Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 10-07-2023
Executado por Angelo (10-07-2023 14:59:57)
Executando a partir de D:\Área de Trabalho
Microsoft Windows 10 Pro Versão 22H2 19045.3086 (X64) (2020-08-17 20:46:23)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-467048075-196725563-1868618205-500 - Administrator - Disabled)
Angelo (S-1-5-21-467048075-196725563-1868618205-1001 - Administrator - Enabled) => C:\Users\Angelo Braz
Convidado (S-1-5-21-467048075-196725563-1868618205-501 - Limited - Enabled)
DefaultAccount (S-1-5-21-467048075-196725563-1868618205-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-467048075-196725563-1868618205-1006 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-467048075-196725563-1868618205-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky (Disabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 5.05.16.529 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{fa489a41-09bb-480e-95ff-0856f05112eb}) (Version: 5.05.16.529 - Advanced Micro Devices, Inc.) Hidden
Anki (HKLM-x32\...\Anki) (Version: 2.1.43 - )
Aplicativo Itaú (HKLM-x32\...\{D0A058D6-4688-4E33-8894-8951D057990E}) (Version: 1.0.182 - Banco Itaú)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
Cisco Webex Meetings (HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\ActiveTouchMeetingClient) (Version: 43.6.4 - Cisco Webex LLC)
Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0 - Banco Bradesco S.A.)
Configurações da câmera Logitech (HKLM-x32\...\LogiUCDPP) (Version: 2.12.20.0 - Logitech Europe S.A.)
digiCamControl (HKLM-x32\...\{051b8fc1-d433-4428-bcd1-f90aa50afa23}) (Version: 2.1.4.0 - ) Hidden
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{59C0032B-88B5-41F3-B8FD-5B3356670B4F}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4B31654B-80C2-405C-91C9-49B14AEB0F42}) (Version: 2.0.32.0 - Epic Games, Inc.)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 12.1.2.15332 - Foxit Software Inc.)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.61.63 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version:  - )
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Identiv uTrust Smart Card Reader (HKLM-x32\...\{307F1256-AB13-4987-BAED-104752D425C8}) (Version: 1.17.0 - Identiv)
IRPF 2023 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País  (HKLM\...\6908-8355-8468-2086) (Version: 1.3 - Receita Federal do Brasil)
IRPF2017 (HKLM-x32\...\IRPF2017) (Version: 1.1 - Receita Federal do Brasil)
IRPF2018 (HKLM-x32\...\IRPF2018) (Version: 1.4 - Receita Federal do Brasil)
IRPF2019 (HKLM-x32\...\IRPF2019) (Version: 1.5 - Receita Federal do Brasil)
IRPF2020 (HKLM-x32\...\IRPF2020) (Version: 1.9 - Receita Federal do Brasil)
IRPF2021 (HKLM-x32\...\IRPF2021) (Version: 1.2 - Receita Federal do Brasil)
IRPF2022 (HKLM-x32\...\IRPF2022) (Version: 1.3 - Receita Federal do Brasil)
Kaspersky (HKLM-x32\...\{E396C2E3-5292-33E9-949C-349C23D784D8}) (Version: 21.13.5.506 - Kaspersky) Hidden
Kaspersky (HKLM-x32\...\InstallWIX_{E396C2E3-5292-33E9-949C-349C23D784D8}) (Version: 21.13.5.506 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{4DC8ED2C-8DA1-3701-A234-66AF6EF1CEFF}) (Version: 21.13.5.506 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{4DC8ED2C-8DA1-3701-A234-66AF6EF1CEFF}) (Version: 21.13.5.506 - Kaspersky)
K-Lite Codec Pack 17.1.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 17.1.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 5.0.17 (x86) (HKLM-x32\...\{54DE7EA9-E391-4BD2-A373-3A72A18EBDB5}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.18 (x86) (HKLM-x32\...\{1C1E15AE-F9F4-44D2-8083-3D75C0A5B1CF}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x86) (HKLM-x32\...\{AF01038B-6523-4EA7-9D9E-4F1E2927D88B}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.18 (x86) (HKLM-x32\...\{533C3C5C-56CF-42FC-85F9-58EBDC5BCD0D}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x86) (HKLM-x32\...\{59650A2A-3839-46EC-9D9C-6B3B1C743C55}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.18 (x86) (HKLM-x32\...\{749D214E-E195-4980-AAED-D8C37DA0671C}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 16.0.16529.20154 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\OneDriveSetup.exe) (Version: 23.127.0618.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.27.29016 (HKLM\...\{F07B1E25-5670-4556-9C7F-5A1966C83269}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.27.29016 (HKLM\...\{E493B8F4-E300-43EC-95D0-BDF3711297EA}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.27.29016 (HKLM-x32\...\{5CD4E357-9ED6-42AC-B654-F1FC21DD60C9}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.27.29016 (HKLM-x32\...\{E2C131AD-D30F-4D67-ACE9-B3D485E84DA8}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{098c6ff7-1af1-4c4a-b86f-c60608c98e31}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x86) (HKLM-x32\...\{0D02D706-44F2-4957-A448-E7259A0B56B9}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.18 (x86) (HKLM-x32\...\{a6c2578b-971a-4426-b13d-6980e78bc870}) (Version: 6.0.18.32522 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.18 (x86) (HKLM-x32\...\{C476DB42-E1A1-46BC-97E9-F7287D4FB3B3}) (Version: 48.75.61602 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 115.0 (x64 pt-BR)) (Version: 115.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 113.0.1 - Mozilla)
Mozilla Thunderbird (x64 pt-BR) (HKLM\...\Mozilla Thunderbird 102.13.0 (x64 pt-BR)) (Version: 102.13.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Driver de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.101.48500 - Electronic Arts, Inc.)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PDFsam Basic (HKLM\...\{24493C22-01EA-4E07-AB21-84910EB826B0}) (Version: 4.3.3.0 - Sober Lemur S.a.s. di Vacondio Andrea)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.2 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.64.316.2023 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5880 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.5 - Rockstar Games)
SafeSign 64-bits (HKLM\...\{2DF407D3-A8AD-4ACF-BFD5-5F7D42EC62FD}) (Version: 3.0.124 - A.E.T. Europe B.V.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte do iPod (HKLM\...\{713ABB2F-9ACB-4A4A-945A-CEA53C08644C}) (Version: 12.11.3.7 - Apple Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 82.0 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Verificação de integridade do PC Windows (HKLM\...\{2403B2D2-1FDC-497D-B181-F53D079FEAAA}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Webex (HKLM\...\{03482546-35AA-4BEC-A702-8B95FE6F4E02}) (Version: 43.6.0.26407 - Cisco Systems, Inc)

