cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 29-06-2016
Executado por Neto (2016-07-01 23:54:43)
Executando a partir de C:\Users\Neto\Downloads
Windows 10 Home Single Language Versão 1511 (X64) (2016-05-15 02:59:59)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1578327975-1093180252-1825511845-500 - Administrator - Disabled)
Convidado (S-1-5-21-1578327975-1093180252-1825511845-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1578327975-1093180252-1825511845-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1578327975-1093180252-1825511845-1003 - Limited - Enabled)
Neto (S-1-5-21-1578327975-1093180252-1825511845-1001 - Administrator - Enabled) => C:\Users\Neto

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Reader 9.1 - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Dell Inc.)
Dell Data Vault (Version: 4.3.4.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.2.12.13 - Synaptics Incorporated)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Estúdio Conversor de Vídeo Apowersoft V4.3.3 (HKLM-x32\...\{195E8D7F-292B-4B04-A6E7-E96CAF04C767}_is1) (Version: 4.3.3 - APOWERSOFT LIMITED)
Estudo de aprimoramento de produto para HP Deskjet 2540 series (HKLM\...\{44FE0FDF-E044-4EA9-AC22-325CDD4C3241}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
Farming Simulator 15 (HKLM\...\Steam App 313160) (Version: - Giants Software)
Fishing Planet (HKLM\...\Steam App 380600) (Version: - Fishing Planet LLC)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
HP Deskjet 2540 series Ajuda (HKLM-x32\...\{70B5D5B2-8014-4C22-9963-361B1F07B81A}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet 2540 series Software básico do dispositivo (HKLM\...\{A4BA74B3-3DCB-47CC-9C80-C2CBAC26C6EB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Support Solutions Framework (HKLM-x32\...\{89A620D5-6D9C-4C31-994D-9FAEE2987E2A}) (Version: 12.4.18.7 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Flight Simulator X: Steam Edition (HKLM\...\Steam App 314160) (Version: - Microsoft Game Studios)
Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 15.0.4833.1001 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 15.0.4833.1001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 pt-BR)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\MyFreeCodec) (Version: - )
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PlanePlotter 6.4.2.9 (HKLM-x32\...\PlanePlotter_is1) (Version: - COAA)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.208 - Qualcomm Atheros Communications)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.005 - Dell Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RealFlight 7 R/C Simulator (HKLM-x32\...\RealFlight7Pro) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.8400.39034 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.44 (x32 Version: 1.48.2066.44 - Avast Software) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15024.5 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15024.5 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
SWAT 4 (HKLM-x32\...\InstallShield_{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}) (Version: 1.0.31763 - Sierra Entertainment, Inc.)
SWAT 4 (x32 Version: 1.0.31763 - Sierra Entertainment, Inc.) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.39052 - TeamViewer)
VSDC Free Video Editor version 3.2.1.373 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.2.1.373 - Flash-Integro LLC)
Warsaw 1.12.3.5 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (HKLM-x32\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814na}_is1) (Version: - Wargaming.net)
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Neto\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Neto\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Neto\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Neto\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Neto\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {03C44787-E1C7-4BFA-9F0D-2758F3BA3782} - System32\Tasks\Windows Codec Update Service => C:\Program Files (x86)\Essentials Codec Pack\WECPUpdate.exe [2012-02-03] (MediaCodec.Org)
Task: {082F55C0-A4B6-4076-9D80-F6AA7859BF7A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {0CD21A9E-0B14-472A-AEAA-99BAC4E2D045} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {0F1CE914-3D9C-4613-BD9F-681FDBE545C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {10C2B555-B76A-4030-BEE2-5AE24F52708D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-16] (Adobe Systems Incorporated)
Task: {206CEDA6-F6F9-4275-98D6-2404E24F8834} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {218AC80A-0122-4B66-915F-050BD20875A1} - System32\Tasks\SafeZone scheduled Autoupdate 1451182785 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)
