Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-11-2015
Ran by Marina (2015-11-18 18:15:07)
Running from C:\Users\Marina\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2013-02-05 23:53:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-1676987257-1593010146-3184279874-500 - Administrator - Disabled)
Convidado (S-1-5-21-1676987257-1593010146-3184279874-501 - Limited - Disabled)
Marina (S-1-5-21-1676987257-1593010146-3184279874-1000 - Administrator - Enabled) => C:\Users\Marina
Outros (S-1-5-21-1676987257-1593010146-3184279874-1001 - Limited - Enabled) => C:\Users\Outros
UpdatusUser (S-1-5-21-1676987257-1593010146-3184279874-1004 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1676987257-1593010146-3184279874-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atualizações da NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
CGS17_Setup_x64 (Version: 17.1 - Corel Corporation) Hidden
ComicRack v0.9.176 (HKLM\...\ComicRack) (Version: v0.9.176 - cYo Soft)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4DC318F5-1640-4417-A218-912ED9905FAA}) (Version: 17.1.0.572 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.1.572 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.1.572 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.1.0.572 - Corel Corporation)
CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Easy Tune 6 B12.1121.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B12.1121.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
FormatFactory 3.00 (HKLM-x32\...\FormatFactory) (Version: 3.00 - Free Time)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GBBD Banco do Brasil (HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.7.1.1 - )
Glary Utilities 2.53.0.1726 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.53.0.1726 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Color LaserJet CM1312 MFP Series 5.1 (HKLM\...\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}) (Version: 5.1 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{23CCE784-A812-4647-AEFF-1DCCD4E57478}) (Version: 11.50.0000 - Hewlett-Packard Company)
hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden
hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Nome de sua empresa:) Hidden
hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM1312 (x32 Version: 005.001.00145 - Nome de sua empresa:) Hidden
hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM1312 (x32 Version: 005.001.00140 - Nome de sua empresa:) Hidden
hppSendFaxCM1312 (x32 Version: 005.000.00001 - Nome de sua empresa:) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: - )
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 34.0.5 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 pt-BR)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
NVIDIA Driver de gráficos 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Online Games Manager v1.30 (HKLM-x32\...\Online Games Manager) (Version: 1.30.14 - Real Networks, Inc.)
Pacote de Idiomas do Microsoft .NET Framework 4.5 - Português (Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50709 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Painel de controle da NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.172 - Clarus, Inc.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Suporte para Aplicativos Apple (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Wolf Among Us Episode 5 (HKLM-x32\...\The Wolf Among Us Episode 5_is1) (Version: - )
TL-WN822N/TL-WN821N Driver (HKLM-x32\...\{62FE0726-9652-4CD2-9F09-C769D8699C21}) (Version: 1.0.0 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.0.0 - TP-LINK)
TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare PDFelement(Build 4.0.0) (HKLM-x32\...\{75BAE677-F65A-45A4-9931-363FE0CF5E58}_is1) (Version: 4.0.0.3 - Wondershare Software Co.,Ltd.)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Marina\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\Marina\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\Marina\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
==================== Restore Points =========================
14-10-2015 16:05:43 Ponto de Verificação Agendado
22-10-2015 00:26:17 Ponto de Verificação Agendado
29-10-2015 11:17:05 Ponto de Verificação Agendado
09-11-2015 02:11:51 Ponto de Verificação Agendado
