Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 19-08-2017
Executado por Micaele (19-08-2017 14:18:56)
Executando a partir de C:\Users\Micaele\Desktop
Windows 10 Home Single Language Versão 1607 (X64) (2016-09-26 04:08:04)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-14380496-3129006202-516063525-500 - Administrator - Disabled)
Convidado (S-1-5-21-14380496-3129006202-516063525-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-14380496-3129006202-516063525-503 - Limited - Disabled)
Micaele (S-1-5-21-14380496-3129006202-516063525-1001 - Administrator - Enabled) => C:\Users\Micaele
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Aplicativo da área de trabalho Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.6.378 - Autodesk)
Aplicativos da Autodesk em destaque (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0000-0102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0409-2102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (HKLM\...\{5783F2D7-E001-0409-1102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.2.3.1000 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk Content Service (HKLM-x32\...\{62F029AB-85F2-0000-866A-9FC0DD99DDBC}) (Version: 3.0.84.1 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.1 - Autodesk)
Autodesk Content Service Language Pack (HKLM-x32\...\{62F029AB-85F2-0001-866A-9FC0DD99DDBC}) (Version: 3.0.84.1 - Autodesk) Hidden
Autodesk Content Service Language Pack (HKLM-x32\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk ReCap (HKLM\...\{31ABA3F2-0000-1033-0102-111D43815377}) (Version: 1.3.1.39 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CYPE Ingenieros Versão 2016 (Brasileiro) (HKLM-x32\...\CYPE Ingenieros Versão 2016 (Brasileiro)) (Version: Versão 2016 - CYPE Ingenieros)
Diagnóstico da impressora Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.1.6.02 - Samsung Electronics Co., Ltd.)
dr.fone toolkit para iOS (Version 8.5.0) (HKLM-x32\...\{A26F8BBD-EC10-4bdc-8AD8-F146825A8A63}_is1) (Version: 8.5.0.54 - Wondershare Technology Co.,Ltd.)
Free Download Manager 3.9.6 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HASP Device Drivers (HKLM-x32\...\HASP Device Drivers) (Version: - )
HP Support Solutions Framework (HKLM-x32\...\{0A8C9032-3AB5-4CB7-8173-13BDE66B779A}) (Version: 12.7.27.15 - HP Inc.)
Importação do SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
ITR2012 - Declaração do Imposto sobre a Propriedade Territorial Rural (HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\ITR2012) (Version: 1.1 - Receita Federal do Brasil)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
K-Lite Mega Codec Pack 11.5.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - )
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote Eco Driver (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28/05/2015) - Samsung Electronics Co., Ltd.)
Painel de controle da NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version: - Panda Security)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.3 - Power Software Ltd)
Proteção de Terminal Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1804.134 - Trusteer)
Python 2.7.13 (HKLM-x32\...\{4A656C6C-D24A-473F-9747-3A8D00907A03}) (Version: 2.7.13150 - Python Software Foundation)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1804.134 - Trusteer) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.06.60 (17/03/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.81.00(25/05/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.22 (07/09/2015) - Samsung Electronics Co., Ltd.)
Samsung M2070 Series XPS (Windows 8) (HKLM-x32\...\Samsung M2070 Series XPS (Windows 8)) (Version: 3.03.08.00:05 - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.01.12 (15/10/2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.25 - Samsung Electronics Co., Ltd.) Hidden
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.05.00 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Sentinel Protection Installer 7.6.8 (HKLM-x32\...\{25F63CE2-4482-4926-9583-FE7A04E11F96}) (Version: 7.6.8 - SafeNet, Inc.)
SketchUp 2016 (HKLM\...\{8539258A-B911-475F-94E8-8AA394D95B40}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.1.8 - Synaptics Incorporated)
TigreCAD-2010 1.6 (HKLM-x32\...\TigreCAD-2010_is1) (Version: 1.6 - Tigre S/A)
Unchecky v1.0.3 (HKLM-x32\...\Unchecky) (Version: 1.0.3 - RaMMicHaeL)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 6.7.3 - Universal Media Server)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Warsaw 1.18.1.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.18.1.2 - GAS Tecnologia)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2014-02-07] (Autodesk)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} - \Adobe Acrobat Update Task -> Nenhum Arquivo <==== ATENÇÃO
Task: {48FE997E-D121-4925-AFC6-BFA88D5B8BBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {59964714-F3C3-4D58-AF81-B4D15980CA53} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-08-11] (Microsoft Corporation)
Task: {5B9EF557-14E3-4992-9EA8-60A9E70455AA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {69B4F801-67CD-43CF-8513-90D11336F6F6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATENÇÃO
Task: {71EB85EA-186B-47EA-8080-D174FF6DA241} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Micaele\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {8387EE40-2FCF-474F-A706-DE1CCA4C8233} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {84F60C97-2B85-486D-BDA8-4052E13A9354} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {8573B00B-BF73-43A9-957A-E81754FEE4AE} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-28] (Realtek Semiconductor)
Task: {9B701233-5491-4422-9291-785B4E1398FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-22] (Google Inc.)
Task: {AD99946B-C113-4009-A10E-41741995222C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-22] (Google Inc.)
