Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 02-11-2017
Executado por Daniel Rocha (06-11-2017 20:41:31)
Executando a partir de C:\Users\Daniel Rocha\Downloads
Windows 10 Pro Versão 1709 16299.19 (X64) (2017-10-18 04:22:47)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2839358779-1048892433-1917057796-500 - Administrator - Disabled)
Convidado (S-1-5-21-2839358779-1048892433-1917057796-501 - Limited - Disabled)
Daniel Rocha (S-1-5-21-2839358779-1048892433-1917057796-1002 - Administrator - Enabled) => C:\Users\Daniel Rocha
DefaultAccount (S-1-5-21-2839358779-1048892433-1917057796-503 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2839358779-1048892433-1917057796-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{31A0B634-BCF4-4D3F-8336-87FEACFEE142}) (Version: 11.0.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Atualizações da NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
Backup and Sync from Google (HKLM-x32\...\{604582EB-8259-4ED6-9B1B-6F2494D4B640}) (Version: 3.37.7411.4599 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
CodeBlocks (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
CopySpider 1.3 (HKLM-x32\...\{5D8A8C41-C834-42C2-94DE-94A4B899BEAB}_is1) (Version: 1.3 - CopySpider Software)
Counter-Strike 1.6 (HKLM-x32\...\{DFF42EBE-CB3F-40A1-AADF-D538F3503258}) (Version: 1.6 - CS Revolution)
DDJ-RB Driver (HKLM-x32\...\DDJ-RB) (Version: 1.210.000.000 - Pioneer DJ Corporation.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.55 - Synaptics Incorporated)
Dropbox (HKLM-x32\...\Dropbox) (Version: 38.4.27 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Evernote v. 6.7.5 (HKLM-x32\...\{65B334F4-9E45-11E7-A6A5-005056951CAD}) (Version: 6.7.5.5825 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
iTunes (HKLM\...\{6762A2B6-5042-4AE2-A81D-018EC2F07750}) (Version: 12.7.1.14 - Apple Inc.)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 152 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180152F0}) (Version: 8.0.1520.16 - Oracle Corporation)
K-Lite Mega Codec Pack 12.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.7.5 - KLCP)
League of Legends (HKLM-x32\...\{8CCCD0E7-56E4-45FB-B3FB-9F5183C2F4F0}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.12.111.1002 - Microsoft Corporation)
NVIDIA Driver de gráficos 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Painel de controle da NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Pioneer MIX 64bit Driver (HKLM\...\Pioneer MIX) (Version: 4.5.0.0007 - Pioneer DJ Corporation.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
rekordbox 4.5.0 64bit (HKLM\...\Pioneer rekordbox 4.5.0) (Version: 4.5.0.0007 - Pioneer DJ)
SoulseekQt versão 2016.4.24 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2016.4.24 - Soulseek LLC)
Spotify (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\Spotify) (Version: 1.0.65.320.gac7a8e02 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{D811A40A-9791-497C-B9DC-2D89C8E95EA1}) (Version: 6.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{8B47B514-F5D2-4E0D-B951-6E250618A7CD}) (Version: 6.1 - Apple Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer)
VisuAlg 2.0.0.12 (20/09/06) (HKLM-x32\...\VisuAlg_is1) (Version: 2.0 - Apoio Informática Ltda.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Warsaw 2.0.3.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.0.3.2 - GAS Tecnologia)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2839358779-1048892433-1917057796-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-12] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0150681F-FD53-4968-870C-26C0D85B4442} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
Task: {0442902A-B32A-4C21-B1A3-A2874E1FF000} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
Task: {145D9AF3-53C2-49A8-AD8C-26F786278445} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-10] (NVIDIA Corporation)
Task: {146BE4AB-9070-4192-A5ED-1F78B89F7326} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-375BT.tmp\corefixer.exe <==== ATENÇÃO
Task: {210475E5-9F60-483B-90D5-F2502B80B2F1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
Task: {2B39241C-3CBF-4BCB-B858-288DEA25EFFC} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-OI7PICO-Daniel Rocha => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated)
Task: {30A68D17-1831-490E-B5B7-990F4D0109F6} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-06-29] (Realtek Semiconductor)
Task: {4A1E5A4B-3EB4-4890-BEE3-C9FE7F5C86A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
Task: {524E8465-A1C4-4CCC-B90F-12C0A4770A75} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-27] (Dropbox, Inc.)
