Resultado da análise adicional Farbar Recovery Scan Tool (x64) Versão: 30-01-2022
Executado por DVM (04-02-2022 08:56:48)
Executando a partir de C:\Users\DVM\Desktop
Microsoft Windows 10 Home Single Language Versão 20H2 19042.1466 (X64) (2020-09-10 17:08:21)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================


(Se uma entrada for incluída na fixlist, será removida.)

Administrador (S-1-5-21-3349755285-804529065-3594935135-500 - Administrator - Disabled)
Convidado (S-1-5-21-3349755285-804529065-3594935135-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-3349755285-804529065-3594935135-503 - Limited - Disabled)
DVM (S-1-5-21-3349755285-804529065-3594935135-1001 - Administrator - Enabled) => C:\Users\DVM
WDAGUtilityAccount (S-1-5-21-3349755285-804529065-3594935135-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3349755285-804529065-3594935135-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.013.20064 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
AdoptOpenJDK JRE with Hotspot 11.0.8.10 (x64) (HKLM\...\{E70F16B5-3394-48B9-B75B-023E27AE6917}) (Version: 11.0.8.10 - AdoptOpenJDK)
AdoptOpenJDK JRE with Hotspot 8.0.265.01 (x64) (HKLM\...\{567FC2E0-5FEB-44CE-B824-CA2B22D1708E}) (Version: 8.0.265.01 - AdoptOpenJDK)
AdoptOpenJDK JRE with Hotspot 8.0.265.01 (x86) (HKLM-x32\...\{18728A65-412D-4BFA-9D31-63BA4CFE72B5}) (Version: 8.0.265.01 - AdoptOpenJDK)
Aplicativo Itaú (HKLM-x32\...\{4B6778AC-BABE-44D4-BDF3-1BA382F7D580}) (Version: 1.0.162 - Banco Itaú)
Google Chrome (HKLM\...\{20FE816A-FD5E-3CC2-8EE5-A503ED028EE4}) (Version: 98.0.4758.81 - Google LLC)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
K-Lite Codec Pack 15.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.2.0 - KLCP)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.76 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - pt-br (HKLM\...\ProPlus2019Volume - pt-br) (Version: 16.0.10366.20016 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3349755285-804529065-3594935135-1001\...\OneDriveSetup.exe) (Version: 22.002.0103.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{49e969a1-2990-464d-92b5-25f6f34573c6}) (Version: 12.0.40664.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{d2c8df0e-f15d-4426-9e51-f13f329f9cb4}) (Version: 12.0.40664.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26626 (HKLM-x32\...\{205ac6de-39ff-462b-8d58-7ca6ad1f0efa}) (Version: 14.15.26626.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26626 (HKLM-x32\...\{ea07c0c2-5f15-4558-9c18-a2fe7ce9bb8e}) (Version: 14.15.26626.1 - Microsoft Corporation)
Mozilla Firefox (x64 pt-BR) (HKLM\...\Mozilla Firefox 96.0.3 (x64 pt-BR)) (Version: 96.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.2.2 - Mozilla)
Mozilla Thunderbird 78.7.1 (x64 pt-BR) (HKLM\...\Mozilla Thunderbird 78.7.1 (x64 pt-BR)) (Version: 78.7.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10366.20016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10366.20016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.10366.20016 - Microsoft Corporation) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Verificação de integridade do PC Windows (HKLM\...\{BDA76587-4949-46D7-8427-AE49451F93D4}) (Version: 3.2.2110.14001 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)

Packages:
=========
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2021-12-05] (INTEL CORP) [Startup Task]
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20500.501.0_x64__rz1tebttyb220 [2020-09-10] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-01-29] (HP Inc.)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2020-09-10] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2020-09-10] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-14] (Microsoft Studios) [MS Ad]
Pyramid Solitaire -> C:\Program Files\WindowsApps\TreeCardGames.PyramidSolitaire_5.1.0.0_x64__n666hb6ddc5jp [2020-10-25] (TreeCardGames) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2020-09-10] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0 [2022-01-21] (Spotify AB) [Startup Task]