Packages:
=========
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-08-14] (Microsoft Corporation)
HP Scan and Capture -> C:\Program Files\WindowsApps\AD2F1837.HPScanandCapture_40.0.245.0_x64__v10z8vjag6ke6 [2020-05-08] (Hewlett-Packard Company)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_146.3.1087.0_x64__v10z8vjag6ke6 [2023-06-21] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa [2023-06-13] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2305.14002.0_x64__8wekyb3d8bbwe [2023-05-31] (Microsoft Corporation) [Startup Task]
RecForth -> C:\Program Files\WindowsApps\IOForth.Screenrecord-screenrecorder_1.1.11.0_x64__pxs7cjhtcq1xt [2023-06-21] (IOForth)

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-467048075-196725563-1868618205-1001_Classes\CLSID\{DDC34D5E-7D6D-E686-AB5A-C82D0DE991A3}\InprocServer32 -> não caminho do arquivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Nenhum Arquivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-04-19] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll -> Nenhum Arquivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Arquivo não assinado]
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-04-19] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers1_S-1-5-21-467048075-196725563-1868618205-1001: [          kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} =>  -> Nenhum Arquivo
ContextMenuHandlers1_S-1-5-21-467048075-196725563-1868618205-1001: [kpdf2wordshellext] -> {70239788-4DAE-49B8-9270-5D8614384B49} =>  -> Nenhum Arquivo
ContextMenuHandlers4_S-1-5-21-467048075-196725563-1868618205-1001: [          kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} =>  -> Nenhum Arquivo

==================== Codecs (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [Arquivo não assinado]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Arquivo não assinado]

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Angelo Braz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Módulos Carregados (Whitelisted) =============

