Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 26.02.2024 01
Executado por Users (04-03-2024 15:10:42)
Executando a partir de C:\Users\Users\Desktop
Microsoft Windows 10 Pro Versão 22H2 19045.4123 (X64) (2023-06-09 13:45:44)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-1718706080-4065284056-1823354823-500 - Administrator - Disabled)
Convidado (S-1-5-21-1718706080-4065284056-1823354823-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1718706080-4065284056-1823354823-503 - Limited - Disabled)
Users (S-1-5-21-1718706080-4065284056-1823354823-1001 - Administrator - Enabled) => C:\Users\Users
WDAGUtilityAccount (S-1-5-21-1718706080-4065284056-1823354823-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1046-1033-7760-BC15014EA700}) (Version: 23.008.20555 - Adobe)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aplicativo Itaú (HKLM-x32\...\{C970825D-EDC2-46E5-A5E7-BA7A0B3E7406}) (Version: 1.0.185 - Banco Itaú)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.1.6099 - Avast Software)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 122.1.63.165 - Autores do Brave)
CPUID CPU-Z 2.09 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.09 - CPUID, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.95 - Google LLC)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart C4400 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{886E586A-9121-4515-9C18-2C04202614B2}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Instalador de Certificados Digitais do SERPRO versão 1.1.0 (HKLM\...\{E6F75443-D6D0-4DB7-9A5D-09AAD1A20075}_is1) (Version: 1.1.0 - SERPRO)
Java 8 Update 391 (64-bit) (HKLM\...\{71324AE4-039E-4CA4-87B4-2F64180391F0}) (Version: 8.0.3910.13 - Oracle Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Retail - pt-br) (Version: 16.0.17231.20236 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1718706080-4065284056-1823354823-1001\...\OneDriveSetup.exe) (Version: 24.020.0128.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 123.0 (x64 pt-BR)) (Version: 123.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 114.0.1 - Mozilla)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17231.20236 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17231.20236 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.17231.20236 - Microsoft Corporation) Hidden
Opera Stable 107.0.5045.36 (HKU\S-1-5-21-1718706080-4065284056-1823354823-1001\...\Opera 107.0.5045.36) (Version: 107.0.5045.36 - Opera Software)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.5 - Frank Heindörfer, Philip Chinery)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.29.4 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Warsaw 2.41.0.12 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.41.0.12 - Topaz)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Zebra Font Downloader (HKLM-x32\...\Zebra Font Downloader_is1) (Version:  - Zebra Technologies Corporation)
ZebraDesigner 2 (HKLM-x32\...\{CAF27047-C758-4927-9699-BBB0C2B0E56F}) (Version: 2.2.3.4266 - Zebra Technologies Corporation) Hidden
ZebraDesigner 2 (HKLM-x32\...\ZebraDesigner 2) (Version: 2.2.3.4266 - Zebra Technologies Corporation)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-02-15] ()
Complemento do Mecanismo de Mídia de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-06-13] (Microsoft Corporation)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1100.416.0_x64__8wekyb3d8bbwe [2024-03-01] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-07] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2407.10.0_x64__cv1g1gvanyjgm [2024-03-04] (WhatsApp Inc.) [Startup Task]

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1718706080-4065284056-1823354823-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-02-19] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Users\Desktop\Rose - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Módulos Carregados (Whitelisted) =============

2023-06-09 11:39 - 2005-03-12 00:07 - 000087040 _____ () [Arquivo não assinado] C:\Windows\System32\pdfcmnnt.dll

==================== Alternate Data Streams (Whitelisted) ========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\ProgramData:chnpbmzkyg [274]
AlternateDataStreams: C:\ProgramData:YXVtLmh6aQ [2802]
AlternateDataStreams: C:\Windows:nlsPreferences [0]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aDXs4 [3506]
AlternateDataStreams: C:\Users\All Users:chnpbmzkyg [274]
AlternateDataStreams: C:\Users\All Users:YXVtLmh6aQ [2802]
AlternateDataStreams: C:\Users\Todos os Usuários:chnpbmzkyg [274]
AlternateDataStreams: C:\Users\Todos os Usuários:YXVtLmh6aQ [2802]
AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:chnpbmzkyg [274]
AlternateDataStreams: C:\ProgramData\Dados de Aplicativos:YXVtLmh6aQ [2802]

==================== Modo de Segurança (Whitelisted) ==================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-02-02] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1718706080-4065284056-1823354823-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 181.213.132.4 - 181.213.132.5
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

Network Binding:
=============
Ethernet: Topaz OFD Network Monitor -> nt_wsddntf (enabled) 
Wi-Fi: Topaz OFD Network Monitor -> nt_wsddntf (enabled) 

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Se uma entrada for incluída na fixlist, será removida.)

HKU\S-1-5-21-1718706080-4065284056-1823354823-1001\...\StartupApproved\Run: => "Opera Stable"