Task: {2476AD70-FA76-4D09-BC4B-193C25211206} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {2826AB1D-3F20-41E7-97AB-3E9637506758} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-04-12] (Microsoft Corporation)
Task: {2B50EC96-E8B0-4813-87EB-F2FD33AB53D4} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {307EE4AA-363A-4349-AC61-6AF1332EB0C4} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\Windows\System32\GWX\GWXUXWorker.exe
Task: {32B49490-9F07-4EAB-9E1F-D1862C545568} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {3CEF4402-6B11-4E0E-9C55-1F3E03B36292} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-03-01] (AVAST Software)
Task: {462888CE-C280-44A4-B370-7C997F88AEB4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {4DA4E5DA-1E8E-47D4-A501-A187A0A2E083} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {50C00A44-1FCE-4998-956A-2A5962376DF6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {587796BD-116C-4950-AF35-FF76801441C8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Nenhum Arquivo <==== ATENÇÃO
Task: {66D685EF-D700-4FD0-A966-1A4F8E0DFB12} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {6A00B780-DBE7-4634-AFF4-402FF266EFAE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {86F45688-B981-43F6-BDA1-A7EE9E649C94} - System32\Tasks\{C20BE5B8-6A58-41C1-81A9-194E00EFC387} => pcalua.exe -a "C:\Program Files (x86)\SavePass\Uninstall.exe" -c /fcp=1
Task: {88088445-809C-4E1B-A63D-1B4FE74E2867} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {8971B921-FEB4-4113-A260-C0274DB48926} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {8BB0DE0C-8976-4050-A8FC-F7512A51DBA1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {8FB8BA66-538B-48BC-92A6-D8C7BBD48826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {9497AE18-1AB4-483F-AE2F-6052D3D65FEF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {957A056D-1F7B-40F0-98CA-DB5E1AD3B244} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {9635816E-13A6-4B43-B95B-D375B2E89E15} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Nenhum Arquivo <==== ATENÇÃO
Task: {9C6D0FB9-2D4E-45DD-AFC3-B3577CA61644} - System32\Tasks\{FC8C9B8A-D6C4-4C81-AB39-7E1A7DE30CE9} => pcalua.exe -a C:\Users\Neto\AppData\Roaming\oursurfing\UninstallManager.exe -c -ptid=2sq
Task: {9CC3B5D4-BE69-496F-8810-48804C313AE2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {9CD4219C-C008-46C8-8470-362C69042C4C} - System32\Tasks\GoogleUpdateTaskMachineUA1cfee784ca21e73 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {9E82A4C8-1DA0-402D-AA7E-DEE46DAB63B4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {9F5A6074-AFA9-4840-8E5D-0F58B1D15B61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {A233515C-3D7C-4681-9C12-6CE3A36F29AC} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {A2355501-A710-47CB-B8C0-8319E92339B9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {B87C96DA-7C0B-458F-BD26-9E3DAD634F66} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {BB1908F1-A675-433F-BAC0-6C6C96806958} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {BF53812D-E7AD-4D0F-ADD9-AE294A1710C0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {BFF0E0F5-B5BC-4BA5-AD48-DD2975DF058D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {C34F0BD1-E4CD-4E83-9487-9261F9F60D45} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {C59D51B2-FFBA-4C54-ABF4-71F5CAAD580A} - System32\Tasks\{43D988F3-4465-4D31-B3FD-EF0AA394B82D} => pcalua.exe -a C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe -c -maintain plugin
Task: {D2EFC1DA-C038-4DDA-9987-29B33FFF72B0} - \Microsoft\Windows\Setup\gwx\rundetector -> Nenhum Arquivo <==== ATENÇÃO
Task: {E8D08B4F-BDCA-4BB0-AD62-1601FF9A51A0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {EB120639-6403-4947-9DE7-CE7735B4181B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-14] (Microsoft Corporation)
Task: {EFB7A5A0-F651-42E0-A817-D21D62113C80} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {FBEF4B66-B031-4CE6-805F-076E86EA0753} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cfee784ca21e73.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

Shortcut: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\784\C\Users\Neto\Desktop\Hack Tool 2015.lnk -> hxxp://installer.ppdownload.com (Nenhum Arquivo)
Shortcut: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\780\C\Users\Neto\Desktop\Hack Tool 2015.lnk -> hxxp://installer.ppdownload.com (Nenhum Arquivo)
Shortcut: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\753\C\Users\Neto\Desktop\Hack Tool 2015.lnk -> hxxp://installer.ppdownload.com (Nenhum Arquivo)

