Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 14.01.2019
Executado por Rubão (14-01-2019 12:14:45)
Executando a partir de C:\Users\Rubão\Desktop
Windows 10 Pro Versão 1803 17134.523 (X64) (2018-05-21 11:44:50)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-4167073020-2559717188-609065001-500 - Administrator - Disabled)
Convidado (S-1-5-21-4167073020-2559717188-609065001-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4167073020-2559717188-609065001-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-4167073020-2559717188-609065001-1000 - Limited - Disabled) => C:\Users\defaultuser0
Rubão (S-1-5-21-4167073020-2559717188-609065001-1001 - Administrator - Enabled) => C:\Users\Rubão
WDAGUtilityAccount (S-1-5-21-4167073020-2559717188-609065001-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\uTorrent) (Version: 3.5.5.44989 - BitTorrent Inc.)
ABBYY FineReader 11 Corporate Edition (HKLM-x32\...\{F1100000-0010-0000-0000-074957833700}) (Version: 11.0.460 - ABBYY)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2080, 07.07.2018 - AIMP DevTeam)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.2.5964 - AVAST Software)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 3.56.76.1867 - BlueStack Systems, Inc.)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (HKLM\...\{FC41DFBE-6C39-4C84-949B-7CB1E6460C7A}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
Creative Destruction version 3.0.42 (HKLM-x32\...\{24904964-4247-4EBE-BC79-21D7FF68C6A0}_is1) (Version: 3.0.42 - My Company, Inc.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.3917.58 - CyberLink Corp.)
Divulga versão 18.10.0 (HKLM-x32\...\{B15DA231-5B02-439A-9D33-3B1639508E46}_is1) (Version: 18.10.0 - Justiça Eleitoral)
DVDFab (x64) 10.0.7.6 (27/12/2017) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.7.6 - Fengtao Software Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
Epson Software Updater (HKLM-x32\...\{60A3CB9F-4429-4C7A-AA97-77CC4FE10671}) (Version: 4.4.9 - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
ImageCapture Suite Plug-in (HKLM-x32\...\{27C2C418-B697-4CC2-A138-208D63061FC0}) (Version: 9.3.0 - Dynamsoft)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
IRPF2018 (HKLM-x32\...\IRPF2018) (Version: 1.1 - Receita Federal do Brasil)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
MediaInfo 17.12 (HKLM\...\MediaInfo) (Version: 17.12 - MediaArea.net)
MegaJogos (remove only) (HKLM-x32\...\MegaJogos) (Version: - )
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.11126.20196 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x64 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x64 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Firefox 52.0.2 ESR (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 52.0.2 ESR (x86 pt-BR)) (Version: 52.0.2 - Mozilla)
Mozilla Firefox 56.0 (x64 pt-BR) (HKLM\...\Mozilla Firefox 56.0 (x64 pt-BR)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
Nero 7 Ultra Edition (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301046}) (Version: 7.02.9753 - Nero AG)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.7 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.8.11002 - Electronic Arts, Inc.)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Perfect Player versão 1.1.4 (HKLM\...\{73DC7680-5D9C-4761-A348-EB2227D2D9D9}_is1) (Version: 1.1.4 - Niklabs)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Roblox Player for Rubão (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
Roblox Player for Rubão (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\roblox-player) (Version: - Roblox Corporation)
SIGTAP (remove only) (HKLM-x32\...\SIGTAP) (Version: - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.5640 - TeamViewer)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.36.104.1020 - Electronic Arts Inc.)
Transmissor DATASUS 2.2.0 (HKLM-x32\...\Transmissor DATASUS_is1) (Version: - Datasus)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Visualizador de Danfe1.0.1.0000 (HKLM-x32\...\{3DEC0917-754F-453D-B96E-B75167C3B8B9}_is1) (Version: 1.0.1.0000 - VelociTI)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-4167073020-2559717188-609065001-1001_Classes\CLSID\{BF8489D7-BBB0-CC4C-6ACA-A9DED4F78C5A}\InprocServer32 -> C:\WINDOWS\system32\ole32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-06-30] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-06-28] (Nero AG)
ContextMenuHandlers1-x32: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY.)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers6: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {1C54CCA9-308B-4B70-88A6-CC9DA803B04B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-12] (Microsoft Corporation)
Task: {28C0171D-87C9-461A-BF1B-FBA88CEBBCA2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-12] (Microsoft Corporation)
Task: {2CCC37F4-65EC-408D-9FED-DC58CD327B91} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-12] (Microsoft Corporation)
Task: {2FA1132C-D176-4F4F-947D-574D9CF6A2C1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_pepper.exe [2019-01-08] (Adobe Systems Incorporated)
Task: {4976BDB1-A7C3-41D3-97AD-FB3FD4C2C17B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-12] (Microsoft Corporation)
Task: {4D185DB8-781B-4D0F-8437-0CC2F1CC6CC3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {4EAE68FD-2138-4777-9B5F-BBBA69F8FC3D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-12] (Microsoft Corporation)
Task: {5AB20149-56C3-4841-85B3-13F55211C941} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI)
Task: {6160DE64-4CE7-40BB-945E-5883349460A1} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [2018-06-26] (BlueStack Systems, Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {682FFF79-B68D-471C-B4BE-1FAA514C4E89} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {7B38A583-F557-449D-B33F-4AC4E3FAE403} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-13] (Google Inc.)