Task: {B462BC95-8DC3-491A-88BB-520CD0F01A9B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {C1209BB2-486D-4614-9544-EF72E9542649} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATENÇÃO
Task: {C46E8117-D3B4-41CA-A9E7-4368144573CA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {CC35C4A4-B0A5-4779-8237-5EB40F71EAF2} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-07-16 08:42 - 2016-07-16 08:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-07-21 18:32 - 2017-06-21 04:48 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-23 18:28 - 2016-08-01 09:54 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-24 13:10 - 2015-06-11 10:58 - 000022528 _____ () C:\WINDOWS\System32\ssm4mlm.dll
2015-10-24 13:12 - 2015-03-11 23:43 - 000022528 _____ () C:\WINDOWS\System32\us003lm.dll
2016-02-15 20:01 - 2016-02-15 20:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2015-10-24 10:42 - 2014-04-16 05:22 - 000029184 _____ () C:\WINDOWS\System32\usp01l.dll
2015-10-22 19:18 - 2011-08-05 07:53 - 000040960 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\servcpas.exe
2016-04-22 01:07 - 2016-04-22 01:07 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 001337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-24 13:12 - 2015-10-24 13:12 - 000143664 _____ () C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe
2015-10-24 13:11 - 2013-10-04 01:53 - 000734720 _____ () C:\WINDOWS\system32\SnMinDrv.dll
2015-10-24 13:11 - 2013-06-28 11:36 - 000091136 _____ () C:\WINDOWS\system32\SSDEVM64.DLL
2016-05-27 15:50 - 2016-11-01 22:05 - 000401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-23 18:16 - 2016-09-23 18:16 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-16 09:52 - 2017-03-04 03:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-16 09:49 - 2017-03-04 03:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-16 09:49 - 2017-03-04 03:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-16 09:49 - 2017-03-04 03:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-08-11 12:33 - 2017-03-04 03:05 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-08-11 12:33 - 2017-08-01 15:26 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-08-11 12:33 - 2017-08-01 15:31 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-07-16 23:12 - 2017-07-16 23:13 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 043573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 002435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll
2014-09-08 12:39 - 2014-09-08 12:39 - 000464608 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2017-08-14 11:59 - 2017-06-15 11:16 - 000061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2017-08-14 11:59 - 2017-06-15 11:15 - 000110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2015-10-22 19:18 - 2011-07-27 13:22 - 000069632 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\entograf.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemsgs.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000471040 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicos2.dll
2015-10-22 19:18 - 2011-08-04 11:16 - 000094208 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cyassert.dll
2015-10-22 19:18 - 2011-07-18 13:19 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unicode.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemem.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000057344 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypestr.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000876544 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicos.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\arrays.dll
2015-10-22 19:18 - 2011-08-03 22:03 - 003395584 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\proglib.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000946176 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\componen.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000475136 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\panelwin.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000135168 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypedir.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\atexit.dll
2015-10-22 19:18 - 2011-07-27 13:20 - 000053248 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeio.dll
2015-10-22 19:18 - 2011-04-14 03:30 - 000086016 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\imagnwin.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000090112 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemath.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\arrorden.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000569344 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypedocu.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000339968 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\dllinsta.dll
2015-10-22 19:18 - 2011-08-02 13:20 - 000040960 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeud.dll
2015-10-22 19:18 - 2011-08-02 13:20 - 000061440 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unidagen.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000139264 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unidades.dll
2015-10-22 19:18 - 2011-07-26 09:39 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\nomtradu.dll
2015-10-22 19:18 - 2011-04-13 05:34 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\textomsg.dll
2015-10-22 19:18 - 2011-04-14 03:28 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\verswin.dll
2015-10-22 19:18 - 2011-07-27 13:20 - 000143360 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicwin.dll
2015-10-22 19:18 - 2011-04-14 03:32 - 000024576 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\entobase.dll
2015-10-22 19:18 - 2011-08-03 22:06 - 000942080 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\mnservcp.dll
2015-10-22 19:18 - 2011-04-19 15:44 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\pastbas2.dll
2015-10-22 19:18 - 2011-07-28 07:07 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypesock.dll
2015-10-22 19:18 - 2011-08-01 09:01 - 000765952 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeconf.dll
2015-10-22 19:18 - 2011-04-19 15:46 - 014704640 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypecant.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\sockconf.dll
2015-10-22 19:18 - 2011-07-28 02:55 - 000049152 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypesrv.dll
2015-10-22 19:18 - 2011-07-19 17:09 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\callback.dll
2015-06-02 15:51 - 2015-06-02 15:51 - 000545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2015-10-22 15:46 - 2015-08-07 13:48 - 004932712 _____ () C:\Program Files (x86)\Free Download Manager\fdmbtsupp.dll
2017-08-14 12:00 - 2017-04-04 16:11 - 000043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll
2017-08-14 12:00 - 2017-06-15 10:49 - 000279976 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\pt-BR\AdWingManRes.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 040640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000950272 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll
2016-10-28 11:27 - 2016-09-28 08:35 - 000122880 _____ () C:\CYPE Ingenieros\Versão 2017\programas\entograf.dll
2016-10-28 11:26 - 2016-09-29 16:48 - 001212416 _____ () C:\CYPE Ingenieros\Versão 2017\programas\componen.dll
2016-10-28 11:31 - 2016-09-28 08:47 - 000585728 _____ () C:\CYPE Ingenieros\Versão 2017\programas\panelwin.dll
2016-10-28 11:26 - 2016-09-06 09:21 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemem.dll
2016-10-28 11:26 - 2016-06-29 13:15 - 000098304 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemsgs.dll
2016-10-28 11:26 - 2016-06-16 08:14 - 000094208 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemath.dll
2016-10-28 11:26 - 2016-06-22 13:18 - 000065536 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypestr.dll
2016-10-28 11:25 - 2016-09-28 08:46 - 001724416 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicwin.dll