Task: {5CB7A433-F567-4A1A-BA0F-359B604C2F2F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-27] (Dropbox, Inc.)
Task: {5D901AAE-8346-4590-9617-3ABB64CC3FE8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10] (NVIDIA Corporation)
Task: {8DD62F63-A1D9-42CA-84C9-332B2F66E29F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.)
Task: {99E77030-846E-41E8-B396-6E6731030FE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-02] (Google Inc.)
Task: {9F1FAC9C-F147-47CF-960C-BD0A8604DF8B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-10] (NVIDIA Corporation)
Task: {BB7D87FF-D367-400B-BB9D-DF79B9D5C463} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-02] (Google Inc.)
Task: {C08BA5FD-869B-4B67-89C7-159EE1C44761} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-10] (NVIDIA Corporation)
Task: {D002128B-A955-412E-923E-92BA21E30A61} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-04-21] ()
Task: {D59E56D3-D945-45A7-A6EA-53689C554661} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
Task: {FB96DB8C-33ED-43D2-B18F-3D52FDCB0AA6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-10-18 23:51 - 2017-10-18 23:51 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-08-07 13:24 - 2017-10-10 22:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-09-29 10:42 - 2017-09-30 11:32 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-09-29 10:42 - 2017-09-30 11:32 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-11-01 05:49 - 2017-11-01 05:49 - 040417680 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe
2017-09-14 23:56 - 2017-09-14 23:59 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 000021504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-10-05 13:21 - 2017-10-05 13:29 - 048839168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2017-10-05 13:21 - 2017-10-05 13:30 - 000164352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
2017-10-05 13:21 - 2017-10-05 13:27 - 000352256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 002836480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 020559872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 002705408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-10-05 13:21 - 2017-10-05 13:25 - 003128320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-08-28 19:45 - 2017-08-28 19:45 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 000118784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 001380864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-10-05 13:21 - 2017-10-05 13:24 - 000367616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll
2017-10-25 10:52 - 2017-10-25 10:52 - 004252160 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1710.2791.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-09-26 17:20 - 2017-09-26 17:20 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1710.2791.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 000030208 _____ () C:\WINDOWS\system32\Windows.WARP.JITService.exe
2017-09-29 10:41 - 2017-09-29 10:41 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 004173824 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 003634176 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2017-11-02 11:54 - 2017-10-26 03:30 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libglesv2.dll
2017-11-02 11:54 - 2017-10-26 03:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libegl.dll
2017-08-07 13:24 - 2017-10-10 22:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-20 14:54 - 2017-09-20 14:54 - 000667520 _____ () C:\Program Files (x86)\Evernote\Evernote\tidy.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000088064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_ctypes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000918528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_hashlib.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000098816 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32api.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000110080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pywintypes27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000364544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pythoncom27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000686080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\unicodedata.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000320512 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32com.shell.shell.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001177088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._core_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000806912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._gdi_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000816640 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._windows_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001067520 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._controls_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000733696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._misc_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000736256 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pysqlite2._sqlite.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000119808 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32file.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000108544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32security.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000007168 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\hashobjs_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017920 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\thumbnails_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000082432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\usb_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000013824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\common.time34.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000018432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32event.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.conditional.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.winwrap.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000089088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.volumes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000167936 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32gui.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000046080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_socket.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001309696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_ssl.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000129536 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_elementtree.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000127488 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pyexpat.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000038912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32inet.