2017-05-09 09:27 - 2017-05-09 09:27 - 003067904 _____ (A.E.T. Europe B.V.) [Arquivo não assinado] C:\Windows\System32\aetpkss1.dll
2017-05-09 09:27 - 2017-05-09 09:27 - 000040960 _____ (A.E.T. Europe B.V.) [Arquivo não assinado] C:\Windows\System32\aettask.dll
2016-07-19 20:59 - 2009-04-20 12:29 - 000136704 _____ (Hewlett-Packard Company) [Arquivo não assinado] C:\WINDOWS\System32\hpf3l70w.dll
2016-07-19 21:03 - 2009-04-20 11:29 - 000249856 _____ (Hewlett-Packard Corporation) [Arquivo não assinado] C:\WINDOWS\system32\spool\PRTPROCS\x64\hpfpp70w.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Arquivo não assinado] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Arquivo não assinado] c:\windows\system32\hpzipm12.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000029696 _____ (HP) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\HP\HPLaserJetService\DebugLogger.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000032768 _____ (HP) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000031744 _____ (HP) [Arquivo não assinado] [O arquivo está em uso] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2015-08-23 23:42 - 2022-07-15 11:00 - 000094720 _____ (Igor Pavlov) [Arquivo não assinado] C:\Program Files\7-Zip\7-zip.dll
2009-06-25 09:27 - 2009-06-25 09:27 - 000541184 _____ (Marvell Semiconductor, Inc.) [Arquivo não assinado] C:\WINDOWS\System32\mvtcpmon.dll
2023-06-01 14:01 - 2016-11-14 09:30 - 001300688 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Arquivo não assinado] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2009-06-25 09:25 - 2009-06-25 09:25 - 000144896 _____ (OpenSLP) [Arquivo não assinado] C:\WINDOWS\System32\slp64.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [254]
AlternateDataStreams: C:\ProgramData\TEMP:D061F04D [184]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation)

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-07-10 08:04 - 2022-06-10 19:36 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts

2021-10-01 16:12 - 2021-10-01 16:13 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\dotnet\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-467048075-196725563-1868618205-1001\Control Panel\Desktop\\Wallpaper -> D:\Área de Trabalho\838293.jpg
DNS Servers: 1.0.0.1 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: AutoRun_MBIM => 2
MSCONFIG\Services: Change Modem Device Service => 2
MSCONFIG\Services: DevMgmtService => 2
MSCONFIG\Services: GalaxyClientService => 3
MSCONFIG\Services: GalaxyCommunication => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSIService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: ProductAgentService => 2
MSCONFIG\Services: Steam Client Service => 3
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "VIVO INTERNET 4G"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "ISUSScheduler"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "VIVO INTERNET 4G"
HKLM\...\StartupApproved\Run32: => "Genshin Impact_Launcher"
HKLM\...\StartupApproved\Run32: => "Genshin Impact Beta_Launcher"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "ISUSPM Startup"
HKU\S-1-5-21-467048075-196725563-1868618205-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{9704DFD4-4832-4BA2-AD86-B1FA9825F1F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B8524ED1-C8B3-42D3-8377-9007CD2EAA50}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2FA0FB6A-3668-45DF-BB38-CA9816E4F7CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{60982F0A-8A31-47A3-B257-549FBC515CA2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9DE48766-BD8F-4E57-9A48-50B2D7A9F735}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
FirewallRules: [{0EAAE5A9-8970-47BB-A4F2-6A1742F28E41}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
FirewallRules: [{C69FB424-B5AD-4AD0-BD4C-43D5DE3B800A}] => (Allow) D:\Games Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe () [Arquivo não assinado]
FirewallRules: [{D9B48F0D-AE4E-4B45-80AD-9881E874D23B}] => (Allow) D:\Games Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe () [Arquivo não assinado]
FirewallRules: [{7F4F876F-6B2E-463B-B1C0-4F8D31B6DE0E}] => (Allow) LPort=57209
FirewallRules: [{B6E1770B-8CAD-4D20-A5EF-AA5E16123919}] => (Allow) LPort=57209
FirewallRules: [{ECF732B5-EE5C-4091-9D65-5E8D0926D921}] => (Allow) LPort=9100
FirewallRules: [{21270FD4-3BF9-4EAC-9CFE-E71669980D50}] => (Allow) LPort=427
FirewallRules: [{04EB6426-E32A-44E6-AF67-70FFED25D5F8}] => (Allow) LPort=161
FirewallRules: [TCP Query User{9DB0A4D1-CBE4-464B-94F0-F3C42A376D1D}C:\users\angelo braz\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\angelo braz\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú)
FirewallRules: [UDP Query User{04E3C43F-4BF3-485C-9E90-F35D803C4123}C:\users\angelo braz\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\angelo braz\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú)
FirewallRules: [{112F261F-4506-4B4E-BC4F-A32D6499DFDB}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [{29EB09DF-8EE5-4FE0-B8F2-7713B4BA3E85}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [{756953E8-A221-4F00-AEEB-038FDAECCBFB}] => (Allow) LPort=9100
FirewallRules: [{79FFF101-D1B6-4085-97B3-E76F504E1D4D}] => (Allow) LPort=427
FirewallRules: [{A0BB0B35-3961-4770-985C-F673DACB5911}] => (Allow) LPort=161
FirewallRules: [{0C508160-3801-4AB0-940C-D97A9E5C9820}] => (Allow) C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe (Hewlett-Packard Company -> Hewlett Packard)
FirewallRules: [{955D43DB-DDAA-41E9-8C4A-B581CCCC7559}] => (Allow) C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe (Hewlett-Packard Company -> Hewlett Packard)
FirewallRules: [{1AA059A1-5AB1-4335-B21F-CA0DD4C3CC27}] => (Allow) LPort=57209
FirewallRules: [{D7659CAC-C449-438C-9994-F84DD097CE69}] => (Allow) LPort=57210
FirewallRules: [{AF1355A8-C405-4208-AB10-33ED0A67F073}] => (Allow) LPort=57211
FirewallRules: [{45962D66-4A6B-45DD-BF35-E761F56AD9B2}] => (Allow) LPort=57212
FirewallRules: [{B5CCDEE1-DC04-41A0-9361-45381456A761}] => (Allow) LPort=57213
FirewallRules: [{61ACAA29-9085-4F20-B5E8-57AC45E3870A}] => (Allow) LPort=57214
FirewallRules: [{F9770054-8423-418C-B688-C5C9B3963DFE}] => (Allow) LPort=57215
FirewallRules: [{8C2914B5-15B3-4C48-AA82-78DEA6F2D379}] => (Allow) LPort=57216
FirewallRules: [{810BAA4E-1B8B-4FDA-8B72-CD45A01BE72F}] => (Allow) LPort=57217
FirewallRules: [{58F42371-9689-4D51-89AB-606D1A001BAD}] => (Allow) LPort=57218
FirewallRules: [{527DD172-FEEF-4424-84CB-9E49472E4D7F}] => (Allow) LPort=57209
FirewallRules: [{7234C66E-E760-47B9-9218-588B0194ACEE}] => (Allow) LPort=57210
FirewallRules: [{89C4D8BE-B71A-4BF3-B61E-B8169AD76902}] => (Allow) LPort=57211