2016-10-28 11:26 - 2016-08-02 12:17 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\contaux.dll
2016-10-28 11:28 - 2016-09-01 15:10 - 000102400 _____ () C:\CYPE Ingenieros\Versão 2017\programas\imagnwin.dll
2016-10-28 11:27 - 2016-08-02 12:17 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\esapp.dll
2016-10-28 11:23 - 2016-06-16 08:14 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2017\programas\arrays.dll
2016-10-28 11:23 - 2016-04-11 08:38 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\atexit.dll
2016-10-28 11:31 - 2016-09-28 08:35 - 001421312 _____ () C:\CYPE Ingenieros\Versão 2017\programas\proglib.dll
2016-10-28 11:25 - 2016-09-26 09:12 - 000913408 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicos2.dll
2016-10-28 11:26 - 2016-09-30 08:32 - 000163840 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cyassert.dll
2016-10-28 11:26 - 2016-09-12 14:10 - 000348160 _____ () C:\CYPE Ingenieros\Versão 2017\programas\dllinsta.dll
2016-10-28 11:31 - 2016-09-14 13:47 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2017\programas\objcom.dll
2016-10-28 11:32 - 2016-06-22 13:23 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2017\programas\unicode.dll
2016-10-28 11:25 - 2016-09-28 08:22 - 001216512 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicos.dll
2016-10-28 11:32 - 2016-06-16 08:13 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\textomsg.dll
2016-10-28 11:23 - 2016-09-06 09:21 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2017\programas\arrorden.dll
2016-10-28 11:32 - 2016-02-06 17:55 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\sinpastilla.dll
2016-10-28 11:26 - 2016-09-14 13:47 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypefile.dll
2016-10-28 11:26 - 2016-09-11 14:00 - 000151552 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypedir.dll
2016-10-28 11:32 - 2016-09-05 13:09 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\verswin.dll
2016-10-28 11:27 - 2016-09-06 09:49 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\env.dll
2016-10-28 11:27 - 2016-06-16 08:18 - 000024576 _____ () C:\CYPE Ingenieros\Versão 2017\programas\entobase.dll
2016-10-28 11:29 - 2016-09-26 10:56 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2017\programas\mnbimserv.dll
2016-10-28 11:26 - 2016-09-14 13:47 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\callback.dll
2016-10-28 11:25 - 2016-09-29 22:41 - 000102400 _____ () C:\CYPE Ingenieros\Versão 2017\programas\bimui.dll
2016-10-28 11:25 - 2016-09-29 22:41 - 001036288 _____ () C:\CYPE Ingenieros\Versão 2017\programas\bimservice.dll
2016-10-28 11:26 - 2016-09-26 09:10 - 000086016 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypeio.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1782]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Software\Classes\.scr: AutoCADScriptFile =>
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\banestes.com.br -> hxxps://seg.banestes.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\banestes.com.br -> seg.banestes.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-07-30 19:42 - 2017-08-19 13:55 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Control Panel\Desktop\\Wallpaper -> D:\MICAELE\MICAELE\FOTOS\iPhone 5s\IMG_7234.JPG
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{F479C113-835E-4599-887D-BF2E502F4FA7}] => (Allow) LPort=161
FirewallRules: [{3D8AEE00-B2AA-4BC1-88DC-7A32E74D9409}] => (Allow) LPort=427
FirewallRules: [{49751C56-1564-4B35-A6CE-B80A803F79B8}] => (Allow) LPort=9100
FirewallRules: [UDP Query User{6FBE3DDD-7D7F-4DEC-A9FB-F474DE0FF29C}C:\cype ingenieros\versão 2012\programas\cypecad.exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cypecad.exe
FirewallRules: [TCP Query User{B4516BD6-BF56-44A6-90C4-F507269CB016}C:\cype ingenieros\versão 2012\programas\cypecad.exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cypecad.exe
FirewallRules: [{C6C8287F-E22E-4E2C-9A5A-5F9DCA29026A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{93575888-9A9C-4CCF-B0E5-DF4284E59A34}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{57EAE54C-EB1E-44EE-A7A6-B362D62F73CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0D24F42B-1D71-41FA-8879-A3A12C0778EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B89F3BFA-E990-4DB3-9F56-C6E7F12EAC13}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B688C546-A1FB-4D0F-9692-CFDC6EA26C34}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{3E3E7096-0D0D-4341-8DCD-0A5D9E8E43C7}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{59897F87-DAE6-4B1E-8E62-40D4E669C4E1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{3F24D40F-A9E1-4E8E-86F4-C862151FF15F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{67661B0A-2414-4BB5-BFD4-3FF6B854B37F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{8D8C8890-BE86-4F8C-BF1C-F32F8D14A1A2}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{39FC8A8D-B8AF-417A-8731-08288232F6E3}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{E85D3CDA-7905-4E9C-9ED9-1C2D87102223}C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe
FirewallRules: [UDP Query User{06EE1DBB-2E16-47B4-97A3-E40A486152DC}C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe
FirewallRules: [TCP Query User{1889CB91-D4B0-4CDC-B3B5-0A5EA99B4053}C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe] => (Allow) C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe
FirewallRules: [UDP Query User{E369EF49-E93B-4F31-9C6B-9924E3A48812}C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe] => (Allow) C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe
FirewallRules: [{480BD4B0-5920-4EB9-8151-4348E6D61432}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{C35A8835-B388-4FC8-A714-EE6CEAF352B9}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{320BCDDD-0F8A-4535-9DD0-21E17DC4765A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{80651E44-43E8-41FA-98D1-C62C3A486D06}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{CD26FA68-E81A-4354-A250-48CBB819A841}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{D4C081D4-D0F5-4145-B52C-A0F46261F70A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{ED86C6DB-13B7-4479-9BB0-6C5EDAC7E11B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{9CB2A806-3E5B-4FA9-85F5-B35203B42F4A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe
FirewallRules: [{1AF77050-F81F-4B95-B869-8E7228E98A2B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe
FirewallRules: [{3FB667E6-C9DE-4F94-84B8-5AA3139D4DFD}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
FirewallRules: [{A89E05EF-1479-4449-A6D0-1125208DB2E1}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{F8EF6BBE-E71D-46B9-BBB5-18CDE092B037}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{1B3FE9E9-EDE9-4FE7-9AA3-DABF7BBB2AE8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{B3B4DE74-206A-41EA-A6FA-8A68463DE9E8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{FC5EC85D-4DC6-42DD-91FC-A27F80E8A477}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{94077D4F-09B4-40F6-BEE7-20051CB7DD2F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{15D8173B-85FA-4392-91EA-04AEC25E0ED3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{D12056D6-37DA-4937-8640-F0E66F479C90}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{060DD118-BECF-41E7-946C-E96D69016B81}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe
FirewallRules: [TCP Query User{E08941DD-B413-4E65-8E8E-C0AD3D2FD6F7}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{5E7FAC1D-86A9-44F8-8A2D-09AF1961D81A}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [{6FB778F8-3E10-455D-88C1-0E8C3A48EEFC}] => (Allow) C:\CYPE Ingenieros\Versão 2017\programas\bimserv.exe
FirewallRules: [{F19DCFCA-F1DC-4A0C-8FE2-7567CF06F326}] => (Allow) C:\CYPE Ingenieros\Versão 2017\programas\bimserv.exe
FirewallRules: [TCP Query User{AB52C277-A5F1-46E3-8416-963EABF2D96F}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\ids.application.exe
FirewallRules: [UDP Query User{2D318A2A-78A4-4D59-ABEE-8F3A0476DFA6}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\ids.application.exe
