Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 08-12-2023
Executado por Marcelo Tabone (08-12-2023 16:21:07)
Executando a partir de C:\Users\55119\Desktop
Microsoft Windows 10 Home Versão 22H2 19045.3758 (X64) (2022-12-07 02:26:01)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
(Se uma entrada for incluída na fixlist, será removida.)
Administrador (S-1-5-21-3085480274-1510964095-2883647489-500 - Administrator - Disabled)
Convidado (S-1-5-21-3085480274-1510964095-2883647489-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-3085480274-1510964095-2883647489-503 - Limited - Disabled)
Marcelo Tabone (S-1-5-21-3085480274-1510964095-2883647489-1001 - Administrator - Enabled) => C:\Users\55119
WDAGUtilityAccount (S-1-5-21-3085480274-1510964095-2883647489-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Panda Dome (Disabled - Up to date) {8404BB29-B609-D604-AF5C-6806F0482FD3}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
CPUID CPU-Z 2.03 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.03 - CPUID, Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.130.0.5387 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{f23c9039-16c4-41d5-be1c-755eda43ecf9}) (Version: 12.130.0.5387 - Electronic Arts)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC)
Microsoft .NET Host - 5.0.17 (x86) (HKLM-x32\...\{54DE7EA9-E391-4BD2-A373-3A72A18EBDB5}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.10 (x86) (HKLM-x32\...\{3B28977C-9163-48A5-A08C-C01327E18AE2}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x86) (HKLM-x32\...\{AF01038B-6523-4EA7-9D9E-4F1E2927D88B}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.10 (x86) (HKLM-x32\...\{EBD44C5E-F1AF-4955-AEDF-F15D06384A9C}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x86) (HKLM-x32\...\{59650A2A-3839-46EC-9D9C-6B3B1C743C55}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.10 (x86) (HKLM-x32\...\{98CA5A6B-4ECC-4E6D-BF18-6B20CBB6E5F4}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.97 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.97 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\OneDriveSetup.exe) (Version: 23.226.1031.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{098c6ff7-1af1-4c4a-b86f-c60608c98e31}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{0D02D706-44F2-4957-A448-E7259A0B56B9}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{0F3E4057-E2BB-4114-A646-F143DB5CE4C9}) (Version: 48.43.48870 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{9dd24b73-88e0-4f0f-882a-500e00d2bdef}) (Version: 6.0.10.31726 - Microsoft Corporation)
NVIDIA Driver de áudio HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Driver de gráficos 546.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.29 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.122.52971 - Electronic Arts, Inc.)
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{AC555D5A-A9A3-4897-B9E0-97D594F1E10D}) (Version: 12.12.10 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.01.01.0000 - Panda Security)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.2.2 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation)
VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-12-04] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad]
==================== Análise Personalizada CLSID (Whitelisted): ==============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31dab972145ae5a9\nvshext.dll [2023-11-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
==================== Codecs (Whitelisted) ====================
==================== Atalhos & WMI ========================
==================== Módulos Carregados (Whitelisted) =============
2022-12-07 16:03 - 2023-02-03 10:12 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-12-07 16:03 - 2023-02-03 10:12 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll
2022-12-07 16:03 - 2023-02-03 10:12 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Modo de Segurança (Whitelisted) ==================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== Associação (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts Conteúdo: =========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Outras Áreas ===========================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