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000077824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._html2.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000036864 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_psutil_windows.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000524248 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows._lib_cacheinvalidation.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000011264 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32crypt.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000218624 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\PIL._imaging.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_multiprocessing.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000020480 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_yappi.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000035840 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32process.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000024064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32pipe.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000010240 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\select.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000025600 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32pdh.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000059392 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.device_monitor.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32profile.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000022528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32ts.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000088064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_ctypes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000918528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_hashlib.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000098816 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32api.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000110080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pywintypes27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000364544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pythoncom27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000686080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\unicodedata.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000320512 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32com.shell.shell.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001177088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._core_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000806912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._gdi_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000816640 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._windows_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001067520 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._controls_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000733696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._misc_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000736256 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pysqlite2._sqlite.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000119808 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32file.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000108544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32security.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000007168 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\hashobjs_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017920 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\thumbnails_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000082432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\usb_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000013824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\common.time34.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000018432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32event.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.conditional.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.winwrap.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000089088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.volumes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000167936 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32gui.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000046080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_socket.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001309696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_ssl.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000129536 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_elementtree.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000127488 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pyexpat.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000038912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32inet.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000077824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._html2.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000036864 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_psutil_windows.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000524248 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows._lib_cacheinvalidation.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000011264 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32crypt.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000218624 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\PIL._imaging.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_multiprocessing.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000020480 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_yappi.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000035840 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32process.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000024064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32pipe.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000010240 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\select.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000025600 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32pdh.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000059392 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.device_monitor.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32profile.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000022528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32ts.pyd
2017-09-20 14:54 - 2017-09-20 14:54 - 000153984 _____ () C:\Program Files (x86)\Evernote\Evernote\zlibwapi.dll