FirewallRules: [{0EA0AB94-628C-4476-8010-9E27CEDA8029}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{342B8186-E820-4285-9D32-258C7832AB01}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9C265144-19E3-494F-9187-D19E7664042A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{E2F399F5-C7AA-4F00-BFD6-2654940F6A45}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{B27448DB-066F-47BF-9CE7-0131BA07AD4D}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{198188F7-18E7-4985-A4CC-73CD2A304AEA}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [TCP Query User{E5DC80C8-D978-48E2-BB24-99AA7F34D9EE}C:\program files (x86)\samsung\easy document creator\edc.exe] => (Block) C:\program files (x86)\samsung\easy document creator\edc.exe
FirewallRules: [UDP Query User{2BEF3BE8-82CF-4228-BBC7-571C6382AF14}C:\program files (x86)\samsung\easy document creator\edc.exe] => (Block) C:\program files (x86)\samsung\easy document creator\edc.exe
FirewallRules: [TCP Query User{FD7B373A-8A9E-47EE-88BD-D4A8E02B24B1}C:\program files\common files\common desktop agent\cdasrv.exe] => (Allow) C:\program files\common files\common desktop agent\cdasrv.exe
FirewallRules: [UDP Query User{4B36DAC4-1289-445C-BB0A-E269B4C1B01C}C:\program files\common files\common desktop agent\cdasrv.exe] => (Allow) C:\program files\common files\common desktop agent\cdasrv.exe
FirewallRules: [{C227FB9C-6936-47FF-94D4-F32B3FD8CB09}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\SPD\ESM.exe
FirewallRules: [{8A5E4E0C-D7C0-4DA4-93ED-F0CC6A1390CB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6E3160E6-F6E6-4D08-8D1E-2AD117A4F682}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{615CF7DB-AFD1-43E3-B4FD-5C6CD50040F1}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
==================== Pontos de Restauração =========================
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (08/19/2017 01:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ByteFence.exe, versão: 3.14.0.0, carimbo de data/hora: 0x59700f94
Nome do módulo com falha: KERNELBASE.dll, versão: 6.2.14393.1532, carimbo de data/hora: 0x5965ac8c
Código de exceção: 0xe0434f4d
Deslocamento da falha: 0x0000000000033c58
ID do processo com falha: 0x%9
Hora de início do aplicativo com falha: 0xByteFence.exe0
Caminho do aplicativo com falha: ByteFence.exe1
Caminho do módulo com falha: ByteFence.exe2
ID do Relatório: ByteFence.exe3
Nome completo do pacote com falha: ByteFence.exe4
ID do aplicativo relativo ao pacote com falha: ByteFence.exe5
Error: (08/19/2017 10:31:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ByteFence.exe, versão: 3.14.0.0, carimbo de data/hora: 0x59700f94
Nome do módulo com falha: KERNELBASE.dll, versão: 6.2.14393.1532, carimbo de data/hora: 0x5965ac8c
Código de exceção: 0xe0434f4d
Deslocamento da falha: 0x0000000000033c58
ID do processo com falha: 0x%9
Hora de início do aplicativo com falha: 0xByteFence.exe0
Caminho do aplicativo com falha: ByteFence.exe1
Caminho do módulo com falha: ByteFence.exe2
ID do Relatório: ByteFence.exe3
Nome completo do pacote com falha: ByteFence.exe4
ID do aplicativo relativo ao pacote com falha: ByteFence.exe5
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1234
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1234
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/18/2017 10:36:58 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (2080) WebCacheLocal: Falha ao tentar abrir o arquivo "C:\Users\Micaele\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm" para acesso de leitura/gravação com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação de abertura do arquivo falhará com o erro -1032 (0xfffffbf8).
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1156
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1156
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/18/2017 06:03:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 30881266
Erros de Sistema:
=============
Error: (08/19/2017 02:18:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200d: Atualização de recursos para o Windows 10, versão 1703.
Error: (08/19/2017 01:56:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/19/2017 01:56:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/19/2017 01:56:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
e APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (08/19/2017 01:55:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço WsAppService devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (08/19/2017 01:55:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço WsAppService.
Error: (08/19/2017 01:55:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Hardlock devido ao seguinte erro:
O carregamento deste driver foi bloqueado
Error: (08/19/2017 01:55:04 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: hardlock.sys
Error: (08/19/2017 01:53:45 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço RapportMgmtService.
Error: (08/19/2017 01:52:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
CodeIntegrity:
===================================
Date: 2017-08-18 06:08:57.457
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-18 06:08:57.454
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-16 19:01:36.030
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_be58e4780959fe55\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-16 19:01:30.204
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:46:44.143
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:46:44.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:44:39.769
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:44:39.765
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-12 06:54:30.641
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_be58e4780959fe55\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-12 06:54:22.110
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentagem de memória em uso: 31%
RAM física total: 8107.99 MB
RAM física disponível: 5594.27 MB
Virtual Total: 9387.99 MB
Virtual disponível: 6699.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:457.93 GB) (Free:367.22 GB) NTFS
Drive d: (Dados) (Fixed) (Total:455.83 GB) (Free:327.47 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3E8F866F)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por Micaele (19-08-2017 14:18:56)
Executando a partir de C:\Users\Micaele\Desktop
Windows 10 Home Single Language Versão 1607 (X64) (2016-09-26 04:08:04)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-14380496-3129006202-516063525-500 - Administrator - Disabled)
Convidado (S-1-5-21-14380496-3129006202-516063525-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-14380496-3129006202-516063525-503 - Limited - Disabled)
Micaele (S-1-5-21-14380496-3129006202-516063525-1001 - Administrator - Enabled) => C:\Users\Micaele
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Aplicativo da área de trabalho Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.6.378 - Autodesk)
Aplicativos da Autodesk em destaque (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0000-0102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0409-2102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (HKLM\...\{5783F2D7-E001-0409-1102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.2.3.1000 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk Content Service (HKLM-x32\...\{62F029AB-85F2-0000-866A-9FC0DD99DDBC}) (Version: 3.0.84.1 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.1 - Autodesk)
Autodesk Content Service Language Pack (HKLM-x32\...\{62F029AB-85F2-0001-866A-9FC0DD99DDBC}) (Version: 3.0.84.1 - Autodesk) Hidden
Autodesk Content Service Language Pack (HKLM-x32\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk ReCap (HKLM\...\{31ABA3F2-0000-1033-0102-111D43815377}) (Version: 1.3.1.39 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CYPE Ingenieros Versão 2016 (Brasileiro) (HKLM-x32\...\CYPE Ingenieros Versão 2016 (Brasileiro)) (Version: Versão 2016 - CYPE Ingenieros)
Diagnóstico da impressora Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.1.6.02 - Samsung Electronics Co., Ltd.)
