cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 02.01.2018
Executado por A (06-01-2018 15:17:33)
Executando a partir de C:\Users\A\Desktop
Windows 10 Pro Versão 1703 15063.786 (X64) (2017-05-31 17:10:31)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

A (S-1-5-21-2126829246-1605440333-2167194936-1001 - Administrator - Enabled) => C:\Users\A
Administrador (S-1-5-21-2126829246-1605440333-2167194936-500 - Administrator - Disabled)
Convidado (S-1-5-21-2126829246-1605440333-2167194936-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-2126829246-1605440333-2167194936-503 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Amazon Send to Kindle (HKLM-x32\...\SendToKindle) (Version: 1.1.0.243 - Amazon)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.9.2322 - AVAST Software)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 - Corel Corporation) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (HKLM\...\{3BB8EB77-737B-4B32-BAB9-08C7110C46BD}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Galeria de Fotos (HKLM-x32\...\{9EE1AE8B-4872-41CA-8C9A-C33D899523E0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.238.0 - International GeoGebra Institute)
gnuplot 5.0 patchlevel 4 (HKLM-x32\...\{AB419AC3-9BC1-4EC5-A75B-4D8870DD651F}_is1) (Version: 5.0 patchlevel 4 - gnuplot development team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
IHMC CmapTools v6.02 (HKLM-x32\...\IHMC CmapTools v6.02) (Version: 6.0.2.0 - Institute for Human & Machine Cognition)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
ISO2Disc 1.10 (HKLM-x32\...\ISO2Disc_is1) (Version: - Top Password Software, Inc.)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
K-Lite Codec Pack 11.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.0 - )
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10292 - Realtek Semiconductor Corp.)
Lenovo Service Bridge (HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\cbe8636f7dd0cf1d) (Version: 1.6.0.0 - Lenovo)
Lenovo Solution Center (HKLM\...\{F925868A-2F2C-414B-A5A7-C613039CE9E4}) (Version: 3.1.001.00 - Lenovo)
Meazure 2.0 (HKLM-x32\...\Meazure_is1) (Version: 2.0 - C Thing Software)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (HKLM-x32\...\{C05F4139-CB6B-4272-A0BF-861FEB667F27}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.7.2 - Reimage) <==== ATENÇÃO
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stellarium 0.14.2 (HKLM\...\Stellarium_is1) (Version: 0.14.2 - Stellarium team)
Tracker (HKLM-x32\...\OSP Tracker) (Version: 4.92 - Open Source Physics)
Unity Web Player (HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\UnityWebPlayer) (Version: 5.3.0f3 - Unity Technologies ApS)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VirtualDJ 8 (HKLM-x32\...\{6B8D3A67-346D-410E-81D2-3BFE228D263D}) (Version: 8.1.2587.0 - Atomix Productions)
Warface (HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.1.375.83 - Level Up! Games)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\A\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\A\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\A\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe /Automation => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2126829246-1605440333-2167194936-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\en-US\acadficn.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-05] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-05] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-05] (AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-05] (AVAST Software)