DNS Servers: 181.213.132.2 - 181.213.132.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Se uma entrada for incluída na fixlist, será removida.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_9839DEE0FEABF30B6B56779A6DEF6876"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "Steam"
==================== Regras do Firewall (Whitelisted) ================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{1D769B9A-3A18-4F00-BA75-B5DDF0079FA0}] => (Allow) F:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9EB647A3-99FA-458E-B25B-EB7287C33172}] => (Allow) F:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{28C94346-E464-4343-B3F4-39DD7EFABB2F}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0DB5627C-DDB4-4FA8-B50D-FAFE4020DCD7}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9D03F4A7-0888-4A1F-9E89-74FB2CDD332A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{88495614-C9B0-479D-9B7D-3033F880BB62}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8437B287-70D5-41CF-B473-87AF1A83ADDE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{12423942-7D61-47DF-AB6E-0FCDBE44DE6D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8BF8B00C-1955-43C8-B5D5-575D9BE06AE4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C058D5D0-8DAB-4453-A724-ECB768F2FC30}] => (Allow) F:\EA\SHIFT 2 UNLEASHED\shift2u.exe => Nenhum Arquivo
FirewallRules: [{D94F0F77-9603-405E-A6E2-82B4C0E5F2F1}] => (Allow) F:\EA\SHIFT 2 UNLEASHED\shift2u.exe => Nenhum Arquivo
FirewallRules: [{2E1355B7-84D9-4C74-B5C8-3373DFC83AD9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E584796B-D4FF-464A-9398-21AA6E1308C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5BACF5B7-D9D0-4465-9EB0-39ED09EF4BA7}] => (Allow) F:\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [Arquivo não assinado]
FirewallRules: [{AD8B1787-41B3-4209-957C-2ED7F9485A5D}] => (Allow) F:\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [Arquivo não assinado]
FirewallRules: [{3F6FCF36-F04C-423D-BEEA-4AC48EA8B3F3}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{CA295E7B-492A-413B-834C-360EC7591568}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{585DB1A2-3A1E-42C6-84B3-D0D9B23E0A62}] => (Allow) F:\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{3E5E0C43-89E8-4453-A7FD-99642F110A86}] => (Allow) F:\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{987254F2-7AAB-4D69-B432-982775E61A4D}] => (Allow) F:\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{00DF13BB-B8DC-495A-AB2B-1A8BDF2ED775}] => (Allow) F:\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{67139F35-F527-44C9-854B-C067005423BC}] => (Allow) F:\Steam\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe (MachineGames Sweden AB) [Arquivo não assinado]
FirewallRules: [{416A573F-E5E4-4051-AF65-64A1581BB2A3}] => (Allow) F:\Steam\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe (MachineGames Sweden AB) [Arquivo não assinado]
FirewallRules: [{B194437B-4C72-49BF-8904-1E49387AF416}] => (Allow) F:\Steam\steamapps\common\Sniper Elite 5\launcher\sniperelite5.exe (Rebellion) [Arquivo não assinado]
FirewallRules: [{A056D6A5-D9B3-438C-9769-5AA8D974AB91}] => (Allow) F:\Steam\steamapps\common\Sniper Elite 5\launcher\sniperelite5.exe (Rebellion) [Arquivo não assinado]
FirewallRules: [{CEE8C472-2B40-462E-8591-6066231267D5}] => (Allow) F:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe (Valve Corp. -> Activision Publishing Inc.)
FirewallRules: [{94F620CC-B904-40E1-A713-389EFF1B2F3B}] => (Allow) F:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe (Valve Corp. -> Activision Publishing Inc.)
FirewallRules: [{65FBEA72-3BD7-4EE2-9218-D50E2BE862D3}] => (Allow) F:\EA\Medal of Honor Warfighter\MOHW.exe => Nenhum Arquivo
FirewallRules: [{A9E4392C-76DE-4080-949B-80C4DC92BF17}] => (Allow) F:\EA\Medal of Honor Warfighter\MOHW.exe => Nenhum Arquivo
FirewallRules: [{4422BAAE-E9F0-4421-A4F9-DA03CA16654B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{4CE237E3-50A7-4A66-B099-488B79C38444}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{8B51CA2D-0744-4EA1-B4CF-4F4232D8644C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{312AD0D5-E6AE-446C-9697-F178D63D8C42}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{FC026DDD-AB35-4AB8-8FC8-FA8E7B32D30D}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{078E1A75-E792-460B-94B9-F65ABF6F700E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{B7FF3612-5E5E-46C7-BC99-77A1FD1EABDB}] => (Allow) F:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{64AE3135-2B1C-43BB-80E6-F2AB5E07B802}] => (Allow) F:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AE71C0FB-6BC8-4F08-BB14-D344D7CBECCE}] => (Allow) F:\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [Arquivo não assinado]