2017-09-20 14:54 - 2017-09-20 14:54 - 000217984 _____ () C:\Program Files (x86)\Evernote\Evernote\websockets.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 026142592 _____ () C:\Program Files (x86)\Evernote\Evernote\libcef.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 000751488 _____ () C:\Program Files (x86)\Evernote\Evernote\libglesv2.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 000141184 _____ () C:\Program Files (x86)\Evernote\Evernote\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2017-03-18 18:03 - 2017-03-18 18:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 187.123.92.41 - 187.123.92.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "Steam"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{74CCA1C3-C47A-4C41-B48E-6D534DC7546C}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{F6AEB0C9-EF9E-431C-9516-EE943552E01B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9D5BBEF8-4D10-420F-A1F1-13E9A9E03D65}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E9C0E420-2FFE-40AA-80A8-452F0EE4C68D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6E550D81-8BDE-4D68-A0AE-FC3E159E2D2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{F3741A65-68B6-4E2F-9750-27765D9345A9}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [TCP Query User{628D3EBC-FB29-47DB-9989-7A0E4DDF509E}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [UDP Query User{7CEA710E-78BC-468E-8B30-E99AF5B75C3E}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [TCP Query User{556A785D-A9E0-4B95-9A9D-55058276D836}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [{9ECE9D21-95DA-4670-BF93-5F6D3459B640}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{782E3319-5DBE-4C75-B1A4-506B2D844127}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5689F352-C5AA-4FCA-AAAD-3DA76CB034EA}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{81071592-4E9B-4AC5-8779-AE0ED971BCB3}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [TCP Query User{E6AB44C7-3383-47A0-88BC-9E9039DE4295}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [{ED0EC21F-EC74-4573-8AC1-77574034B3BF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EBD3C2BB-C933-4586-9FFD-3731BEA142B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{ABAA9BF3-5B41-41DB-8A29-EC89EBCF1284}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{98500137-0744-4B09-AD33-394F73B109BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DAD61F83-3E37-4ED7-8644-CF87ADB42177}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BA1D89AB-1385-4E0F-9817-9B143A5AAB04}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B28B2573-328C-473C-AECF-184E8474BB51}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5B59DBB5-7566-49A2-B953-6B9AC58BBF52}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{18E42FE3-3945-450D-8D9B-115E0AD7C51B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4B8663AC-C066-43A0-87BA-FA13302EF6C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{556BDFBC-AB07-4F01-BF5D-6F609934B313}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2E8DF5C1-6085-49F7-99DE-EB6DA42EFFD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{79C78E6F-61B6-412C-855E-EDCD9E263E37}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5B4FF6EE-A1C5-47C8-9959-FD427D1D85AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{566B002C-29A5-43AC-96E8-E63A84C53510}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{36D92ABD-5D20-46EA-A53D-672BD52149FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{80862DCD-C1E8-4770-9DDC-B89E40E61DEE}C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe
FirewallRules: [TCP Query User{C44B486E-97AE-4FBE-823A-A05F33729A29}C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe
FirewallRules: [UDP Query User{E1C8178D-DC20-4296-B207-AEB417C9B65A}C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe
FirewallRules: [TCP Query User{B416225D-94DB-4D5A-984E-7C99350F4FD7}C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe
FirewallRules: [UDP Query User{44F6EA34-CA6C-4F18-8073-59CC62FAA8C2}C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe
FirewallRules: [TCP Query User{A656F86D-CF00-4743-B5D9-7F0F8859DF04}C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe
FirewallRules: [{9226FD48-26FB-486C-97F6-CF652E9A27F4}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F3536078-0A65-4E2E-849E-F75BB160080D}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75422029-1D4D-4E9F-9685-FDCF7DD2041C}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F586FF2A-20F8-41C2-89BE-03E05FC63A72}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{97CCB902-D9F1-4B99-87D9-1BF51E281B46}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D118F2BF-F657-4552-8F7D-7692CC3B75B0}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D8278434-9487-4BFC-A72F-AF0DFAE9D174}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{4724763D-3E22-433B-ABEA-417CF701C171}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{7FF6294A-20A7-470C-BFAB-DFFD37F74621}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [UDP Query User{10D3F7BF-8672-4DA6-BF5F-F6EED45619F7}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [TCP Query User{E3CF2C82-9B89-4128-AB40-666EE0FBDBC6}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [UDP Query User{4DEF659C-05C0-49FD-B7D9-CEE392788BE0}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [{49BB9EBE-0B72-4643-B91C-1D429D0C09C8}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A169D508-44BA-4B70-B90D-F18C8F5FD5E1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CFFEF5E8-4A38-44F9-87B6-858444479CB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{7550088A-ECD5-4EE0-A4DF-7E77DD740203}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Pontos de Restauração =========================
27-10-2017 23:44:19 Ponto de Verificação Agendado
03-11-2017 18:54:07 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Description: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/06/2017 06:16:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 06:10:19 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 03:20:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: googledrivesync.exe, versão: 3.37.7411.4599, carimbo de data/hora: 0x00000000
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento da falha: 0x5078775c
ID do processo com falha: 0x37ac
Hora de início do aplicativo com falha: 0x01d356f527176e80
Caminho do aplicativo com falha: C:\Program Files (x86)\Google\Drive\googledrivesync.exe
Caminho do módulo com falha: unknown
ID do Relatório: fb5e8b6c-9365-4dfb-aa38-f0b834286bbe
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (11/06/2017 10:56:34 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 08:48:28 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-OI7PICO.local already in use; will try DESKTOP-OI7PICO-2.local instead
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-OI7PICO.local. Addr 192.168.0.12
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.12:5353 16 DESKTOP-OI7PICO.local. AAAA 2804:014D:8C87:8000:0000:0000:0000:1000
Error: (11/05/2017 08:02:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1047
Error: (11/05/2017 08:02:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1047
Erros de Sistema:
=============