ContextMenuHandlers3: [STKContextMenu] -> {90DD7445-E924-4c6e-92AC-01F8C3A7E0C7} => C:\Program Files (x86)\Amazon\SendToKindle\stkContextMenu_243.dll [2016-11-26] (Amazon.com, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-04] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-05] (AVAST Software)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {008BAD28-96EB-49AB-BAB0-93247F32EBAE} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {023993FF-376B-4235-A9C0-2EF763610BBC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {0A920D64-17A7-4D44-896B-CECDB02F3EB2} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-08-17] (Lenovo)
Task: {1BCF5545-268D-4A8A-B9B2-D8B41812372B} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {1D62BEDA-6BFF-42F9-9E5B-102ED059EB8B} - \Yahoo! Powered moril -> Nenhum Arquivo <==== ATENÇÃO
Task: {28BB052D-740D-4BC2-B4DB-A6BE17507699} - System32\Tasks\crash_service => C:\Users\A\AppData\Local\BoBrowser\Application\crash_service.exe <==== ATENÇÃO
Task: {2C6FCB17-44D6-4C8A-880D-803538DA8A03} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [2017-03-01] ()
Task: {42D9F64F-63B1-41BE-A4D7-7EA3189A9C93} - System32\Tasks\Run_Bobby_Browser => C:\Users\A\AppData\Local\BoBrowser\Application\bobrowser.exe <==== ATENÇÃO
Task: {4A121B6F-4449-44B2-81B9-5A6CE49FD567} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-22] (Adobe Systems Incorporated)
Task: {70E58F7C-3720-4CE3-932C-2CE0998AB3E5} - System32\Tasks\{4F28F828-C7A9-473D-915F-A51908AF7EDF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Battlefield 1942\BF1942.exe" -d "C:\Program Files (x86)\EA GAMES\Battlefield 1942"
Task: {84B66906-F603-47BC-8678-1D8B7C56A1CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {8A05258B-93AD-47CC-9589-74F16049BD2C} - System32\Tasks\{46CF5E50-2153-4C01-A38B-1AA04D3CBD17} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Wrye Bash\uninstall.exe"
Task: {8D9D9845-CE0C-4AE4-BA9D-74BB285F65EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-01] (Google Inc.)
Task: {959A4E99-056B-4EB0-9B97-2958129D7BF0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {9C419211-ACAB-42D8-BABC-8C357A410430} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-01] (Google Inc.)
Task: {A14A37B3-02DA-4521-85D3-531E75911BFC} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] ()
Task: {A4C3DB5F-F8B8-4A8B-A67C-8ECAFA1A9A80} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-08-17] (Lenovo)
Task: {B33E7283-F744-4980-85C0-DEF2B0B269D2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2017-12-09] (AVAST Software)
Task: {BDAFBBC7-3ACE-40EC-A851-E42976907511} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => "%Systemdrive%\Office Activation Technologies\Install.cmd"
Task: {BFBF7F31-CAA7-4B78-9DB2-E921E16C53CC} - System32\Tasks\SafeZone scheduled Autoupdate 1465491348 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {CB75B2F0-E0BE-4D6E-8FE5-D1FD9CC5639E} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2017-09-11] (Reimage®) <==== ATENÇÃO
Task: {CC0D63AB-9654-445D-93B4-AFD817011AE7} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2126829246-1605440333-2167194936-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\A\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {D0267A4B-52CA-4AE0-AA3A-CF7C9D2F9B6B} - System32\Tasks\{38EF23CB-FC08-4366-87FE-539DA0E82F15} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.16.0.101&LastError=404
Task: {E234C98C-8D2B-427E-BEED-F3BBEE8C67B3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {E64A9741-EEA5-4CBD-BB32-BF676367AFB7} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] ()
Task: {E6D2029C-0D95-4F3B-AABA-E7ECB91A340C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-08-17] (Lenovo)
Task: {EEC5A3D0-123D-4CE1-868A-D97ED3BE2C50} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-01-05] (AVAST Software)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Yahoo! Powered moril.job => Wscript.exe C:\ProgramData\{296DEC0E-A32F-66C8-25E9-F88ABFAB7344}\cofa.txt <==== ATENÇÃO