Task: {8EE0D6FD-EBAC-4081-82A5-8BC8E906096F} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-11-02] (AVAST Software)
Task: {8F4989B7-E908-4B90-984D-F1866436434F} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {A4507864-715D-47E7-933F-DE0E17D99A10} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-05] (AVAST Software)
Task: {A48E08CC-8484-470E-BD97-3861848A1983} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-12] (Microsoft Corporation)
Task: {B538688D-5321-42D9-9B6C-4D8CCFBC8CB5} - System32\Tasks\S-1-5-21-4167073020-2559717188-609065001-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-12-08] (Microsoft Corporation)
Task: {B5CDFC49-7408-4FB9-B7E2-3F5EEA62C6CD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-11] (AVAST Software)
Task: {BD1F7F6E-5B19-4129-8028-C71A310632B8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {BF11E80E-7A20-4B7D-878E-7D746842375B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-08] (Adobe Systems Incorporated)
Task: {C198A5E4-72AC-44C0-87C1-A41C6A80CEB3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-13] (Google Inc.)
Task: {E93B51EA-0DBA-4A63-8978-4256FEAA7254} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÇÃO
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Rubão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.7.
ShortcutWithArgument: C:\Users\Rubão\Downloads\SUPER DOWNLOAD.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxps://www.youtube.com/channel/UC9TiF06lJb3Aef1k3gGAs-w
ShortcutWithArgument: C:\Users\Rubão\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Módulos Carregados (Whitelisted) ==============
2019-01-05 19:13 - 2019-01-05 19:13 - 000667016 _____ () c:\program files\avast software\avast\streamback.dll
2018-04-11 21:34 - 2018-04-11 21:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-11 21:34 - 2018-04-11 21:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 13:22 - 2018-11-09 00:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-06-30 10:51 - 2018-06-30 10:51 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2019-01-09 07:51 - 2019-01-01 04:42 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-16 07:11 - 2018-10-16 07:11 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-13 05:53 - 2018-12-13 05:53 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-13 05:53 - 2018-12-13 05:54 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2017-03-09 02:16 - 2017-03-09 02:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2019-01-05 19:13 - 2019-01-05 19:13 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-16 11:39 - 2018-11-16 11:42 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-10-15 18:47 - 2017-10-15 18:47 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-16 11:39 - 2018-11-16 11:41 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-21 12:25 - 2018-08-21 12:27 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-21 12:25 - 2018-08-21 12:27 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 11:24 - 2018-03-30 11:25 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-16 11:39 - 2018-11-16 11:41 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-16 11:39 - 2018-11-16 11:40 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-29 14:14 - 2018-08-29 14:16 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-30 10:14 - 2018-07-30 10:15 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\SKU.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-12 21:10 - 2018-12-12 03:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-12 21:10 - 2018-12-12 03:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2018-02-09 22:43 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2016-07-16 09:47 - 2019-01-09 08:10 - 000000830 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%C_EM64T_REDIST11%bin\Intel64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4167073020-2559717188-609065001-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rubão\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\Sophy e Bella.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
Se uma entrada for incluída na fixlist, será removida.
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR11"
HKU\S-1-5-21-4167073020-2559717188-609065001-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "NeroHomeFirstStart"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "windows"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{9783336A-E161-44FB-8B46-1C50D9D04058}] => (Allow) E:\Program Files\Mozilla Firefox\firefox.exe Nenhum Arquivo
FirewallRules: [{FDF5FFAC-F113-454D-8B9B-5512349DD42B}] => (Allow) E:\Program Files\Mozilla Firefox\firefox.exe Nenhum Arquivo
FirewallRules: [{E1175B92-7C19-4777-8733-422601597995}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe (BlueStack Systems, Inc.)