dr.fone toolkit para iOS (Version 8.5.0) (HKLM-x32\...\{A26F8BBD-EC10-4bdc-8AD8-F146825A8A63}_is1) (Version: 8.5.0.54 - Wondershare Technology Co.,Ltd.)
Free Download Manager 3.9.6 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HASP Device Drivers (HKLM-x32\...\HASP Device Drivers) (Version: - )
HP Support Solutions Framework (HKLM-x32\...\{0A8C9032-3AB5-4CB7-8173-13BDE66B779A}) (Version: 12.7.27.15 - HP Inc.)
Importação do SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
ITR2012 - Declaração do Imposto sobre a Propriedade Territorial Rural (HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\ITR2012) (Version: 1.1 - Receita Federal do Brasil)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
K-Lite Mega Codec Pack 11.5.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - )
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote Eco Driver (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28/05/2015) - Samsung Electronics Co., Ltd.)
Painel de controle da NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version: - Panda Security)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.3 - Power Software Ltd)
Proteção de Terminal Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1804.134 - Trusteer)
Python 2.7.13 (HKLM-x32\...\{4A656C6C-D24A-473F-9747-3A8D00907A03}) (Version: 2.7.13150 - Python Software Foundation)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1804.134 - Trusteer) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.06.60 (17/03/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.81.00(25/05/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.22 (07/09/2015) - Samsung Electronics Co., Ltd.)
Samsung M2070 Series XPS (Windows 8) (HKLM-x32\...\Samsung M2070 Series XPS (Windows 8)) (Version: 3.03.08.00:05 - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.01.12 (15/10/2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.25 - Samsung Electronics Co., Ltd.) Hidden
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.05.00 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Sentinel Protection Installer 7.6.8 (HKLM-x32\...\{25F63CE2-4482-4926-9583-FE7A04E11F96}) (Version: 7.6.8 - SafeNet, Inc.)
SketchUp 2016 (HKLM\...\{8539258A-B911-475F-94E8-8AA394D95B40}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.1.8 - Synaptics Incorporated)
TigreCAD-2010 1.6 (HKLM-x32\...\TigreCAD-2010_is1) (Version: 1.6 - Tigre S/A)
Unchecky v1.0.3 (HKLM-x32\...\Unchecky) (Version: 1.0.3 - RaMMicHaeL)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 6.7.3 - Universal Media Server)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Warsaw 1.18.1.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.18.1.2 - GAS Tecnologia)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-14380496-3129006202-516063525-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2014-02-07] (Autodesk)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} - \Adobe Acrobat Update Task -> Nenhum Arquivo <==== ATENÇÃO
Task: {48FE997E-D121-4925-AFC6-BFA88D5B8BBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {59964714-F3C3-4D58-AF81-B4D15980CA53} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-08-11] (Microsoft Corporation)
Task: {5B9EF557-14E3-4992-9EA8-60A9E70455AA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {69B4F801-67CD-43CF-8513-90D11336F6F6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATENÇÃO
Task: {71EB85EA-186B-47EA-8080-D174FF6DA241} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Micaele\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {8387EE40-2FCF-474F-A706-DE1CCA4C8233} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {84F60C97-2B85-486D-BDA8-4052E13A9354} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {8573B00B-BF73-43A9-957A-E81754FEE4AE} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-28] (Realtek Semiconductor)
Task: {9B701233-5491-4422-9291-785B4E1398FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-22] (Google Inc.)
Task: {AD99946B-C113-4009-A10E-41741995222C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-22] (Google Inc.)
Task: {B462BC95-8DC3-491A-88BB-520CD0F01A9B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {C1209BB2-486D-4614-9544-EF72E9542649} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATENÇÃO
Task: {C46E8117-D3B4-41CA-A9E7-4368144573CA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {CC35C4A4-B0A5-4779-8237-5EB40F71EAF2} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-07-16 08:42 - 2016-07-16 08:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-07-21 18:32 - 2017-06-21 04:48 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-23 18:28 - 2016-08-01 09:54 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-24 13:10 - 2015-06-11 10:58 - 000022528 _____ () C:\WINDOWS\System32\ssm4mlm.dll
2015-10-24 13:12 - 2015-03-11 23:43 - 000022528 _____ () C:\WINDOWS\System32\us003lm.dll
2016-02-15 20:01 - 2016-02-15 20:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2015-10-24 10:42 - 2014-04-16 05:22 - 000029184 _____ () C:\WINDOWS\System32\usp01l.dll
2015-10-22 19:18 - 2011-08-05 07:53 - 000040960 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\servcpas.exe
2016-04-22 01:07 - 2016-04-22 01:07 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 001337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-24 13:12 - 2015-10-24 13:12 - 000143664 _____ () C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe
2015-10-24 13:11 - 2013-10-04 01:53 - 000734720 _____ () C:\WINDOWS\system32\SnMinDrv.dll
2015-10-24 13:11 - 2013-06-28 11:36 - 000091136 _____ () C:\WINDOWS\system32\SSDEVM64.DLL
2016-05-27 15:50 - 2016-11-01 22:05 - 000401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-23 18:16 - 2016-09-23 18:16 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-16 09:52 - 2017-03-04 03:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-16 09:49 - 2017-03-04 03:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-16 09:49 - 2017-03-04 03:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-16 09:49 - 2017-03-04 03:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-08-11 12:33 - 2017-03-04 03:05 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-08-11 12:33 - 2017-08-01 15:26 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-08-11 12:33 - 2017-08-01 15:31 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-07-16 23:12 - 2017-07-16 23:13 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 043573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-07-16 23:12 - 2017-07-16 23:13 - 002435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll
2014-09-08 12:39 - 2014-09-08 12:39 - 000464608 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2017-08-14 11:59 - 2017-06-15 11:16 - 000061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2017-08-14 11:59 - 2017-06-15 11:15 - 000110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2015-10-22 19:18 - 2011-07-27 13:22 - 000069632 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\entograf.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemsgs.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000471040 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicos2.dll
2015-10-22 19:18 - 2011-08-04 11:16 - 000094208 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cyassert.dll
2015-10-22 19:18 - 2011-07-18 13:19 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unicode.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemem.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000057344 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypestr.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000876544 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicos.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\arrays.dll
2015-10-22 19:18 - 2011-08-03 22:03 - 003395584 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\proglib.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000946176 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\componen.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000475136 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\panelwin.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000135168 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypedir.dll
2015-10-22 19:18 - 2011-04-14 03:26 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\atexit.dll
2015-10-22 19:18 - 2011-07-27 13:20 - 000053248 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeio.dll
2015-10-22 19:18 - 2011-04-14 03:30 - 000086016 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\imagnwin.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000090112 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypemath.dll
2015-10-22 19:18 - 2011-07-21 16:23 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\arrorden.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000569344 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypedocu.dll
2015-10-22 19:18 - 2011-08-03 21:51 - 000339968 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\dllinsta.dll
2015-10-22 19:18 - 2011-08-02 13:20 - 000040960 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeud.dll
2015-10-22 19:18 - 2011-08-02 13:20 - 000061440 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unidagen.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000139264 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\unidades.dll
2015-10-22 19:18 - 2011-07-26 09:39 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\nomtradu.dll
2015-10-22 19:18 - 2011-04-13 05:34 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\textomsg.dll
2015-10-22 19:18 - 2011-04-14 03:28 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\verswin.dll
2015-10-22 19:18 - 2011-07-27 13:20 - 000143360 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\basicwin.dll
2015-10-22 19:18 - 2011-04-14 03:32 - 000024576 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\entobase.dll
2015-10-22 19:18 - 2011-08-03 22:06 - 000942080 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\mnservcp.dll
2015-10-22 19:18 - 2011-04-19 15:44 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\pastbas2.dll
2015-10-22 19:18 - 2011-07-28 07:07 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypesock.dll
2015-10-22 19:18 - 2011-08-01 09:01 - 000765952 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypeconf.dll
2015-10-22 19:18 - 2011-04-19 15:46 - 014704640 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypecant.dll
2015-10-22 19:18 - 2011-08-02 10:55 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\sockconf.dll
2015-10-22 19:18 - 2011-07-28 02:55 - 000049152 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\cypesrv.dll
2015-10-22 19:18 - 2011-07-19 17:09 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2012\servipas\callback.dll
2015-06-02 15:51 - 2015-06-02 15:51 - 000545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2015-10-22 15:46 - 2015-08-07 13:48 - 004932712 _____ () C:\Program Files (x86)\Free Download Manager\fdmbtsupp.dll
2017-08-14 12:00 - 2017-04-04 16:11 - 000043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll
2017-08-14 11:59 - 2017-04-04 16:11 - 000742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll
2017-08-14 12:00 - 2017-06-15 10:49 - 000279976 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\pt-BR\AdWingManRes.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 040640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll
2017-08-14 12:00 - 2017-02-14 03:39 - 000950272 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll
2016-10-28 11:27 - 2016-09-28 08:35 - 000122880 _____ () C:\CYPE Ingenieros\Versão 2017\programas\entograf.dll
2016-10-28 11:26 - 2016-09-29 16:48 - 001212416 _____ () C:\CYPE Ingenieros\Versão 2017\programas\componen.dll
2016-10-28 11:31 - 2016-09-28 08:47 - 000585728 _____ () C:\CYPE Ingenieros\Versão 2017\programas\panelwin.dll
2016-10-28 11:26 - 2016-09-06 09:21 - 000028672 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemem.dll
2016-10-28 11:26 - 2016-06-29 13:15 - 000098304 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemsgs.dll
2016-10-28 11:26 - 2016-06-16 08:14 - 000094208 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypemath.dll
2016-10-28 11:26 - 2016-06-22 13:18 - 000065536 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypestr.dll
2016-10-28 11:25 - 2016-09-28 08:46 - 001724416 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicwin.dll
2016-10-28 11:26 - 2016-08-02 12:17 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\contaux.dll
2016-10-28 11:28 - 2016-09-01 15:10 - 000102400 _____ () C:\CYPE Ingenieros\Versão 2017\programas\imagnwin.dll
2016-10-28 11:27 - 2016-08-02 12:17 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\esapp.dll
2016-10-28 11:23 - 2016-06-16 08:14 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2017\programas\arrays.dll
2016-10-28 11:23 - 2016-04-11 08:38 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\atexit.dll
2016-10-28 11:31 - 2016-09-28 08:35 - 001421312 _____ () C:\CYPE Ingenieros\Versão 2017\programas\proglib.dll
2016-10-28 11:25 - 2016-09-26 09:12 - 000913408 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicos2.dll
2016-10-28 11:26 - 2016-09-30 08:32 - 000163840 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cyassert.dll
2016-10-28 11:26 - 2016-09-12 14:10 - 000348160 _____ () C:\CYPE Ingenieros\Versão 2017\programas\dllinsta.dll
2016-10-28 11:31 - 2016-09-14 13:47 - 000114688 _____ () C:\CYPE Ingenieros\Versão 2017\programas\objcom.dll
2016-10-28 11:32 - 2016-06-22 13:23 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2017\programas\unicode.dll
2016-10-28 11:25 - 2016-09-28 08:22 - 001216512 _____ () C:\CYPE Ingenieros\Versão 2017\programas\basicos.dll
2016-10-28 11:32 - 2016-06-16 08:13 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\textomsg.dll
2016-10-28 11:23 - 2016-09-06 09:21 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2017\programas\arrorden.dll
2016-10-28 11:32 - 2016-02-06 17:55 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\sinpastilla.dll
2016-10-28 11:26 - 2016-09-14 13:47 - 000045056 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypefile.dll
2016-10-28 11:26 - 2016-09-11 14:00 - 000151552 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypedir.dll
2016-10-28 11:32 - 2016-09-05 13:09 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\verswin.dll
2016-10-28 11:27 - 2016-09-06 09:49 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\env.dll
2016-10-28 11:27 - 2016-06-16 08:18 - 000024576 _____ () C:\CYPE Ingenieros\Versão 2017\programas\entobase.dll
2016-10-28 11:29 - 2016-09-26 10:56 - 000032768 _____ () C:\CYPE Ingenieros\Versão 2017\programas\mnbimserv.dll
2016-10-28 11:26 - 2016-09-14 13:47 - 000020480 _____ () C:\CYPE Ingenieros\Versão 2017\programas\callback.dll
2016-10-28 11:25 - 2016-09-29 22:41 - 000102400 _____ () C:\CYPE Ingenieros\Versão 2017\programas\bimui.dll
2016-10-28 11:25 - 2016-09-29 22:41 - 001036288 _____ () C:\CYPE Ingenieros\Versão 2017\programas\bimservice.dll
2016-10-28 11:26 - 2016-09-26 09:10 - 000086016 _____ () C:\CYPE Ingenieros\Versão 2017\programas\cypeio.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1782]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Software\Classes\.scr: AutoCADScriptFile =>
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\banestes.com.br -> hxxps://seg.banestes.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\banestes.com.br -> seg.banestes.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-07-30 19:42 - 2017-08-19 13:55 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Control Panel\Desktop\\Wallpaper -> D:\MICAELE\MICAELE\FOTOS\iPhone 5s\IMG_7234.JPG
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{F479C113-835E-4599-887D-BF2E502F4FA7}] => (Allow) LPort=161
FirewallRules: [{3D8AEE00-B2AA-4BC1-88DC-7A32E74D9409}] => (Allow) LPort=427
FirewallRules: [{49751C56-1564-4B35-A6CE-B80A803F79B8}] => (Allow) LPort=9100
FirewallRules: [UDP Query User{6FBE3DDD-7D7F-4DEC-A9FB-F474DE0FF29C}C:\cype ingenieros\versão 2012\programas\cypecad.exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cypecad.exe
FirewallRules: [TCP Query User{B4516BD6-BF56-44A6-90C4-F507269CB016}C:\cype ingenieros\versão 2012\programas\cypecad.exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cypecad.exe
FirewallRules: [{C6C8287F-E22E-4E2C-9A5A-5F9DCA29026A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{93575888-9A9C-4CCF-B0E5-DF4284E59A34}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{57EAE54C-EB1E-44EE-A7A6-B362D62F73CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0D24F42B-1D71-41FA-8879-A3A12C0778EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B89F3BFA-E990-4DB3-9F56-C6E7F12EAC13}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B688C546-A1FB-4D0F-9692-CFDC6EA26C34}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{3E3E7096-0D0D-4341-8DCD-0A5D9E8E43C7}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{59897F87-DAE6-4B1E-8E62-40D4E669C4E1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{3F24D40F-A9E1-4E8E-86F4-C862151FF15F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{67661B0A-2414-4BB5-BFD4-3FF6B854B37F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{8D8C8890-BE86-4F8C-BF1C-F32F8D14A1A2}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{39FC8A8D-B8AF-417A-8731-08288232F6E3}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{E85D3CDA-7905-4E9C-9ED9-1C2D87102223}C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe
FirewallRules: [UDP Query User{06EE1DBB-2E16-47B4-97A3-E40A486152DC}C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe] => (Allow) C:\cype ingenieros\versão 2012\programas\cype 2012 (brasil).exe
FirewallRules: [TCP Query User{1889CB91-D4B0-4CDC-B3B5-0A5EA99B4053}C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe] => (Allow) C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe
FirewallRules: [UDP Query User{E369EF49-E93B-4F31-9C6B-9924E3A48812}C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe] => (Allow) C:\cype ingenieros\versão 2012\servipas\servidor de hardlocks de rede.exe
FirewallRules: [{480BD4B0-5920-4EB9-8151-4348E6D61432}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{C35A8835-B388-4FC8-A714-EE6CEAF352B9}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{320BCDDD-0F8A-4535-9DD0-21E17DC4765A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{80651E44-43E8-41FA-98D1-C62C3A486D06}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{CD26FA68-E81A-4354-A250-48CBB819A841}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{D4C081D4-D0F5-4145-B52C-A0F46261F70A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{ED86C6DB-13B7-4479-9BB0-6C5EDAC7E11B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{9CB2A806-3E5B-4FA9-85F5-B35203B42F4A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe
FirewallRules: [{1AF77050-F81F-4B95-B869-8E7228E98A2B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe
FirewallRules: [{3FB667E6-C9DE-4F94-84B8-5AA3139D4DFD}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