ShortcutWithArgument: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\934\C\Users\Neto\Desktop\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.123rede.com?oem=mbtkv4&uid=WXV1E53SMT29_WDCWD7500BPVX-75JC3T0&tm=1437783017
ShortcutWithArgument: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\856\C\Users\Neto\Desktop\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.qqovd.com?oem=mbtkv4&uid=WXV1E53SMT29_WDCWD7500BPVX-75JC3T0&tm=1434584799
ShortcutWithArgument: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\831\C\Users\Neto\Desktop\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Neto\AppData\Local\Microsoft\Windows\FileHistory\Data\1063\C\Users\Neto\Desktop\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.123rede.com?oem=mbtkv4&uid=WXV1E53SMT29_WDCWD7500BPVX-75JC3T0&tm=1437783017
ShortcutWithArgument: C:\Users\Neto\AppData\Local\Google\Chrome\User Data\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list

==================== Módulos Carregados (Whitelisted) ==============

2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-21 20:02 - 2016-04-19 19:26 - 00114888 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-11-07 12:14 - 2012-04-24 22:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-05-17 19:27 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-05-17 19:27 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-15 23:27 - 2016-05-15 23:27 - 00959168 _____ () C:\Users\Neto\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-05-15 21:48 - 2016-05-15 22:49 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-21 22:33 - 2016-06-21 22:33 - 00118784 _____ () C:\ProgramData\Microsoft\Network\Dsq\browser\syshostctl.exe
2016-02-13 13:34 - 2016-02-13 13:34 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-17 19:26 - 2016-04-23 00:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-14 20:19 - 2016-05-27 23:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-14 20:18 - 2016-05-27 23:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-14 20:20 - 2016-05-27 23:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-14 20:20 - 2016-05-27 23:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2013-11-07 16:18 - 2012-09-07 23:17 - 04875576 _____ () C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
2015-05-08 14:50 - 2015-05-08 14:50 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2016-02-13 13:34 - 2016-02-13 13:34 - 03081568 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2016-02-13 13:34 - 2016-02-13 13:34 - 02394976 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2016-03-01 16:38 - 2016-03-01 16:38 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-03-01 16:38 - 2016-03-01 16:38 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-01 15:01 - 2016-07-01 15:01 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\16070102\algo.dll
2016-04-14 20:29 - 2016-04-14 20:29 - 00509344 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-15 21:48 - 2016-05-15 22:49 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-05-15 21:48 - 2016-05-15 22:49 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2013-11-07 12:11 - 2012-06-07 23:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 09:34 - 2012-06-08 09:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01040656 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-05-15 23:27 - 2016-05-15 23:27 - 00679624 _____ () C:\Users\Neto\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00237328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-12-26 19:12 - 2015-12-26 19:12 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-05-22 12:29 - 2016-05-22 12:29 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\c96e2919cff93e5b1c43e11c5540acf8\PSIClient.ni.dll
2013-11-07 12:06 - 2012-06-25 08:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\System32:E3CC167A_Bb.gbp [2]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\Temp:2899566E [145]
AlternateDataStreams: C:\ProgramData\Temp:69E87FA2 [116]
AlternateDataStreams: C:\ProgramData\Temp:A9967A61 [133]
AlternateDataStreams: C:\ProgramData\Temp:F4C624DE [123]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:2899566E [145]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:69E87FA2 [116]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:A9967A61 [133]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:F4C624DE [123]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\bb.com.br -> hxxps://seg.bb.com.br
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\123simsen.com -> www.123simsen.com

Existem ainda 7866 sites a mais.