FirewallRules: [UDP Query User{E6C1B1E1-BA4E-4D4E-94C7-E9BBE2F92BE7}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe (TeamViewer GmbH)
FirewallRules: [TCP Query User{21B08F4F-7E18-4E4B-A6E6-9DE2CC50D7AF}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe (TeamViewer GmbH)
FirewallRules: [{0B039E3A-CB25-4115-BCB8-22006FFC4231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{AA00DB26-64C6-434C-B3B7-C74D36511420}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{77724D78-A0C1-44E7-B93E-3976A28A1714}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{AE25BDA5-DEE5-4EED-9A6D-FB15BE39345E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{1C91881D-6C58-47CF-BF94-1A5F5876ADA7}] => (Allow) LPort=1688
FirewallRules: [{CE08FBEB-BA1E-4D40-9397-1509FB37DA68}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{A946B59D-B7B1-428E-9FC6-704653523CA5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{699981CE-9C3D-4406-AD95-791555651FA0}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.)
FirewallRules: [{FF950155-EB1B-412A-8B67-5F3DDF785739}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.)
FirewallRules: [{7587109B-815C-4DC7-9510-5CC447A6927E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts Inc.)
FirewallRules: [{B0DF9059-DC89-41C5-A716-4E0592F0A79C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts Inc.)
FirewallRules: [UDP Query User{41D478F8-59C0-482B-862D-0FE42B6ABA8E}C:\users\rubão\desktop\clients\zclient.exe] => (Allow) C:\users\rubão\desktop\clients\zclient.exe (ZLOFENIX)
FirewallRules: [TCP Query User{C161DB6D-240F-411D-B6AD-D170E06002BC}C:\users\rubão\desktop\clients\zclient.exe] => (Allow) C:\users\rubão\desktop\clients\zclient.exe (ZLOFENIX)
FirewallRules: [UDP Query User{C76B5385-81C8-41E2-B2D5-DD9F8E297465}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [TCP Query User{70FB4C85-A0ED-46F1-BBCF-DD924469AF80}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [{0E3BABBA-1874-4B23-A499-CA46A1E1FA9F}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{039879EA-5E62-40FD-BB19-E3E08045EE1C}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{7D868070-C405-4DFA-BCDB-1DE03C3EF00D}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{8EC9B3A5-43DC-418A-8107-526B614F3D72}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{2A9C86E5-B1F1-49F3-9BF5-84C2056CB546}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{9A0E071B-47BF-4C1B-B755-8F115FCDE8BE}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{E66923D0-44F2-475D-96E3-BA4043527180}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C541C72E-FF0A-45A0-9B84-32A1F8DFAA12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{1717C132-5219-4A10-B6B5-6F7714D288CF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp.)
FirewallRules: [{6566827D-737A-435F-8DBB-836B3ACCB3CC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp.)
FirewallRules: [{CCAF1514-CB56-4CFC-9D04-B00C466DDE7A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe (CyberLink Corp.)
FirewallRules: [{01BD218E-3C1C-4A1B-960C-4BB5F0B1F267}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe (CyberLink)
FirewallRules: [{EABA142C-663D-490B-8AD4-30BFCF5E0E9A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp.)
FirewallRules: [{7200A922-147A-4DE3-98C3-76584962408B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{34A9BA66-ED04-4508-9617-7BD560DF7737}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{390D5F45-31E4-496D-9CF3-890038EB6E20}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM Corp.)
FirewallRules: [{442A91AF-488A-48BD-B86C-D9F51CC47B6C}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{1F9C5FC1-20A2-4FFA-8214-E691435E28A5}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{B00E0D75-B0AE-43F6-A2CF-4BD76379C866}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM Corp.)
FirewallRules: [{EE74F7B8-30C7-448B-9FF6-6F2A3F207920}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe (Corel Corporation)
FirewallRules: [{7DD80383-30CE-4B5E-B446-9C6D9FE8ED3E}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe (Corel Corporation)
FirewallRules: [TCP Query User{FF44072C-1027-4614-AC57-442C76C0E228}H:\program files\perfectplayer\jre\bin\javaw.exe] => (Allow) H:\program files\perfectplayer\jre\bin\javaw.exe Nenhum Arquivo
FirewallRules: [UDP Query User{C5AE9D99-85E8-4F09-BDFF-A6EEB23F819F}H:\program files\perfectplayer\jre\bin\javaw.exe] => (Allow) H:\program files\perfectplayer\jre\bin\javaw.exe Nenhum Arquivo
FirewallRules: [{CB3C81B9-02A1-46E2-BC07-9EAD60012FC3}] => (Allow) C:\Windows\KMS-R@1n.exe ()
FirewallRules: [{E744705E-6A9F-476F-B66C-0056C5F72730}] => (Allow) C:\Windows\KMS-R@1n.exe ()
FirewallRules: [TCP Query User{60A82E42-1563-4FEA-AA68-F57EC65A9D3A}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe (IBM Corp.)