==================== Análise Personalizada CLSID (Whitelisted): ==============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3349755285-804529065-3594935135-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\DVM\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => Nenhum Arquivo
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Atalhos & WMI ========================

==================== Módulos Carregados (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Modo de Segurança (Whitelisted) ==================

==================== Associação (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2020-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2020-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-10-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-10] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts Conteúdo: =========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2019-12-07 06:14 - 2022-02-03 18:30 - 000002103 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

==================== Outras Áreas ===========================

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\AdoptOpenJDK\jre-8.0.265.01-hotspot\bin;C:\Program Files\AdoptOpenJDK\jre-11.0.8.10-hotspot\bin;C:\Program Files (x86)\AdoptOpenJDK\jre-8.0.265.01-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3349755285-804529065-3594935135-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 181.213.132.4 - 181.213.132.5
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

==================== Regras do Firewall (Whitelisted) ================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{0147DFE3-A4F6-4187-95A5-37D0CA010D08}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{80B2A04F-122E-4BD1-A5E9-404245B8C567}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0C4AF2A2-A169-46B6-AAF8-664129F47BFB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{93E0C3C5-6DB4-40C7-B946-1CF197B0692A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F6A7587F-2AB7-4F2E-82C1-2A4937A88B08}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0C9F4B79-4319-4C47-A300-D02D770D97FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5EFF311D-30C6-4EC2-91B3-8E05E159E11B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1F2DB6B3-EA7D-4403-95A2-C58ACCDCCCD6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0CC00AE5-A435-4DE3-A10E-C9DBCB1F81EA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{33D2506C-F6C7-4499-ABB2-46A5532BB27A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D93442F-3A1B-4C7B-878E-2B3A53E717CA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5E569E26-AAA5-4CBB-95A3-9E2CB17526CB}] => (Allow) C:\Users\DVM\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{10E4299E-1766-46AB-A76B-FB623BF34D15}] => (Allow) C:\Users\DVM\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{948B0D7E-E548-44BB-8357-73017910A27B}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{3D05606F-106F-4EA5-B89D-60360FCEF59C}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe => Nenhum Arquivo
FirewallRules: [TCP Query User{ED872C62-04CD-45DE-A7CE-E13FD20512DE}C:\users\dvm\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\dvm\appdata\local\microsoft\teams\current\teams.exe => Nenhum Arquivo
FirewallRules: [UDP Query User{D3C87437-4C2C-458A-8A6F-9549E0FF782D}C:\users\dvm\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\dvm\appdata\local\microsoft\teams\current\teams.exe => Nenhum Arquivo
FirewallRules: [{639CE060-D57A-4A57-A1D9-D2A3461C33B5}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3D4561D6-5437-44BB-9393-BE2A2CEF8880}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{44609419-1A2F-4358-920A-6E8A6EA3A5F9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{08FFB14C-F6E9-4C3E-AC1A-CFC1968EAF83}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D88A64A7-7B04-4A65-BBBF-24E8E84EA94F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F85CFF75-0835-4270-9364-56A4C736BFFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8923CA52-B639-45FD-B7C8-09F37FFFA405}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F83C86A6-A4C4-458D-8A4A-F63B97F5B534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2E3A89BE-E5B6-4324-B53C-2EE0FA116F28}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C285620F-35A6-4D85-92BF-A99F6FB15FBE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{82E2EE04-BE7D-4B16-AD59-9B96338E96CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{64F32346-06A0-48EF-BB5B-A8B03B3AED04}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FC68C372-B8D2-4B3E-A043-9308D90462A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C7C8C038-30F7-427D-923D-25AF9E94DC02}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D3FC41F9-F249-40E0-BAFF-B95EBE07ECA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Pontos de Restauração =========================

21-01-2022 15:44:45 Ponto de Verificação Agendado
30-01-2022 15:20:11 Ponto de Verificação Agendado