Error: (11/06/2017 08:23:29 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:11:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:12:20 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:09:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:09:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 10:55:53 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 10:47:20 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:48:57 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:47:53 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:47:53 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
CodeIntegrity:
===================================
Date: 2017-11-06 20:39:40.955
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume1\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:09.194
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:09.193
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:07.879
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:07.878
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:16:57.783
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:16:57.782
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:13:55.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:13:55.645
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:06:35.328
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz
Percentagem de memória em uso: 48%
RAM física total: 8089.07 MB
RAM física disponível: 4153.28 MB
Virtual Total: 9369.07 MB
Virtual disponível: 5132.11 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.23 GB) (Free:73.49 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: F6D68C0D)
Partition 1: (Active) - (Size=222.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=866 MB) - (Type=27)
Partition 3: (Not Active) - (Size=501 MB) - (Type=27)
==================== Fim de Addition.txt ============================
Executado por Daniel Rocha (06-11-2017 20:41:31)
Executando a partir de C:\Users\Daniel Rocha\Downloads
Windows 10 Pro Versão 1709 16299.19 (X64) (2017-10-18 04:22:47)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2839358779-1048892433-1917057796-500 - Administrator - Disabled)
Convidado (S-1-5-21-2839358779-1048892433-1917057796-501 - Limited - Disabled)
Daniel Rocha (S-1-5-21-2839358779-1048892433-1917057796-1002 - Administrator - Enabled) => C:\Users\Daniel Rocha
DefaultAccount (S-1-5-21-2839358779-1048892433-1917057796-503 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2839358779-1048892433-1917057796-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{31A0B634-BCF4-4D3F-8336-87FEACFEE142}) (Version: 11.0.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Atualizações da NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
Backup and Sync from Google (HKLM-x32\...\{604582EB-8259-4ED6-9B1B-6F2494D4B640}) (Version: 3.37.7411.4599 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
CodeBlocks (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
CopySpider 1.3 (HKLM-x32\...\{5D8A8C41-C834-42C2-94DE-94A4B899BEAB}_is1) (Version: 1.3 - CopySpider Software)
Counter-Strike 1.6 (HKLM-x32\...\{DFF42EBE-CB3F-40A1-AADF-D538F3503258}) (Version: 1.6 - CS Revolution)
DDJ-RB Driver (HKLM-x32\...\DDJ-RB) (Version: 1.210.000.000 - Pioneer DJ Corporation.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.55 - Synaptics Incorporated)
Dropbox (HKLM-x32\...\Dropbox) (Version: 38.4.27 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Evernote v. 6.7.5 (HKLM-x32\...\{65B334F4-9E45-11E7-A6A5-005056951CAD}) (Version: 6.7.5.5825 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
iTunes (HKLM\...\{6762A2B6-5042-4AE2-A81D-018EC2F07750}) (Version: 12.7.1.14 - Apple Inc.)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 152 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180152F0}) (Version: 8.0.1520.16 - Oracle Corporation)
K-Lite Mega Codec Pack 12.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.7.5 - KLCP)
League of Legends (HKLM-x32\...\{8CCCD0E7-56E4-45FB-B3FB-9F5183C2F4F0}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.12.111.1002 - Microsoft Corporation)
NVIDIA Driver de gráficos 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Painel de controle da NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Pioneer MIX 64bit Driver (HKLM\...\Pioneer MIX) (Version: 4.5.0.0007 - Pioneer DJ Corporation.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
rekordbox 4.5.0 64bit (HKLM\...\Pioneer rekordbox 4.5.0) (Version: 4.5.0.0007 - Pioneer DJ)
SoulseekQt versão 2016.4.24 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2016.4.24 - Soulseek LLC)
Spotify (HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\Spotify) (Version: 1.0.65.320.gac7a8e02 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{D811A40A-9791-497C-B9DC-2D89C8E95EA1}) (Version: 6.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{8B47B514-F5D2-4E0D-B951-6E250618A7CD}) (Version: 6.1 - Apple Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer)
VisuAlg 2.0.0.12 (20/09/06) (HKLM-x32\...\VisuAlg_is1) (Version: 2.0 - Apoio Informática Ltda.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Warsaw 2.0.3.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.0.3.2 - GAS Tecnologia)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2839358779-1048892433-1917057796-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-12] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0150681F-FD53-4968-870C-26C0D85B4442} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
Task: {0442902A-B32A-4C21-B1A3-A2874E1FF000} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
Task: {145D9AF3-53C2-49A8-AD8C-26F786278445} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-10] (NVIDIA Corporation)
Task: {146BE4AB-9070-4192-A5ED-1F78B89F7326} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-375BT.tmp\corefixer.exe <==== ATENÇÃO
Task: {210475E5-9F60-483B-90D5-F2502B80B2F1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
Task: {2B39241C-3CBF-4BCB-B858-288DEA25EFFC} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-OI7PICO-Daniel Rocha => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated)
Task: {30A68D17-1831-490E-B5B7-990F4D0109F6} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-06-29] (Realtek Semiconductor)
Task: {4A1E5A4B-3EB4-4890-BEE3-C9FE7F5C86A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
Task: {524E8465-A1C4-4CCC-B90F-12C0A4770A75} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-27] (Dropbox, Inc.)
Task: {5CB7A433-F567-4A1A-BA0F-359B604C2F2F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-27] (Dropbox, Inc.)
Task: {5D901AAE-8346-4590-9617-3ABB64CC3FE8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10] (NVIDIA Corporation)
Task: {8DD62F63-A1D9-42CA-84C9-332B2F66E29F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.)
Task: {99E77030-846E-41E8-B396-6E6731030FE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-02] (Google Inc.)
Task: {9F1FAC9C-F147-47CF-960C-BD0A8604DF8B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-10] (NVIDIA Corporation)
Task: {BB7D87FF-D367-400B-BB9D-DF79B9D5C463} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-02] (Google Inc.)
Task: {C08BA5FD-869B-4B67-89C7-159EE1C44761} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-10] (NVIDIA Corporation)
Task: {D002128B-A955-412E-923E-92BA21E30A61} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-04-21] ()
Task: {D59E56D3-D945-45A7-A6EA-53689C554661} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
Task: {FB96DB8C-33ED-43D2-B18F-3D52FDCB0AA6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-10-18 23:51 - 2017-10-18 23:51 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-08-07 13:24 - 2017-10-10 22:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-09-29 10:42 - 2017-09-30 11:32 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-09-29 10:42 - 2017-09-30 11:32 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-11-01 05:49 - 2017-11-01 05:49 - 040417680 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe
2017-09-14 23:56 - 2017-09-14 23:59 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 000021504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-10-05 13:21 - 2017-10-05 13:29 - 048839168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2017-10-05 13:21 - 2017-10-05 13:30 - 000164352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
2017-10-05 13:21 - 2017-10-05 13:27 - 000352256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 002836480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 020559872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 002705408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-10-05 13:21 - 2017-10-05 13:25 - 003128320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-08-28 19:45 - 2017-08-28 19:45 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 13:21 - 2017-10-05 13:26 - 000118784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-10-05 13:21 - 2017-10-05 13:29 - 001380864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-10-05 13:21 - 2017-10-05 13:24 - 000367616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll
2017-10-25 10:52 - 2017-10-25 10:52 - 004252160 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1710.2791.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-09-26 17:20 - 2017-09-26 17:20 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1710.2791.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 000030208 _____ () C:\WINDOWS\system32\Windows.WARP.JITService.exe
2017-09-29 10:41 - 2017-09-29 10:41 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 004173824 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2017-09-29 10:41 - 2017-09-29 10:41 - 003634176 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2017-11-02 11:54 - 2017-10-26 03:30 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libglesv2.dll
2017-11-02 11:54 - 2017-10-26 03:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libegl.dll
2017-08-07 13:24 - 2017-10-10 22:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-20 14:54 - 2017-09-20 14:54 - 000667520 _____ () C:\Program Files (x86)\Evernote\Evernote\tidy.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000088064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_ctypes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000918528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_hashlib.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000098816 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32api.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000110080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pywintypes27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000364544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pythoncom27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000686080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\unicodedata.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000320512 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32com.shell.shell.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001177088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._core_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000806912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._gdi_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000816640 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._windows_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001067520 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._controls_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000733696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._misc_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000736256 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pysqlite2._sqlite.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000119808 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32file.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000108544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32security.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000007168 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\hashobjs_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017920 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\thumbnails_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000082432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\usb_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000013824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\common.time34.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000018432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32event.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.conditional.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.winwrap.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000089088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.volumes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000167936 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32gui.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000046080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_socket.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001309696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_ssl.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000129536 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_elementtree.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000127488 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\pyexpat.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000038912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32inet.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000077824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\wx._html2.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000036864 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_psutil_windows.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000524248 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows._lib_cacheinvalidation.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000011264 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32crypt.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000218624 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\PIL._imaging.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_multiprocessing.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000020480 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\_yappi.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000035840 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32process.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000024064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32pipe.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000010240 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\select.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000025600 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32pdh.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000059392 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\windows.device_monitor.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32profile.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000022528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI80282\win32ts.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000088064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_ctypes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000918528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_hashlib.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000098816 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32api.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000110080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pywintypes27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000364544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pythoncom27.dll