FirewallRules: [{A89E05EF-1479-4449-A6D0-1125208DB2E1}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{F8EF6BBE-E71D-46B9-BBB5-18CDE092B037}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{1B3FE9E9-EDE9-4FE7-9AA3-DABF7BBB2AE8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{B3B4DE74-206A-41EA-A6FA-8A68463DE9E8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{FC5EC85D-4DC6-42DD-91FC-A27F80E8A477}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{94077D4F-09B4-40F6-BEE7-20051CB7DD2F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{15D8173B-85FA-4392-91EA-04AEC25E0ED3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{D12056D6-37DA-4937-8640-F0E66F479C90}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{060DD118-BECF-41E7-946C-E96D69016B81}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe
FirewallRules: [TCP Query User{E08941DD-B413-4E65-8E8E-C0AD3D2FD6F7}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{5E7FAC1D-86A9-44F8-8A2D-09AF1961D81A}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [{6FB778F8-3E10-455D-88C1-0E8C3A48EEFC}] => (Allow) C:\CYPE Ingenieros\Versão 2017\programas\bimserv.exe
FirewallRules: [{F19DCFCA-F1DC-4A0C-8FE2-7567CF06F326}] => (Allow) C:\CYPE Ingenieros\Versão 2017\programas\bimserv.exe
FirewallRules: [TCP Query User{AB52C277-A5F1-46E3-8416-963EABF2D96F}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\ids.application.exe
FirewallRules: [UDP Query User{2D318A2A-78A4-4D59-ABEE-8F3A0476DFA6}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\ids.application.exe
FirewallRules: [{0EA0AB94-628C-4476-8010-9E27CEDA8029}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{342B8186-E820-4285-9D32-258C7832AB01}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9C265144-19E3-494F-9187-D19E7664042A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{E2F399F5-C7AA-4F00-BFD6-2654940F6A45}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{B27448DB-066F-47BF-9CE7-0131BA07AD4D}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{198188F7-18E7-4985-A4CC-73CD2A304AEA}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [TCP Query User{E5DC80C8-D978-48E2-BB24-99AA7F34D9EE}C:\program files (x86)\samsung\easy document creator\edc.exe] => (Block) C:\program files (x86)\samsung\easy document creator\edc.exe
FirewallRules: [UDP Query User{2BEF3BE8-82CF-4228-BBC7-571C6382AF14}C:\program files (x86)\samsung\easy document creator\edc.exe] => (Block) C:\program files (x86)\samsung\easy document creator\edc.exe
FirewallRules: [TCP Query User{FD7B373A-8A9E-47EE-88BD-D4A8E02B24B1}C:\program files\common files\common desktop agent\cdasrv.exe] => (Allow) C:\program files\common files\common desktop agent\cdasrv.exe
FirewallRules: [UDP Query User{4B36DAC4-1289-445C-BB0A-E269B4C1B01C}C:\program files\common files\common desktop agent\cdasrv.exe] => (Allow) C:\program files\common files\common desktop agent\cdasrv.exe
FirewallRules: [{C227FB9C-6936-47FF-94D4-F32B3FD8CB09}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\SPD\ESM.exe
FirewallRules: [{8A5E4E0C-D7C0-4DA4-93ED-F0CC6A1390CB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6E3160E6-F6E6-4D08-8D1E-2AD117A4F682}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{615CF7DB-AFD1-43E3-B4FD-5C6CD50040F1}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
==================== Pontos de Restauração =========================
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (08/19/2017 01:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ByteFence.exe, versão: 3.14.0.0, carimbo de data/hora: 0x59700f94
Nome do módulo com falha: KERNELBASE.dll, versão: 6.2.14393.1532, carimbo de data/hora: 0x5965ac8c
Código de exceção: 0xe0434f4d
Deslocamento da falha: 0x0000000000033c58
ID do processo com falha: 0x%9
Hora de início do aplicativo com falha: 0xByteFence.exe0
Caminho do aplicativo com falha: ByteFence.exe1
Caminho do módulo com falha: ByteFence.exe2
ID do Relatório: ByteFence.exe3
Nome completo do pacote com falha: ByteFence.exe4
ID do aplicativo relativo ao pacote com falha: ByteFence.exe5
Error: (08/19/2017 10:31:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ByteFence.exe, versão: 3.14.0.0, carimbo de data/hora: 0x59700f94
Nome do módulo com falha: KERNELBASE.dll, versão: 6.2.14393.1532, carimbo de data/hora: 0x5965ac8c
Código de exceção: 0xe0434f4d
Deslocamento da falha: 0x0000000000033c58
ID do processo com falha: 0x%9
Hora de início do aplicativo com falha: 0xByteFence.exe0
Caminho do aplicativo com falha: ByteFence.exe1
Caminho do módulo com falha: ByteFence.exe2
ID do Relatório: ByteFence.exe3
Nome completo do pacote com falha: ByteFence.exe4
ID do aplicativo relativo ao pacote com falha: ByteFence.exe5
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1234
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1234
Error: (08/18/2017 11:44:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/18/2017 10:36:58 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (2080) WebCacheLocal: Falha ao tentar abrir o arquivo "C:\Users\Micaele\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm" para acesso de leitura/gravação com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação de abertura do arquivo falhará com o erro -1032 (0xfffffbf8).
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1156
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1156
Error: (08/18/2017 06:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/18/2017 06:03:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 30881266
Erros de Sistema:
=============
Error: (08/19/2017 02:18:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200d: Atualização de recursos para o Windows 10, versão 1703.
Error: (08/19/2017 01:56:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/19/2017 01:56:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/19/2017 01:56:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
e APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (08/19/2017 01:55:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço WsAppService devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (08/19/2017 01:55:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço WsAppService.
Error: (08/19/2017 01:55:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Hardlock devido ao seguinte erro:
O carregamento deste driver foi bloqueado
Error: (08/19/2017 01:55:04 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: hardlock.sys
Error: (08/19/2017 01:53:45 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço RapportMgmtService.
Error: (08/19/2017 01:52:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
CodeIntegrity:
===================================
Date: 2017-08-18 06:08:57.457
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-18 06:08:57.454
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-16 19:01:36.030
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_be58e4780959fe55\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-16 19:01:30.204
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:46:44.143
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:46:44.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:44:39.769
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-14 18:44:39.765
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-12 06:54:30.641
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_be58e4780959fe55\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-08-12 06:54:22.110
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentagem de memória em uso: 31%
RAM física total: 8107.99 MB
RAM física disponível: 5594.27 MB
Virtual Total: 9387.99 MB
Virtual disponível: 6699.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:457.93 GB) (Free:367.22 GB) NTFS
Drive d: (Dados) (Fixed) (Total:455.83 GB) (Free:327.47 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3E8F866F)
Partition: GPT.
==================== Fim de Addition.txt ============================