==================== Dispositivos Apresentando Falhas No Gerenciador ============


==================== Erros no Log de eventos: ========================

Erros em Aplicativos:
==================
Error: (02/02/2022 03:22:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: WaaSMedicAgent.exe, versão: 10.0.19041.1320, carimbo de data/hora: 0x0ca0147c
Nome do módulo com falha: WaaSMedicCapsule.dll, versão: 10.0.19041.1320, carimbo de data/hora: 0x25289811
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000000aea2
ID do processo com falha: 0x125c
Hora de início do aplicativo com falha: 0x01d818613106a12b
Caminho do aplicativo com falha: C:\Windows\System32\WaaSMedicAgent.exe
Caminho do módulo com falha: C:\Windows\System32\WaaSMedicCapsule.dll
ID do Relatório: 7d4507b9-81e0-4058-8334-cecb59491664
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (01/30/2022 07:32:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa explorer.exe versão 10.0.19041.1415 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 2890

Hora de Início: 01d81504e727f230

Hora de Término: 18876

Caminho do Aplicativo: C:\Windows\explorer.exe

ID do Relatório: 2fb62df4-f600-40c2-8a6c-5f94f40313ae

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (01/14/2022 09:13:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: svchost.exe_WpnUserService, versão: 10.0.19041.546, carimbo de data/hora: 0x058e175a
Nome do módulo com falha: ntdll.dll, versão: 10.0.19041.1288, carimbo de data/hora: 0xa280d1d6
Código de exceção: 0xc000000d
Deslocamento da falha: 0x0000000000112174
ID do processo com falha: 0x4ec
Hora de início do aplicativo com falha: 0x01d7ff35a1b9d6ac
Caminho do aplicativo com falha: C:\Windows\system32\svchost.exe
Caminho do módulo com falha: C:\Windows\SYSTEM32\ntdll.dll
ID do Relatório: 2819ee54-ebec-4c51-9e69-daf60156827b
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (01/07/2022 12:42:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa uTorrent.exe versão 3.5.5.46096 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 1d00

Hora de Início: 01d7ff35edecd80a

Hora de Término: 555

Caminho do Aplicativo: C:\Users\DVM\AppData\Roaming\uTorrent\uTorrent.exe

ID do Relatório: b90e58b3-73aa-4bde-837d-b80fd1d0097f

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (12/31/2021 01:35:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa chrome.exe versão 96.0.4664.110 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 2f4c

Hora de Início: 01d7f9d8c515f9cf

Hora de Término: 1055

Caminho do Aplicativo: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID do Relatório: 64a61ea5-dd59-47b2-8e68-6615ac4f565d

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (12/24/2021 09:00:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa uTorrent.exe versão 3.5.5.46096 parou de interagir com o Windows e foi fechado. Para ver se mais informações sobre o problema estão disponíveis, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 1c10

Hora de Início: 01d7f20ec8784a84

Hora de Término: 616

Caminho do Aplicativo: C:\Users\DVM\AppData\Roaming\uTorrent\uTorrent.exe

ID do Relatório: 1037b359-4657-49cd-b7f6-3758b4debacb

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha: 

Tipo com falha: Unknown

Error: (12/12/2021 04:13:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: StartMenuExperienceHost.exe, versão: 0.0.0.0, carimbo de data/hora: 0x4fe0bcb3
Nome do módulo com falha: StartUI.dll, versão: 10.0.19041.1320, carimbo de data/hora: 0xeda42c21
Código de exceção: 0x80000003
Deslocamento da falha: 0x00000000002825d9
ID do processo com falha: 0xc68
Hora de início do aplicativo com falha: 0x01d7d85d0dc3a739
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Caminho do módulo com falha: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartUI.dll
ID do Relatório: 267d9eba-0375-474c-8668-57476ed97bff
Nome completo do pacote com falha: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: App