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{C937F9FC-ED3A-4106-B6E0-89110F651C38}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{45D25DE9-0F2F-443B-AC12-BA0A9EBC8DE2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{24D90DE3-6A51-4C85-BB1E-B09BBCFD97BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B37F2225-FF95-45E3-804B-2FC0B24C83AD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{106138AA-336E-4ADE-9643-1458BDB2E1F8}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{67E76497-43F8-42FA-B841-D4F61CAF9D04}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8DB505A0-BBEF-4674-AFE4-C597DBB7955D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E42F1B57-2BFA-4CE4-A256-6532982E1212}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{55BE19F6-9745-4EC6-873A-20A1646B459D}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{C3822D7F-516B-4410-BFC9-E7453401C675}C:\users\users\appdata\local\programs\opera\opera.exe] => (Block) C:\users\users\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{45291238-ED31-42A8-A3BB-789CD8CC7419}C:\users\users\appdata\local\programs\opera\opera.exe] => (Block) C:\users\users\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{8D3A3EB8-87EE-48DA-8D3F-D3B2FC3F6848}C:\users\users\downloads\anydesk.exe] => (Allow) C:\users\users\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [UDP Query User{3D2C5FC9-71A0-426A-AF5F-C80B38F2A619}C:\users\users\downloads\anydesk.exe] => (Allow) C:\users\users\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{C3385A2E-295C-412C-8AD8-E78A6FF0551B}] => (Allow) C:\Program Files\Topaz OFD\Warsaw\core.exe (TPZ SOLUCOES DIGITAIS LTDA -> Topaz OFD)
FirewallRules: [TCP Query User{FA80A283-8D68-4FBE-B21E-5B41CE81B772}C:\users\users\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\users\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú)
FirewallRules: [UDP Query User{77D77CA1-9200-497D-A68C-B675259B3B4D}C:\users\users\appdata\local\aplicativo itau\itauaplicativo.exe] => (Allow) C:\users\users\appdata\local\aplicativo itau\itauaplicativo.exe (ITAU UNIBANCO S.A. -> Banco Itaú)
FirewallRules: [{22DA05B0-39E6-499E-9A44-15B4BDBB9C1A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{05C37D3B-19F4-4373-9213-9C33ED2B6212}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9E036C5D-B637-4815-B58A-B10AE4AEC671}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0D8A2DBF-24AD-4292-88E3-BFA5490E5147}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CCE19C38-4310-4C24-AAA4-91B682F92699}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{FB3A4647-B1B4-4E24-81E5-50892F3FC9A2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A54EA5A0-7DED-46C5-905F-819088634BA2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.66\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Pontos de Restauração =========================

04-03-2024 14:57:06 ZHPcleaner

==================== Dispositivos Apresentando Falhas No Gerenciador ============

Name: Controlador de comunicação PCI simples
Description: Controlador de comunicação PCI simples
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (03/04/2024 08:45:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x278c
Hora de início do aplicativo com falha: 0x01da6e2978e8a95e
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 1fb445eb-4619-49d4-a3f6-8d71a3398bad
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:45:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x284
Hora de início do aplicativo com falha: 0x01da6e29705f9cab
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 1b97010b-08e5-425c-88c5-f37258791cf1
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:45:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x2f0c
Hora de início do aplicativo com falha: 0x01da6e296818c305
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 7904a9e8-0a94-425a-bb0a-0da8f064d95f
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:44:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x2fe4
Hora de início do aplicativo com falha: 0x01da6e2959e0d934
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: b56c8453-d8de-4e41-bb55-11083ec795c8
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:44:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x750
Hora de início do aplicativo com falha: 0x01da6e29525fdc97
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 67b95d17-e0f0-467b-9150-bff0638b4651
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:44:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x18fc
Hora de início do aplicativo com falha: 0x01da6e293fdb7ebf
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: b0749e01-cbd2-4fbb-ac8e-a688ebf8dc1e
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:30:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x308
Hora de início do aplicativo com falha: 0x01da6e276d7e5b1d
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 0d15b615-997e-4eef-bb88-893c0ced2b2d
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI

Error: (03/04/2024 08:30:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchApp.exe, versão: 10.0.19041.4123, carimbo de data/hora: 0x9a7d7d3a
Nome do módulo com falha: ConstraintIndex.Search.dll, versão: 10.0.19041.3636, carimbo de data/hora: 0x949d2ba3
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000b6903
ID do processo com falha: 0x2778
Hora de início do aplicativo com falha: 0x01da6e2769eb8630
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Caminho do módulo com falha: C:\Windows\System32\ConstraintIndex.Search.dll
ID do Relatório: 901b927a-10e0-4310-80ec-408393094b4d
Nome completo do pacote com falha: Microsoft.Windows.Search_1.14.13.19041_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI


Erros de Sistema:
=============
Error: (03/04/2024 02:28:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Microsoft Office Click-to-Run Service foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (03/04/2024 02:28:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Adobe Acrobat Update Service foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (03/04/2024 02:28:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Nalpeiron Licensing Service foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (03/04/2024 08:30:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Serviço do Google Update (gupdate) devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (03/04/2024 08:30:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Serviço do Google Update (gupdate).

Error: (03/04/2024 08:28:31 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 17:05:15 do dia ‎03/‎03/‎2024 não era esperado.

Error: (03/03/2024 05:07:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Serviço do Google Update (gupdate) devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (03/03/2024 05:07:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Serviço do Google Update (gupdate).


CodeIntegrity:
===============
Date: 2024-03-04 14:35:54
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Informações da Memória =========================== 

BIOS: American Megatrends Inc. 0506 03/31/2011
placa-mãe: ASUSTeK Computer INC. P8H61-M LE
Processador: Intel(R) Core(TM) i5-2300 CPU @ 2.80GHz
Percentagem de memória em uso: 53%
RAM física total: 8104.32 MB
RAM física disponível: 3805 MB
Virtual Total: 11816.32 MB
Virtual disponível: 7199.43 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.16 GB) (Free:27.04 GB) (Model: SanDisk SSD PLUS 120GB ATA Device) NTFS
Drive d: (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) (Model: ST31000524AS ATA Device) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive f: () (Fixed) (Total:911.98 GB) (Free:281.45 GB) (Model: ST31000524AS ATA Device) NTFS

\\?\Volume{ddad6671-af04-4e2b-acd1-aa6bb7fe9fe3}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{02816177-22db-4697-b52b-7501196d0a68}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: 4BE1B172)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6E51D55C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=912 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt =======================