FirewallRules: [{DECDCB8B-3FEB-4530-AB95-E44C022BF029}] => (Allow) F:\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [Arquivo não assinado]
FirewallRules: [TCP Query User{34F20B42-05D9-4249-9F90-3903FBCD04DA}F:\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) F:\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [UDP Query User{B17B3414-9E15-4BB7-BE4E-4DAB86A6C793}F:\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) F:\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [TCP Query User{CC3593D7-0576-43CC-9BCC-1EBCB31D5544}F:\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) F:\steam\steamapps\common\doom\doomx64vk.exe (id Software) [Arquivo não assinado]
FirewallRules: [UDP Query User{07BF6356-264F-4D65-B16A-1A8ACED34D30}F:\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) F:\steam\steamapps\common\doom\doomx64vk.exe (id Software) [Arquivo não assinado]
FirewallRules: [{3983DC98-C260-4536-B886-F43D8EC3EDF6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C30BC69C-F562-483A-BC57-9698733E1FCC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BB0B2DCF-7F5C-44BC-BAE7-659F281E6507}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{73145157-7A7E-4AF9-91C8-9E8E2ED72FF0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5E259E08-1AB3-441D-AEF4-1C1D322A08F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{DD569082-43AD-4F58-8BDE-91453DF6E159}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Pontos de Restauração =========================
23-11-2023 18:54:24 Instalador de Módulos do Windows
23-11-2023 18:55:21 Instalador de Módulos do Windows
23-11-2023 18:59:31 Instalador de Módulos do Windows
06-12-2023 23:34:27 Instalador de Módulos do Windows
06-12-2023 23:36:41 Instalador de Módulos do Windows
==================== Dispositivos Apresentando Falhas No Gerenciador ============
==================== Erros no Log de eventos: ========================
Erros em Aplicativos:
==================
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado.
.
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado.
.
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Error: (10/14/2023 12:33:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: wuauclt.exe, versão: 10.0.19041.3031, carimbo de data/hora: 0x35946a52
Nome do módulo com falha: ntdll.dll, versão: 10.0.19041.3393, carimbo de data/hora: 0xfeef31d3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000634f6
ID do processo com falha: 0x2a38
Hora de início do aplicativo com falha: 0x01d9feb22ffb7705
Caminho do aplicativo com falha: C:\WINDOWS\system32\wuauclt.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll
ID do Relatório: eba9f9d7-89db-467c-a623-90b60f0fd971
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (10/02/2023 05:53:48 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: O Windows não pode acessar o arquivo por um destes motivos:
há um problema de conexão com a rede, o disco no qual o arquivo está armazenado ou nos drivers de armazenamento
instalados neste computador, ou o disco está ausente.
O Windows fechou o programa Sniper5 D3D12_Retail_Submission por causa desse erro.
Programa: Sniper5 D3D12_Retail_Submission
Arquivo:
O valor do erro está listado na seção Dados Adicionais.
Ação do Usuário
1. Abra o arquivo novamente.
Esta situação pode ser um problema temporário corrigida quando o programa é executado novamente.
2.
Se o arquivo ainda não puder ser acessado e
- não estiver na rede,
o administrador da rede deverá verificar se não há um problema com a rede e se o servidor puder ser contatado.
- Está em um disco removível, por exemplo, um disquete ou CD-ROM, verifique se o disco está completamente inserido no computador.
3. Verifique e repare o sistema de arquivos ao executar CHKDSK. Para executar CHKDSK, clique em Iniciar, clique em Executar, digite CMD e clique em OK. No prompt de comando, digite CHKDSK /F e pressione ENTER.
4. Se o problema persistir, restaure o arquivo de uma cópia de backup.
5. Determine se outros arquivos no mesmo disco podem ser abertos. Em caso negativo, o disco pode estar danificado. Se for um disco rígido, contate o administrador ou o fornecedor de hardware do computador para
obter assistência adicional.
