Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01 Executado por ILIDA006 (2016-04-06 11:34:51) Executando a partir de C:\Users\ILIDA006\Desktop Windows 7 Home Basic Service Pack 1 (X64) (2014-08-18 13:52:49) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1313665589-348142795-2787479133-500 - Administrator - Disabled) Convidado (S-1-5-21-1313665589-348142795-2787479133-501 - Limited - Enabled) ILIDA006 (S-1-5-21-1313665589-348142795-2787479133-1000 - Administrator - Enabled) => C:\Users\ILIDA006 ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1313665589-348142795-2787479133-1000\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.) Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) AVG (HKLM\...\AvgZen) (Version: 1.31.1.48846 - AVG Technologies) AVG (Version: 16.61.7538 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4545 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.61.7538 - AVG Technologies) AVG Zen (Version: 1.31.9 - AVG Technologies) Hidden CGS17_Setup_x64 (Version: 17.1 - Corel Corporation) Hidden Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Corel Graphics - Windows Shell Extension (HKLM\...\_{4DC318F5-1640-4417-A218-912ED9905FAA}) (Version: 17.1.0.572 - Corel Corporation) Corel Graphics - Windows Shell Extension (Version: 17.1.572 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.1.572 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - EN (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.1.0.572 - Corel Corporation) CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - Acro Software Inc.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dell Data Vault (Version: 4.2.2.0 - Dell Inc.) Hidden Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.67 - Dell Inc.) Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.67 - Dell Inc.) Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell) Dell Digital Delivery (HKLM-x32\...\{B96348BD-6B0D-42E3-80B1-FA6718067BFE}) (Version: 2.8.1000.0 - Dell Products, LP) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.0.6584.81 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.2.57295 - Dell) Dell Wireless Driver Installation (HKLM-x32\...\{451517F1-7E41-400B-AA36-FB7E2563526D}) (Version: 9.0 - Dell) EPSON L555 Series Printer Uninstall (HKLM\...\EPSON L555 Series) (Version: - SEIKO EPSON Corporation) Firebird 2.5.4.26856 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.4.26856 - Firebird Project) FMW 1 (Version: 1.62.2 - AVG Technologies) Hidden Free CangJie IME 10 ( 32-bit / 64-bit ) (HKLM-x32\...\InstallShield_{AA0C4DA8-BE41-4792-A7CD-A4CE21C89F92}) (Version: 10.01.1518 - 華通電腦顧問有限公司) Free CangJie IME 10 ( 32-bit / 64-bit ) (x32 Version: 10.01.1518 - 華通電腦顧問有限公司) Hidden Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation) Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.4266.1003 - Microsoft Corporation) Microsoft Office XP Web Components (HKLM-x32\...\{90260416-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6619.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1313665589-348142795-2787479133-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project) MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team) Office 16 Click-to-Run Extensibility Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6554 - Realtek Semiconductor Corp.) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer) VF9Libs 1.7 (HKLM-x32\...\{65E020DC-D4E4-4D72-A86D-8681A6D78460}) (Version: 1.70.0000 - PWI) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 7.0.4-0 - Bitnami) Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1313665589-348142795-2787479133-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {1380D430-B602-4D63-8789-A6545B9F73A4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-04-06] (Microsoft Corporation) Task: {2D889427-1AA2-458B-ADB8-BA47D529CCC7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-04-06] (Microsoft Corporation) Task: {3B837719-BCEB-4632-A917-2D9BCC3D1B16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-22] (Google Inc.) Task: {46774622-3F94-4109-A254-BE6777A845A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {4880D538-3A0B-4237-85D4-62A7267FC8B9} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-03-20] (PC-Doctor, Inc.) Task: {4DD08E8A-CB9A-4678-ADA9-2B15C7E6EDC8} - System32\Tasks\{28D4EFF3-553A-449A-8238-F39BE701A123} => pcalua.exe -a "C:\Users\ILIDA006\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GYU7DL4U\WindowsPhone.exe" -d C:\Users\ILIDA006\Desktop Task: {58E33C72-C904-41CE-9CFD-72B74B196E61} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-03-04] (Dell Inc.) Task: {8B3244BC-001F-40B6-A9C1-0BA3E50D92F6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-25] (Adobe Systems Incorporated) Task: {9115823B-AD5D-4C90-833C-EB97687D280C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-08-16] (Microsoft Corporation) Task: {B0543199-3543-419A-9FC0-4D162F23596B} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI) Task: {CD31DAC2-9067-4D77-9C8F-2E06B9C5A4FB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-08-16] (Microsoft Corporation) Task: {D8655289-9800-4374-A643-DB399C7E41A0} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-03-20] (PC-Doctor, Inc.) Task: {F7420C45-C34B-4616-BF62-7D761D26160C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-22] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-05-28 09:07 - 2013-10-23 15:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll 2016-04-06 11:03 - 2015-08-16 00:21 - 00162880 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll 2016-04-06 10:35 - 2015-11-30 14:02 - 03368960 _____ () C:\xampp\xampp-control.exe 2016-04-06 10:36 - 2015-12-23 05:24 - 11565384 _____ () c:\xampp\mysql\bin\mysqld.exe 2016-04-06 09:47 - 2016-04-06 09:46 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2013-11-12 09:04 - 2013-11-12 09:04 - 00110088 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll 2014-10-16 08:19 - 2014-10-16 08:19 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1eeea3ab8d69ec722bdcb28b8eb8dd75\IsdiInterop.ni.dll 2014-01-30 11:33 - 2012-02-01 15:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-01-30 11:30 - 2011-12-16 15:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2015-09-25 16:56 - 2015-09-23 23:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll 2015-09-25 16:56 - 2015-09-23 23:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll 2015-09-25 16:56 - 2015-09-23 23:34 - 16487752 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1313665589-348142795-2787479133-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ILIDA006\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 201.6.2.92 - 201.6.2.192 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{FEAA15F6-F580-4817-A967-8AFFBCB32302}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0ED112F5-F5BC-4355-96FB-0D0296C65EF5}] => (Allow) LPort=2869 FirewallRules: [{6EECC363-38B5-4ADE-A372-035EF640D0FC}] => (Allow) LPort=1900 FirewallRules: [{BCE03B6A-973E-42F7-9740-883539CA2160}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{187A0FB2-0EF5-4924-85CC-88D3722EC43A}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{31DEFE11-5239-4BC1-8D8E-90085DFF0536}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{FC26D0ED-B5FB-4C8D-A0ED-58D9E7E62780}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{C8D94E43-EF19-4A55-8976-3B7C23120AB9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{B8EB1D99-20D2-45E9-9ED2-02259D33DB7A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{BC1B9D71-603E-4A41-89B0-65EA1115418E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{A26F0DAE-DE0D-4CC8-AB81-363912877FBF}] => (Allow) Z:\FuturaServer.exe FirewallRules: [{1F436B18-5889-45BC-B8BD-0901AA35A1D8}] => (Allow) Z:\FuturaServer.exe FirewallRules: [{96E2EE35-9FC2-4738-BA38-D787B56743ED}] => (Allow) Z:\FuturaServer.exe FirewallRules: [{567AA274-0A92-43F2-984F-D98836AA2BED}] => (Allow) Z:\FuturaServer.exe FirewallRules: [{64C5D40C-ED8C-4C87-80BC-2E54825D2ED4}] => (Allow) Z:\PDV.exe FirewallRules: [{BB146D35-5C3B-4C77-8A84-D85CE6F8094E}] => (Allow) Z:\PDV.exe FirewallRules: [{D055148F-58C5-4209-BDA4-D5A663BB87D6}] => (Allow) Z:\PDV.exe FirewallRules: [{E183387E-74E2-471E-9E91-D20E3F7E120C}] => (Allow) Z:\PDV.exe FirewallRules: [{5BEAE316-FF25-49AB-ACC2-CCBD6E70925F}] => (Allow) F:\360TS_Setup_Mini.exe FirewallRules: [{7EC18ED1-D687-4D45-9E41-5FEA3F859207}] => (Allow) F:\360TS_Setup_Mini.exe FirewallRules: [{026E8A8A-848D-4CF0-9351-9F12667D5275}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{51127530-7886-4F1B-834D-9C03591BE214}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe FirewallRules: [{1A71CCBA-62D8-489E-A9C8-D552F22B8701}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe FirewallRules: [{C78E82A8-9E83-491F-BF8D-9F2DB342598E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{8431C434-5328-401C-8F4C-2A3A72309654}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{1DD897BA-AD4D-49AB-B800-21DDC046F305}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{CF70E6F8-8B3B-4693-8A6D-F0426D0B5D4B}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{6356FB9D-5F36-45C4-AE8A-82FF42585B21}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{F1D6E2E7-A67B-4CF3-B500-143E0F6EC2C8}] => (Allow) C:\Users\ILIDA006\AppData\Roaming\Tencent\QQ\STemp\SetupEx0\QQSetupEx.exe