Resultado do exame Adicional Farbar Recovery Scan Tool (x64) VersÃ£o: 21-12-2016
Executado por UsuÃ¡rio (23-12-2016 23:08:28)
Executando a partir de C:\Users\UsuÃ¡rio\Desktop
Windows 8.1 Pro (Update) (X64) (2015-11-26 17:37:11)
Modo da InicializaÃ§Ã£o: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3163163410-2194429437-1132329418-500 - Administrator - Disabled)
Convidado (S-1-5-21-3163163410-2194429437-1132329418-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3163163410-2194429437-1132329418-1004 - Limited - Enabled)
UsuÃ¡rio (S-1-5-21-3163163410-2194429437-1132329418-1005 - Administrator - Enabled) => C:\Users\UsuÃ¡rio

==================== Central de SeguranÃ§a ========================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicaÃ§Ã£o "Oculto" podem ser adicionados Ã  fixlist para desocultÃ¡-los. Os programas adwares devem ser desinstalados manualmente.)

ÂµTorrent (HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
3600_Help (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 15.12 (x64) (HKLM\...\7-Zip) (Version: 15.12 - Igor Pavlov)
Adobe Acrobat Reader DC - PortuguÃªs (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
AVI ReComp 1.5.3 (HKLM-x32\...\AVI ReComp) (Version: 1.5.3 - Mateusz Gola (aka Prozac))
Avira Connect (x32 Version: 1.2.76.27124 - Avira Operations GmbH & Co. KG) Hidden
AviSynth 2.5 (HKLM-x32\...\Avisynth) (Version:  - )
BPD_Scan (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Classic Shell (HKLM\...\{D4B3454F-7529-4F5F-851D-2C36933F7D64}) (Version: 4.2.5 - IvoSoft)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
eMule (HKLM-x32\...\eMule1.0.0.9) (Version: 1.0.0.9 - eMule)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Google Chrome (HKLM-x32\...\{0579179A-9E50-34B0-9957-A02A288A2F10}) (Version: 55.0.2883.87 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP OfficeJet J3600 14.0 Rel. 6 (HKLM\...\{044B74E4-1C91-4BA9-BD3C-C9213559BBC0}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
J3600 (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
Mozilla Thunderbird 45.5.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Thunderbird 45.5.1 (x86 pt-BR)) (Version: 45.5.1 - Mozilla)
Nero 7 Ultra Edition (HKLM-x32\...\{91C0B95B-B83A-4828-A775-BBE2DD421046}) (Version: 7.02.9752 - Nero AG)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - PortuguÃªs (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
ProductContext (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
Revisores de Texto do Microsoft Office 2013 â PortuguÃªs do Brasil (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skypeâ¢ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SnadBoy's Revelation v2 (HKLM-x32\...\SnadBoy's Revelation v2) (Version: 2.0.1.100 - SnadBoy Software)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.52465 - TeamViewer)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{2BA6245D-FBB9-42F6-AFD9-C0DC52763AD5}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{670823C5-9E0F-444C-A115-E8C4F37C5707}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{670823C5-9E0F-444C-A115-E8C4F37C5707}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{670823C5-9E0F-444C-A115-E8C4F37C5707}) (Version:  - Microsoft)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

Task: {102BADD1-AB10-4D19-B0D0-467E82D419F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-19] (Google Inc.)
Task: {1419B93E-C094-48AD-8C09-30B6199C3DA6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {17F639A7-C181-48D1-986A-9FC214B7B21E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {23B9D7CA-468C-4FF3-A79A-C501073839C8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-12-15] (Microsoft Corporation)
Task: {8709C096-AC3A-4E37-9254-5E40941F1BF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {91CD9F3B-5DE1-4D37-9F91-375C6309C2AE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-13] (Adobe Systems Incorporated)
Task: {B972D97B-5E2F-4D85-964C-4C2E5D17FFF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-19] (Google Inc.)
Task: {D1737D82-E56D-48FE-949E-8BDF0AEC7343} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {DF6C0892-5076-42E0-9746-EC1AF5703D9B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {EDD3DA48-79AB-48D0-AA1B-3C5E2DC095AA} - \Bing Powered Search nadir -> Nenhum Arquivo <==== ATENÃÃO
Task: {F8F7570A-00CA-498D-8139-3A4F8A808743} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {FEEC41B6-3689-431C-B885-506FA41AB987} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe

(Se uma entrada for incluÃ­da na fixlist, o arquivo da tarefa (.job) serÃ¡ movido. O arquivo que estÃ¡ sendo executado pela tarefa nÃ£o serÃ¡ movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\2to3.lnk -> C:\Program Files (x86)\eMule\python\Scripts\2to3.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\cxfreeze-postinstall.lnk -> C:\Program Files (x86)\eMule\python\Scripts\cxfreeze-postinstall.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\cxfreeze-quickstart.lnk -> C:\Program Files (x86)\eMule\python\Scripts\cxfreeze-quickstart.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\cxfreeze.lnk -> C:\Program Files (x86)\eMule\python\Scripts\cxfreeze.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\cygdb-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\cygdb-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\cython-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\cython-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\easy_install-2.7-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\easy_install-2.7-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\easy_install-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\easy_install-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\epylint-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\epylint-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\f2py.lnk -> C:\Program Files (x86)\eMule\python\Scripts\f2py.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\guidata-tests.lnk -> C:\Program Files (x86)\eMule\python\Scripts\guidata-tests.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\guiqwt-tests.lnk -> C:\Program Files (x86)\eMule\python\Scripts\guiqwt-tests.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\idle.lnk -> C:\Program Files (x86)\eMule\python\Lib\idlelib\idle.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipcluster-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipcluster-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipcluster2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipcluster2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipcontroller-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipcontroller-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipcontroller2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipcontroller2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipengine-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipengine-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipengine2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipengine2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\iptest-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\iptest-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\iptest2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\iptest2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipython-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipython-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipython2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipython2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ipython_win_post_install.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ipython_win_post_install.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\isympy.lnk -> C:\Program Files (x86)\eMule\python\Scripts\isympy.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\miniterm.lnk -> C:\Program Files (x86)\eMule\python\Scripts\miniterm.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\nosetests-2.7-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\nosetests-2.7-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\nosetests-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\nosetests-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pilconvert.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pilconvert.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pildriver.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pildriver.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pilfile.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pilfile.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pilfont.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pilfont.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pilprint.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pilprint.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pip-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pip-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pip2-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pip2-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pip2.7-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pip2.7-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pt2to3.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pt2to3.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ptdump.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ptdump.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ptrepack.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ptrepack.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pygmentize-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pygmentize-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pylint-gui-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pylint-gui-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pylint-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pylint-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pyreverse-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pyreverse-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pyside-uic-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pyside-uic-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pyside_postinstall.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pyside_postinstall.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pytest.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pytest.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pyuic4.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pyuic4.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pywin32_postinstall.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pywin32_postinstall.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\pywin32_testall.lnk -> C:\Program Files (x86)\eMule\python\Scripts\pywin32_testall.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\register_python.lnk -> C:\Program Files (x86)\eMule\python\Scripts\register_python.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2html.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2html.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2latex.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2latex.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2man.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2man.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2odt.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2odt.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2odt_prepstyles.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2odt_prepstyles.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2pdf-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2pdf-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2pseudoxml.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2pseudoxml.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2s5.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2s5.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2xetex.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2xetex.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rst2xml.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rst2xml.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\rstpep2html.lnk -> C:\Program Files (x86)\eMule\python\Scripts\rstpep2html.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\runxlrd.lnk -> C:\Program Files (x86)\eMule\python\Scripts\runxlrd.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\sift.lnk -> C:\Program Files (x86)\eMule\python\Scripts\sift.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\skivi-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\skivi-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\sphinx-apidoc-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\sphinx-apidoc-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\sphinx-autogen-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\sphinx-autogen-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\sphinx-build-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\sphinx-build-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\sphinx-quickstart-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\sphinx-quickstart-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\spyder.lnk -> C:\Program Files (x86)\eMule\python\Scripts\spyder.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\spyder_win_post_install.lnk -> C:\Program Files (x86)\eMule\python\Scripts\spyder_win_post_install.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\symilar-script.lnk -> C:\Program Files (x86)\eMule\python\Scripts\symilar-script.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ttffamily.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ttffamily.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ttffiles.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ttffiles.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ttfgroups.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ttfgroups.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ttfmetadata.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ttfmetadata.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\ttx.lnk -> C:\Program Files (x86)\eMule\python\Scripts\ttx.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\vitables.lnk -> C:\Program Files (x86)\eMule\python\Scripts\vitables.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\wpcp.lnk -> C:\Program Files (x86)\eMule\python\Scripts\wpcp.bat ()
Shortcut: C:\Users\UsuÃ¡rio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eMule\wppm.lnk -> C:\Program Files (x86)\eMule\python\Scripts\wppm.bat ()

==================== MÃ³dulos Carregados (Whitelisted) ==============

2015-08-09 04:50 - 2015-08-09 04:50 - 00404376 _____ () C:\Windows\system32\igfxTray.exe
2016-11-24 18:43 - 2016-11-24 18:43 - 00254424 _____ () C:\Program Files (x86)\Avira\Launcher\System.ComponentModel.Composition.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluÃ­da na fixlist, somente o ADS serÃ¡ removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1270]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]

==================== Modo de SeguranÃ§a (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O valor "AlternateShell" serÃ¡ restaurado.)


==================== AssociaÃ§Ã£o (Whitelisted) ===============

(Se uma entrada for incluÃ­da na fixlist, o Ã­tem no Registro serÃ¡ restaurado para o padrÃ£o ou removido.)


==================== Internet Explorer confiÃ¡vel/restrito ===============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro.)

IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br

==================== Hosts ConteÃºdo: ===============================

(Se necessÃ¡rio, a diretiva Hosts: pode ser incluÃ­da na fixlist para redefinir o Hosts.)