16-11-2015 20:40:19 Ponto de Verificação Agendado
18-11-2015 16:30:38 Removed AVG 2015
18-11-2015 17:14:49 Removed AVG 2015
18-11-2015 17:17:50 Removed AVG 2015
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 00:34 - 2015-07-07 20:18 - 00000845 ____N C:\Windows\system32\Drivers\etc\hosts
192.168.0.4 NPI3A4330
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1EC6EBA4-7FA1-49AA-8136-3455327E6114} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {26596A68-33D2-4ABE-87BB-A815EDA2D254} - System32\Tasks\0215tbUpdateInfo => C:\ProgramData\Avg_Update_0215tb\0215tb_{23603C5A-EF3B-470E-A60E-D3429C501640}.exe [2015-03-05] ()
Task: {3B645546-3716-4F2C-A8B0-3EEE07FE95F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-22] (Adobe Systems Incorporated)
Task: {49A0155C-2EC7-4F12-8088-2045444CB480} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {54809F85-A78D-4F31-85A8-84052E65C07F} - System32\Tasks\0415tbUpdateInfo => C:\ProgramData\Avg_Update_0415tb\0415tb_{24769628-AC3B-4413-A7FB-E7B8EF2BF114}.exe [2015-05-05] ()
Task: {5A18C0B9-9F40-4384-BDFD-A2F558F65B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {6DB4C83A-1AF7-4B34-848C-2CD0A271E4FA} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-02-04] (Glarysoft Ltd)
Task: {802F8C9F-6995-4370-9370-10A1BD461A7D} - System32\Tasks\Run_Bobby_Browser => C:\Users\Marina\AppData\Local\BoBrowser\Application\bobrowser.exe <==== ATTENTION
Task: {85089B44-75B8-4B94-90A8-9C71146EB3E0} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {8974D000-2B49-47C5-9D0D-9152165B9FAA} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {90494734-87CF-4704-AD81-A5475BEC7653} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {B84544D1-AE47-4416-A241-F94D0D24C570} - System32\Tasks\Microsoft_Hardware_Launch_vVX1000_exe => C:\Windows\vVX1000.exe [2010-05-20] (Microsoft Corporation)
Task: {CF96AA1E-C64A-4BEA-9D1D-C669A416AFF1} - System32\Tasks\{8414A2A7-0753-4441-BAFC-5F1F1E99CBDF} => pcalua.exe -a "F:\Marina\=^.^= ~ s2 ~ =^.^=\Games\KMR10\Kraven Manor v1.0\_CommonRedist\vcredist\2010\vcredist_x86.exe" -d "F:\Marina\=^.^= ~ s2 ~ =^.^=\Games\KMR10\Kraven Manor v1.0\_CommonRedist\vcredist\2010"
Task: {D597D4D2-7CD8-431A-9F03-CDF09B552546} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {E5938C3E-C6A9-4BD1-95A9-C91D7ABDAE09} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {EB1ACF58-6876-4140-B605-8B1B7314F97A} - System32\Tasks\1015tbUpdateInfo => C:\ProgramData\Avg_Update_1015tb\1015tb_{5029D63D-DF50-4740-B397-83F852F1E5F4}.exe [2015-10-26] ()
Task: {F5DA81AA-3072-4BB6-A1BC-2BB0D083EAEB} - System32\Tasks\0215tb_RML => C:\Program Files (x86)\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe
Task: {F9B11617-7BCE-4D99-8035-4199FA47D950} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\0215tbUpdateInfo.job => C:\ProgramData\Avg_Update_0215tb\0215tb_{23603C5A-EF3B-470E-A60E-D3429C501640}.exe
Task: C:\Windows\Tasks\0215tb_RML.job => C:\Program Files (x86)\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe
Task: C:\Windows\Tasks\0415tbUpdateInfo.job => C:\ProgramData\Avg_Update_0415tb\0415tb_{24769628-AC3B-4413-A7FB-E7B8EF2BF114}.exe
Task: C:\Windows\Tasks\1015tbUpdateInfo.job => C:\ProgramData\Avg_Update_1015tb\1015tb_{5029D63D-DF50-4740-B397-83F852F1E5F4}.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-10-29 10:00 - 2015-10-29 10:00 - 02316728 _____ () C:\ProgramData\System32\SafeGuard64.dll
2015-09-24 11:09 - 2015-11-05 18:25 - 00178608 _____ () C:\Program Files (x86)\SkypeUpdateEx\SkypeUpdateEx.exe
2015-11-05 07:21 - 2015-11-05 07:21 - 06728120 _____ () C:\Users\Marina\AppData\Roaming\XBox\XBLive.exe
2014-05-01 12:13 - 2014-05-01 12:13 - 00470016 _____ () C:\Users\Marina\AppData\Local\MEGAsync\ShellExtX64.dll
2014-07-18 12:14 - 2012-08-23 21:07 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-10-29 10:00 - 2015-10-29 10:00 - 01536952 _____ () C:\ProgramData\System32\SafeGuard32.dll
2014-07-31 13:16 - 2014-07-31 13:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-27 08:40 - 2015-10-27 08:40 - 00241592 _____ () C:\Users\Marina\AppData\Roaming\XBox\Xbox.Live.dll
2015-03-07 19:31 - 2014-06-04 11:21 - 00571904 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-03-07 19:31 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-05-01 12:15 - 2014-05-01 12:15 - 00463360 _____ () C:\Users\Marina\AppData\Local\MEGAsync\ShellExtX32.dll