FirewallRules: [UDP Query User{EA351EF6-8C97-4AEA-BE0D-B19E6D7DEF49}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{B5A608E8-B40E-4E9C-9D26-8276C38AA604}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
FirewallRules: [{DD469BE9-FDC9-4135-8DD0-9676565882B5}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
FirewallRules: [{6E95C542-A457-4534-885B-7E623F38F739}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe (@ByELDI)
FirewallRules: [{ACAFBD51-BEC2-438E-9771-906DD8BDA16E}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe (@ByELDI)
FirewallRules: [{73C97F1C-C637-4DD1-9654-95F80025B7D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{D23FF6A0-8A3E-494F-ADE5-D9D21B503C94}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{842D31DD-E681-4EA8-A88F-9DFC53B91184}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{3A2A723E-C45F-45D0-BAC2-5E66BA23F804}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{75689031-B7A1-4F7C-B88D-1E47B5C97557}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{E6F83923-B8E0-43E4-BE0B-3B850ECE3177}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{6D0601A6-643C-42D2-998D-B524FE75A1A6}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{9C6E7355-7083-4C6D-AFD2-6FEF26F5C19D}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [TCP Query User{E4E4B450-C030-4D11-88C2-0ED3E921D139}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [UDP Query User{987CD415-424F-4378-9BA1-318C51456F08}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
==================== Pontos de Restauração =========================
26-12-2018 22:48:12 Ponto de Verificação Agendado
06-01-2019 11:17:33 Ponto de Verificação Agendado
11-01-2019 08:03:10 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (01/14/2019 08:03:13 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/14/2019 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=3
Error: (01/13/2019 03:29:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
Error: (01/13/2019 03:24:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/13/2019 10:58:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: java.exe, versão: 8.0.1440.1, carimbo de data/hora: 0x5972dd23
Nome do módulo com falha: jvm.dll, versão: 25.71.0.1, carimbo de data/hora: 0x5972e5ad
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000debbb
ID do processo com falha: 0x2bc0
Hora de início do aplicativo com falha: 0x01d4ab3ad81a2fd5
Caminho do aplicativo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\java.exe
Caminho do módulo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\client\jvm.dll
ID do Relatório: a514e5cb-0f84-4ef4-b903-0529639e71af
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/13/2019 10:58:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: java.exe, versão: 8.0.1440.1, carimbo de data/hora: 0x5972dd23
Nome do módulo com falha: jvm.dll, versão: 25.71.0.1, carimbo de data/hora: 0x5972e5ad
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000debbb
ID do processo com falha: 0x2bc0
Hora de início do aplicativo com falha: 0x01d4ab3ad81a2fd5
Caminho do aplicativo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\java.exe
Caminho do módulo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\client\jvm.dll
ID do Relatório: 28e2df3f-e4ae-40fa-bf05-b6322a4df9fe
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/13/2019 08:25:12 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/13/2019 08:25:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Erros de Sistema:
=============
Error: (01/14/2019 10:12:20 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/14/2019 08:00:51 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/14/2019 07:59:27 AM) (Source: Disk) (EventID: 15) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, não está pronto para acesso.
Error: (01/13/2019 06:18:55 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/13/2019 03:35:31 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/13/2019 03:26:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço WSearch.
Error: (01/13/2019 03:26:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço WSearch.
Error: (01/13/2019 03:25:50 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço avast! Antivirus.
CodeIntegrity:
===================================
Date: 2018-10-01 20:35:04.416
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.401
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.211
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.185
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.118
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.096
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:00.500
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:00.253
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentagem de memória em uso: 79%
RAM física total: 4002.86 MB
RAM física disponível: 817.77 MB
Virtual Total: 5986.86 MB
Virtual disponível: 2060.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:296.76 GB) (Free:193.61 GB) NTFS
\\?\Volume{25a817bc-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{25a817bc-0000-0000-0000-40504a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 25A817BC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=296.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=855 MB) - (Type=27)
==================== Fim de Addition.txt ============================
Executado por Rubão (14-01-2019 12:14:45)
Executando a partir de C:\Users\Rubão\Desktop
Windows 10 Pro Versão 1803 17134.523 (X64) (2018-05-21 11:44:50)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-4167073020-2559717188-609065001-500 - Administrator - Disabled)
Convidado (S-1-5-21-4167073020-2559717188-609065001-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4167073020-2559717188-609065001-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-4167073020-2559717188-609065001-1000 - Limited - Disabled) => C:\Users\defaultuser0
Rubão (S-1-5-21-4167073020-2559717188-609065001-1001 - Administrator - Enabled) => C:\Users\Rubão
WDAGUtilityAccount (S-1-5-21-4167073020-2559717188-609065001-504 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\uTorrent) (Version: 3.5.5.44989 - BitTorrent Inc.)
ABBYY FineReader 11 Corporate Edition (HKLM-x32\...\{F1100000-0010-0000-0000-074957833700}) (Version: 11.0.460 - ABBYY)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2080, 07.07.2018 - AIMP DevTeam)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.2.5964 - AVAST Software)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 3.56.76.1867 - BlueStack Systems, Inc.)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (HKLM\...\{FC41DFBE-6C39-4C84-949B-7CB1E6460C7A}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
Creative Destruction version 3.0.42 (HKLM-x32\...\{24904964-4247-4EBE-BC79-21D7FF68C6A0}_is1) (Version: 3.0.42 - My Company, Inc.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.3917.58 - CyberLink Corp.)
Divulga versão 18.10.0 (HKLM-x32\...\{B15DA231-5B02-439A-9D33-3B1639508E46}_is1) (Version: 18.10.0 - Justiça Eleitoral)
DVDFab (x64) 10.0.7.6 (27/12/2017) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.7.6 - Fengtao Software Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
Epson Software Updater (HKLM-x32\...\{60A3CB9F-4429-4C7A-AA97-77CC4FE10671}) (Version: 4.4.9 - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
ImageCapture Suite Plug-in (HKLM-x32\...\{27C2C418-B697-4CC2-A138-208D63061FC0}) (Version: 9.3.0 - Dynamsoft)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
IRPF2018 (HKLM-x32\...\IRPF2018) (Version: 1.1 - Receita Federal do Brasil)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
MediaInfo 17.12 (HKLM\...\MediaInfo) (Version: 17.12 - MediaArea.net)
MegaJogos (remove only) (HKLM-x32\...\MegaJogos) (Version: - )
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.11126.20196 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x64 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x64 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Firefox 52.0.2 ESR (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 52.0.2 ESR (x86 pt-BR)) (Version: 52.0.2 - Mozilla)
Mozilla Firefox 56.0 (x64 pt-BR) (HKLM\...\Mozilla Firefox 56.0 (x64 pt-BR)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
Nero 7 Ultra Edition (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301046}) (Version: 7.02.9753 - Nero AG)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.7 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.11126.20196 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.8.11002 - Electronic Arts, Inc.)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Perfect Player versão 1.1.4 (HKLM\...\{73DC7680-5D9C-4761-A348-EB2227D2D9D9}_is1) (Version: 1.1.4 - Niklabs)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Roblox Player for Rubão (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
Roblox Player for Rubão (HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\roblox-player) (Version: - Roblox Corporation)
SIGTAP (remove only) (HKLM-x32\...\SIGTAP) (Version: - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.5640 - TeamViewer)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.36.104.1020 - Electronic Arts Inc.)
Transmissor DATASUS 2.2.0 (HKLM-x32\...\Transmissor DATASUS_is1) (Version: - Datasus)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Visualizador de Danfe1.0.1.0000 (HKLM-x32\...\{3DEC0917-754F-453D-B96E-B75167C3B8B9}_is1) (Version: 1.0.1.0000 - VelociTI)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-4167073020-2559717188-609065001-1001_Classes\CLSID\{BF8489D7-BBB0-CC4C-6ACA-A9DED4F78C5A}\InprocServer32 -> C:\WINDOWS\system32\ole32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-06-30] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-06-28] (Nero AG)
ContextMenuHandlers1-x32: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY.)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-05] (AVAST Software)
ContextMenuHandlers6: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {1C54CCA9-308B-4B70-88A6-CC9DA803B04B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-12] (Microsoft Corporation)
Task: {28C0171D-87C9-461A-BF1B-FBA88CEBBCA2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-12] (Microsoft Corporation)
Task: {2CCC37F4-65EC-408D-9FED-DC58CD327B91} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-12] (Microsoft Corporation)
Task: {2FA1132C-D176-4F4F-947D-574D9CF6A2C1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_pepper.exe [2019-01-08] (Adobe Systems Incorporated)
Task: {4976BDB1-A7C3-41D3-97AD-FB3FD4C2C17B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-12] (Microsoft Corporation)
Task: {4D185DB8-781B-4D0F-8437-0CC2F1CC6CC3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {4EAE68FD-2138-4777-9B5F-BBBA69F8FC3D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-12] (Microsoft Corporation)
Task: {5AB20149-56C3-4841-85B3-13F55211C941} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI)
Task: {6160DE64-4CE7-40BB-945E-5883349460A1} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [2018-06-26] (BlueStack Systems, Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {682FFF79-B68D-471C-B4BE-1FAA514C4E89} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {7B38A583-F557-449D-B33F-4AC4E3FAE403} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-13] (Google Inc.)
Task: {8EE0D6FD-EBAC-4081-82A5-8BC8E906096F} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-11-02] (AVAST Software)
Task: {8F4989B7-E908-4B90-984D-F1866436434F} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {A4507864-715D-47E7-933F-DE0E17D99A10} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-05] (AVAST Software)
Task: {A48E08CC-8484-470E-BD97-3861848A1983} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-12] (Microsoft Corporation)
Task: {B538688D-5321-42D9-9B6C-4D8CCFBC8CB5} - System32\Tasks\S-1-5-21-4167073020-2559717188-609065001-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-12-08] (Microsoft Corporation)
Task: {B5CDFC49-7408-4FB9-B7E2-3F5EEA62C6CD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-11] (AVAST Software)
Task: {BD1F7F6E-5B19-4129-8028-C71A310632B8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {BF11E80E-7A20-4B7D-878E-7D746842375B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-08] (Adobe Systems Incorporated)
Task: {C198A5E4-72AC-44C0-87C1-A41C6A80CEB3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-13] (Google Inc.)
Task: {E93B51EA-0DBA-4A63-8978-4256FEAA7254} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÇÃO
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Rubão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.7.
ShortcutWithArgument: C:\Users\Rubão\Downloads\SUPER DOWNLOAD.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxps://www.youtube.com/channel/UC9TiF06lJb3Aef1k3gGAs-w
ShortcutWithArgument: C:\Users\Rubão\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Módulos Carregados (Whitelisted) ==============
2019-01-05 19:13 - 2019-01-05 19:13 - 000667016 _____ () c:\program files\avast software\avast\streamback.dll
2018-04-11 21:34 - 2018-04-11 21:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-11 21:34 - 2018-04-11 21:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 13:22 - 2018-11-09 00:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-06-30 10:51 - 2018-06-30 10:51 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2019-01-09 07:51 - 2019-01-01 04:42 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-16 07:11 - 2018-10-16 07:11 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-13 05:53 - 2018-12-13 05:53 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-13 05:53 - 2018-12-13 05:54 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2017-03-09 02:16 - 2017-03-09 02:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2019-01-05 19:13 - 2019-01-05 19:13 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-16 11:39 - 2018-11-16 11:42 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-10-15 18:47 - 2017-10-15 18:47 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-16 11:39 - 2018-11-16 11:41 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-21 12:25 - 2018-08-21 12:27 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-21 12:25 - 2018-08-21 12:27 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 11:24 - 2018-03-30 11:25 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-16 11:39 - 2018-11-16 11:41 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-16 11:39 - 2018-11-16 11:40 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-29 14:14 - 2018-08-29 14:16 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-30 10:14 - 2018-07-30 10:15 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-16 11:39 - 2018-11-16 11:42 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\SKU.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-07 19:27 - 2018-11-07 19:27 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-12 21:10 - 2018-12-12 03:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-12 21:10 - 2018-12-12 03:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2018-02-09 22:43 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2016-07-16 09:47 - 2019-01-09 08:10 - 000000830 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%C_EM64T_REDIST11%bin\Intel64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4167073020-2559717188-609065001-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rubão\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\Sophy e Bella.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
Se uma entrada for incluída na fixlist, será removida.
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR11"
HKU\S-1-5-21-4167073020-2559717188-609065001-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "NeroHomeFirstStart"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"
HKU\S-1-5-21-4167073020-2559717188-609065001-1001\...\StartupApproved\Run: => "windows"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{9783336A-E161-44FB-8B46-1C50D9D04058}] => (Allow) E:\Program Files\Mozilla Firefox\firefox.exe Nenhum Arquivo
FirewallRules: [{FDF5FFAC-F113-454D-8B9B-5512349DD42B}] => (Allow) E:\Program Files\Mozilla Firefox\firefox.exe Nenhum Arquivo
FirewallRules: [{E1175B92-7C19-4777-8733-422601597995}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe (BlueStack Systems, Inc.)