2013-08-22 11:25 - 2010-12-23 21:08 - 00000780 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost
::1             localhost

==================== Outras Ãreas ============================

(Atualmente nÃ£o hÃ¡ nenhuma correÃ§Ã£o automÃ¡tica para esta seÃ§Ã£o.)

HKU\S-1-5-21-3163163410-2194429437-1132329418-1005\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows estÃ¡ habilitado.

==================== MSCONFIG/TASK MANAGER Ã­tens desabilitados ==


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{3DFE94AE-8DE0-4CBC-A701-6E0A785F24AC}C:\users\usuÃ¡rio\appdata\roaming\utorrent\utorrent.exe] => C:\users\usuÃ¡rio\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5946360C-E566-4957-9068-BDD763B89F83}C:\users\usuÃ¡rio\appdata\roaming\utorrent\utorrent.exe] => C:\users\usuÃ¡rio\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{AFCF3CB5-36B9-469C-8912-D50F9300AADF}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{68D629A1-6578-4B07-AD00-1276F417413F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{25CB741C-6C09-451E-A6D9-1A072EF88F61}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Pontos de RestauraÃ§Ã£o =========================

14-12-2016 09:25:41 Windows Update
17-12-2016 09:32:10 ZHPFix Restore System Point
19-12-2016 18:13:33 ResetBrowser
23-12-2016 20:57:46 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (12/23/2016 10:45:58 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: USER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3


Erros de Sistema:
=============
Error: (12/23/2016 11:04:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviÃ§o Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte aÃ§Ã£o corretiva serÃ¡ tomada em 0 milissegundos: Reiniciar o serviÃ§o.

Error: (12/23/2016 10:20:56 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {10DA4F3C-CC99-4190-BE4D-58330754E882} nÃ£o se registrou no DCOM dentro do tempo limite necessÃ¡rio.

Error: (12/23/2016 10:18:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviÃ§o HP Network Devices Support terminou com o erro: 
NÃ£o foi possÃ­vel encontrar o mÃ³dulo especificado.

Error: (12/23/2016 10:18:54 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {10DA4F3C-CC99-4190-BE4D-58330754E882} nÃ£o se registrou no DCOM dentro do tempo limite necessÃ¡rio.

Error: (12/23/2016 10:18:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviÃ§o HP Network Devices Support terminou com o erro: 
NÃ£o foi possÃ­vel encontrar o mÃ³dulo especificado.

Error: (12/23/2016 10:17:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NÃ£o foi possÃ­vel iniciar o serviÃ§o Gbpddreg svc devido ao seguinte erro: 
O sistema nÃ£o pode encontrar o arquivo especificado.

Error: (12/23/2016 10:17:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NÃ£o foi possÃ­vel iniciar o serviÃ§o Gbpddreg svc devido ao seguinte erro: 
O sistema nÃ£o pode encontrar o arquivo especificado.

Error: (12/23/2016 10:16:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviÃ§o HP Network Devices Support terminou com o erro: 
NÃ£o foi possÃ­vel encontrar o mÃ³dulo especificado.

Error: (12/23/2016 10:04:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviÃ§o Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte aÃ§Ã£o corretiva serÃ¡ tomada em 0 milissegundos: Reiniciar o serviÃ§o.

Error: (12/23/2016 10:03:45 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {10DA4F3C-CC99-4190-BE4D-58330754E882} nÃ£o se registrou no DCOM dentro do tempo limite necessÃ¡rio.


CodeIntegrity:
===================================
  Date: 2015-12-11 18:07:28.108
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:28.076
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:28.030
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:27.905
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:27.826
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:27.701
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:27.623
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:27.483
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:25.779
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-11 18:07:24.623
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== InformaÃ§Ãµes da MemÃ³ria =========================== 

Processador: Intel(R) Pentium(R) CPU G3250 @ 3.20GHz
Percentagem de memÃ³ria em uso: 41%
RAM fÃ­sica total: 3988.75 MB
RAM fÃ­sica disponÃ­vel: 2337.14 MB
Virtual Total: 8084.75 MB
Virtual disponÃ­vel: 6455.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.54 GB) (Free:174.87 GB) NTFS
Drive d: (KRICA) (Fixed) (Total:146.83 GB) (Free:108.7 GB) NTFS
Drive e: (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS ==>[sistema com componentes de inicializaÃ§Ã£o (obtido atravÃ©s de drive)]
Drive g: (Sistema Operacional) (Fixed) (Total:20 GB) (Free:9.89 GB) NTFS
Drive h: (Diversos) (Fixed) (Total:131.25 GB) (Free:68.45 GB) NTFS
Drive i: () (Fixed) (Total:292.87 GB) (Free:180.92 GB) NTFS
Drive j: (Dados) (Fixed) (Total:638.54 GB) (Free:242.29 GB) NTFS

==================== MBR & Tabela de PartiÃ§Ãµes ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 7C6147CF)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: EBBEEBBE)
Partition 1: (Active) - (Size=146.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.3 GB) - (Type=OF Extended)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E5020F64)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=292.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=638.5 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================