Dados Adicionais
Valor do erro: C000009D
Tipo de disco: 0
Error: (10/02/2023 05:53:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sniper5_dx12.exe, versão: 2023.8.10.35004, carimbo de data/hora: 0x64d54362
Nome do módulo com falha: xaudio2_9.dll, versão: 10.0.19041.2913, carimbo de data/hora: 0x6388ff85
Código de exceção: 0xc0000006
Deslocamento da falha: 0x0000000000065b40
ID do processo com falha: 0x1dec
Hora de início do aplicativo com falha: 0x01d9f56315b8067d
Caminho do aplicativo com falha: F:\Steam\steamapps\common\Sniper Elite 5\bin\sniper5_dx12.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\xaudio2_9.dll
ID do Relatório: a418f0d3-73b6-40f8-a6b3-10e6f6eaa8d3
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (09/30/2023 09:28:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Erros de Sistema:
=============
Error: (12/08/2023 03:26:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/07/2023 12:01:30 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço SysMain terminou com o erro:
Parâmetro incorreto.
Error: (12/04/2023 12:05:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço NVIDIA LocalSystem Container foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 6000 milissegundos: Reiniciar o serviço.
Error: (12/04/2023 12:05:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço NVIDIA LocalSystem Container terminou com o erro:
Um executável de comando genérico retornou um resultado que indica falha.
Error: (12/04/2023 10:19:37 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/04/2023 10:19:08 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/02/2023 08:14:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/02/2023 08:14:00 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Windows Defender:
================
Date: 2023-09-13 08:41:34
Description:
O Acesso Controlado a Pastas impediu C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\avp.exe de fazer alterações na memória.
Hora da detecção: 2023-09-13T11:41:34.416Z
Usuário: AUTORIDADE NT\SISTEMA
Caminho: \Device\CdRom0
Nome do Processo: C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\avp.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.964Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
CodeIntegrity:
===============
Date: 2023-09-13 09:18:38
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Panda Security\Panda Security Protection\PSNWSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-09-13 08:44:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\x64\com_antivirus.dll that did not meet the Windows signing level requirements.
==================== Informações da Memória ===========================
BIOS: Award Software International, Inc. FA 04/23/2013
placa-mãe: Gigabyte Technology Co., Ltd. GA-78LMT-USB3
Processador: AMD FX(tm)-6300 Six-Core Processor
Percentagem de memória em uso: 55%
RAM física total: 8173.55 MB
RAM física disponível: 3674.08 MB
Virtual Total: 16877.55 MB
Virtual disponível: 10199.31 MB
==================== Drives ================================
Drive c: (SSD WIN 10) (Fixed) (Total:464.63 GB) (Free:398.72 GB) (Model: CT500BX500SSD1 ATA Device) NTFS
Drive d: () (Fixed) (Total:0 GB) (Free:0 GB) (Model: CT500BX500SSD1 ATA Device)
Drive f: (SSD Jogos) (Fixed) (Total:930.99 GB) (Free:485.26 GB) (Model: SanDisk SSD PLUS 1000GB ATA Device) NTFS
\\?\Volume{6aa303f1-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{6aa303f1-0000-0000-0000-602e74000000}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS
\\?\Volume{642cc7b8-0000-0000-0000-20bfe8000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Tabela de Partições ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 6AA303F1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=525 MB) - (Type=27)
Partition 4: (Not Active) - (Size=535 MB) - (Type=06)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 642CC7B8)
Partition 1: (Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=536 MB) - (Type=27)
==================== Fim de Addition.txt =======================
Executado por Marcelo Tabone (08-12-2023 16:21:07)
Executando a partir de C:\Users\55119\Desktop
Microsoft Windows 10 Home Versão 22H2 19045.3758 (X64) (2022-12-07 02:26:01)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
(Se uma entrada for incluída na fixlist, será removida.)