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 09:25 - 2015-09-18 19:17 - 00000753 ____N C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Neto\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1578327975-1093180252-1825511845-1001\...\StartupApproved\Run: => "Steam"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C66FC872-7A0E-4F82-8F0C-5BF3BF64935B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{55AF63CC-CC39-4E1E-887E-B16175181492}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B100724B-786D-4238-89D2-627AB05275BE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{26D96F80-C082-4747-8EC7-02B1E3EFA332}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F9064144-9931-4684-B442-617B4D34AD0B}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{8F3EA3C0-85B8-4DD3-B90B-BA5C3AA2A653}] => (Allow) LPort=5357
FirewallRules: [{78BF4FAA-70B6-4329-A8B3-31A45C70F59A}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe
FirewallRules: [{F324B1DF-39A4-41D7-B84C-3F3C9D2925A5}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{6F5D9354-6616-4E38-A40E-E49EF35F867A}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{A6E8C515-9CF5-4C23-BF80-D6364E23FAD0}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{C30657CE-A800-4DD3-B62F-7F6CCECFC443}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{50C8672A-0CFD-4875-9338-53DF69600B8C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{9DFFF1DE-4A46-4AAE-AB7C-D213922AF249}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{8744D5AE-EEDE-471C-A9F4-55C9962A7025}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{C595036A-0658-40AD-8E9E-92D147B5F4C9}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{103FD934-87E8-45BC-900D-B9FB9353181C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{639E7368-CC70-4CB9-9579-3ECE6EC4DFF6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6D6DBAB7-0D1A-4DB2-96D4-D8C36AC5A4EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5FC3C025-6A2E-48E4-A052-CC4B6BC936C1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3D253765-B4AF-43F3-8461-69D18C2EC317}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3964233C-8AB3-4EDA-82D0-81EC6384E45C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C5BAA0EE-138E-4CEA-96D1-3EACAADFD07D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe
FirewallRules: [{F4AAA14B-7CBB-4AB3-856D-2A69F7391800}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe
FirewallRules: [{E6AB099C-530E-4C4F-A04F-3B0619FFD4F2}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{2C630154-51C8-48B6-9F2C-68FA8E97792D}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{E6F548F6-359C-4FC8-9B67-55CF98BECAB2}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{E84B3949-DCFD-48BB-AA27-56B78DE4139E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{699E3F13-8419-4540-AD3B-FC9222AEF086}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [UDP Query User{09119550-4750-4D6D-B980-7BAAF4FA28DC}C:\users\neto\downloads\fr24feed.exe] => (Allow) C:\users\neto\downloads\fr24feed.exe
FirewallRules: [TCP Query User{7B7AF0E4-637D-4D31-8246-1D2092EB4B68}C:\users\neto\downloads\fr24feed.exe] => (Allow) C:\users\neto\downloads\fr24feed.exe
FirewallRules: [{1F126255-45A4-44A4-9A5F-1C13E3C66082}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{53188C72-75F7-4FE7-844A-CA4590EC399E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E074893E-2876-4628-AB96-BC4339588491}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A3C51EAD-6DF2-4271-8B0C-EE4140C18225}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E00B4F86-053A-453C-BACE-67CC4DC106F5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{CAD96E05-B54F-4695-89B8-8ECBD564E842}C:\users\neto\downloads\f-22 raptor\raptor.exe] => (Allow) C:\users\neto\downloads\f-22 raptor\raptor.exe
FirewallRules: [TCP Query User{BFD85375-7DD4-443A-BED9-50B202230A33}C:\users\neto\downloads\f-22 raptor\raptor.exe] => (Allow) C:\users\neto\downloads\f-22 raptor\raptor.exe
FirewallRules: [{89F4288E-0FA9-4B82-B9E2-E00A1C167CB1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{241404E2-46F8-4F7E-A7F2-EDE3FAADF79E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{CE76A69A-74C0-4899-B352-4515B1B7E130}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{885B09FC-FB39-4C79-9C43-456378BDD368}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{85285620-F182-4951-ACF1-E43B597C445E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe
FirewallRules: [{2E5F74A9-EBA0-44B0-92E3-41D636485EC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe
FirewallRules: [{AFAF3F82-626D-45E2-AB80-B78E982903DC}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{FC3E0C03-FC22-42B7-9975-1A3472E596CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{868E2214-5F31-4C3F-A5A6-A42E5D5D34FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{1D1C9778-9ABC-445F-B9C0-6DAE9B1D7D56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{DC8CE6DA-DF0C-4ECC-B59C-9DAC805EB2DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{F86BA727-E7CE-4A95-A6F5-1307869D4F64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 15\x86\FarmingSimulator2015Game.exe
FirewallRules: [{7DA3A635-889D-4DC4-B772-80D8D0C9DC4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 15\x86\FarmingSimulator2015Game.exe
FirewallRules: [{88E683E4-9BFE-4087-A3BA-8BF72EF3C47F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{1F485DE4-4338-4E81-A80C-2AE92545A837}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Allow) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [UDP Query User{FCCC93D6-C454-4A56-B728-ED9F6C248131}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Allow) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [{122286F1-3970-41E3-A256-15A13F77C858}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FE6E240E-61A3-4C9F-9070-9748ADC950D6}] => (Allow) LPort=2869
FirewallRules: [{C438D290-D956-43FD-B5AD-6F101C8C36CD}] => (Allow) LPort=1900
FirewallRules: [{A4A8413F-C288-48B0-8C5D-85A60D44E989}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FSX\fsx.exe