FirewallRules: [{3F2A9413-3C50-49BA-9450-1C72A7096358}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\QQ.exe FirewallRules: [{DE77600D-C39A-4BF6-B4E7-4AF420287226}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\auclt.exe FirewallRules: [{E38FA4D2-69B7-4C4E-AF6E-46565875B35A}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\txupd.exe FirewallRules: [{7974E4BE-4AFF-4157-A168-0C4C3326FFEE}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\SetupEx\SetupEx.exe FirewallRules: [{901C4EEA-2485-4939-BB3A-1AC20F59B202}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\maLauncher.exe FirewallRules: [{1CC7C157-6095-4333-9C4B-E153B01B3294}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\maUpdat.exe FirewallRules: [{38B1937C-5418-4971-9DD8-2F84600A5059}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\131\bugreport_xf.exe FirewallRules: [{81ED0D49-7E5E-48BC-B833-E6D422602A68}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\131\tencentdl.exe FirewallRules: [{9FF61B07-A02A-43FC-BC97-20ECDBF143C6}] => (Allow) C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.exe FirewallRules: [{54426B33-5E24-4417-8910-3241D5427D3B}] => (Allow) C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.exe FirewallRules: [{C2ACE303-646E-4FDB-844C-1A2C22D98CAC}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\qqminidl.exe FirewallRules: [{B2F70329-D11E-45C8-8D1B-4E4706F42F55}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\QQMiniDLUI.exe FirewallRules: [{832310F6-4DC0-4DDB-A497-AE8DD78343E7}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\QQGameUpUI.exe FirewallRules: [{298AF0D3-188F-410F-BDC4-AD37F5398822}] => (Allow) C:\Users\Public\Documents\Tencent\QQGameMicro\IEProc.exe FirewallRules: [{C642859C-C2BD-46E3-AC97-CB2CD8922E3F}] => (Allow) C:\Users\Public\Documents\Tencent\QQGameMicro\QQGameMicro.exe FirewallRules: [{4651F1BD-4B8A-4E21-AB23-C9001D6A39CA}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SGTool.exe FirewallRules: [{68056FB6-EC3D-455A-B2A7-48BB68D22408}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SGTool.exe FirewallRules: [{8CF6461E-0ABC-451F-A771-3EB1350C4766}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SGTool.exe FirewallRules: [{C278D0ED-25C5-459B-8DAF-09C6FAFF33A4}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SGTool.exe FirewallRules: [{59B8F529-7BE6-4A76-9077-A49CC22F5BA5}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SogouCloud.exe FirewallRules: [{869EB14F-B893-4680-BDCB-28BDB5C556EE}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SogouCloud.exe FirewallRules: [{BFEFA7B1-796A-4E6F-90CD-841DABF67F25}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SogouCloud.exe FirewallRules: [{714555B9-A099-48FD-8855-D40FBEA78B2F}] => (Allow) C:\Program Files (x86)\SogouInput\7.9.0.7586\SogouCloud.exe FirewallRules: [TCP Query User{A756B2BA-EA1F-43FE-A3D8-2C9B410AD3F2}C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{30B391A0-D991-40FC-96BE-228AA1E00D36}C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{BEF07A8A-5460-4862-B2D2-2E264122DF5E}] => (Block) C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{18C7BEA9-0171-41F4-A3BA-C9C2F6685279}] => (Block) C:\users\ilida006\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{66B52006-B20F-4A38-B3E3-96738647CE43}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{A692E0E7-A6A0-4CC3-9CA7-4C2006F7798F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{C36619DF-5EC3-4C4E-BC9F-4D64D6BBCB6A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{204D8EB9-596A-429D-A7E8-5D3A306B2347}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{E4615B6B-7F05-4B4E-9F84-B80BB36D6B9E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{3F126F1A-D0C9-4F14-982A-DCD949090540}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{41D13888-AC08-4BD0-A992-1B785E8F4B63}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{8862AE4A-3600-412C-8756-4B73D2E45FAD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{8B794599-BE1A-4FD4-AD1B-DF1F447BF8FC}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe FirewallRules: [{D0C5B030-C161-4E52-BBB6-1F2FB82CB75A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{EF6D3240-4741-4A9D-BD14-B589A8F08835}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{4E0F813A-635D-45C0-AF16-8F3ECDF65556}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{006A94DA-0B82-44B7-8E12-20201DE4081C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{6DC4B425-E85D-414C-B87A-675439FCD166}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{4932FE3E-5816-4AE9-912C-AF063299823F}] => (Allow) C:\Users\ILIDA006\AppData\Local\Microsoft\OneDrive\OneDrive.exe FirewallRules: [TCP Query User{F390C711-6ECF-4F1D-A8B6-0F8ABF8F585C}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{42709231-C196-41A9-9501-52D3ECF9E44A}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [{5F6238A8-0B56-4E8C-B046-271DBE4162AA}] => (Block) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [{8573A12D-6B08-475F-9D42-2AC7924E3D64}] => (Block) C:\xampp\mysql\bin\mysqld.exe ==================== Pontos de Restauração ========================= ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (04/06/2016 11:06:46 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\Windows\system32\msiexec.exe /V; Descrição = Removed Microsoft Office; Erro = 0x80070422). Error: (04/06/2016 11:05:56 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\Windows\system32\msiexec.exe /V; Descrição = Removed Microsoft Office; Erro = 0x80070422). Error: (04/06/2016 11:05:48 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (04/06/2016 10:59:00 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL; Descrição = Removed Microsoft Office Enterprise 2007; Erro = 0x80070422). Error: (04/06/2016 10:47:15 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = c:\program files\corel\coreldraw graphics suite x7\setup\cgs17\vsta\vsta_setup.exe files\corel\coreldraw graphics suite x7\setup\cgs17\vsta\vsta_setup.exe" /Quiet /NoRestart /Full; Descrição = Microsoft Visual Studio Tools for Applications 2012; Erro = 0x80070422). Error: (04/06/2016 10:37:52 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\x\vcredist\VCREDI~1.EXE /q; Descrição = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026; Erro = 0x80070422). Error: (04/06/2016 10:05:05 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\xampp\vcredist\VCREDI~1.EXE /q; Descrição = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026; Erro = 0x80070422). Error: (04/06/2016 09:51:46 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (04/06/2016 09:48:10 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\Windows\system32\msiexec.exe /V; Descrição = Installed AVG; Erro = 0x80070422). Error: (04/06/2016 09:48:09 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Falha ao criar ponto de restauração (Processo = C:\Windows\system32\msiexec.exe /V; Descrição = Installed AVG; Erro = 0x80070422). Erros de Sistema: ============= Error: (04/06/2016 10:38:25 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334} Error: (04/06/2016 09:50:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço BlueStacks Android Service depende do serviço BlueStacks Hypervisor, mas não foi possível iniciá-lo devido ao seguinte erro: %%3 Error: (04/06/2016 09:50:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: %%2 Error: (04/06/2016 09:50:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Log Rotator Service devido ao seguinte erro: %%2 Error: (04/06/2016 09:50:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Hypervisor devido ao seguinte erro: %%3 Error: (04/06/2016 09:50:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço 360 Total Security devido ao seguinte erro: %%216 Error: (04/06/2016 09:26:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço BlueStacks Android Service depende do serviço BlueStacks Hypervisor, mas não foi possível iniciá-lo devido ao seguinte erro: %%3 Error: (04/06/2016 09:26:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: %%2 Error: (04/06/2016 09:26:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Log Rotator Service devido ao seguinte erro: %%2 Error: (04/06/2016 09:26:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Hypervisor devido ao seguinte erro: %%3 ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3-3240 CPU @ 3.40GHz Percentagem de memória em uso: 61% RAM física total: 3967.54 MB RAM física disponível: 1519.05 MB Virtual Total: 7933.27 MB Virtual disponível: 4965.1 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:450.06 GB) (Free:401.12 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 3AF41E00) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=15.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450.1 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================