Administrador (S-1-5-21-3085480274-1510964095-2883647489-500 - Administrator - Disabled)
Convidado (S-1-5-21-3085480274-1510964095-2883647489-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-3085480274-1510964095-2883647489-503 - Limited - Disabled)
Marcelo Tabone (S-1-5-21-3085480274-1510964095-2883647489-1001 - Administrator - Enabled) => C:\Users\55119
WDAGUtilityAccount (S-1-5-21-3085480274-1510964095-2883647489-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Panda Dome (Disabled - Up to date) {8404BB29-B609-D604-AF5C-6806F0482FD3}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
CPUID CPU-Z 2.03 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.03 - CPUID, Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.130.0.5387 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{f23c9039-16c4-41d5-be1c-755eda43ecf9}) (Version: 12.130.0.5387 - Electronic Arts)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC)
Microsoft .NET Host - 5.0.17 (x86) (HKLM-x32\...\{54DE7EA9-E391-4BD2-A373-3A72A18EBDB5}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.10 (x86) (HKLM-x32\...\{3B28977C-9163-48A5-A08C-C01327E18AE2}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x86) (HKLM-x32\...\{AF01038B-6523-4EA7-9D9E-4F1E2927D88B}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.10 (x86) (HKLM-x32\...\{EBD44C5E-F1AF-4955-AEDF-F15D06384A9C}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x86) (HKLM-x32\...\{59650A2A-3839-46EC-9D9C-6B3B1C743C55}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.10 (x86) (HKLM-x32\...\{98CA5A6B-4ECC-4E6D-BF18-6B20CBB6E5F4}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.97 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.97 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\OneDriveSetup.exe) (Version: 23.226.1031.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{098c6ff7-1af1-4c4a-b86f-c60608c98e31}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{0D02D706-44F2-4957-A448-E7259A0B56B9}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{0F3E4057-E2BB-4114-A646-F143DB5CE4C9}) (Version: 48.43.48870 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{9dd24b73-88e0-4f0f-882a-500e00d2bdef}) (Version: 6.0.10.31726 - Microsoft Corporation)
NVIDIA Driver de áudio HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Driver de gráficos 546.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.29 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.122.52971 - Electronic Arts, Inc.)
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{AC555D5A-A9A3-4897-B9E0-97D594F1E10D}) (Version: 12.12.10 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.01.01.0000 - Panda Security)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.2.2 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation)
VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-12-04] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad]
==================== Análise Personalizada CLSID (Whitelisted): ==============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31dab972145ae5a9\nvshext.dll [2023-11-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
==================== Codecs (Whitelisted) ====================
==================== Atalhos & WMI ========================
==================== Módulos Carregados (Whitelisted) =============
2022-12-07 16:03 - 2023-02-03 10:12 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-12-07 16:03 - 2023-02-03 10:12 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Arquivo não assinado] C:\Program Files (x86)\Origin\ssleay32.dll
2022-12-07 16:03 - 2023-02-03 10:12 - 001611264 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005487104 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Core.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005841920 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Gui.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 001179136 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Network.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 000146432 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 005089792 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2023-03-18 12:17 - 2023-02-03 10:12 - 000184832 _____ (The Qt Company Ltd) [Arquivo não assinado] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Modo de Segurança (Whitelisted) ==================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== Associação (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts Conteúdo: =========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Outras Áreas ===========================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\theme1\img1.jpg