2009-07-13 19:03 - 2009-07-13 23:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2014-07-18 12:12 - 2012-07-18 12:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-05-10 17:32 - 2015-11-08 23:49 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
2013-08-14 16:25 - 2013-08-14 16:25 - 00084992 _____ () C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 16496456 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Windows\System32:F3C14B37_Bb.gbp
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4
AlternateDataStreams: C:\ProgramData\TEMP:4249A835
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:4249A835
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\bb.com.br -> www.bb.com.br
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1676987257-1593010146-3184279874-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marina\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Outros\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\Services: ogmservice => 2
MSCONFIG\Services: RealNetworks Downloader Resolver Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: HP Color LaserJet CM1312 MFP Series Fax => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe "HP Color LaserJet CM1312 MFP Series Fax"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
MSCONFIG\startupreg: VX1000 => C:\Windows\vVX1000.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A4EF298D-3B73-4B99-A2D1-3E53733855AB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1244798D-8436-4C72-9FC8-60A8F2410AE9}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{AEFC1CF9-EAA5-4B30-A4C7-F73E657658C2}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{99A77821-39E0-4B2D-ABED-CF1A5E852243}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{64FECE96-895D-45ED-A8E1-269C86204DEF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B8CD6E31-4642-48A8-AC3C-087ABA8B692F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{BA4DBEFA-6F12-4DAB-ABBD-38047E241EED}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{225394DC-FD12-445A-BABA-A541761D0554}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0087A768-7EAB-4FFA-9F7A-E9E6178381F0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{7C032C99-6927-4266-A1B6-0C52EC9D6E5B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5DF001DB-9F7D-4DD4-B1BE-7CDA5E28209A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F9403BD9-265E-4164-9805-916E74DE083E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A8DFD397-4C1A-4BA6-85B0-8B420EDFD5B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D4080915-C62D-45B6-96A1-7968F2C5B7F5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4065D085-0E77-438E-B010-9E50D970C79D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{9B82242A-B31C-4097-921D-4896C0DDE345}] => (Allow) C:\Users\Marina\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75E15CB1-4BE4-43A5-8E8C-92EA072ECA22}] => (Allow) C:\Users\Marina\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D087C305-6771-4A89-B917-3449FB9EFC79}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8C23C1EF-B368-4EF0-8176-3B51B706BD94}] => (Allow) LPort=2869
FirewallRules: [{233E9D01-5DE6-4461-84A5-3CABC4AA7963}] => (Allow) LPort=1900
FirewallRules: [{A9B62CC2-F982-4F11-9D71-C78A872EE2A5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{0AE6B733-E8AE-4EDF-B176-951AE4905735}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{D41703B5-7C82-4FA7-B4DB-355E2CC1EF28}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{76968F14-2A3F-464B-8CDD-1AEE2E19F516}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{F0C60078-B367-42AB-B2DB-2250E9CB5AC4}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [TCP Query User{20263F8A-06CB-4DD6-805B-AA0DC929ED43}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{F081FCA3-A6BA-40CF-997C-EE76AB97CE47}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [{EFECD4B6-4C6C-4837-81FD-C3E8E8B32DF8}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{D25E6D21-1147-421C-BAA1-CC0D90F54B80}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{6F8E845E-F11B-4BBC-AD37-DA487D7CFB06}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/18/2015 05:17:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary AVGIDSDriver.
System Error:
O sistema não pode encontrar o arquivo especificado.
.