2017-11-06 18:10 - 2017-11-06 18:10 - 000686080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\unicodedata.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000320512 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32com.shell.shell.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001177088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._core_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000806912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._gdi_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000816640 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._windows_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001067520 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._controls_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000733696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._misc_.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000736256 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pysqlite2._sqlite.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000119808 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32file.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000108544 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32security.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000007168 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\hashobjs_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017920 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\thumbnails_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000082432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\usb_ext.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000013824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\common.time34.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000018432 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32event.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.conditional.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.winwrap.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000089088 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.volumes.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000167936 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32gui.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000046080 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_socket.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 001309696 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_ssl.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000129536 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_elementtree.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000127488 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\pyexpat.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000038912 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32inet.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000077824 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\wx._html2.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000036864 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_psutil_windows.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000524248 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows._lib_cacheinvalidation.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000011264 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32crypt.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000218624 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\PIL._imaging.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000027648 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_multiprocessing.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000020480 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\_yappi.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000035840 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32process.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000024064 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32pipe.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000010240 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\select.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000025600 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32pdh.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000059392 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\windows.device_monitor.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000017408 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32profile.pyd
2017-11-06 18:10 - 2017-11-06 18:10 - 000022528 _____ () C:\Users\Daniel Rocha\AppData\Local\Temp\_MEI57722\win32ts.pyd
2017-09-20 14:54 - 2017-09-20 14:54 - 000153984 _____ () C:\Program Files (x86)\Evernote\Evernote\zlibwapi.dll
2017-09-20 14:54 - 2017-09-20 14:54 - 000217984 _____ () C:\Program Files (x86)\Evernote\Evernote\websockets.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 026142592 _____ () C:\Program Files (x86)\Evernote\Evernote\libcef.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 000751488 _____ () C:\Program Files (x86)\Evernote\Evernote\libglesv2.dll
2017-09-20 14:53 - 2017-09-20 14:53 - 000141184 _____ () C:\Program Files (x86)\Evernote\Evernote\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2017-03-18 18:03 - 2017-03-18 18:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 187.123.92.41 - 187.123.92.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2839358779-1048892433-1917057796-1002\...\StartupApproved\Run: => "Steam"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{74CCA1C3-C47A-4C41-B48E-6D534DC7546C}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{F6AEB0C9-EF9E-431C-9516-EE943552E01B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9D5BBEF8-4D10-420F-A1F1-13E9A9E03D65}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E9C0E420-2FFE-40AA-80A8-452F0EE4C68D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6E550D81-8BDE-4D68-A0AE-FC3E159E2D2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{F3741A65-68B6-4E2F-9750-27765D9345A9}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [TCP Query User{628D3EBC-FB29-47DB-9989-7A0E4DDF509E}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [UDP Query User{7CEA710E-78BC-468E-8B30-E99AF5B75C3E}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [TCP Query User{556A785D-A9E0-4B95-9A9D-55058276D836}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [{9ECE9D21-95DA-4670-BF93-5F6D3459B640}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{782E3319-5DBE-4C75-B1A4-506B2D844127}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5689F352-C5AA-4FCA-AAAD-3DA76CB034EA}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{81071592-4E9B-4AC5-8779-AE0ED971BCB3}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [TCP Query