DNS Servers: 181.213.132.2 - 181.213.132.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Se uma entrada for incluída na fixlist, será removida.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_9839DEE0FEABF30B6B56779A6DEF6876"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3085480274-1510964095-2883647489-1001\...\StartupApproved\Run: => "Steam"
==================== Regras do Firewall (Whitelisted) ================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{1D769B9A-3A18-4F00-BA75-B5DDF0079FA0}] => (Allow) F:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9EB647A3-99FA-458E-B25B-EB7287C33172}] => (Allow) F:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{28C94346-E464-4343-B3F4-39DD7EFABB2F}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0DB5627C-DDB4-4FA8-B50D-FAFE4020DCD7}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9D03F4A7-0888-4A1F-9E89-74FB2CDD332A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{88495614-C9B0-479D-9B7D-3033F880BB62}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8437B287-70D5-41CF-B473-87AF1A83ADDE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{12423942-7D61-47DF-AB6E-0FCDBE44DE6D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8BF8B00C-1955-43C8-B5D5-575D9BE06AE4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C058D5D0-8DAB-4453-A724-ECB768F2FC30}] => (Allow) F:\EA\SHIFT 2 UNLEASHED\shift2u.exe => Nenhum Arquivo
FirewallRules: [{D94F0F77-9603-405E-A6E2-82B4C0E5F2F1}] => (Allow) F:\EA\SHIFT 2 UNLEASHED\shift2u.exe => Nenhum Arquivo
FirewallRules: [{2E1355B7-84D9-4C74-B5C8-3373DFC83AD9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E584796B-D4FF-464A-9398-21AA6E1308C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5BACF5B7-D9D0-4465-9EB0-39ED09EF4BA7}] => (Allow) F:\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [Arquivo não assinado]
FirewallRules: [{AD8B1787-41B3-4209-957C-2ED7F9485A5D}] => (Allow) F:\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [Arquivo não assinado]
FirewallRules: [{3F6FCF36-F04C-423D-BEEA-4AC48EA8B3F3}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{CA295E7B-492A-413B-834C-360EC7591568}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{585DB1A2-3A1E-42C6-84B3-D0D9B23E0A62}] => (Allow) F:\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{3E5E0C43-89E8-4453-A7FD-99642F110A86}] => (Allow) F:\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{987254F2-7AAB-4D69-B432-982775E61A4D}] => (Allow) F:\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{00DF13BB-B8DC-495A-AB2B-1A8BDF2ED775}] => (Allow) F:\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{67139F35-F527-44C9-854B-C067005423BC}] => (Allow) F:\Steam\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe (MachineGames Sweden AB) [Arquivo não assinado]
FirewallRules: [{416A573F-E5E4-4051-AF65-64A1581BB2A3}] => (Allow) F:\Steam\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe (MachineGames Sweden AB) [Arquivo não assinado]
FirewallRules: [{B194437B-4C72-49BF-8904-1E49387AF416}] => (Allow) F:\Steam\steamapps\common\Sniper Elite 5\launcher\sniperelite5.exe (Rebellion) [Arquivo não assinado]
FirewallRules: [{A056D6A5-D9B3-438C-9769-5AA8D974AB91}] => (Allow) F:\Steam\steamapps\common\Sniper Elite 5\launcher\sniperelite5.exe (Rebellion) [Arquivo não assinado]
FirewallRules: [{CEE8C472-2B40-462E-8591-6066231267D5}] => (Allow) F:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe (Valve Corp. -> Activision Publishing Inc.)
FirewallRules: [{94F620CC-B904-40E1-A713-389EFF1B2F3B}] => (Allow) F:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe (Valve Corp. -> Activision Publishing Inc.)
FirewallRules: [{65FBEA72-3BD7-4EE2-9218-D50E2BE862D3}] => (Allow) F:\EA\Medal of Honor Warfighter\MOHW.exe => Nenhum Arquivo
FirewallRules: [{A9E4392C-76DE-4080-949B-80C4DC92BF17}] => (Allow) F:\EA\Medal of Honor Warfighter\MOHW.exe => Nenhum Arquivo
FirewallRules: [{4422BAAE-E9F0-4421-A4F9-DA03CA16654B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{4CE237E3-50A7-4A66-B099-488B79C38444}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{8B51CA2D-0744-4EA1-B4CF-4F4232D8644C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{312AD0D5-E6AE-446C-9697-F178D63D8C42}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{FC026DDD-AB35-4AB8-8FC8-FA8E7B32D30D}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{078E1A75-E792-460B-94B9-F65ABF6F700E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{B7FF3612-5E5E-46C7-BC99-77A1FD1EABDB}] => (Allow) F:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{64AE3135-2B1C-43BB-80E6-F2AB5E07B802}] => (Allow) F:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AE71C0FB-6BC8-4F08-BB14-D344D7CBECCE}] => (Allow) F:\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [Arquivo não assinado]
