Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 03.02.2024 01
Executado por rafae (04-02-2024 12:54:33)
Executando a partir de C:\Users\rafae\OneDrive\Desktop
Microsoft Windows 11 Pro Insider Preview Versão 22H2 23620.1000 (X64) (2024-01-29 04:25:51)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-366692056-171916002-775530353-500 - Administrator - Disabled)
Convidado (S-1-5-21-366692056-171916002-775530353-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-366692056-171916002-775530353-503 - Limited - Disabled)
rafae (S-1-5-21-366692056-171916002-775530353-1001 - Administrator - Enabled) => C:\Users\rafae
WDAGUtilityAccount (S-1-5-21-366692056-171916002-775530353-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.124 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.26.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{42e5a8d4-8fb0-48a1-9063-fc159c7566a0}) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.) Hidden
ASUS DisplayWidget (HKLM\...\{D06752B4-1681-4A40-BA4E-D9A98553FC60}) (Version: 4.0.358.0 - Portrait Displays, Inc.)
Battlestate Games Launcher 14.0.1.2319 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 14.0.1.2319 - Battlestate Games)
CCleaner (HKLM\...\CCleaner) (Version: 6.20 - Piriform)
Corsair iCUE5 Software (HKLM\...\{A9B0B2D7-8C59-4413-A2FB-99EDBE65A608}) (Version: 5.11.95 - Corsair)
CPUID CPU-Z 2.09 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.09 - CPUID, Inc.)
CPUID HWMonitor 1.52 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.52 - CPUID, Inc.)
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 4.1.2.4 - Western Digital Corporation)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.0.0.0.0 - Battlestate Games)
Estudo de aprimoramento de produto para HP DeskJet 2600 series (HKLM\...\{031DCF8B-E679-4458-B17A-136E46C687E5}) (Version: 43.4.2486.21347 - HP Inc.)
ExitLag version 4.299.2 (HKLM-x32\...\{B3117F72-F22D-4DA7-B554-B3F4EDBB408F}_is1) (Version: 4.299.2 - ExitLag)
FileZilla 3.66.4 (HKU\S-1-5-21-366692056-171916002-775530353-1001\...\FileZilla Client) (Version: 3.66.4 - Tim Kosse)
Firmware updater for DualSense™ wireless controller (HKLM\...\{9505317F-5C12-489D-8C97-88511D9985B6}) (Version: 1.5.0.2 - Nome de sua empresa)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 121.0.6167.140 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
HP DeskJet 2600 series Ajuda (HKLM-x32\...\{CF6446D7-ED6A-4738-80AE-0102E9494218}) (Version: 44.0.0 - HP)
HP DeskJet 2600 series Software básico do dispositivo (HKLM\...\{90A17D90-EA34-48BB-86A2-800B63686E19}) (Version: 43.4.2486.21347 - HP Inc.)
HP Dropbox Plugin (HKLM-x32\...\{0E317A5C-E816-42A3-ABF5-E3EF44DACD06}) (Version: 36.0.100.66344 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{E378164C-7A57-4B60-A86C-D5DA4FD0AC19}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{01841008-D75C-447A-90A7-BA96287E6384}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{72D64F2C-8290-446B-A657-80EA5BEF253D}) (Version: 36.0.100.66344 - HP)
HP OneDrive Plugin (HKLM-x32\...\{379920B1-9CA6-4CCA-9A0D-721F6C4C576A}) (Version: 36.0.0.0 - HP)
HP SharePoint Plugin (HKLM-x32\...\{D5CB6398-A20C-4A1E-BF09-31EDE8771388}) (Version: 43.0.0.0 - HP)
HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 7.68 - Martin Malik, REALiX s.r.o.)
Infatica P2B Network (HKLM-x32\...\{C989163F-E0E5-4DE3-B7F5-46C77F411451}_is1) (Version: 1.1.4.0 - )
K-Lite Codec Pack 18.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 18.0.5 - KLCP)
Logi Tune (HKLM-x32\...\{2d52d5a3-6f31-4835-8329-5e62a9c7ea28}) (Version: 3.5.173.0 - Logitech)
Logi Tune 3.5.173 (HKLM-x32\...\{049F3024-0C8E-4357-B51A-F16107014264}) (Version: 3.5.173.0 - Logitech) Hidden
Microsoft .NET Host - 6.0.26 (x64) (HKLM\...\{87EBA554-A002-4EF4-A612-4FFD06092B5B}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.26 (x64) (HKLM\...\{D81A418F-966D-4069-B3E8-5EE4843CA862}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.26 (x64) (HKLM\...\{1A02C1B1-05BB-49F7-9DFF-99A66C6877FC}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.26 (x64) (HKLM-x32\...\{d03cab7b-6d8b-4d83-a714-cba2c8922e2a}) (Version: 6.0.26.33205 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.8 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 121.0.2277.98 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-366692056-171916002-775530353-1001\...\OneDriveSetup.exe) (Version: 24.017.0123.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
NVIDIA Broadcast 1.4.0.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIABroadcast) (Version: 1.4.0.29 - NVIDIA Corporation)
NVIDIA Driver de áudio HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Driver de gráficos 551.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.23 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.0.2 - OBS Project)
Opera GX Stable 106.0.4998.61 (HKU\S-1-5-21-366692056-171916002-775530353-1001\...\Opera GX 106.0.4998.61) (Version: 106.0.4998.61 - Opera Software)
Pacote de Driver do Windows - Razer Inc. (WinUSB) USB  (05/04/2016 6.2.9200.16385) (HKLM\...\874D6B1A2BD2AE8FF3594AB704F2A4A3F8342FB5) (Version: 05/04/2016 6.2.9200.16385 - Razer Inc.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.9 - Proton AG)
Razer Synapse Beta (HKLM-x32\...\Razer Synapse Beta) (Version: 4.0.251 - Razer Inc.)
RivaTuner Statistics Server 7.3.4 (HKLM-x32\...\RTSS) (Version: 7.3.4 - Unwinder)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
RSI Launcher 1.6.10 (HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23) (Version: 1.6.10 - Cloud Imperium Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.57.0 - TechPowerUp)
Trezor Suite 24.1.2 (HKU\S-1-5-21-366692056-171916002-775530353-1001\...\978be57b-9286-5cd7-a60b-54c81352a986) (Version: 24.1.2 - SatoshiLabs)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 144.0.10906 - Ubisoft)
War Thunder Launcher 1.0.3.351 (HKU\S-1-5-21-366692056-171916002-775530353-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Network)
Warsaw 2.41.0.12 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.41.0.12 - Topaz)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1000.389.0_x64__8wekyb3d8bbwe [2024-02-03] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_151.3.1092.0_x64__v10z8vjag6ke6 [2024-01-29] (HP Inc.)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-01-29] (Microsoft Corporation)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy [2024-01-29] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2024-01-29] (NVIDIA Corp.)
PDF Viewer and Reader -> C:\Program Files\WindowsApps\22450.PDFViewerandReader_2.0.3.0_x64__0aqw1zw0x2snt [2024-02-01] (韵华软件)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-03] (Microsoft Studios) [MS Ad]
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-01-29] (Microsoft Windows)