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


Shortcut: C:\Users\A\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\A\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Módulos Carregados (Whitelisted) ==============

2017-03-18 18:58 - 2017-03-18 18:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 18:59 - 2017-03-20 01:59 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-01-05 21:02 - 2018-01-05 21:02 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-01-05 21:02 - 2018-01-05 21:02 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-01-05 21:02 - 2018-01-05 21:02 - 024670720 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-01-05 21:02 - 2018-01-05 21:02 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\skypert.dll
2018-01-05 21:02 - 2018-01-05 21:02 - 000667648 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000067984 _____ () C:\Program Files\AVAST Software\Avast\x64\dll_loader.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000067920 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2018-01-06 08:15 - 2018-01-03 07:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll
2018-01-06 08:15 - 2018-01-03 07:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000206152 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000058016 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000057504 _____ () C:\Program Files\AVAST Software\Avast\dll_loader.dll
2017-07-11 13:08 - 2017-07-11 13:08 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000289272 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-01-05 20:59 - 2018-01-05 20:59 - 000282560 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)

HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-07-10 09:04 - 2015-07-10 09:02 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 200.189.80.128 - 200.189.80.115
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

MSCONFIG\Services: AdAppMgrSvc => 2
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: KMS-R@1n => 2
MSCONFIG\Services: PSI_SVC_2_x64 => 2
MSCONFIG\Services: Spooler => 2
MSCONFIG\Services: TapiSrv => 3
HKLM\...\StartupApproved\StartupFolder: => "script.vbs"
HKLM\...\StartupApproved\Run: => "RtsFT"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-2126829246-1605440333-2167194936-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [UDP Query User{1A9BBAFA-7E9F-4DA0-809E-AC79B9AB886C}C:\program files (x86)\battlefield 4\bf4_x86.exe] => (Block) C:\program files (x86)\battlefield 4\bf4_x86.exe
FirewallRules: [TCP Query User{EFB5342D-BF82-4100-B937-D3C2CEF41E08}C:\program files (x86)\battlefield 4\bf4_x86.exe] => (Block) C:\program files (x86)\battlefield 4\bf4_x86.exe
FirewallRules: [{A8301B91-B0EF-43B4-8121-99AC14A4149D}] => (Allow) C:\Users\A\Desktop\Ativador Officie 2013 (Online Wolrd)\Ativador Office 2013\Microsoft Toolkit 2.6 BETA 5\Microsoft Toolkit.exe
FirewallRules: [{E6C40634-2E23-4954-BF4E-EB7416E24BEA}] => (Allow) C:\Users\A\Desktop\Ativador Officie 2013 (Online Wolrd)\Ativador Office 2013\Microsoft Toolkit 2.6 BETA 5\Microsoft Toolkit.exe
FirewallRules: [{F18A247A-7800-4C1B-843A-47439236C358}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{768438B8-4CDA-491F-ACBE-E433D8EE20B8}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{346B6A91-1521-4412-86CF-B9D8A0BCCE9C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{D247F371-B221-42AC-9241-3E2F1E4107F4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [UDP Query User{2AF66F42-9722-405B-8610-B04A8749D33A}C:\users\a\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\a\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{C6C78128-FB09-4DB6-A3B8-5FFFA2807B0B}C:\users\a\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\a\appdata\local\akamai\netsession_win.exe
FirewallRules: [{0429F251-9F3A-4A40-98EF-17EFF1B85E68}] => (Allow) LPort=5000
FirewallRules: [{7E7BB7CA-5CBD-4950-9D57-57E1CF4AE52D}] => (Allow) LPort=59672
FirewallRules: [UDP Query User{D2931B5B-5B9C-495C-A7F1-F79BF0FE8A11}C:\users\a\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\a\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{E1677591-6D70-4F06-A61D-947D9B4F0000}C:\users\a\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\a\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{5A260C35-108B-4597-99B9-D1592C55A8AF}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [TCP Query User{D505BF16-3ED9-4251-B418-4630E6D7FCE2}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [{20C8C8E7-4DB8-41A9-BC49-0E1C1772C7F2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{901BB4FD-0EDA-43B0-BCC4-65EF6F107C24}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E589672B-89B0-47C7-9786-7B3A2EB8F44F}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{58D54F7C-F8B3-4221-A7C1-619AA3931D49}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{06B30B9D-448B-482A-9325-E9AB3D48B9B1}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FBEC713B-51C0-46A2-B7A1-383DECD825EC}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5538DBEB-DA71-4AFA-9DCD-10A0BCE9BB77}] => (Allow) C:\Users\A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DCC4113A-3D03-40AC-9EF0-6188097F7E6E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2932FA21-0831-4421-9E14-F26D38E31C30}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D21424E1-A07F-4BD8-8599-E223F411E0D7}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{F9198CB3-8517-4390-AAFF-76606058A5C4}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [TCP Query User{2CCDC990-81D4-4A4B-912F-A3A28F36F433}C:\users\a\desktop\dead island\deadislandgame.exe] => (Allow) C:\users\a\desktop\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{3A523AA7-F49E-4139-AE87-B047F728D2F8}C:\users\a\desktop\dead island\deadislandgame.exe] => (Allow) C:\users\a\desktop\dead island\deadislandgame.exe