Error: (11/18/2015 05:05:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa avgmfapx.exe versão 15.0.0.6173 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1a4c
Hora de Início: 01d1222f1a592894
Hora de Término: 2
Caminho do Aplicativo: C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
Id do Relatório: 4e4fd69a-8e27-11e5-9c76-94de802f4d14
Error: (11/18/2015 04:39:01 PM) (Source: MsiInstaller) (EventID: 11922) (User: Marina-PC)
Description: SA_Error1709: StandardAction(0xC00706AD): Produto: AVG 2015 -- Erro 1922. SA_Error1922: StandardAction(0xC0070782): Não foi possível excluir o serviço 'Watchdog do AVG' (avgwd). Verifique se você possui privilégios suficientes para remover serviços de sistemas.
Error: (11/18/2015 00:25:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef867deab
Identificação do processo com falha: 0x1dec
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/17/2015 10:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef867deab
Identificação do processo com falha: 0x11f8
Hora de início do aplicativo com falha: 0xExplorer.EXE0
Caminho do aplicativo com falha: Explorer.EXE1
FCaminho do módulo de falhas: Explorer.EXE2
Identificação do Relatório: Explorer.EXE3
Error: (11/17/2015 10:37:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SkypeC2CAutoUpdateSvc.exe, versão: 7.5.0.9082, carimbo de hora: 0x561b6d27
Nome do módulo de falhas: SafeGuard32.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde87
Código de exceção: 0xc0000005
Deslocamento com falha: 0x740a9678
Identificação do processo com falha: 0x86c
Hora de início do aplicativo com falha: 0xSkypeC2CAutoUpdateSvc.exe0
Caminho do aplicativo com falha: SkypeC2CAutoUpdateSvc.exe1
FCaminho do módulo de falhas: SkypeC2CAutoUpdateSvc.exe2
Identificação do Relatório: SkypeC2CAutoUpdateSvc.exe3
Error: (11/17/2015 02:04:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: WINWORD.EXE, versão: 12.0.6612.1000, carimbo de hora: 0x4e725e75
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000049
Identificação do processo com falha: 0x158c
Hora de início do aplicativo com falha: 0xWINWORD.EXE0
Caminho do aplicativo com falha: WINWORD.EXE1
FCaminho do módulo de falhas: WINWORD.EXE2
Identificação do Relatório: WINWORD.EXE3
Error: (11/17/2015 01:32:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x1fe4
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/17/2015 00:23:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x668
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/16/2015 10:57:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x1db4
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
System errors:
=============
Error: (11/18/2015 05:12:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/18/2015 05:12:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
Error: (11/18/2015 04:28:16 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/18/2015 04:27:25 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
Error: (11/18/2015 01:57:14 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: O serviço Watchdog do AVG não foi desligado corretamente após receber um controle de pré-desligamento.
Error: (11/18/2015 00:25:38 AM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.
Error: (11/17/2015 10:44:44 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.
Error: (11/17/2015 10:37:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Skype Click to Call Updater foi encerrado inesperadamente. Isso aconteceu 1 vez(es).