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-366692056-171916002-775530353-1001_Classes\CLSID\{23e0a65b-d209-b1e3-12db-50e8c66ec176}\localserver32 -> D:\Program Files\Proton\VPN\v3.0.7\ProtonVPN.exe (Proton Technologies AG -> )
CustomCLSID: HKU\S-1-5-21-366692056-171916002-775530353-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> D:\Program Files\Proton\VPN\v3.2.9\ProtonVPN.exe (Proton AG -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_2fe7c165c5dd3267\nvshext.dll [2024-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Arquivo não assinado]

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

2023-12-26 10:35 - 2023-12-26 10:35 - 002579456 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\ffmpeg.dll
2023-12-26 10:35 - 2023-12-26 10:35 - 000383488 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\libegl.dll
2023-12-26 10:35 - 2023-12-26 10:35 - 006681088 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\libglesv2.dll
2023-12-26 10:32 - 2023-12-26 10:32 - 000134144 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\logi_hid_library.dll
2023-12-26 10:35 - 2023-12-26 10:35 - 004541440 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\vk_swiftshader.dll
2023-12-26 10:35 - 2023-12-26 10:35 - 000832512 _____ () [Arquivo não assinado] C:\Program Files (x86)\Logitech\LogiTune\vulkan-1.dll
2023-04-02 19:48 - 2023-04-02 19:48 - 000232960 _____ () [Arquivo não assinado] D:\Program Files (x86)\MSI Afterburner\RTCore.dll
2023-04-02 19:48 - 2023-04-02 19:48 - 000059392 _____ () [Arquivo não assinado] D:\Program Files (x86)\MSI Afterburner\RTFC.dll
2023-04-02 19:49 - 2023-04-02 19:49 - 000699904 _____ () [Arquivo não assinado] D:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2023-04-02 19:48 - 2023-04-02 19:48 - 000074240 _____ () [Arquivo não assinado] D:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2023-04-02 19:48 - 2023-04-02 19:48 - 000371712 _____ () [Arquivo não assinado] D:\Program Files (x86)\MSI Afterburner\RTUI.dll
2023-03-14 12:57 - 2023-03-14 12:57 - 000058368 _____ () [Arquivo não assinado] D:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2023-03-14 12:57 - 2023-03-14 12:57 - 000074240 _____ () [Arquivo não assinado] D:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2023-03-14 12:57 - 2023-03-14 12:57 - 000368640 _____ () [Arquivo não assinado] D:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\ProgramData:chnpbmzkyg [434]
AlternateDataStreams: C:\ProgramData:YXVtLmh6aQ [1324]
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aDXs4 [3506]
AlternateDataStreams: C:\Users\All Users:chnpbmzkyg [434]
AlternateDataStreams: C:\Users\All Users:YXVtLmh6aQ [1324]
AlternateDataStreams: C:\Users\Todos os Usuários:chnpbmzkyg [434]
AlternateDataStreams: C:\Users\Todos os Usuários:YXVtLmh6aQ [1324]
AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:chnpbmzkyg [434]
AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:YXVtLmh6aQ [1324]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\d479297e.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\d479297e.sys => ""="Driver"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2022-05-07 02:24 - 2022-05-07 02:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-366692056-171916002-775530353-1001\Control Panel\Desktop\\Wallpaper -> D:\backup\Rafael\Downloads\52763565712_f1e84a9c27_4k.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