FirewallRules: [{DECDCB8B-3FEB-4530-AB95-E44C022BF029}] => (Allow) F:\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [Arquivo não assinado]
FirewallRules: [TCP Query User{34F20B42-05D9-4249-9F90-3903FBCD04DA}F:\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) F:\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [UDP Query User{B17B3414-9E15-4BB7-BE4E-4DAB86A6C793}F:\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) F:\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [TCP Query User{CC3593D7-0576-43CC-9BCC-1EBCB31D5544}F:\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) F:\steam\steamapps\common\doom\doomx64vk.exe (id Software) [Arquivo não assinado]
FirewallRules: [UDP Query User{07BF6356-264F-4D65-B16A-1A8ACED34D30}F:\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) F:\steam\steamapps\common\doom\doomx64vk.exe (id Software) [Arquivo não assinado]
FirewallRules: [{3983DC98-C260-4536-B886-F43D8EC3EDF6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C30BC69C-F562-483A-BC57-9698733E1FCC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BB0B2DCF-7F5C-44BC-BAE7-659F281E6507}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{73145157-7A7E-4AF9-91C8-9E8E2ED72FF0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5E259E08-1AB3-441D-AEF4-1C1D322A08F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{DD569082-43AD-4F58-8BDE-91453DF6E159}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Pontos de Restauração =========================
23-11-2023 18:54:24 Instalador de Módulos do Windows
23-11-2023 18:55:21 Instalador de Módulos do Windows
23-11-2023 18:59:31 Instalador de Módulos do Windows
06-12-2023 23:34:27 Instalador de Módulos do Windows
06-12-2023 23:36:41 Instalador de Módulos do Windows
==================== Dispositivos Apresentando Falhas No Gerenciador ============
==================== Erros no Log de eventos: ========================
Erros em Aplicativos:
==================
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado.
.
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x8007045b, O sistema está sendo desligado.
.
Error: (12/07/2023 12:00:01 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Error: (10/14/2023 12:33:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: wuauclt.exe, versão: 10.0.19041.3031, carimbo de data/hora: 0x35946a52
Nome do módulo com falha: ntdll.dll, versão: 10.0.19041.3393, carimbo de data/hora: 0xfeef31d3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000634f6
ID do processo com falha: 0x2a38
Hora de início do aplicativo com falha: 0x01d9feb22ffb7705
Caminho do aplicativo com falha: C:\WINDOWS\system32\wuauclt.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll
ID do Relatório: eba9f9d7-89db-467c-a623-90b60f0fd971
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (10/02/2023 05:53:48 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: O Windows não pode acessar o arquivo por um destes motivos:
há um problema de conexão com a rede, o disco no qual o arquivo está armazenado ou nos drivers de armazenamento
instalados neste computador, ou o disco está ausente.
O Windows fechou o programa Sniper5 D3D12_Retail_Submission por causa desse erro.
Programa: Sniper5 D3D12_Retail_Submission
Arquivo:
O valor do erro está listado na seção Dados Adicionais.
Ação do Usuário
1. Abra o arquivo novamente.
Esta situação pode ser um problema temporário corrigida quando o programa é executado novamente.
2.
Se o arquivo ainda não puder ser acessado e
- não estiver na rede,
o administrador da rede deverá verificar se não há um problema com a rede e se o servidor puder ser contatado.
- Está em um disco removível, por exemplo, um disquete ou CD-ROM, verifique se o disco está completamente inserido no computador.
3. Verifique e repare o sistema de arquivos ao executar CHKDSK. Para executar CHKDSK, clique em Iniciar, clique em Executar, digite CMD e clique em OK. No prompt de comando, digite CHKDSK /F e pressione ENTER.
4. Se o problema persistir, restaure o arquivo de uma cópia de backup.
5. Determine se outros arquivos no mesmo disco podem ser abertos. Em caso negativo, o disco pode estar danificado. Se for um disco rígido, contate o administrador ou o fornecedor de hardware do computador para
obter assistência adicional.