FirewallRules: [{7B303FB5-0AF9-4AD1-9423-FECC397BD8A4}] => (Allow) LPort=57212
FirewallRules: [{FD6CE65C-1A77-4D7A-B1BE-3CA958B6704F}] => (Allow) LPort=57213
FirewallRules: [{CB0FB2C6-32D5-4167-A20B-63975E68D2D5}] => (Allow) LPort=57214
FirewallRules: [{00FA6BF7-B5A6-4804-B943-117AB3F24EC2}] => (Allow) LPort=57215
FirewallRules: [{9A46CF73-52B0-4155-8D32-3AC1D3DBDDD9}] => (Allow) LPort=57216
FirewallRules: [{1BFD7944-E93E-4D03-8342-7397C837FC1D}] => (Allow) LPort=57217
FirewallRules: [{07D1F187-4D33-4E9F-AABF-D958A367E8F2}] => (Allow) LPort=57218
FirewallRules: [{115E9E6E-EEEC-4B8E-877C-85F97D65B924}] => (Allow) LPort=23007
FirewallRules: [{5D10575B-15A2-47EB-A5E3-52C0030B676D}] => (Allow) LPort=23008
FirewallRules: [{88908B64-7FB1-4D51-B4FF-E7374FF75DB2}] => (Allow) LPort=33009
FirewallRules: [{0D97A74D-EF16-44D3-B3C9-A3F9AE2E9F1C}] => (Allow) LPort=33010
FirewallRules: [{51FB394C-330C-4FFB-BE85-B266C3868486}] => (Allow) LPort=33011
FirewallRules: [{50E3A043-B0B1-49D2-AABF-83F624CE67D4}] => (Allow) LPort=43012
FirewallRules: [{2AFF7942-479D-436D-B639-6E13C1F82ACC}] => (Allow) LPort=43013
FirewallRules: [{2D9EE3AE-5FEF-465D-A998-D55D06D59387}] => (Allow) LPort=53014
FirewallRules: [{FBCDA599-CAA8-4C13-A217-5A0E8D854BA9}] => (Allow) LPort=53015
FirewallRules: [{8D5B5EA6-E8AA-484A-BBA0-5D24BB080E72}] => (Allow) LPort=53016
FirewallRules: [{BFE86399-281C-4061-B880-5DC1EDB87DF1}] => (Allow) LPort=23007
FirewallRules: [{9A4B665D-B1F9-4C2F-B541-8517A8E16C98}] => (Allow) LPort=23008
FirewallRules: [{073E55E9-3949-42EB-8F95-DFF6B37A8945}] => (Allow) LPort=33009
FirewallRules: [{D631D813-84EE-4E2D-868E-F080A7DBE7AC}] => (Allow) LPort=33010
FirewallRules: [{759E29DB-3902-4EBF-B109-32E4341B5907}] => (Allow) LPort=33011
FirewallRules: [{116E6146-CB2E-4BDC-90A4-F00EA1AD4377}] => (Allow) LPort=43012
FirewallRules: [{32C1D800-6BDE-42C1-8E03-04A7ED274A83}] => (Allow) LPort=43013
FirewallRules: [{7838B0FE-A664-40F5-BF45-AC25607BD7F0}] => (Allow) LPort=53014
FirewallRules: [{29E4851B-E360-4337-93E3-EFE1331587FB}] => (Allow) LPort=53015
FirewallRules: [{36B1C54D-C58D-4F1A-AB42-333D338B7A00}] => (Allow) LPort=53016
FirewallRules: [{E4F0A1DA-EF72-4E1C-A87E-1B71F971477F}] => (Allow) LPort=50053
FirewallRules: [{02A83C19-C6C1-45F4-9B50-1C73B1EDC322}] => (Allow) LPort=50053
FirewallRules: [{322A0D8E-AA8D-4A50-B4A3-A8E3EA7B838A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0D0E2360-084D-47AC-BC5B-0F52F486118E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{59F3EB46-7110-4BD6-A6A0-32841E67EE07}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D26BDEAB-488A-4ABA-A3E1-782D4249B379}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E797C231-379C-4588-A66A-E8C48FAF680D}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [{2C17A881-B1FF-47EE-BD1F-957AE7B9C3A2}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [TCP Query User{AE1F08BC-BA00-4214-B1D0-4E1098B05D36}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{19694063-9D68-4774-8786-24271BA34A28}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{02FA6EC5-5843-47B0-9579-517E8C1D7A59}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{47A1D1A1-4C71-4545-A814-F6B7F7314D44}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{A96CFB8E-99A5-4DD9-B7C5-67B3FA7A102D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6BB2E303-7F11-4581-B66F-2D32FDD47735}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7A86D96F-8823-48BD-8969-184FE89706BD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{75A98A15-1756-4841-96D2-A63ED484BFFE}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{9050E077-3B15-4E13-8228-65D50D07FC5B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Arquivo não assinado]
FirewallRules: [{D08F0EB9-1FCA-4F89-BF4D-822CA7622AD1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ADD6CED8-054F-4731-ADAE-BD0240723ACB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{57B7D3F7-0D1B-421D-AAEF-29AA187E39F6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{1F9E6F74-E687-4100-842D-5AEF0E6E932E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EA0740D0-B82D-479B-9FAA-62CAE172F128}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8AC3F5F4-018A-4A03-A891-31F876C6444C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2E719CE5-4254-457E-9649-F342B9BB05DE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E0BD1869-4663-4D21-8ABA-877D1E0158D9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{026D2377-C507-44E3-9A36-C54137B7F563}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2CB48F69-B432-47CF-A246-E3519DAEF429}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Pontos de Restauração =========================