Network Binding:
=============
Ethernet: ExitLag LightWeight Filter -> nt_ndextlag (enabled) 
Ethernet: Topaz OFD Network Monitor -> nt_wsddntf (enabled) 
Wi-Fi: ExitLag LightWeight Filter -> nt_ndextlag (enabled) 
Wi-Fi: Topaz OFD Network Monitor -> nt_wsddntf (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AntiCheatExpert Protection => 3
MSCONFIG\Services: asComSvc => 2
MSCONFIG\Services: AsusCertService => 2
MSCONFIG\Services: AsusUpdateCheck => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: CorsairCpuIdService => 2
MSCONFIG\Services: CorsairDeviceListerService => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: EasyAntiCheat_EOS => 3
MSCONFIG\Services: iCUEDevicePluginHost => 3
MSCONFIG\Services: iCUEUpdateService => 3
MSCONFIG\Services: ProtonVPN Service => 3
MSCONFIG\Services: ProtonVPN WireGuard => 3
HKLM\...\StartupApproved\Run: => "DisplayWidget"
HKLM\...\StartupApproved\Run: => "Corsair iCUE5 Software"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_18EF3EF62B916C83396983A0DC247F30"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-366692056-171916002-775530353-1001\...\StartupApproved\Run: => "Discord"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [UDP Query User{E0141996-A980-4FA1-9FA5-72CAA2589005}C:\users\rafae\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\rafae\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{2CA6758C-4BB4-4D51-9F31-068AF272D054}C:\users\rafae\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\rafae\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{BD7058BE-1D2C-4099-9253-621E84E629ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07B49A54-90B4-4797-BC95-7DC921B81C42}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5CB77B2A-1501-4084-9082-A005C825FF8B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{16520685-204D-426F-B750-3036C5141284}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8FE2CFF0-B7FC-473E-9DC5-0EFCD85C15FE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BF653809-A4AF-48DA-866E-65A0611A9820}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6E6781CD-973E-4E52-9427-A81541660D76}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BDEC2B71-0677-4B93-957D-566683C02313}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{32F69218-4633-4B2F-869C-4F61D1A7FFF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{658ED23E-6B5E-4361-8320-B35304FB37D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2F662C1B-E4A7-4802-93D4-B892F869D82A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6756E2F9-CF32-46DF-84C2-AC99446359FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{74F64395-98E2-459E-A690-D2454C5116A9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{17FCFD2D-14DE-4317-A2EB-108BE500FC53}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F885907A-2935-4BC0-8967-77828A39B7BE}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5E6F1A7C-F083-4360-B308-A3FB6E5D41C8}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{16FE954A-5DE1-409B-BC52-6D903A42824D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9FD824C5-6830-4EB4-91AD-F33855D5B572}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{36C0451E-FD62-4F72-A05F-74DFCBB34DAE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F89A176D-33A1-408B-9F1A-3BDAD1504555}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{408A2117-3F44-41F0-858B-AD01B3734EF6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A9FB1099-7CCD-4785-BE8E-7B1628C71844}C:\users\rafae\appdata\local\programs\trezor suite\trezor suite.exe] => (Allow) C:\users\rafae\appdata\local\programs\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [UDP Query User{D719436F-E3FB-44AD-AF52-58D29A312476}C:\users\rafae\appdata\local\programs\trezor suite\trezor suite.exe] => (Allow) C:\users\rafae\appdata\local\programs\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [{548392A7-8425-4BD5-A8FD-6D003E5E7326}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.242.2641.4129_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0B2E143F-9E5B-416D-9CA0-08CB42127BDC}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.242.2641.4129_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7677378C-1703-4B62-92AE-E7C4265AF74F}] => (Allow) C:\Games\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{39C56436-6C57-4F57-8C13-BA449906C389}] => (Allow) C:\Games\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{07981A89-D77F-4A15-A16D-39F5BE8BBE93}] => (Allow) C:\Program Files\Topaz OFD\Warsaw\core.exe (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
FirewallRules: [{AB51729B-9691-481F-A2B8-D6FAB062B568}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\bin\DigitalWizards.exe (HP Inc. -> HP Inc.)
FirewallRules: [{0533C39A-842A-4749-9D7F-1F910396BB2E}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\DeviceSetup.exe (HP Inc. -> HP Inc.)
FirewallRules: [{1CCD9745-915E-4B97-A2D4-840035751F05}] => (Allow) LPort=5357
FirewallRules: [{821E83C8-3E69-4EA7-BBA5-D2632757BB9A}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> HP Inc.)
FirewallRules: [{FD0BD7A5-360E-4EDB-A035-455C547F3449}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{9AD95BF0-CA99-49CD-A375-B233584ADEC2}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{6036C862-8DA6-4A6B-B295-D4D57C04E833}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1DF91239-8AA1-442E-A7B7-DA5FB1EA1D79}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9C2015C0-3E6D-49B6-927E-19DD7F040E70}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B7792AB0-D9EA-4480-8A10-4A465789A04B}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{177C2AAA-D8ED-4BCA-AAF3-10E3D3787001}] => (Allow) C:\SteamLibrary\steamapps\common\SCUM\SCUM_Launcher.exe (Epic Games, Inc.) [Arquivo não assinado]
FirewallRules: [{56EF20CC-6358-457B-B6E2-541885B0FD2B}] => (Allow) C:\SteamLibrary\steamapps\common\SCUM\SCUM_Launcher.exe (Epic Games, Inc.) [Arquivo não assinado]
FirewallRules: [TCP Query User{6B21747F-8B90-484D-B8D6-E4CA70DC3CED}C:\games\warthunder\launcher.exe] => (Allow) C:\games\warthunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [UDP Query User{A48F83C6-6D3F-4502-AD46-A603BFA841A4}C:\games\warthunder\launcher.exe] => (Allow) C:\games\warthunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [TCP Query User{948A62F4-2EE7-4650-B7DE-37F4B8DE5A76}C:\games\warthunder\win64\aces.exe] => (Allow) C:\games\warthunder\win64\aces.exe (GAIJIN NETWORK LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{8986DDFC-28C3-4102-B346-E14C6ECCD12E}C:\games\warthunder\win64\aces.exe] => (Allow) C:\games\warthunder\win64\aces.exe (GAIJIN NETWORK LTD -> Gaijin Entertainment)
FirewallRules: [{53433C27-5A55-4F0A-9892-0E5617C7DE0B}] => (Allow) C:\Program Files\Razer\RazerAppEngine\app-4.0.251\RazerAppEngine.exe (Razer USA Ltd. -> Razer Inc.)
FirewallRules: [{5FAF251E-4A13-4776-BE39-05ECEAD7C36E}] => (Allow) C:\SteamLibrary\steamapps\common\DungeonborneDemo\Dungeonborne.exe (PROXIMA BETA PTE. LIMITED -> Epic Games, Inc.)
FirewallRules: [{542E13CF-052B-4A0D-ACF1-F4D8E4EBDA40}] => (Allow) C:\SteamLibrary\steamapps\common\DungeonborneDemo\Dungeonborne.exe (PROXIMA BETA PTE. LIMITED -> Epic Games, Inc.)
FirewallRules: [{2328F747-CEFD-4192-B189-BEEBBB7DAB25}] => (Allow) d:\program files (x86)\exitlag\exitlag.exe (Skowsand Tecnologia Ltda -> )
FirewallRules: [{539E24DE-B7A5-4D34-B6C2-17E3336F8525}] => (Allow) d:\program files (x86)\exitlag\exitlag.exe (Skowsand Tecnologia Ltda -> )
FirewallRules: [{2CC2EB90-E352-4EB8-AAA1-A6CC2CC0980A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{CE54A071-B34C-4743-B0C8-A5D8FC0650F6}C:\steamlibrary\steamapps\common\dungeonbornedemo\dungeonborne\binaries\win64\dungeonborne.exe] => (Allow) C:\steamlibrary\steamapps\common\dungeonbornedemo\dungeonborne\binaries\win64\dungeonborne.exe (PROXIMA BETA PTE. LIMITED -> Mithril Interactive)
FirewallRules: [UDP Query User{E22E9E3B-A706-42A5-93B9-6B76404F7F6B}C:\steamlibrary\steamapps\common\dungeonbornedemo\dungeonborne\binaries\win64\dungeonborne.exe] => (Allow) C:\steamlibrary\steamapps\common\dungeonbornedemo\dungeonborne\binaries\win64\dungeonborne.exe (PROXIMA BETA PTE. LIMITED -> Mithril Interactive)
FirewallRules: [{4A81BDF3-C8E6-4537-B7A0-B0A85CC9EC09}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{08E36FCA-BE0E-4318-8D98-09BECA26BD36}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{E10FACDB-B61D-477B-841F-22B7AC7046C3}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{B918C549-B3EE-4E7F-AC9C-655CE7CD1271}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{E108BC11-2F3A-4C04-850B-C00FD9BF617D}] => (Allow) C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{C9E392FA-1728-4E47-BD94-89BD675B9F1D}] => (Allow) C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{39924728-E862-4BCB-8D8B-1B5A54D0C15B}] => (Allow) C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{A9A14A8A-B1DE-4B09-BA85-59D29D1D59DE}] => (Allow) C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{C66CBF3B-3BF8-47E1-A7AE-73A31F1EB12B}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{D849D6EA-54B0-4978-971E-BFB07EFB10E6}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{41CC2F47-71FC-4741-96D3-25BB20F708FD}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{9442F9F9-5EB1-4EB2-8AA6-CE6B45EECCBB}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{C1942541-B7CB-4260-9323-5BA0F0A208CE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.98\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Pontos de Restauração =========================