User{E6AB44C7-3383-47A0-88BC-9E9039DE4295}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [{ED0EC21F-EC74-4573-8AC1-77574034B3BF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EBD3C2BB-C933-4586-9FFD-3731BEA142B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{ABAA9BF3-5B41-41DB-8A29-EC89EBCF1284}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{98500137-0744-4B09-AD33-394F73B109BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DAD61F83-3E37-4ED7-8644-CF87ADB42177}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BA1D89AB-1385-4E0F-9817-9B143A5AAB04}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B28B2573-328C-473C-AECF-184E8474BB51}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5B59DBB5-7566-49A2-B953-6B9AC58BBF52}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{18E42FE3-3945-450D-8D9B-115E0AD7C51B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4B8663AC-C066-43A0-87BA-FA13302EF6C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{556BDFBC-AB07-4F01-BF5D-6F609934B313}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2E8DF5C1-6085-49F7-99DE-EB6DA42EFFD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{79C78E6F-61B6-412C-855E-EDCD9E263E37}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5B4FF6EE-A1C5-47C8-9959-FD427D1D85AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{566B002C-29A5-43AC-96E8-E63A84C53510}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{36D92ABD-5D20-46EA-A53D-672BD52149FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{80862DCD-C1E8-4770-9DDC-B89E40E61DEE}C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe
FirewallRules: [TCP Query User{C44B486E-97AE-4FBE-823A-A05F33729A29}C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\rekordbox.exe
FirewallRules: [UDP Query User{E1C8178D-DC20-4296-B207-AEB417C9B65A}C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe
FirewallRules: [TCP Query User{B416225D-94DB-4D5A-984E-7C99350F4FD7}C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvlinksysmgr.exe
FirewallRules: [UDP Query User{44F6EA34-CA6C-4F18-8073-59CC62FAA8C2}C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe
FirewallRules: [TCP Query User{A656F86D-CF00-4743-B5D9-7F0F8859DF04}C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe] => (Allow) C:\program files\pioneer\rekordbox 4.5.0\psvnfsd.exe
FirewallRules: [{9226FD48-26FB-486C-97F6-CF652E9A27F4}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F3536078-0A65-4E2E-849E-F75BB160080D}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{75422029-1D4D-4E9F-9685-FDCF7DD2041C}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F586FF2A-20F8-41C2-89BE-03E05FC63A72}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{97CCB902-D9F1-4B99-87D9-1BF51E281B46}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D118F2BF-F657-4552-8F7D-7692CC3B75B0}] => (Allow) C:\Users\Daniel Rocha\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D8278434-9487-4BFC-A72F-AF0DFAE9D174}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{4724763D-3E22-433B-ABEA-417CF701C171}C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel rocha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{7FF6294A-20A7-470C-BFAB-DFFD37F74621}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [UDP Query User{10D3F7BF-8672-4DA6-BF5F-F6EED45619F7}C:\program files (x86)\valve\original\hl.exe] => (Allow) C:\program files (x86)\valve\original\hl.exe
FirewallRules: [TCP Query User{E3CF2C82-9B89-4128-AB40-666EE0FBDBC6}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [UDP Query User{4DEF659C-05C0-49FD-B7D9-CEE392788BE0}C:\program files (x86)\valve\original\hlds.exe] => (Allow) C:\program files (x86)\valve\original\hlds.exe
FirewallRules: [{49BB9EBE-0B72-4643-B91C-1D429D0C09C8}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A169D508-44BA-4B70-B90D-F18C8F5FD5E1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CFFEF5E8-4A38-44F9-87B6-858444479CB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{7550088A-ECD5-4EE0-A4DF-7E77DD740203}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Pontos de Restauração =========================
27-10-2017 23:44:19 Ponto de Verificação Agendado
03-11-2017 18:54:07 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Description: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/06/2017 06:16:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 06:10:19 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 03:20:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: googledrivesync.exe, versão: 3.37.7411.4599, carimbo de data/hora: 0x00000000
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento da falha: 0x5078775c
ID do processo com falha: 0x37ac
Hora de início do aplicativo com falha: 0x01d356f527176e80
Caminho do aplicativo com falha: C:\Program Files (x86)\Google\Drive\googledrivesync.exe
Caminho do módulo com falha: unknown
ID do Relatório: fb5e8b6c-9365-4dfb-aa38-f0b834286bbe
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (11/06/2017 10:56:34 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/06/2017 08:48:28 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Audacity\audacity.exe". Erro no arquivo de manifesto ou de política "", na linha .
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_cc92fab02215da61.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.19_none_1440318736920367.manifest.
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-OI7PICO.local already in use; will try DESKTOP-OI7PICO-2.local instead
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-OI7PICO.local. Addr 192.168.0.12
Error: (11/05/2017 08:02:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.12:5353 16 DESKTOP-OI7PICO.local. AAAA 2804:014D:8C87:8000:0000:0000:0000:1000
Error: (11/05/2017 08:02:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1047
Error: (11/05/2017 08:02:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1047
Erros de Sistema:
=============
Error: (11/06/2017 08:23:29 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:11:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:12:20 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:09:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 06:09:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 10:55:53 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 10:47:20 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:48:57 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OI7PICO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-OI7PICO\Daniel Rocha SID (S-1-5-21-2839358779-1048892433-1917057796-1002) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:47:53 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (11/06/2017 08:47:53 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
e APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
CodeIntegrity:
===================================
Date: 2017-11-06 20:39:40.955
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume1\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:09.194
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:09.193
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:07.879
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:32:07.878
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:16:57.783
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:16:57.782
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:13:55.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:13:55.645
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-06 20:06:35.328
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz
Percentagem de memória em uso: 48%
RAM física total: 8089.07 MB
RAM física disponível: 4153.28 MB
Virtual Total: 9369.07 MB
Virtual disponível: 5132.11 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.23 GB) (Free:73.49 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: F6D68C0D)
Partition 1: (Active) - (Size=222.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=866 MB) - (Type=27)
Partition 3: (Not Active) - (Size=501 MB) - (Type=27)
==================== Fim de Addition.txt ============================