Error: (12/12/2021 04:13:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: StartMenuExperienceHost.exe, versão: 0.0.0.0, carimbo de data/hora: 0x4fe0bcb3
Nome do módulo com falha: StartUI.dll, versão: 10.0.19041.1320, carimbo de data/hora: 0xeda42c21
Código de exceção: 0x80000003
Deslocamento da falha: 0x00000000002825d9
ID do processo com falha: 0xc68
Hora de início do aplicativo com falha: 0x01d7d85d0dc3a739
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Caminho do módulo com falha: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartUI.dll
ID do Relatório: f1b4cb91-959b-4566-8742-144d88d4c00b
Nome completo do pacote com falha: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: App


Erros de Sistema:
=============
Error: (02/03/2022 06:30:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço luafv devido ao seguinte erro: 
O carregamento deste driver foi bloqueado

Error: (02/03/2022 06:27:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço ClickToRunSvc.

Error: (02/03/2022 06:27:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço FontCache3.0.0.0.

Error: (02/03/2022 06:26:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GQD1R8Q)
Description: O servidor microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/03/2022 06:26:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GQD1R8Q)
Description: O servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/03/2022 06:26:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GQD1R8Q)
Description: O servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/03/2022 06:26:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GQD1R8Q)
Description: O servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} não se registrou no DCOM dentro do tempo limite necessário.

Error: (02/03/2022 08:57:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Windows Update devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.


Windows Defender:
================
Date: 2022-02-02 23:18:03
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {0137B9E2-B9E1-4423-B70F-6883DA9222DB}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-02-01 23:17:59
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {2C7400CC-1A72-44F7-8982-57BB7C484D66}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-01-31 23:17:55
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {C24A994B-582C-4D35-8A93-DF2A130772C6}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-01-29 23:17:58
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {6C76445A-FBEF-445F-A84C-73F76A840D62}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA

Date: 2022-01-28 23:17:54
Description: 
O exame do Microsoft Defender Antivírus foi interrompido antes da conclusão.
ID do Exame: {82273445-A609-4C15-B648-544C63AC62D9}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
Event[0]:

Date: 2022-01-21 21:37:30
Description: 
Microsoft Defender Antivírus encontrou um erro ao tentar atualizar a inteligência de segurança.
Nova Versão da Inteligência de Segurança: 
Versão da Inteligência de Segurança anterior: 1.355.2298.0
Fonte da Atualização: Servidor do Microsoft Update
Tipo da Inteligência de Segurança: Antivírus
Tipo da atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão Atual do Mecanismo: 
Versão Anterior do Mecanismo: 1.1.18800.4
Código de Erro: 0x80070102
Descrição do Erro: O tempo limite de espera foi atingido. 

CodeIntegrity:
===============
Date: 2021-07-18 22:58:15
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\chrome.dll that did not meet the Microsoft signing level requirements.

Date: 2020-12-13 18:35:58
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\chrome.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória =========================== 

BIOS: LENOVO 8RCN53WW 05/26/2019
placa-mãe: LENOVO LNVNB161216
Processador: Intel(R) Core(TM) i3-7020U CPU @ 2.30GHz
Percentagem de memória em uso: 92%
RAM física total: 4005.22 MB
RAM física disponível: 319.23 MB
Virtual Total: 8613.22 MB
Virtual disponível: 3902.2 MB

==================== Drives ================================

Drive c: (SISTEMA) (Fixed) (Total:247.29 GB) (Free:179.87 GB) NTFS
Drive d: (Arquivos) (Fixed) (Total:683.59 GB) (Free:647.64 GB) NTFS

\\?\Volume{81fd5cef-145d-43fb-ae8f-bcb4c0537682}\ (Recuperação) (Fixed) (Total:0.52 GB) (Free:0.12 GB) NTFS
\\?\Volume{2ee4811f-65b5-4fdf-9bf1-789a9b901e91}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabela de Partições ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 76867F43)

Partition: GPT.

==================== Fim de Addition.txt =======================