03-07-2023 08:00:49 Instalador de Módulos do Windows
03-07-2023 08:42:28 Instalador de Módulos do Windows

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (07/01/2023 08:52:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-T0H8SRB.local already in use; will try DESKTOP-T0H8SRB-2.local instead

Error: (07/01/2023 08:52:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister    4 DESKTOP-T0H8SRB.local. Addr 192.168.1.5

Error: (07/01/2023 08:52:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.5:5353   16 DESKTOP-T0H8SRB.local. AAAA 2804:0D41:A226:D600:B64C:22FF:8C4C:ABAA

Error: (06/30/2023 12:54:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-T0H8SRB.local already in use; will try DESKTOP-T0H8SRB-2.local instead

Error: (06/30/2023 12:54:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 DESKTOP-T0H8SRB.local. Addr 192.168.1.5

Error: (06/30/2023 12:54:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.5:5353   16 DESKTOP-T0H8SRB.local. AAAA 2804:0D41:A226:D600:B64C:22FF:8C4C:ABAA

Error: (06/30/2023 07:43:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-T0H8SRB.local already in use; will try DESKTOP-T0H8SRB-2.local instead

Error: (06/30/2023 07:43:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister    4 DESKTOP-T0H8SRB.local. Addr 192.168.1.5


Erros de Sistema:
=============
Error: (07/10/2023 02:39:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (45000 milissegundos) ao aguardar a conexão do serviço NvStreamNetworkSvc.

Error: (07/10/2023 02:38:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 14:35:50 do dia ‎10/‎07/‎2023 não era esperado.

Error: (07/10/2023 02:38:45 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORIDADE NT)
Description: 3221226513A fatal error occurred processing the restoration data.

Error: (07/08/2023 11:48:38 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (45000 milissegundos) ao aguardar a conexão do serviço NvStreamNetworkSvc.

Error: (07/02/2023 05:08:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (45000 milissegundos) ao aguardar a conexão do serviço NvStreamNetworkSvc.

Error: (07/02/2023 03:14:05 PM) (Source: DCOM) (EventID: 10005) (User: AUTORIDADE NT)
Description: O DCOM obteve o erro "1069" ao tentar iniciar o serviço TrustedInstaller com argumentos "Não Disponível" para executar o servidor:
{752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (07/02/2023 03:14:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Instalador de Módulos do Windows devido ao seguinte erro: 
Não foi possível iniciar o serviço devido a uma falha de logon.

Error: (07/02/2023 03:14:05 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: O serviço TrustedInstaller não pôde fazer logon como NT AUTHORITY\SYSTEM com a senha configurada atualmente devido ao seguinte erro: 
O servidor de autoridade de segurança local (LSA) ou de gerente de contas de segurança (SAM) estava em condições inadequadas para executar a operação de segurança.


Para verificar se o serviço está configurado corretamente, use o snap-in de Serviços do Console de Gerenciamento Microsoft.


Windows Defender:
================
Date: 2023-03-28 10:27:25
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {33B9A05B-B9F9-466D-ACB9-3B59DDE6C71B}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2023-03-28 10:22:34
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {C889AA89-6F2A-43ED-981E-7AE295922696}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2023-03-28 09:56:14
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {5EDCBF41-C554-420E-AFB2-B5AB38A29F92}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2023-03-28 09:21:13
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {2E00FDA6-61BE-4E36-A497-DC9117BECA80}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2023-03-28 09:10:33
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {349F2248-1234-4A31-950F-AC518C2008D8}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Event[0]:

Date: 2022-05-22 23:54:51
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.283.1164.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.15500.2
Código de Erro: 0x8024001e
Descrição do Erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

CodeIntegrity:
===============
Date: 2023-07-10 15:00:17
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\avp.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2023-07-10 14:57:50
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória =========================== 

BIOS: American Megatrends Inc. 2105 07/23/2010
placa-mãe: ASUSTeK Computer INC. M4A785TD-V EVO
Processador: AMD Phenom(tm) II X6 1055T Processor
Percentagem de memória em uso: 29%
RAM física total: 9982.18 MB
RAM física disponível: 7060.78 MB
Virtual Total: 10622.18 MB
Virtual disponível: 7805.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.78 GB) (Free:24.13 GB) (Model: KINGSTON SV300S37A120G ATA Device) NTFS
Drive d: (Anjo) (Fixed) (Total:931.51 GB) (Free:385.96 GB) (Model: SAMSUNG HD103SI ATA Device) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]

\\?\Volume{70b2a5bd-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{70b2a5bd-0000-0000-0000-90d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 70B2A5BD)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=526 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6BF97209)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt =======================