Error: (11/17/2015 09:39:40 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/17/2015 09:38:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
CodeIntegrity:
===================================
Date: 2015-02-07 00:30:58.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.680
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.652
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 81%
Total physical RAM: 8064.02 MB
Available physical RAM: 1515.46 MB
Total Virtual: 16126.23 MB
Available Virtual: 8496.75 MB
==================== Drives ================================
Drive c: (Win7) (Fixed) (Total:631.41 GB) (Free:235.74 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Dados Marina) (Fixed) (Total:300 GB) (Free:268.09 GB) NTFS
Drive f: (FreeAgent Drive) (Fixed) (Total:232.88 GB) (Free:133.48 GB) NTFS
Drive g: (The Wolf Among U) (CDROM) (Total:5.64 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5BC53D8B)
Partition 1: (Active) - (Size=631.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=300 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: A4B57300)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Marina (2015-11-18 18:15:07)
Running from C:\Users\Marina\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2013-02-05 23:53:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-1676987257-1593010146-3184279874-500 - Administrator - Disabled)
Convidado (S-1-5-21-1676987257-1593010146-3184279874-501 - Limited - Disabled)
Marina (S-1-5-21-1676987257-1593010146-3184279874-1000 - Administrator - Enabled) => C:\Users\Marina
Outros (S-1-5-21-1676987257-1593010146-3184279874-1001 - Limited - Enabled) => C:\Users\Outros
UpdatusUser (S-1-5-21-1676987257-1593010146-3184279874-1004 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1676987257-1593010146-3184279874-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atualizações da NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
CGS17_Setup_x64 (Version: 17.1 - Corel Corporation) Hidden
ComicRack v0.9.176 (HKLM\...\ComicRack) (Version: v0.9.176 - cYo Soft)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4DC318F5-1640-4417-A218-912ED9905FAA}) (Version: 17.1.0.572 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.1.572 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.1.572 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.1.0.572 - Corel Corporation)
CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Easy Tune 6 B12.1121.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B12.1121.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
FormatFactory 3.00 (HKLM-x32\...\FormatFactory) (Version: 3.00 - Free Time)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GBBD Banco do Brasil (HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.7.1.1 - )
Glary Utilities 2.53.0.1726 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.53.0.1726 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Color LaserJet CM1312 MFP Series 5.1 (HKLM\...\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}) (Version: 5.1 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{23CCE784-A812-4647-AEFF-1DCCD4E57478}) (Version: 11.50.0000 - Hewlett-Packard Company)
hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden
hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Nome de sua empresa:) Hidden
hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM1312 (x32 Version: 005.001.00145 - Nome de sua empresa:) Hidden
hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM1312 (x32 Version: 005.001.00140 - Nome de sua empresa:) Hidden
hppSendFaxCM1312 (x32 Version: 005.000.00001 - Nome de sua empresa:) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: - )
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 34.0.5 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 pt-BR)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
NVIDIA Driver de gráficos 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Online Games Manager v1.30 (HKLM-x32\...\Online Games Manager) (Version: 1.30.14 - Real Networks, Inc.)
Pacote de Idiomas do Microsoft .NET Framework 4.5 - Português (Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50709 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Painel de controle da NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.172 - Clarus, Inc.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Suporte para Aplicativos Apple (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Wolf Among Us Episode 5 (HKLM-x32\...\The Wolf Among Us Episode 5_is1) (Version: - )
TL-WN822N/TL-WN821N Driver (HKLM-x32\...\{62FE0726-9652-4CD2-9F09-C769D8699C21}) (Version: 1.0.0 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.0.0 - TP-LINK)
TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare PDFelement(Build 4.0.0) (HKLM-x32\...\{75BAE677-F65A-45A4-9931-363FE0CF5E58}_is1) (Version: 4.0.0.3 - Wondershare Software Co.,Ltd.)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Marina\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\Marina\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1676987257-1593010146-3184279874-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\Marina\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
==================== Restore Points =========================
14-10-2015 16:05:43 Ponto de Verificação Agendado
22-10-2015 00:26:17 Ponto de Verificação Agendado
29-10-2015 11:17:05 Ponto de Verificação Agendado
09-11-2015 02:11:51 Ponto de Verificação Agendado
16-11-2015 20:40:19 Ponto de Verificação Agendado
18-11-2015 16:30:38 Removed AVG 2015
18-11-2015 17:14:49 Removed AVG 2015
18-11-2015 17:17:50 Removed AVG 2015
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 00:34 - 2015-07-07 20:18 - 00000845 ____N C:\Windows\system32\Drivers\etc\hosts
192.168.0.4 NPI3A4330
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1EC6EBA4-7FA1-49AA-8136-3455327E6114} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {26596A68-33D2-4ABE-87BB-A815EDA2D254} - System32\Tasks\0215tbUpdateInfo => C:\ProgramData\Avg_Update_0215tb\0215tb_{23603C5A-EF3B-470E-A60E-D3429C501640}.exe [2015-03-05] ()
Task: {3B645546-3716-4F2C-A8B0-3EEE07FE95F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-22] (Adobe Systems Incorporated)
Task: {49A0155C-2EC7-4F12-8088-2045444CB480} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {54809F85-A78D-4F31-85A8-84052E65C07F} - System32\Tasks\0415tbUpdateInfo => C:\ProgramData\Avg_Update_0415tb\0415tb_{24769628-AC3B-4413-A7FB-E7B8EF2BF114}.exe [2015-05-05] ()
Task: {5A18C0B9-9F40-4384-BDFD-A2F558F65B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {6DB4C83A-1AF7-4B34-848C-2CD0A271E4FA} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-02-04] (Glarysoft Ltd)
Task: {802F8C9F-6995-4370-9370-10A1BD461A7D} - System32\Tasks\Run_Bobby_Browser => C:\Users\Marina\AppData\Local\BoBrowser\Application\bobrowser.exe <==== ATTENTION
Task: {85089B44-75B8-4B94-90A8-9C71146EB3E0} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {8974D000-2B49-47C5-9D0D-9152165B9FAA} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {90494734-87CF-4704-AD81-A5475BEC7653} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {B84544D1-AE47-4416-A241-F94D0D24C570} - System32\Tasks\Microsoft_Hardware_Launch_vVX1000_exe => C:\Windows\vVX1000.exe [2010-05-20] (Microsoft Corporation)
Task: {CF96AA1E-C64A-4BEA-9D1D-C669A416AFF1} - System32\Tasks\{8414A2A7-0753-4441-BAFC-5F1F1E99CBDF} => pcalua.exe -a "F:\Marina\=^.^= ~ s2 ~ =^.^=\Games\KMR10\Kraven Manor v1.0\_CommonRedist\vcredist\2010\vcredist_x86.exe" -d "F:\Marina\=^.^= ~ s2 ~ =^.^=\Games\KMR10\Kraven Manor v1.0\_CommonRedist\vcredist\2010"
Task: {D597D4D2-7CD8-431A-9F03-CDF09B552546} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {E5938C3E-C6A9-4BD1-95A9-C91D7ABDAE09} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {EB1ACF58-6876-4140-B605-8B1B7314F97A} - System32\Tasks\1015tbUpdateInfo => C:\ProgramData\Avg_Update_1015tb\1015tb_{5029D63D-DF50-4740-B397-83F852F1E5F4}.exe [2015-10-26] ()
Task: {F5DA81AA-3072-4BB6-A1BC-2BB0D083EAEB} - System32\Tasks\0215tb_RML => C:\Program Files (x86)\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe
Task: {F9B11617-7BCE-4D99-8035-4199FA47D950} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1676987257-1593010146-3184279874-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\0215tbUpdateInfo.job => C:\ProgramData\Avg_Update_0215tb\0215tb_{23603C5A-EF3B-470E-A60E-D3429C501640}.exe
Task: C:\Windows\Tasks\0215tb_RML.job => C:\Program Files (x86)\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe
Task: C:\Windows\Tasks\0415tbUpdateInfo.job => C:\ProgramData\Avg_Update_0415tb\0415tb_{24769628-AC3B-4413-A7FB-E7B8EF2BF114}.exe
Task: C:\Windows\Tasks\1015tbUpdateInfo.job => C:\ProgramData\Avg_Update_1015tb\1015tb_{5029D63D-DF50-4740-B397-83F852F1E5F4}.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-10-29 10:00 - 2015-10-29 10:00 - 02316728 _____ () C:\ProgramData\System32\SafeGuard64.dll
2015-09-24 11:09 - 2015-11-05 18:25 - 00178608 _____ () C:\Program Files (x86)\SkypeUpdateEx\SkypeUpdateEx.exe
2015-11-05 07:21 - 2015-11-05 07:21 - 06728120 _____ () C:\Users\Marina\AppData\Roaming\XBox\XBLive.exe
2014-05-01 12:13 - 2014-05-01 12:13 - 00470016 _____ () C:\Users\Marina\AppData\Local\MEGAsync\ShellExtX64.dll
2014-07-18 12:14 - 2012-08-23 21:07 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-10-29 10:00 - 2015-10-29 10:00 - 01536952 _____ () C:\ProgramData\System32\SafeGuard32.dll
2014-07-31 13:16 - 2014-07-31 13:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-27 08:40 - 2015-10-27 08:40 - 00241592 _____ () C:\Users\Marina\AppData\Roaming\XBox\Xbox.Live.dll
2015-03-07 19:31 - 2014-06-04 11:21 - 00571904 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-03-07 19:31 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-05-01 12:15 - 2014-05-01 12:15 - 00463360 _____ () C:\Users\Marina\AppData\Local\MEGAsync\ShellExtX32.dll
2009-07-13 19:03 - 2009-07-13 23:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2014-07-18 12:12 - 2012-07-18 12:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-05-10 17:32 - 2015-11-08 23:49 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
2013-08-14 16:25 - 2013-08-14 16:25 - 00084992 _____ () C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll
2015-11-11 19:46 - 2015-11-07 02:36 - 16496456 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Windows\System32:F3C14B37_Bb.gbp
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4
AlternateDataStreams: C:\ProgramData\TEMP:4249A835
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:4249A835
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\...\bb.com.br -> www.bb.com.br
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1676987257-1593010146-3184279874-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marina\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1676987257-1593010146-3184279874-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Outros\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\Services: ogmservice => 2
MSCONFIG\Services: RealNetworks Downloader Resolver Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: HP Color LaserJet CM1312 MFP Series Fax => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe "HP Color LaserJet CM1312 MFP Series Fax"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
MSCONFIG\startupreg: VX1000 => C:\Windows\vVX1000.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A4EF298D-3B73-4B99-A2D1-3E53733855AB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1244798D-8436-4C72-9FC8-60A8F2410AE9}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{AEFC1CF9-EAA5-4B30-A4C7-F73E657658C2}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{99A77821-39E0-4B2D-ABED-CF1A5E852243}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{64FECE96-895D-45ED-A8E1-269C86204DEF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B8CD6E31-4642-48A8-AC3C-087ABA8B692F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{BA4DBEFA-6F12-4DAB-ABBD-38047E241EED}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{225394DC-FD12-445A-BABA-A541761D0554}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0087A768-7EAB-4FFA-9F7A-E9E6178381F0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{7C032C99-6927-4266-A1B6-0C52EC9D6E5B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5DF001DB-9F7D-4DD4-B1BE-7CDA5E28209A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F9403BD9-265E-4164-9805-916E74DE083E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A8DFD397-4C1A-4BA6-85B0-8B420EDFD5B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D4080915-C62D-45B6-96A1-7968F2C5B7F5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4065D085-0E77-438E-B010-9E50D970C79D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{9B82242A-B31C-4097-921D-4896C0DDE345}] => (Allow) C:\Users\Marina\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75E15CB1-4BE4-43A5-8E8C-92EA072ECA22}] => (Allow) C:\Users\Marina\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D087C305-6771-4A89-B917-3449FB9EFC79}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8C23C1EF-B368-4EF0-8176-3B51B706BD94}] => (Allow) LPort=2869
FirewallRules: [{233E9D01-5DE6-4461-84A5-3CABC4AA7963}] => (Allow) LPort=1900
FirewallRules: [{A9B62CC2-F982-4F11-9D71-C78A872EE2A5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{0AE6B733-E8AE-4EDF-B176-951AE4905735}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{D41703B5-7C82-4FA7-B4DB-355E2CC1EF28}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{76968F14-2A3F-464B-8CDD-1AEE2E19F516}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{F0C60078-B367-42AB-B2DB-2250E9CB5AC4}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [TCP Query User{20263F8A-06CB-4DD6-805B-AA0DC929ED43}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{F081FCA3-A6BA-40CF-997C-EE76AB97CE47}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [{EFECD4B6-4C6C-4837-81FD-C3E8E8B32DF8}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{D25E6D21-1147-421C-BAA1-CC0D90F54B80}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{6F8E845E-F11B-4BBC-AD37-DA487D7CFB06}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/18/2015 05:17:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary AVGIDSDriver.
System Error:
O sistema não pode encontrar o arquivo especificado.
.