FirewallRules: [{50A341D6-CDEC-4AB8-90F2-1FF501BC8C32}] => (Block) C:\users\a\desktop\dead island\deadislandgame.exe
FirewallRules: [{9A9B2B33-B854-4097-B01D-988C847B77F7}] => (Block) C:\users\a\desktop\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{C4C93D19-EDED-464C-BF95-C77F7237D580}C:\program files (x86)\dead island\deadislandgame.exe] => (Allow) C:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{2A5E9C13-2D60-4016-812D-48AF7BBFD539}C:\program files (x86)\dead island\deadislandgame.exe] => (Allow) C:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [{52210897-6E13-45AC-8158-9147096BED77}] => (Block) C:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [{E90FAE5D-7BFC-4C9D-9525-168A55841571}] => (Block) C:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{2234A3DA-226E-49B5-9B35-AF4E3111504F}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{36C22D29-461D-4CFB-BFC2-0A1F4B598FD2}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [{7AD7D528-E172-46D3-9FDF-C1A02BE708B3}] => (Block) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [{92BBC18F-276F-4171-BF8F-FC92106582CD}] => (Block) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [{AD6AB4F1-B7BB-43FC-A42F-81B81B8E3459}] => (Allow) C:\Program Files (x86)\the elder scroll V\Steam.exe
FirewallRules: [{4A089A06-A201-461B-B614-10A71FE007D2}] => (Allow) C:\Program Files (x86)\the elder scroll V\Steam.exe
FirewallRules: [TCP Query User{E21B842F-4572-46E1-88B4-340982373B5B}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [UDP Query User{AF1D9E17-8CEF-49EC-99F1-1251006B41DD}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [TCP Query User{9FCD12E7-EB9D-4B88-977A-80F1C75CADCA}C:\program files (x86)\java\jre1.8.0_73\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\java.exe
FirewallRules: [UDP Query User{AB877C4B-4FE8-41C3-8885-FDB4201F8CCD}C:\program files (x86)\java\jre1.8.0_73\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\java.exe
FirewallRules: [TCP Query User{388707DE-A12F-4757-8B38-38CE569FFAA1}C:\program files (x86)\dragon age\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\dragon age\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{78A0D762-F69C-43A6-A185-70756D67A87B}C:\program files (x86)\dragon age\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\dragon age\bin_ship\daorigins.exe
FirewallRules: [{2E0CFD3D-C722-411F-A073-21F6C58CAEC6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{55AD4D2E-738B-4D7D-9300-B50AD8FF0486}] => (Allow) LPort=2869
FirewallRules: [{469EA6FD-9678-4557-A445-E2259A23D2FD}] => (Allow) LPort=1900
FirewallRules: [{14A45B90-058F-446C-A2BF-2DE957FBA880}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{35E7C8E4-2B25-445F-A6F8-F7B7AD3B8DCB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{79136FB6-30F9-49AA-A19C-B7C2ACBCC764}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{E7E1D9C6-D932-4587-B2B3-18DF0F0C9472}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{4E15BD56-B270-4F09-863F-0B41661699CF}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{8F4B9EAB-3C50-498A-BD4F-203442E210EE}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [TCP Query User{891DE598-A848-4D7A-B42A-7AEAC28AA0AB}C:\program files (x86)\java\jre1.8.0_73\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\java.exe
FirewallRules: [UDP Query User{F2E23ACA-B89F-402C-B2B7-861C2F5143AC}C:\program files (x86)\java\jre1.8.0_73\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\java.exe
FirewallRules: [{688D9F0B-C511-467E-B211-AF5FF6D7902A}] => (Allow) LPort=51215
FirewallRules: [TCP Query User{73A9ED15-4E4C-431A-9369-AD625154D750}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{65B59BB1-1806-4E95-AF8A-87930D2C96C0}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [TCP Query User{E2A0EBCE-AFF8-4388-8F1E-334D7FCFA99A}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{07BFC488-64E0-4DFC-899F-16641C17689C}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{CF3477A7-C75F-48DD-8C6C-5F4DE675615F}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{B58F327A-D390-4A8E-8628-758954947D13}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{83A9C8C1-F989-4B6C-9E4D-157AECBA3629}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{704D5E20-3668-4558-8336-37855D576AC7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C01BB1B1-384B-4DCA-B0C5-D26576E0386A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{8CE1C41F-6BAA-4FFF-8BC8-B7455FF817FB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{53BF6A9E-570B-4674-8716-1F4C32993B7B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{24A85099-54CF-419D-9A86-EE2336EA29CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{FEC33653-F9B3-4A98-ACF4-BFD9E6C19BD0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{50AECE2C-3CF4-476D-B91A-25FBF424878A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{9C6EB4D0-F177-4FEA-BDE2-C6A05B423EEF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{772D4F75-304C-4224-9721-40CB82A916FE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{1ED770D9-3697-4912-AFDA-28175FD2B2BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{4713F2FC-303A-4060-9284-0E08D2A888DB}C:\program files (x86)\city car driving\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving\bin\win32\starter.exe
FirewallRules: [UDP Query User{5F55E7CC-B7A3-473D-B75C-E491B797EEB9}C:\program files (x86)\city car driving\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving\bin\win32\starter.exe