01-02-2024 11:54:32 Windows Update
04-02-2024 12:46:09 ZHPcleaner

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (02/04/2024 12:47:26 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x1260
Hora de início do aplicativo com falha: 0x0x1da577f9b4b54d7
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: d577f1ce-a9fa-4679-9a9b-382283666d64
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/04/2024 12:23:29 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x11fc
Hora de início do aplicativo com falha: 0x0x1da577c9521414a
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 43936012-9b8c-4590-a7e1-a08b6b556fda
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/04/2024 12:07:32 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x24f4
Hora de início do aplicativo com falha: 0x0x1da577a5187bb30
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 40596439-00c5-4b16-8315-9985b3f1caaf
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/04/2024 11:55:52 AM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x2954
Hora de início do aplicativo com falha: 0x0x1da57786b1f1f06
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: cce1a0e1-a64f-459b-bf3d-a0eb22510810
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/03/2024 08:08:19 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x15e0
Hora de início do aplicativo com falha: 0x0x1da56c30a5aef8f
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 79af6922-a5ca-4d12-a821-a4a32197c860
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/03/2024 02:03:55 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x29c0
Hora de início do aplicativo com falha: 0x0x1da56c1d28d7289
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: d8d0fd53-af74-4df8-9ae7-403d6df45277
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/02/2024 07:42:36 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x2ac8
Hora de início do aplicativo com falha: 0x0x1da5621dbeade56
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 9e31b561-1103-4f79-8625-92b13ab2d650
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (02/02/2024 06:50:06 PM) (Source: Application Error) (EventID: 1000) (User: AUTORIDADE NT)
Description: Nome do aplicativo com falha: GameManagerService3.exe, versão: 3.5.0.370, carimbo de data/hora: 0x622f7973
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.23620.1000, carimbo de data/hora: 0x38ada153
Código de exceção: 0xe0434352
Deslocamento da falha: 0x001493f2
ID do processo com falha: 0x0x2c8c
Hora de início do aplicativo com falha: 0x0x1da56014c20edb7
Caminho do aplicativo com falha: C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll
ID do Relatório: 7b5da3cc-4cb2-4f6e-8bd3-a36ce4215733
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:


Erros de Sistema:
=============
Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/04/2024 12:47:17 PM) (Source: DCOM) (EventID: 10010) (User: RAFAEL)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.


Windows Defender:
================
Date: 2024-02-03 14:30:15
Description: 
E:\Program Files (x86)\Steam\steamapps\common\War Thunder\win64\aces.exe foi impedido de modificar %userprofile%\OneDrive\Documentos pelo Acesso Controlado a Pastas.
Hora da detecção: 2024-02-03T17:30:15.406Z
Usuário: Rafael\rafae
Caminho: %userprofile%\OneDrive\Documentos
Nome do Processo: E:\Program Files (x86)\Steam\steamapps\common\War Thunder\win64\aces.exe
Versão da Inteligência de Segurança: 1.403.3155.0
Versão do Mecanismo: 1.1.23110.2
Versão do Produto: 4.18.23110.3


Date: 2024-02-01 09:26:45
Description: 
C:\Program Files (x86)\HP\HP DeskJet 2600 series\bin\HPScan.exe foi impedido de modificar %userprofile%\OneDrive\Documentos\My Data Sources\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2024-02-01T12:26:45.531Z
Usuário: Rafael\rafae
Caminho: %userprofile%\OneDrive\Documentos\My Data Sources\
Nome do Processo: C:\Program Files (x86)\HP\HP DeskJet 2600 series\bin\HPScan.exe
Versão da Inteligência de Segurança: 1.403.3042.0
Versão do Mecanismo: 1.1.23110.2
Versão do Produto: 4.18.23110.3


Date: 2024-01-31 13:18:03
Description: 
O Acesso Controlado a Pastas impediu C:\Program Files\CCleaner\CCUpdate.exe de fazer alterações na memória.
Hora da detecção: 2024-01-31T16:18:03.446Z
Usuário: (unknown user)
Caminho: \Device\Harddisk2\DR2
Nome do Processo: C:\Program Files\CCleaner\CCUpdate.exe
Versão da Inteligência de Segurança: 1.403.2984.0
Versão do Mecanismo: 1.1.23110.2
Versão do Produto: 4.18.23110.3


Date: 2024-01-31 13:18:03
Description: 
O Acesso Controlado a Pastas impediu C:\Program Files\CCleaner\CCleaner64.exe de fazer alterações na memória.
Hora da detecção: 2024-01-31T16:18:03.446Z
Usuário: AUTORIDADE NT\SISTEMA
Caminho: \Device\Harddisk2\DR2
Nome do Processo: C:\Program Files\CCleaner\CCleaner64.exe
Versão da Inteligência de Segurança: 1.403.2984.0
Versão do Mecanismo: 1.1.23110.2
Versão do Produto: 4.18.23110.3


Date: 2024-01-30 13:37:26
Description: 
O Acesso Controlado a Pastas impediu C:\Users\rafae\AppData\Local\Temp\{53d3966a-db3f-42f5-93bb-ebdb5b142457}\a757116c.exe de fazer alterações na memória.
Hora da detecção: 2024-01-30T16:37:26.924Z
Usuário: Rafael\rafae
Caminho: \Device\Harddisk2\DR2
Nome do Processo: C:\Users\rafae\AppData\Local\Temp\{53d3966a-db3f-42f5-93bb-ebdb5b142457}\a757116c.exe
Versão da Inteligência de Segurança: 1.403.2949.0
Versão do Mecanismo: 1.1.23110.2
Versão do Produto: 4.18.23110.3

Event[0]

Date: 2024-01-30 14:43:21
Description: 
O recurso de Proteção em Tempo Real do Microsoft Defender Antivírus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x8007043c
Descrição do erro: Não é possível compartilhar este serviço no modo de segurança 
Motivo: A inteligência de segurança antimalware parou de funcionar por um motivo desconhecido. Em alguns casos, reiniciar o serviço pode resolver o problema.

CodeIntegrity:
===============
Date: 2024-02-03 16:03:44
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbdhm64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-02-02 19:42:30
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-02-02 19:42:30
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbscr64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-02-01 11:55:07
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\rafae\AppData\Local\Programs\Opera GX\opera.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-02-01 11:55:07
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\rafae\AppData\Local\Programs\Opera GX\opera.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbscr64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-01-31 13:55:38
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\fontdrvhost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Topaz OFD\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória =========================== 

BIOS: American Megatrends Inc. 3404 10/07/2023
placa-mãe: ASUSTeK COMPUTER INC. ROG STRIX B550-E GAMING
Processador: AMD Ryzen 7 5800X3D 8-Core Processor 
Percentagem de memória em uso: 17%
RAM física total: 32680.02 MB
RAM física disponível: 26926.85 MB
Virtual Total: 32696.02 MB
Virtual disponível: 22898.25 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.03 GB) (Free:236.36 GB) (Model: WDS500G3X0C-00SJG0) NTFS
Drive d: (Downloads) (Fixed) (Total:931.5 GB) (Free:577.1 GB) (Model: WDC WD10EZEX-00WN4A0) NTFS
Drive e: (Games) (Fixed) (Total:465.75 GB) (Free:425.39 GB) (Model: WDC  WDS500G2B0A-00SM50) NTFS

\\?\Volume{c192d545-d6e3-4218-8606-27eb5ced554a}\ (Restauro) (Fixed) (Total:0.63 GB) (Free:0.61 GB) NTFS
\\?\Volume{317a657b-0388-4b01-96da-f2431aea9332}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fim de Addition.txt =======================