Error: (11/18/2015 05:05:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa avgmfapx.exe versão 15.0.0.6173 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1a4c
Hora de Início: 01d1222f1a592894
Hora de Término: 2
Caminho do Aplicativo: C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
Id do Relatório: 4e4fd69a-8e27-11e5-9c76-94de802f4d14
Error: (11/18/2015 04:39:01 PM) (Source: MsiInstaller) (EventID: 11922) (User: Marina-PC)
Description: SA_Error1709: StandardAction(0xC00706AD): Produto: AVG 2015 -- Erro 1922. SA_Error1922: StandardAction(0xC0070782): Não foi possível excluir o serviço 'Watchdog do AVG' (avgwd). Verifique se você possui privilégios suficientes para remover serviços de sistemas.
Error: (11/18/2015 00:25:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef867deab
Identificação do processo com falha: 0x1dec
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/17/2015 10:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef867deab
Identificação do processo com falha: 0x11f8
Hora de início do aplicativo com falha: 0xExplorer.EXE0
Caminho do aplicativo com falha: Explorer.EXE1
FCaminho do módulo de falhas: Explorer.EXE2
Identificação do Relatório: Explorer.EXE3
Error: (11/17/2015 10:37:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: SkypeC2CAutoUpdateSvc.exe, versão: 7.5.0.9082, carimbo de hora: 0x561b6d27
Nome do módulo de falhas: SafeGuard32.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde87
Código de exceção: 0xc0000005
Deslocamento com falha: 0x740a9678
Identificação do processo com falha: 0x86c
Hora de início do aplicativo com falha: 0xSkypeC2CAutoUpdateSvc.exe0
Caminho do aplicativo com falha: SkypeC2CAutoUpdateSvc.exe1
FCaminho do módulo de falhas: SkypeC2CAutoUpdateSvc.exe2
Identificação do Relatório: SkypeC2CAutoUpdateSvc.exe3
Error: (11/17/2015 02:04:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: WINWORD.EXE, versão: 12.0.6612.1000, carimbo de hora: 0x4e725e75
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000049
Identificação do processo com falha: 0x158c
Hora de início do aplicativo com falha: 0xWINWORD.EXE0
Caminho do aplicativo com falha: WINWORD.EXE1
FCaminho do módulo de falhas: WINWORD.EXE2
Identificação do Relatório: WINWORD.EXE3
Error: (11/17/2015 01:32:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x1fe4
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/17/2015 00:23:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x668
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
Error: (11/16/2015 10:57:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: explorer.exe, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: SafeGuard64.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x561cde83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000007fef719deab
Identificação do processo com falha: 0x1db4
Hora de início do aplicativo com falha: 0xexplorer.exe0
Caminho do aplicativo com falha: explorer.exe1
FCaminho do módulo de falhas: explorer.exe2
Identificação do Relatório: explorer.exe3
System errors:
=============
Error: (11/18/2015 05:12:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/18/2015 05:12:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
Error: (11/18/2015 04:28:16 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/18/2015 04:27:25 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
Error: (11/18/2015 01:57:14 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: O serviço Watchdog do AVG não foi desligado corretamente após receber um controle de pré-desligamento.
Error: (11/18/2015 00:25:38 AM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.
Error: (11/17/2015 10:44:44 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.
Error: (11/17/2015 10:37:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Skype Click to Call Updater foi encerrado inesperadamente. Isso aconteceu 1 vez(es).
Error: (11/17/2015 09:39:40 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Serviço de Descoberta de dispositivos CUE HP suspenso ao iniciar.
Error: (11/17/2015 09:38:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
CodeIntegrity:
===================================
Date: 2015-02-07 00:30:58.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.680
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-07 00:30:58.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.668
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-02-05 14:44:33.652
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 81%
Total physical RAM: 8064.02 MB
Available physical RAM: 1515.46 MB
Total Virtual: 16126.23 MB
Available Virtual: 8496.75 MB
==================== Drives ================================
Drive c: (Win7) (Fixed) (Total:631.41 GB) (Free:235.74 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Dados Marina) (Fixed) (Total:300 GB) (Free:268.09 GB) NTFS
Drive f: (FreeAgent Drive) (Fixed) (Total:232.88 GB) (Free:133.48 GB) NTFS
Drive g: (The Wolf Among U) (CDROM) (Total:5.64 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5BC53D8B)
Partition 1: (Active) - (Size=631.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=300 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: A4B57300)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================