==================== Pontos de Restauração =========================

06-06-2016 14:56:11 Ponto de Verificação Agendado
13-06-2016 20:54:21 Windows Update
22-06-2016 05:26:39 Ponto de Verificação Agendado
30-06-2016 17:50:38 Windows Live Essentials
30-06-2016 17:52:35 DirectX instalado

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (07/01/2016 11:27:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa firefox.exe versão 47.0.0.5999 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: da0

Hora de Início: 01d1d40d13a15760

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

ID do Relatório: eefb9cfb-4004-11e6-8006-a41f72f61c08

Nome completo do pacote com falha:

ID do aplicativo relativo ao pacote com falha:

Error: (07/01/2016 11:27:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ShellExperienceHost.exe, versão: 10.0.10586.306, carimbo de data/hora: 0x571afaa5
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2a7c
Hora de início do aplicativo com falha: 0xShellExperienceHost.exe0
Caminho do aplicativo com falha: ShellExperienceHost.exe1
Caminho do módulo com falha: ShellExperienceHost.exe2
ID do Relatório: ShellExperienceHost.exe3
Nome completo do pacote com falha: ShellExperienceHost.exe4
ID do aplicativo relativo ao pacote com falha: ShellExperienceHost.exe5

Error: (07/01/2016 11:13:53 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1". Erro no arquivo de manifesto ou de política UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2", na linha UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.

Error: (07/01/2016 11:03:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: RuntimeBroker.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d7e0
Nome do módulo com falha: Windows.Internal.Shell.Broker.dll, versão: 10.0.10586.420, carimbo de data/hora: 0x57491a6f
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000003baba
ID do processo com falha: 0x2dac
Hora de início do aplicativo com falha: 0xRuntimeBroker.exe0
Caminho do aplicativo com falha: RuntimeBroker.exe1
Caminho do módulo com falha: RuntimeBroker.exe2
ID do Relatório: RuntimeBroker.exe3
Nome completo do pacote com falha: RuntimeBroker.exe4
ID do aplicativo relativo ao pacote com falha: RuntimeBroker.exe5

Error: (07/01/2016 09:49:15 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (07/01/2016 04:25:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12391

Error: (07/01/2016 04:25:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12391

Error: (07/01/2016 04:25:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/01/2016 04:25:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11203

Error: (07/01/2016 04:25:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11203


Erros de Sistema:
=============
Error: (07/01/2016 11:43:15 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (07/01/2016 11:40:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/01/2016 11:40:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/01/2016 11:40:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/01/2016 11:40:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/01/2016 11:39:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/01/2016 11:39:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SkypeUpdateEx devido ao seguinte erro:
%%1053 = O serviço não respondeu à requisição de início ou controle em tempo hábil.


Error: (07/01/2016 11:39:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço SkypeUpdateEx.

Error: (07/01/2016 11:37:26 PM) (Source: DCOM) (EventID: 10010) (User: NETO)
Description: {D63B10C5-BB46-4990-A94F-E40B9D520160}

Error: (07/01/2016 11:37:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Host de Sincronização_7d010d3.


CodeIntegrity:
===================================
Date: 2016-06-18 10:21:46.723
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

Date: 2016-06-18 10:21:46.710
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

Date: 2016-06-18 10:21:46.698
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

Date: 2016-06-16 21:30:34.438
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-15 15:22:39.961
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-15 04:17:36.650
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-12 15:46:49.526
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

Date: 2016-05-28 12:27:17.482
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-28 12:12:01.221
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-22 00:00:59.265
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentagem de memória em uso: 58%
RAM física total: 3961.09 MB
RAM física disponível: 1654.13 MB
Virtual Total: 7673.09 MB
Virtual disponível: 5035.27 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:687.38 GB) (Free:466.49 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 1D2966F9)

Partition: GPT.

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité