Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 18-01-2017
Executado por Bethel (21-01-2017 02:11:07)
Executando a partir de C:\Users\Ivanido\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-07-24 21:29:13)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2503021257-2087991762-2493019906-500 - Administrator - Disabled)
Bethel (S-1-5-21-2503021257-2087991762-2493019906-1000 - Administrator - Enabled) => C:\Users\Ivanido
Convidado (S-1-5-21-2503021257-2087991762-2493019906-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2503021257-2087991762-2493019906-1003 - Limited - Enabled)
Nada (S-1-5-21-2503021257-2087991762-2493019906-1006 - Administrator - Enabled) => C:\Users\Nada

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.30.0 - Mirillis)
Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Advanced-PC-Care (HKLM\...\B7A64AC7-B828-4D74-98B2-097AFA836948_is1) (Version: 1.0.0.11232 - advancedpccare.net) <==== ATENÇÃO
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.20.1165, 21.12.2012 - AIMP DevTeam)
Auto Clicker v1.9 (HKLM-x32\...\{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1) (Version: 1.9 - MurGee.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.5.14 - Bitdefender)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.78.7302 - BlueStack Systems, Inc.)
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 2.8.1.0 - Byte Technologies LLC) <==== ATENÇÃO
Chromium (HKLM-x32\...\{878E6F4E-D70E-BECE-668E-CE4EB60E1DCE}) (Version:  - )
Corel Graphics - Windows Shell Extension (HKLM\...\_{340C451C-F2FD-4309-B259-580FD5E44025}) (Version: 18.1.0.661 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 18.1.661 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (Version: 18.1.661 - Corel Corporation) Hidden
Corel Painter 2017 - Content (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - Core (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - Corex64 (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - CT (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - DE (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - EN (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - FR (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - IPM (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - IPM Content (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 - JP (Version: 16.1 - Corel Corporation) Hidden
Corel Painter 2017 (HKLM\...\_{0EB4382B-8422-4059-8027-3403DE8E8C3F}) (Version: 16.1.0.456 - Corel Corporation)
Corel Update Manager (Version: 2.3.77 - Corel corporation) Hidden
CorelDRAW Graphics Suite X8 - BR (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Capture (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Common (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Connect (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Custom Data (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Draw (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Filters (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Font Manager (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - IPM Content (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - IPM T (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - PHOTO-PAINT (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Redist (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Setup Files (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - VBA (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - VideoBrowser (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Workspaces (x64) (Version: 18.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Writing Tools (x64) (Version: 18.1 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 (64-Bit) (HKLM\...\_{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.1.0.661 - Corel Corporation)
CorelDRAW Graphics Suite X8 (Version: 18.1 - Corel Corporation) Hidden
DLL-Files.com Client (HKLM-x32\...\DA71BA65-680A-4212-9150-6239217B53DC_DLL-Files.c~79141F26_is1) (Version: 2.1.1000.4462 - DLL-Files.com Client)
DriverPack Solution Updater (HKU\S-1-5-21-2503021257-2087991762-2493019906-1000\...\DRPSu Updater) (Version: 0.0.25 - DriverPack Solution)
Dropbox (HKLM-x32\...\Dropbox) (Version: 17.4.33 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Dxtory 2.0.109 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.109 - Dxtory Software)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Foxit Reader  5.4.5.124 (HKLM\...\Foxit Reader) (Version: v 5.4.5.124 - oszone.net)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
IconHandler 64 bit (Version: 2.1 - Corel Corporation) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2963 - Intel Corporation)
IPM_Installer (Version: 2.2 - Your Company Name) Hidden
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
oCam versão 344.0 (HKLM-x32\...\oCam_is1) (Version: 344.0 - hxxp://ohsoft.net/)
Painter 2017 - Setup Files (Version: 16.1 - Corel Corporation) Hidden
PicosmosTools 1.7.6.0 (HKLM-x32\...\PicosmosTools) (Version: 1.7.6.0 - Free Time)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
SAM CoDeC Pack (HKLM\...\SAM CoDeC Pack) (Version: 5.00 Beta - www.SamLab.ws)
ScreenShot (HKLM-x32\...\ScreenShot) (Version: 2.0.1 - Filseclab Corporation)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
SkyShield (HKLM-x32\...\{A96EBCE0-25B6-4868-8EA0-8FCFF5B487D2}) (Version: 2.2.1 - Sky Network)
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.24.3.4750 - Enigma Software Group, LLC)
TweakBit FixMyPC (HKLM-x32\...\{CA7C4C80-24B8-4027-8849-0C302333C427}_is1) (Version: 1.8.1.0 - Auslogics Labs Pty Ltd)
TweakBit PC Repair (HKLM-x32\...\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1) (Version: 1.4.1.0 - Auslogics Labs Pty Ltd)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 12.0.1 - UMEZAWA Takeshi)
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Wireshark 2.2.3 (32-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.3 - The Wireshark developer community, hxxps://www.wireshark.org)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version:  - )
x264vfw - H.264/MPEG-4 AVC codec for x64 (remove only) (HKLM-x32\...\x264vfw64) (Version:  - )
Xvid MPEG-4 Video Codec (HKLM\...\Xvid_is1) (Version:  - )

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0363BB44-21C9-43E0-93A4-988DFC41B491} - System32\Tasks\TweakBit\FixMyPC\Time for deal => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
Task: {0D9945E6-8533-498C-988C-EC1B471682CC} - System32\Tasks\TweakBit\FixMyPC\Start FixMyPC оn logon => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
Task: {151910FB-AF92-4EBB-B154-364CCC52A996} - System32\Tasks\TweakBit\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\TweakBit\PC Repair\PCRepair.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
Task: {16BEEB67-558E-44E2-8AE1-8404646AEC77} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js"
Task: {25BFA1D2-1CFF-45DF-8F70-8F1A3953AFBA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-25] (Google Inc.)
Task: {6DAF04B6-CD1A-4880-BB3E-4BB99262C222} - System32\Tasks\Advanced-PC-Care_Logon => C:\Program Files\Advanced-PC-Care\apc.exe [2016-10-07] (Advancedpccare.net) <==== ATENÇÃO
Task: {6E07CD1E-05BB-4134-863A-4EA4FCF531FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-25] (Google Inc.)
Task: {7AA42DA0-BE88-4DC6-B69F-7EA8BDFDC93E} - System32\Tasks\94A46359-5537-4201-BEFD-1EC63DFD0942 => C:\ProgramData\Baidu Security\ZhaohuiqiMini.exe [2017-01-20] ()
Task: {7AF026C0-6261-4CDA-B71E-DFE1EC9E1D8F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-08] (AVAST Software)
Task: {7C49B107-F75E-457C-A6A2-7F8328D125F1} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2016-12-05] (Byte Technologies LLC) <==== ATENÇÃO
Task: {87C9BA99-DFA4-4EB8-8055-E6DC14287649} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-04] (Dropbox, Inc.)
Task: {959284EE-90D4-4720-B22B-B8573A24F994} - System32\Tasks\Yahoo! Powered nodid => Wscript.exe "C:\ProgramData\{5A599F3A-D01B-15FC-56DD-8BBECC9F0070}\tota.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b35413539394633412d443031422d313546432d353644442d3842424543433946303037307d5c726963697461" "433a5c50726f6772616d446174615c7b35413539394633412d443031422d313546432d353644 (a entrada de dados tem 78 mais caracteres).
Task: {9C66F2E0-09E9-473E-A339-01A01CB1EE26} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2016-10-17] (Corel Corporation)
Task: {B278DACC-4BB1-438C-BF7A-CB82CC50B7A6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-04] (Dropbox, Inc.)
Task: {B8113731-7CB0-4D0E-9A0D-15FEDFB73EFA} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-11-15] (Bitdefender)
Task: {B85322D1-EAC9-4157-B27E-F7C394916B43} - System32\Tasks\{69EC2514-52CF-62B5-1A58-39ABADCBE0A5} => C:\Users\Danillo\AppData\Local\{4D857~1\sync.exe <==== ATENÇÃO
Task: {E9C3FEB6-6C89-4B0E-8255-CF63E81BADDD} - System32\Tasks\{F4163ECB-5F2D-4BCD-AE7F-04126CC9B6C4} => pcalua.exe -a C:\Users\Danillo\Downloads\Counter-Strike_Source(2).exe -d C:\Users\Danillo\Downloads
Task: {ED92FE7A-9CBA-4CE9-A20D-6DCD0D1F5E16} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-12-05] (Byte Technologies LLC) <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\Yahoo! Powered nodid.job => Wscript.exe  C:\ProgramData\{5A599F3A-D01B-15FC-56DD-8BBECC9F0070}\tota.txt <==== ATENÇÃO
Task: C:\Windows\Tasks\{69EC2514-52CF-62B5-1A58-39ABADCBE0A5}.job => C:\Users\Danillo\AppData\Local\{4D857~1\sync.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2013-09-07 02:45 - 2013-09-07 02:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2016-07-29 22:58 - 2013-01-16 01:27 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-07-29 22:55 - 2012-12-23 12:49 - 00195256 _____ () C:\Users\Ivanido\AppData\Roaming\DRPSu\DrvUpdater.exe
2017-01-08 08:48 - 2017-01-08 08:48 - 00254280 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2017-01-08 08:48 - 2017-01-08 08:48 - 00565064 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2017-01-20 23:43 - 2016-04-16 21:07 - 00280576 _____ () C:\Program Files\Bitdefender Antivirus Free\txmlutil.dll
2017-01-20 23:43 - 2016-12-21 17:02 - 01008448 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpbr.mdl
2017-01-20 23:43 - 2016-12-21 17:02 - 00541952 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpdsp.mdl
2017-01-20 23:43 - 2016-12-21 17:02 - 03202816 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpph.mdl
2017-01-20 23:43 - 2016-12-21 17:02 - 01542976 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttprbl.mdl
2017-01-20 23:43 - 2014-08-28 16:57 - 00824376 _____ () C:\Program Files\Bitdefender Antivirus Free\bdmetrics.dll
2015-07-20 12:34 - 2015-07-20 12:34 - 00012288 _____ () C:\Program Files (x86)\No-IP\ducservice.exe
2016-09-04 17:57 - 2016-12-07 22:00 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-01-11 20:03 - 2016-12-07 22:00 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-01-11 20:03 - 2016-12-07 22:01 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-01-11 20:03 - 2016-12-07 22:00 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-09-04 17:57 - 2016-12-07 22:04 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-09-04 17:57 - 2016-12-07 22:00 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-09-04 17:57 - 2016-12-07 22:00 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-09-04 17:57 - 2016-12-07 22:00 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-09-04 17:57 - 2016-12-07 22:01 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 01682768 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00021328 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00052032 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-11 20:03 - 2016-12-07 22:00 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-01-11 20:03 - 2016-12-07 22:04 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00381760 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 00026464 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-09-04 17:57 - 2016-12-07 22:02 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2017-01-11 20:03 - 2017-01-05 21:03 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00023384 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00019792 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00022360 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00024400 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-01-11 20:03 - 2016-12-07 21:57 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-01-11 20:03 - 2017-01-05 21:03 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-11 20:03 - 2017-01-05 21:04 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-09-04 17:57 - 2016-12-07 22:01 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 01972536 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00020296 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2017-01-11 20:03 - 2016-12-07 22:08 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-01-11 20:03 - 2016-12-07 22:08 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-11 20:03 - 2017-01-05 21:04 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-09-04 17:57 - 2016-12-07 22:04 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-09-04 17:57 - 2017-01-05 21:04 - 00024920 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-01-11 20:03 - 2017-01-05 21:04 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2015-07-20 12:34 - 2015-07-20 12:34 - 00073728 _____ () C:\Program Files (x86)\No-IP\ducapi.dll
2016-12-25 19:11 - 2016-12-08 04:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-25 19:11 - 2016-12-08 04:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2017-01-21 01:41 - 2016-10-28 12:25 - 01868288 _____ () C:\Program Files (x86)\DLL-Files.com Client\dlfxrsys.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Users\Ivanido\Downloads\clientsetup_d-0.exe:BDU [0]
AlternateDataStreams: C:\Users\Ivanido\Downloads\FRST.exe:BDU [0]
AlternateDataStreams: C:\Users\Ivanido\Downloads\FRST64.exe:BDU [0]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2017-01-21 01:16 - 00002024 ____A C:\Windows\system32\Drivers\etc\hosts

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com

Existem ainda 4 mais linhas.


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2503021257-2087991762-2493019906-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{052D9598-DDE3-496D-A9E3-80F7B521DD9F}C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{3556D7DB-3D06-40CE-8318-1C82C3F012CA}C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{96E7B7BE-4C21-4832-91F1-DD8259D8E394}C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{222A78C1-6792-4218-A8A1-3CA8AA0885BD}C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hunger\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{06D5CAD9-BDDF-4CA6-BDB2-9A4430D1729C}C:\users\danillo\desktop\sevrver\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\sevrver\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{EEB4A45D-8C92-43E7-884A-5BEE7EE3F766}C:\users\danillo\desktop\sevrver\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\sevrver\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{D87D70B2-D944-45B2-8D28-F4C5E41D77F1}C:\users\danillo\desktop\hackz\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hackz\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{F2805817-27D6-44AB-86C9-011DF7A0927D}C:\users\danillo\desktop\hackz\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\hackz\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{94BCA865-64D5-41A6-B0F8-3BA0C89FFA93}C:\users\danillo\desktop\nova pasta\minecraft portable (x86)\java\bin\javaw.exe] => C:\users\danillo\desktop\nova pasta\minecraft portable (x86)\java\bin\javaw.exe
FirewallRules: [UDP Query User{9321F61D-EAA9-454D-8241-6F6B8E98C7E8}C:\users\danillo\desktop\nova pasta\minecraft portable (x86)\java\bin\javaw.exe] => C:\users\danillo\desktop\nova pasta\minecraft portable (x86)\java\bin\javaw.exe
FirewallRules: [TCP Query User{5AC93E9D-3C58-41F7-B3A3-A52D8B9F4BBC}C:\users\danillo\desktop\famdemariokart=luan=\minecraft portable (x86)\java\bin\javaw.exe] => C:\users\danillo\desktop\famdemariokart=luan=\minecraft portable (x86)\java\bin\javaw.exe
FirewallRules: [UDP Query User{4FD627B3-828F-4AEE-B95A-CE0DAE17CBBC}C:\users\danillo\desktop\famdemariokart=luan=\minecraft portable (x86)\java\bin\javaw.exe] => C:\users\danillo\desktop\famdemariokart=luan=\minecraft portable (x86)\java\bin\javaw.exe
FirewallRules: [TCP Query User{CAC60367-85C9-4080-9D96-02DAB9F1EBCC}C:\users\danillo\desktop\macr0\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\macr0\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{451899AA-7D85-4426-871C-12E22C74EFA4}C:\users\danillo\desktop\macr0\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\macr0\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{BBA7381B-5A56-4BF0-857E-8F36C3CC611D}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{572E57DA-6A6B-47AE-91B1-6812E7C10141}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{DF97279F-1427-4A03-8A62-F1C150D6E7E3}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{FDD824E2-F89A-4CF4-9AD4-3E7E2F1C46E2}C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{1CA6C6CC-E4F3-42DA-93AD-240788F8D0D3}C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{D208234E-ACC3-49CB-8DE7-0E322826073D}] => C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{9AD43167-FB53-4727-8E9F-592BD328B98E}] => C:\users\danillo\desktop\=-m4cr0-=\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{9E78C25B-1D2C-4B75-AA9A-9170A06BE073}C:\program files\java\jre1.8.0_111\bin\java.exe] => C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [UDP Query User{870C9BF8-C239-41EE-B791-8570313E7383}C:\program files\java\jre1.8.0_111\bin\java.exe] => C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [{FB6A398D-611D-41CC-93DA-E903DA5AC894}] => C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [{A2563907-EA3E-4A2E-A3D3-59E1D60C05C8}] => C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [TCP Query User{0F598D43-D0FE-4A13-A6C3-084F254A7365}C:\users\danillo\desktop\testandodnv\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\testandodnv\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{11F3B988-DB79-445B-B18F-34A4B24AD613}C:\users\danillo\desktop\testandodnv\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\danillo\desktop\testandodnv\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{3A9F2F43-0C87-485F-B0B3-33DD599A643A}C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{EE84B21D-9B54-4C7A-A949-B19EBB4C0F61}C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{D9A274E1-D5D7-4A30-A592-F65867BB20E8}] => C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{BF565F10-1F3C-4A70-8A88-ABFD4E239730}] => C:\users\idaark\desktop\@#g4m3s#@\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{98A55A03-175F-4124-AC0C-E8CFD73815C2}C:\users\zdaark ezz\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\zdaark ezz\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{F795F2BF-A012-46B3-8D5F-5B473C19159B}C:\users\zdaark ezz\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\zdaark ezz\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{8480E119-2384-4A20-9B9B-0C0D00D720C7}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{7C7CADBC-74AD-46A6-A4BE-789B3C379E67}C:\users\nada\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\nada\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{09800019-532F-43D6-8355-7592975302CF}C:\users\nada\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\nada\desktop\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [TCP Query User{97C52773-A292-4426-A5B0-3687BDAA0000}C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [UDP Query User{89FF9491-B575-44EA-97CA-DF615E6894DC}C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe] => C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{6D6598A6-57E1-487E-AA40-2E4F04B6B048}] => C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{115DA0E0-EDC5-486A-8FFB-101C1BC531F8}] => C:\users\nada\desktop\nova pasta (3)\nova pasta\minecraft 1.5.2 com java\java\bin\java.exe
FirewallRules: [{5F7BD5A4-B8CE-47D8-BD2D-912915425CE4}] => C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{E4479CEF-93A9-493A-B2C3-028268299C0A}] => C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{CE8B4EA5-8BB5-472A-8E87-AF280DF674CB}] => C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{030C124E-7A20-480F-8725-BCFBA7EA8762}] => C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [TCP Query User{D5687A6A-8C1B-4838-A315-2DCE39C0EF5D}C:\program files (x86)\formatfactory\ffmodules\package\ptinstonline.exe] => C:\program files (x86)\formatfactory\ffmodules\package\ptinstonline.exe
FirewallRules: [UDP Query User{E8B8BC58-7587-4F83-AD05-DEEE52BC450F}C:\program files (x86)\formatfactory\ffmodules\package\ptinstonline.exe] => C:\program files (x86)\formatfactory\ffmodules\package\ptinstonline.exe
FirewallRules: [{E4B0567D-87D7-4E91-BBF3-5926034CE718}] => C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [{2294295F-72F2-4D48-AD2C-EE5E16D7E8DC}] => C:\Users\Nada\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [TCP Query User{5789E8B2-A328-4897-B3BB-B43F6F6EC3B9}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{56EA1EC4-2417-47A7-82E5-C364C7FC9D66}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [{E8F1831A-1B70-457D-8B1E-96E625DCB500}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{D428DF97-45B9-48B4-90E1-2C8FB7AD1572}C:\windows\system32\javaw.exe] => C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{28144ECD-B61E-4E68-B55C-66E7E4A74AAD}C:\windows\system32\javaw.exe] => C:\windows\system32\javaw.exe
FirewallRules: [{1897B6CC-0F50-4BB9-878F-5BF0130583EB}] => C:\windows\system32\javaw.exe
FirewallRules: [{1E3597AE-C734-4436-BFC5-AC8F7CFA84DB}] => C:\windows\system32\javaw.exe
FirewallRules: [{EEA60ED5-2A76-4A31-9F65-EBD05634DAB3}] => C:\Users\Nada\AppData\Local\SkyShield\SkyShield.exe
FirewallRules: [{0DA92A80-1FA6-49B3-837D-E27094609D09}] => c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelDrw.exe
FirewallRules: [{8EF20077-2FF5-44E0-B53B-75A9A1A83C14}] => c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelPP.exe

==================== Pontos de Restauração =========================

12-01-2017 21:01:31 Instalado SkyShield
14-01-2017 06:18:56 ASU_MSI_TRAN
19-01-2017 08:22:44 Instalou League of Legends
19-01-2017 08:24:52 Instalado Microsoft Visual C++ 2005 Redistributable (x64)
19-01-2017 08:28:08 Instalado Microsoft Visual C++ 2005 Redistributable
19-01-2017 08:30:39 Instalou League of Legends
19-01-2017 08:32:34 DirectX instalado
20-01-2017 11:05:54 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
20-01-2017 15:04:23 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-01-2017 15:05:32 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
20-01-2017 15:12:40 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-01-2017 18:13:41 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-01-2017 18:22:25 Microsoft Visual Studio Tools for Applications 2015
20-01-2017 18:43:02 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-01-2017 18:44:24 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (01/21/2017 01:17:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/21/2017 01:16:36 AM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) O sistema não pode encontrar o arquivo especificado.

Error: (01/21/2017 12:51:24 AM) (Source: Software Protection Platform Service) (EventID: 1012) (User: )
Description: Falha ao adquirir Certificado de Produto. hr=0xC004C003
ID do Sku=cfb3e52c-d707-4861-af51-11b27ee6169c

Error: (01/21/2017 12:51:24 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalhes da falha na aquisição de licença. 
hr=0xC004C003

Error: (01/21/2017 12:41:29 AM) (Source: Software Protection Platform Service) (EventID: 1012) (User: )
Description: Falha ao adquirir Certificado de Produto. hr=0xC004C003
ID do Sku=cfb3e52c-d707-4861-af51-11b27ee6169c

Error: (01/21/2017 12:41:29 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalhes da falha na aquisição de licença. 
hr=0xC004C003

Error: (01/21/2017 12:38:59 AM) (Source: Software Protection Platform Service) (EventID: 1008) (User: )
Description: Falha ao adquirir Certificado de Processador Seguro. hr=0x80072EE7

Error: (01/21/2017 12:38:59 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalhes da falha na aquisição de licença. 
hr=0x80072EE7

Error: (01/21/2017 12:33:26 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Falha na instalação do Comprovante da Compra. 0xC004F015
Pkey Parcial=RK7C8
ACID=520130ee-efd4-4de0-99e0-565a86d7aeff
Erro Detalhado[?]

Error: (01/21/2017 12:32:12 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Falha na instalação do Comprovante da Compra. 0xC004F015
Pkey Parcial=97J8Q
ACID=fa3d0658-67f4-4a26-ba57-3fc6f39861f1
Erro Detalhado[?]


Erros de Sistema:
=============
Error: (01/21/2017 01:29:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço AppVerifier APC foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (01/20/2017 11:33:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Baidu Hips Service foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (01/20/2017 11:30:20 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 23:29:23 às ‎20/‎01/‎2017 não era esperado.

Error: (01/20/2017 11:20:56 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para Type com o seguinte erro: 
Acesso negado.

Error: (01/20/2017 11:20:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para Type com o seguinte erro: 
Acesso negado.

Error: (01/20/2017 11:20:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço LogMeIn Hamachi Tunneling Engine devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (01/20/2017 11:20:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço LogMeIn Hamachi Tunneling Engine.

Error: (01/20/2017 11:19:37 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 23:18:23 às ‎20/‎01/‎2017 não era esperado.

Error: (01/20/2017 10:32:00 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para Type com o seguinte erro: 
Acesso negado.

Error: (01/20/2017 10:31:59 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para Type com o seguinte erro: 
Acesso negado.


==================== Informações da Memória =========================== 

Processador: Intel(R) Celeron(R) CPU 847 @ 1.10GHz
Percentagem de memória em uso: 61%
RAM física total: 7886.38 MB
RAM física disponível: 3006.86 MB
Virtual Total: 15770.93 MB
Virtual disponível: 10908.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:874.65 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: EA5A3C68)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================