FirewallRules: [UDP Query User{E6C1B1E1-BA4E-4D4E-94C7-E9BBE2F92BE7}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe (TeamViewer GmbH)
FirewallRules: [TCP Query User{21B08F4F-7E18-4E4B-A6E6-9DE2CC50D7AF}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe (TeamViewer GmbH)
FirewallRules: [{0B039E3A-CB25-4115-BCB8-22006FFC4231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{AA00DB26-64C6-434C-B3B7-C74D36511420}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{77724D78-A0C1-44E7-B93E-3976A28A1714}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{AE25BDA5-DEE5-4EED-9A6D-FB15BE39345E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{1C91881D-6C58-47CF-BF94-1A5F5876ADA7}] => (Allow) LPort=1688
FirewallRules: [{CE08FBEB-BA1E-4D40-9397-1509FB37DA68}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{A946B59D-B7B1-428E-9FC6-704653523CA5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{699981CE-9C3D-4406-AD95-791555651FA0}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.)
FirewallRules: [{FF950155-EB1B-412A-8B67-5F3DDF785739}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.)
FirewallRules: [{7587109B-815C-4DC7-9510-5CC447A6927E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts Inc.)
FirewallRules: [{B0DF9059-DC89-41C5-A716-4E0592F0A79C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts Inc.)
FirewallRules: [UDP Query User{41D478F8-59C0-482B-862D-0FE42B6ABA8E}C:\users\rubão\desktop\clients\zclient.exe] => (Allow) C:\users\rubão\desktop\clients\zclient.exe (ZLOFENIX)
FirewallRules: [TCP Query User{C161DB6D-240F-411D-B6AD-D170E06002BC}C:\users\rubão\desktop\clients\zclient.exe] => (Allow) C:\users\rubão\desktop\clients\zclient.exe (ZLOFENIX)
FirewallRules: [UDP Query User{C76B5385-81C8-41E2-B2D5-DD9F8E297465}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [TCP Query User{70FB4C85-A0ED-46F1-BBCF-DD924469AF80}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [{0E3BABBA-1874-4B23-A499-CA46A1E1FA9F}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{039879EA-5E62-40FD-BB19-E3E08045EE1C}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{7D868070-C405-4DFA-BCDB-1DE03C3EF00D}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{8EC9B3A5-43DC-418A-8107-526B614F3D72}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{2A9C86E5-B1F1-49F3-9BF5-84C2056CB546}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{9A0E071B-47BF-4C1B-B755-8F115FCDE8BE}] => (Allow) C:\Users\Rubão\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{E66923D0-44F2-475D-96E3-BA4043527180}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C541C72E-FF0A-45A0-9B84-32A1F8DFAA12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{1717C132-5219-4A10-B6B5-6F7714D288CF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp.)
FirewallRules: [{6566827D-737A-435F-8DBB-836B3ACCB3CC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp.)
FirewallRules: [{CCAF1514-CB56-4CFC-9D04-B00C466DDE7A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe (CyberLink Corp.)
FirewallRules: [{01BD218E-3C1C-4A1B-960C-4BB5F0B1F267}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe (CyberLink)
FirewallRules: [{EABA142C-663D-490B-8AD4-30BFCF5E0E9A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp.)
FirewallRules: [{7200A922-147A-4DE3-98C3-76584962408B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{34A9BA66-ED04-4508-9617-7BD560DF7737}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{390D5F45-31E4-496D-9CF3-890038EB6E20}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM Corp.)
FirewallRules: [{442A91AF-488A-48BD-B86C-D9F51CC47B6C}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{1F9C5FC1-20A2-4FFA-8214-E691435E28A5}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{B00E0D75-B0AE-43F6-A2CF-4BD76379C866}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM Corp.)
FirewallRules: [{EE74F7B8-30C7-448B-9FF6-6F2A3F207920}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe (Corel Corporation)
FirewallRules: [{7DD80383-30CE-4B5E-B446-9C6D9FE8ED3E}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe (Corel Corporation)
FirewallRules: [TCP Query User{FF44072C-1027-4614-AC57-442C76C0E228}H:\program files\perfectplayer\jre\bin\javaw.exe] => (Allow) H:\program files\perfectplayer\jre\bin\javaw.exe Nenhum Arquivo
FirewallRules: [UDP Query User{C5AE9D99-85E8-4F09-BDFF-A6EEB23F819F}H:\program files\perfectplayer\jre\bin\javaw.exe] => (Allow) H:\program files\perfectplayer\jre\bin\javaw.exe Nenhum Arquivo
FirewallRules: [{CB3C81B9-02A1-46E2-BC07-9EAD60012FC3}] => (Allow) C:\Windows\KMS-R@1n.exe ()
FirewallRules: [{E744705E-6A9F-476F-B66C-0056C5F72730}] => (Allow) C:\Windows\KMS-R@1n.exe ()
FirewallRules: [TCP Query User{60A82E42-1563-4FEA-AA68-F57EC65A9D3A}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe (IBM Corp.)