==================== Pontos de Restauração =========================

19-12-2017 16:51:04 Windows Update
24-12-2017 19:28:21 Windows Update
05-01-2018 15:18:08 Ponto de Verificação Agendado

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (01/06/2018 02:49:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RODOLFO)
Description: Falha na ativação do aplicativo Microsoft.Getstarted_8wekyb3d8bbwe!App com o erro: -2144927148. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (01/06/2018 02:49:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2018 02:49:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (01/06/2018 08:25:21 AM) (Source: NtServicePack) (EventID: 4373) (User: )
Description: Event-ID 4373

Error: (01/06/2018 08:25:19 AM) (Source: NtServicePack) (EventID: 4373) (User: )
Description: Event-ID 4373

Error: (01/06/2018 08:17:07 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent

Error: (01/06/2018 08:06:14 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2018 08:06:12 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (01/06/2018 08:05:51 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RODOLFO)
Description: Falha na ativação do aplicativo Microsoft.Getstarted_8wekyb3d8bbwe!App com o erro: -2144927148. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (01/05/2018 08:59:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable


Erros de Sistema:
=============
Error: (01/06/2018 02:52:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Otimização de Entrega suspenso ao iniciar.

Error: (01/06/2018 02:48:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SAService devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.

Error: (01/06/2018 02:48:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço CldFlt devido ao seguinte erro:
Não há suporte para o pedido.

Error: (01/06/2018 08:26:55 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: O serviço Gerenciador de conexão de acesso remoto depende do serviço Telefonia, mas não foi possível iniciá-lo devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.

Error: (01/06/2018 08:08:59 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Otimização de Entrega suspenso ao iniciar.

Error: (01/06/2018 08:04:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SAService devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.

Error: (01/06/2018 08:04:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço CldFlt devido ao seguinte erro:
Não há suporte para o pedido.

Error: (01/05/2018 04:39:30 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (01/05/2018 04:12:57 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (01/05/2018 02:57:58 PM) (Source: DCOM) (EventID: 10010) (User: RODOLFO)
Description: O servidor Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca não se registrou no DCOM dentro do tempo limite necessário.


CodeIntegrity:
===================================
Date: 2017-11-26 20:30:48.166
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-26 20:30:48.165
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-18 18:16:03.873
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-18 18:16:03.866
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-18 16:32:17.111
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-08-12 21:26:45.085
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-08-12 21:26:45.083
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-08-12 19:54:25.397
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-08-12 19:54:25.396
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-08-11 23:44:32.170
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentagem de memória em uso: 33%
RAM física total: 8092.83 MB
RAM física disponível: 5385.05 MB
Virtual Total: 9372.83 MB
Virtual disponível: 6842.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:891.49 GB) (Free:666.03 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 95D2123E)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=891.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=476 MB) - (Type=27)
Partition 4: (Not Active) - (Size=39.1 GB) - (Type=05)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité