{FAF6014D-8404-44D5-B892-3ED9CBEE7EF3}] => (Allow) LPort=27036 FirewallRules: [TCP Query User{092615F7-1627-418A-AE05-E1A7A15B1331}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{0CAB3C4C-73B1-4FAC-A435-3C0AD6299D04}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{EB9D8811-FE77-4154-A959-A538445DCCCE}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [UDP Query User{799B9975-FF99-4674-AF8B-44F953BDBDB0}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [TCP Query User{BC185724-CD28-42FC-B026-75E0DCFF8066}C:\program files (x86)\unified remote 3\remoteserverwin.exe] => (Allow) C:\program files (x86)\unified remote 3\remoteserverwin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [UDP Query User{648AAB9F-997E-4611-A0BB-A3C79B160F5C}C:\program files (x86)\unified remote 3\remoteserverwin.exe] => (Allow) C:\program files (x86)\unified remote 3\remoteserverwin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [TCP Query User{15A1F84D-3246-4628-9C1B-1E8CE14D0966}C:\program files\windowsapps\spotifyab.spotifymusic_1.185.895.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.185.895.0_x86__zpdnekdrzrea0\spotify.exe => Nenhum Arquivo FirewallRules: [UDP Query User{7B903DD2-E126-49C0-BAC1-6F9881FDFE38}C:\program files\windowsapps\spotifyab.spotifymusic_1.185.895.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.185.895.0_x86__zpdnekdrzrea0\spotify.exe => Nenhum Arquivo FirewallRules: [TCP Query User{B7CD1C04-E349-4D0B-8B89-A2EC7B6307D1}C:\program files (x86)\asus\armourydevice\asus_framework.exe] => (Allow) C:\program files (x86)\asus\armourydevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [UDP Query User{D5A8AEDB-510A-4C56-BD12-06B944730BC1}C:\program files (x86)\asus\armourydevice\asus_framework.exe] => (Allow) C:\program files (x86)\asus\armourydevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [TCP Query User{74F9F2EC-1B80-4FE8-9E4E-7B3CFDEEB2A6}C:\arquivos de programas rfb\irpf2022\java-runtime\bin\javaw.exe] => (Allow) C:\arquivos de programas rfb\irpf2022\java-runtime\bin\javaw.exe FirewallRules: [UDP Query User{BC98C059-D847-4B48-83E4-5D75CD5F29F9}C:\arquivos de programas rfb\irpf2022\java-runtime\bin\javaw.exe] => (Allow) C:\arquivos de programas rfb\irpf2022\java-runtime\bin\javaw.exe FirewallRules: [{48520D8A-34B8-4CA0-A3ED-5E937FDE51C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5B00F4C3-AE96-4F28-8D4C-0B73A47A866C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{D15210E3-0108-43D2-9DEF-3359D22B9A1A}C:\users\diego\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\diego\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú) FirewallRules: [UDP Query User{B97D1CC6-D555-4DBF-AC5C-83F71D7671C2}C:\users\diego\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\diego\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú) FirewallRules: [TCP Query User{813CAA09-4E3A-4076-BC5B-79B76443E6C6}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{20FD4AE9-68FF-47E2-BE6B-F74D6D20543D}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{BADFC11F-C80E-4DC2-B008-15F5F53D243A}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{B49B6E2D-90F5-4393-BB82-8D4611F31DD0}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{B313CED2-8BAF-423E-A085-DE5039422B5E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{5B631BE1-0B26-459C-9627-123133AED76E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{1A24B80C-1ABC-40AD-885F-A6D9F3F724CC}C:\riot games\league of legends\leagueclientuxrender.exe] => (Allow) C:\riot games\league of legends\leagueclientuxrender.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{EEB1D15A-6E63-40C9-A1FF-A1E8C250204D}C:\riot games\league of legends\leagueclientuxrender.exe] => (Allow) C:\riot games\league of legends\leagueclientuxrender.