FirewallRules: [UDP Query User{EA351EF6-8C97-4AEA-BE0D-B19E6D7DEF49}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe (IBM Corp.)
FirewallRules: [{B5A608E8-B40E-4E9C-9D26-8276C38AA604}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
FirewallRules: [{DD469BE9-FDC9-4135-8DD0-9676565882B5}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
FirewallRules: [{6E95C542-A457-4534-885B-7E623F38F739}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe (@ByELDI)
FirewallRules: [{ACAFBD51-BEC2-438E-9771-906DD8BDA16E}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe (@ByELDI)
FirewallRules: [{73C97F1C-C637-4DD1-9654-95F80025B7D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{D23FF6A0-8A3E-494F-ADE5-D9D21B503C94}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{842D31DD-E681-4EA8-A88F-9DFC53B91184}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{3A2A723E-C45F-45D0-BAC2-5E66BA23F804}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{75689031-B7A1-4F7C-B88D-1E47B5C97557}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{E6F83923-B8E0-43E4-BE0B-3B850ECE3177}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{6D0601A6-643C-42D2-998D-B524FE75A1A6}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{9C6E7355-7083-4C6D-AFD2-6FEF26F5C19D}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [TCP Query User{E4E4B450-C030-4D11-88C2-0ED3E921D139}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
FirewallRules: [UDP Query User{987CD415-424F-4378-9BA1-318C51456F08}C:\users\rubão\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\rubão\megajogos\jre\jre\bin\java.exe (Oracle Corporation)
==================== Pontos de Restauração =========================
26-12-2018 22:48:12 Ponto de Verificação Agendado
06-01-2019 11:17:33 Ponto de Verificação Agendado
11-01-2019 08:03:10 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (01/14/2019 08:03:13 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/14/2019 08:03:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=3
Error: (01/13/2019 03:29:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
Error: (01/13/2019 03:24:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/13/2019 10:58:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: java.exe, versão: 8.0.1440.1, carimbo de data/hora: 0x5972dd23
Nome do módulo com falha: jvm.dll, versão: 25.71.0.1, carimbo de data/hora: 0x5972e5ad
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000debbb
ID do processo com falha: 0x2bc0
Hora de início do aplicativo com falha: 0x01d4ab3ad81a2fd5
Caminho do aplicativo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\java.exe
Caminho do módulo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\client\jvm.dll
ID do Relatório: a514e5cb-0f84-4ef4-b903-0529639e71af
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/13/2019 10:58:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: java.exe, versão: 8.0.1440.1, carimbo de data/hora: 0x5972dd23
Nome do módulo com falha: jvm.dll, versão: 25.71.0.1, carimbo de data/hora: 0x5972e5ad
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000debbb
ID do processo com falha: 0x2bc0
Hora de início do aplicativo com falha: 0x01d4ab3ad81a2fd5
Caminho do aplicativo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\java.exe
Caminho do módulo com falha: C:\Users\Rubão\MegaJogos\jre\jre\bin\client\jvm.dll
ID do Relatório: 28e2df3f-e4ae-40fa-bf05-b6322a4df9fe
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/13/2019 08:25:12 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/13/2019 08:25:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Erros de Sistema:
=============
Error: (01/14/2019 10:12:20 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/14/2019 08:00:51 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/14/2019 07:59:27 AM) (Source: Disk) (EventID: 15) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, não está pronto para acesso.
Error: (01/13/2019 06:18:55 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/13/2019 03:35:31 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-PSFM7QP)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário DESKTOP-PSFM7QP\Rubão SID (S-1-5-21-4167073020-2559717188-609065001-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (01/13/2019 03:26:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço WSearch.
Error: (01/13/2019 03:26:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço WSearch.
Error: (01/13/2019 03:25:50 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço avast! Antivirus.
CodeIntegrity:
===================================
Date: 2018-10-01 20:35:04.416
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.401
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.211
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.185
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.118
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:04.096
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:00.500
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-10-01 20:35:00.253
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentagem de memória em uso: 79%
RAM física total: 4002.86 MB
RAM física disponível: 817.77 MB
Virtual Total: 5986.86 MB
Virtual disponível: 2060.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:296.76 GB) (Free:193.61 GB) NTFS
\\?\Volume{25a817bc-0000-0000-0000-100000000000}\ (Reservado pelo Sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{25a817bc-0000-0000-0000-40504a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 25A817BC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=296.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=855 MB) - (Type=27)
==================== Fim de Addition.txt ============================