Dados Adicionais
Valor do erro: C000009D
Tipo de disco: 0
Error: (10/02/2023 05:53:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sniper5_dx12.exe, versão: 2023.8.10.35004, carimbo de data/hora: 0x64d54362
Nome do módulo com falha: xaudio2_9.dll, versão: 10.0.19041.2913, carimbo de data/hora: 0x6388ff85
Código de exceção: 0xc0000006
Deslocamento da falha: 0x0000000000065b40
ID do processo com falha: 0x1dec
Hora de início do aplicativo com falha: 0x01d9f56315b8067d
Caminho do aplicativo com falha: F:\Steam\steamapps\common\Sniper Elite 5\bin\sniper5_dx12.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\xaudio2_9.dll
ID do Relatório: a418f0d3-73b6-40f8-a6b3-10e6f6eaa8d3
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (09/30/2023 09:28:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informações sobre o Serviço de Cópias de Sombra de Volume: não é possível iniciar o Servidor COM com CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} e nome CEventSystem. [0x8007045b, O sistema está sendo desligado.
]
Erros de Sistema:
=============
Error: (12/08/2023 03:26:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/07/2023 12:01:30 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço SysMain terminou com o erro:
Parâmetro incorreto.
Error: (12/04/2023 12:05:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço NVIDIA LocalSystem Container foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 6000 milissegundos: Reiniciar o serviço.
Error: (12/04/2023 12:05:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço NVIDIA LocalSystem Container terminou com o erro:
Um executável de comando genérico retornou um resultado que indica falha.
Error: (12/04/2023 10:19:37 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/04/2023 10:19:08 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/02/2023 08:14:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Error: (12/02/2023 08:14:00 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IM8TIRL)
Description: O servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter não se registrou no DCOM dentro do tempo limite necessário.
Windows Defender:
================
Date: 2023-09-13 08:41:34
Description:
O Acesso Controlado a Pastas impediu C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\avp.exe de fazer alterações na memória.
Hora da detecção: 2023-09-13T11:41:34.416Z
Usuário: AUTORIDADE NT\SISTEMA
Caminho: \Device\CdRom0
Nome do Processo: C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\avp.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.966Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
Date: 2023-09-13 08:39:30
Description:
C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe foi impedido de modificar %userprofile%\Documents\Assassin's Creed Unity\ pelo Acesso Controlado a Pastas.
Hora da detecção: 2023-09-13T11:39:30.964Z
Usuário: DESKTOP-IM8TIRL\Marcelo Tabone
Caminho: %userprofile%\Documents\Assassin's Creed Unity\
Nome do Processo: C:\Users\55119\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
Versão da Inteligência de Segurança: 1.381.2055.0
Versão do Mecanismo: 1.1.19900.2
Versão do Produto: 4.18.2211.5
CodeIntegrity:
===============
Date: 2023-09-13 09:18:38
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Panda Security\Panda Security Protection\PSNWSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-09-13 08:44:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky 21.14\x64\com_antivirus.dll that did not meet the Windows signing level requirements.
==================== Informações da Memória ===========================
BIOS: Award Software International, Inc. FA 04/23/2013
placa-mãe: Gigabyte Technology Co., Ltd. GA-78LMT-USB3
Processador: AMD FX(tm)-6300 Six-Core Processor
Percentagem de memória em uso: 55%
RAM física total: 8173.55 MB
RAM física disponível: 3674.08 MB
Virtual Total: 16877.55 MB
Virtual disponível: 10199.31 MB
==================== Drives ================================
Drive c: (SSD WIN 10) (Fixed) (Total:464.63 GB) (Free:398.72 GB) (Model: CT500BX500SSD1 ATA Device) NTFS
Drive d: () (Fixed) (Total:0 GB) (Free:0 GB) (Model: CT500BX500SSD1 ATA Device)
Drive f: (SSD Jogos) (Fixed) (Total:930.99 GB) (Free:485.26 GB) (Model: SanDisk SSD PLUS 1000GB ATA Device) NTFS
\\?\Volume{6aa303f1-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{6aa303f1-0000-0000-0000-602e74000000}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS
\\?\Volume{642cc7b8-0000-0000-0000-20bfe8000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Tabela de Partições ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 6AA303F1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=525 MB) - (Type=27)
Partition 4: (Not Active) - (Size=535 MB) - (Type=06)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 642CC7B8)
Partition 1: (Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=536 MB) - (Type=27)
==================== Fim de Addition.txt =======================