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{C5E86A35-A674-4984-B4B8-C96E297296CE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{75B9F875-7547-4BD0-8465-3DEADC73BD0F}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{B28B4896-618A-4311-AEBE-AD00F06FFE07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 3\Orcs Must Die! 3.exe (Robot Entertainment, Inc.) [Arquivo não assinado] FirewallRules: [{A54C9B51-73E7-4E26-9948-201B5F47F43F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 3\Orcs Must Die! 3.exe (Robot Entertainment, Inc.) [Arquivo não assinado] FirewallRules: [TCP Query User{0E9B9889-78C2-43C7-9215-486D40D95A07}C:\program files (x86)\steam\steamapps\common\battlefield v\bfv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\battlefield v\bfv.exe (EA Digital Illusions CE AB) [Arquivo não assinado] FirewallRules: [UDP Query User{D90E378A-4EC7-4503-BCE6-61563C57FA55}C:\program files (x86)\steam\steamapps\common\battlefield v\bfv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\battlefield v\bfv.exe (EA Digital Illusions CE AB) [Arquivo não assinado] FirewallRules: [{78CC0AC2-091C-4E58-89E3-D7651BC1962B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [{E411F4B9-111E-4CC9-8F14-341E483C9CB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [TCP Query User{CD608757-F8A1-41D2-B4A0-3F38A2142A83}C:\program files (x86)\steam\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Nenhum Arquivo FirewallRules: [UDP Query User{54B6C499-4244-4894-98DE-F74F7E8E9C96}C:\program files (x86)\steam\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Nenhum Arquivo FirewallRules: [{8776AE63-1A65-49B9-870F-990C0C46006D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPER PEOPLE\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.) FirewallRules: [{AC12152A-8CC7-4881-B834-D213DD3C8D4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPER PEOPLE\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.) FirewallRules: [TCP Query User{B32DE723-E9B2-4B90-8E6C-B24F016CE35F}C:\program files (x86)\steam\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd) FirewallRules: [UDP Query User{AA5C8B3E-7E39-48E7-8D52-BB3D3EA8336F}C:\program files (x86)\steam\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd) FirewallRules: [TCP Query User{C9E763E9-B1A0-449F-BA0C-948D55DEDA17}C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe (Hi-Rez Studios, Inc.) [Arquivo não assinado] FirewallRules: [UDP Query User{6DAA0B95-8CAE-4787-8C8F-792B6509E89F}C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe (Hi-Rez Studios, Inc.) [Arquivo não assinado] FirewallRules: [TCP Query User{BB8CA6B8-D871-46A8-8E64-B1DFA1D9FCB3}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{71345906-CC9A-45B7-A94F-12781482C8DD}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{08D7063C-D3D4-4060-BEEB-10E1C5C2809D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{1A20B3DB-4A8E-465E-AE92-2A0E82E82651}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{EB2CFD74-9FDC-4172-B9F6-5F8AC15D0095}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{904F206F-8638-439A-9F6B-5D3249A8EC8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{8CA368C4-3D4E-428C-850C-76BF0AA55F5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{4317B24C-773B-4470-9231-4B898F703E07}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{319CB8FE-540F-4EC5-B339-6B38F5084261}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{95C80BD2-9245-4E5F-BF4F-93DFF7E7B034}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{2BB99731-8ED1-42D7-AAF2-1CBD59CB0B61}C:\program files (x86)\innova\4game2.0\bin\cefsharp.browsersubprocess.exe] => (Allow) C:\program files (x86)\innova\4game2.0\bin\cefsharp.browsersubprocess.exe (The CefSharp Authors) [Arquivo não assinado] FirewallRules: [UDP Query User{15F9DFFD-1552-4959-931D-670114FF969C}C:\program files (x86)\innova\4game2.0\bin\cefsharp.browsersubprocess.exe] => (Allow) C:\program files (x86)\innova\4game2.0\bin\cefsharp.browsersubprocess.exe (The CefSharp Authors) [Arquivo não assinado] FirewallRules: [TCP Query User{90FD24E7-8797-4A8A-9EF6-3C5917EA416D}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{1F99D3E3-14E4-4BD3-9D6E-F43BD3C199EF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{4D88C309-7152-4227-BDB4-E289E78C455E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undecember\UNDECEMBER.exe (LINE Games Corporation -> Epic Games, Inc.) FirewallRules: [{76222BB1-8973-4E6D-8879-2CFE65F25B9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undecember\UNDECEMBER.exe (LINE Games Corporation -> Epic Games, Inc.) FirewallRules: [TCP Query User{B4778DD1-A063-4607-AB99-53E1411F194A}C:\users\diego\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\diego\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{16FCCBD8-1F5B-4689-9741-0921CBB277A5}C:\users\diego\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\diego\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{C933E8EC-2EFE-49E2-A9D5-82B5DE870531}C:\program files (x86)\diablo iv - beta\diablo iv.exe] => (Allow) C:\program files (x86)\diablo iv - beta\diablo iv.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{8FF005C8-826D-48D1-9EA7-B9D507A1F9BC}C:\program files (x86)\diablo iv - beta\diablo iv.exe] => (Allow) C:\program files (x86)\diablo iv - beta\diablo iv.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{8FD2CBB4-DF04-44A2-A8F3-61B9E606D1C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A52F6177-B9C2-457F-9A91-43DD339F2F3C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1C3F92BB-6E65-4AC3-9AB3-E1088FA037C8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D9E7828C-4835-4378-85E5-26889ABE05EE}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{6EBA363F-5C3C-4A80-98EA-69A56EF112A2}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{98C4DDCD-FDD7-418E-B5BF-0AF8558E45FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4B012D9A-B829-4E07-80F6-CB0D2F32093C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{24EFE752-9B1C-49A5-9F82-E2AC10E3F34E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8A694567-E1CA-4259-9582-4AEF72513EDE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1B250DD6-E6F3-444D-93AA-4DF48A0F94D4}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => Nenhum Arquivo FirewallRules: [{709C407E-CCC6-4522-A52A-8C9C0C24E3A4}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => Nenhum Arquivo FirewallRules: [{669B8753-9FA1-4CB3-9F78-C2E8756EE8F2}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => Nenhum Arquivo FirewallRules: [{B45B27BE-F0F1-4E75-ACA5-2552F4D68658}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => Nenhum Arquivo FirewallRules: [{847ED57E-E287-4C1D-AEAE-F6E493C2338F}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{A522ED82-4CF2-49BD-B927-C1DB0F6A6C24}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{A164E617-C195-4F67-B9C0-2EAEC0A65776}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{881E9841-7F57-48DF-9093-D6DF81AD3C1F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{BFB85D33-F597-498D-AC76-F5BCCBCBBFA6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{F5D3BB7E-8489-47A6-BEB3-D3D3938ACD09}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{05E58D5C-793E-4BFD-8313-F017EE589ECB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{89B4D2AF-D61E-4DC1-A571-32E798C38DE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{F9F20F86-2A72-4351-8F1A-4F5C5509781E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{23631C7D-870E-4374-8E08-623BDAAF3703}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{50E45A26-4E5E-428C-B46E-482CF0E88B20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{EA39057A-4C93-41FA-A4C8-90DA69A78AFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{2DDCF526-6BEB-4BD0-A752-C456AA8988C0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7E72E2D7-1C9D-452D-B529-AB4E890832BD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{EFEF789C-006F-4A8B-8A5A-6C82B54990AB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{EACD53CB-0B13-4BC8-B551-207A2533E679}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{2AAB8E08-CE52-464B-AC01-0CF02037A1B7}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{20797EC3-3EFA-405E-AB68-D4204F8EBB52}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Pontos de Restauração ========================= 15-05-2023 13:23:24 Windows Modules Installer 17-05-2023 08:30:19 Windows Modules Installer ==================== Dispositivos Apresentando Falhas No Gerenciador ============ Name: Controlador de criptografia/descriptografia PCI Description: Controlador de criptografia/descriptografia PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ======================== Erros em Aplicativos: ================== Error: (05/21/2023 11:47:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Aac3572MbHal_x86.exe, versão: 1.2.8.0, carimbo de data/hora: 0x61c29640 Nome do módulo com falha: combase.dll, versão: 10.0.19041.2728, carimbo de data/hora: 0x71196d31 Código de exceção: 0xc0000005 Deslocamento da falha: 0x000dac29 ID do processo com falha: 0x1b68 Hora de início do aplicativo com falha: 0x01d98bf0fc08566f Caminho do aplicativo com falha: C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe Caminho do módulo com falha: C:\Windows\System32\combase.dll ID do Relatório: 122c97ac-bbd6-4ee0-8e9e-e1dd007d0dfe Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (05/21/2023 11:37:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Un_A.exe, versão: 1.2.7.4186, carimbo de data/hora: 0x584dca31 Nome do módulo com falha: INetC.dll_unloaded, versão: 0.0.0.0, carimbo de data/hora: 0x56364917 Código de exceção: 0xc000041d Deslocamento da falha: 0x00004295 ID do processo com falha: 0x2be4 Hora de início do aplicativo com falha: 0x01d98bf1c2c527c4 Caminho do aplicativo com falha: C:\Users\diego\AppData\Local\Temp\~nsu.tmp\Un_A.exe Caminho do módulo com falha: INetC.dll ID do Relatório: 7b4791f3-3c0d-4343-ba16-7730c445f68e Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (05/21/2023 11:37:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Un_A.exe, versão: 1.2.7.4186, carimbo de data/hora: 0x584dca31 Nome do módulo com falha: INetC.dll_unloaded, versão: 0.0.0.0, carimbo de data/hora: 0x56364917 Código de exceção: 0xc0000005 Deslocamento da falha: 0x00004295 ID do processo com falha: 0x2be4 Hora de início do aplicativo com falha: 0x01d98bf1c2c527c4 Caminho do aplicativo com falha: C:\Users\diego\AppData\Local\Temp\~nsu.tmp\Un_A.exe Caminho do módulo com falha: INetC.dll ID do Relatório: 61771f60-da66-4abf-8edb-16afb60e7d1d Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (05/21/2023 11:32:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: lghub_system_tray.exe, versão: 2023.3.6302.0, carimbo de data/hora: 0x6439ade4 Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.19041.2728, carimbo de data/hora: 0xe7e53a4e Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000010fd12 ID do processo com falha: 0x2d90 Hora de início do aplicativo com falha: 0x01d98bf11ff5acd7 Caminho do aplicativo com falha: C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe Caminho do módulo com falha: C:\Windows\System32\KERNELBASE.dll ID do Relatório: c09dc408-5bc1-4fa2-ba28-f40b69304e89 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (05/21/2023 11:32:22 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0x8007007B Argumento de linha de comando: RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (05/21/2023 11:31:57 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0x8007139F Argumento de linha de comando: RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/21/2023 11:31:56 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: Falha na inicialização do registro de certificado SCEP para WORKGROUP\DESKTOP-6PQUH7U$ via https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sun, 21 May 2023 14:31:56 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: bca8f16f-0233-4a16-ab37-dff9c22c5cee Método: GET(391ms) Estágio: GetCACaps Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (05/21/2023 11:11:50 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Falha na Ativação de Licença (slui.exe). Código de erro: hr=0x8007007B Argumento de linha de comando: RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Erros de Sistema: ============= Error: (05/21/2023 11:45:39 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: O DCOM obteve o erro "1053" ao tentar iniciar o serviço asComSvc com argumentos "Unavailable" para executar o servidor: {BC50CF2A-E12C-4F18-90CE-714CC8600CEE} Error: (05/21/2023 11:45:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço ASUS Com Service. Error: (05/21/2023 11:45:09 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: O DCOM obteve o erro "1053" ao tentar iniciar o serviço asComSvc com argumentos "Unavailable" para executar o servidor: {BC50CF2A-E12C-4F18-90CE-714CC8600CEE} Error: (05/21/2023 11:45:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço ASUS Com Service. Error: (05/21/2023 11:44:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço ASUS Com Service. Error: (05/21/2023 11:44:02 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-6PQUH7U) Description: O DCOM obteve o erro "1053" ao tentar iniciar o serviço asComSvc com argumentos "Unavailable" para executar o servidor: {BC50CF2A-E12C-4F18-90CE-714CC8600CEE} Error: (05/21/2023 11:44:02 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço ASUS Com Service. Error: (05/21/2023 11:43:32 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: O DCOM obteve o erro "1053" ao tentar iniciar o serviço asComSvc com argumentos "Unavailable" para executar o servidor: {BC50CF2A-E12C-4F18-90CE-714CC8600CEE} Windows Defender: ================ Date: 2023-05-15 13:24:38 Description: O exame do Microsoft Defender Antivirus foi interrompido antes da conclusão. ID do Exame: {EABD872D-991B-4C5F-B10A-93BE9624103E} Tipo de Exame: Antimalware Parâmetros do Exame: Quick Scan Usuário: NT AUTHORITY\SYSTEM Date: 2023-05-14 10:24:27 Description: O exame do Microsoft Defender Antivirus foi interrompido antes da conclusão. ID do Exame: {E174A19E-695C-4655-A2BD-7546BEB8C53C} Tipo de Exame: Antimalware Parâmetros do Exame: Quick Scan Usuário: NT AUTHORITY\SYSTEM Date: 2023-04-13 10:03:35 Description: O exame do Microsoft Defender Antivirus foi interrompido antes da conclusão. ID do Exame: {6A3EA28C-2FF4-4AAD-97E7-E9B185A057E1} Tipo de Exame: Antimalware Parâmetros do Exame: Quick Scan Usuário: NT AUTHORITY\SYSTEM Date: 2023-04-04 00:09:13 Description: O exame do Microsoft Defender Antivirus foi interrompido antes da conclusão. ID do Exame: {E96E0FC4-B79B-4B2A-9157-35B34D5ADB5C} Tipo de Exame: Antimalware Parâmetros do Exame: Quick Scan Usuário: NT AUTHORITY\SYSTEM Date: 2023-03-30 08:42:41 Description: O exame do Microsoft Defender Antivirus foi interrompido antes da conclusão. ID do Exame: {F573ADD2-0CE6-4A28-921C-787B6617702C} Tipo de Exame: Antimalware Parâmetros do Exame: Quick Scan Usuário: NT AUTHORITY\SYSTEM Event[0]: Date: 2023-04-17 09:51:21 Description: Microsoft Defender Antivirus encontrou um erro ao tentar atualizar a inteligência de segurança. Nova Versão da Inteligência de Segurança: Versão da Inteligência de Segurança anterior: 1.387.1198.0 Fonte da Atualização: Microsoft Update Server Tipo da Inteligência de Segurança: AntiVirus Tipo da atualização: Full Usuário: NT AUTHORITY\SYSTEM Versão Atual do Mecanismo: Versão Anterior do Mecanismo: 1.1.20200.4 Código de Erro: 0x80070102 Descrição do Erro: The wait operation timed out. Date: 2023-04-17 09:51:21 Description: Microsoft Defender Antivirus encontrou um erro ao tentar atualizar a inteligência de segurança. Nova Versão da Inteligência de Segurança: Versão da Inteligência de Segurança anterior: 1.387.1198.0 Fonte da Atualização: Microsoft Update Server Tipo da Inteligência de Segurança: AntiVirus Tipo da atualização: Full Usuário: NT AUTHORITY\SYSTEM Versão Atual do Mecanismo: Versão Anterior do Mecanismo: 1.1.20200.4 Código de Erro: 0x80070102 Descrição do Erro: The wait operation timed out. CodeIntegrity: =============== Date: 2023-05-21 11:18:32 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Informações da Memória =========================== BIOS: American Megatrends Inc. 4021 08/09/2021 placa-mãe: ASUSTeK COMPUTER INC. TUF GAMING X570-PLUS_BR Processador: AMD Ryzen 7 5800X 8-Core Processor Percentagem de memória em uso: 40% RAM física total: 16290.99 MB RAM física disponível: 9700.12 MB Virtual Total: 20898.99 MB Virtual disponível: 12177.61 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:953.26 GB) (Free:293.53 GB) (Model: ADATA SX6000LNP) NTFS Drive d: (Novo volume) (Fixed) (Total:931.51 GB) (Free:910.75 GB) (Model: WDC WD10EZEX-00BBHA0) NTFS \\?\Volume{5091afe2-c80a-4568-a328-44e2c560056f}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{c3b06176-ca03-4047-a1d1-c7c0c534481c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabela de Partições ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fim de Addition.txt =======================