Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 15-03-2017
Executado por JORGE (01-04-2017 05:40:02)
Executando a partir de C:\Users\JORGE\Downloads
Microsoft Windows 7 Ultimate  (X86) (2015-08-26 16:24:05)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2380034176-3038914706-124590162-500 - Administrator - Disabled)
Convidado (S-1-5-21-2380034176-3038914706-124590162-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2380034176-3038914706-124590162-1002 - Limited - Enabled)
JORGE (S-1-5-21-2380034176-3038914706-124590162-1000 - Administrator - Enabled) => C:\Users\JORGE

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2380034176-3038914706-124590162-1000\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Android SDK Tools (HKLM\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.2.2288 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.119.1.61 - Conexant)
Driver Booster 3.4 (HKLM\...\Driver Booster_is1) (Version: 3.4 - IObit)
DriverEasy 4.7.3 (HKLM\...\DriverEasy_is1) (Version: 4.7.3.0 - Easeware)
DriverIdentifier 4.2.9 (HKLM\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version:  - DriverIdentifier)
Evernote v. 5.8.13 (HKLM\...\{A229420E-204B-11E5-B844-0050569584E9}) (Version: 5.8.13.8152 - Evernote Corp.)
Flashtool (HKLM\...\Flashtool) (Version: 0.9.18.6 - Androxyde)
Google Chrome (HKLM\...\Google Chrome) (Version: 57.0.2987.98 - Google Inc.)
Google Drive (HKLM\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
HP Deskjet 3510 series Ajuda (HKLM\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{A9BBAC7C-D3FD-4DA6-8A9C-0151A3E50363}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{69969D5E-20DA-47FF-B657-E5D152672AB5}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.1.5 - Intel)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version:  - Intel Corporation)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
K-Lite Codec Pack 11.4.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 11.4.0 - )
Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50905.0 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM\...\{0E8D886F-3205-4472-848E-990F400FF218}) (Version: 7601 - Microsoft)
MiniTool Partition Wizard Home Edition 7.1 (HKLM\...\{34A153FE-6926-4C14-B48A-B71E68C672A8}_is1) (Version:  - MiniTool Solution Ltd.)
Mozilla Firefox 40.0.3 (x86 pt-BR) (HKLM\...\Mozilla Firefox 40.0.3 (x86 pt-BR)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Realtek Card Reader (HKLM\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
SafeZone Stable 3.55.2393.590 (Version: 3.55.2393.590 - Avast Software) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Serviço Xperia Companion (Version: 1.5.3.0 - Sony) Hidden
SlimDrivers (HKLM\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.)
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.17.4.201703061453 - Sony Mobile Communications Inc.)
Spotify (HKU\S-1-5-21-2380034176-3038914706-124590162-1000\...\Spotify) (Version: 1.0.51.693.g6ea1e7f6 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.21 - Synaptics Incorporated)
UC Browser (HKLM\...\UCBrowser) (Version: 6.1.2015.1007 - UCWeb Inc.)
Universal Adb Driver (HKLM\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebCam (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.54.001 - Sonix)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xperia Companion (HKLM\...\{8d53ad63-24f0-4f9e-bb4f-53c7d69a67d6}) (Version: 1.5.3.0 - Sony)
younity 1.13.9 (HKU\S-1-5-21-2380034176-3038914706-124590162-1000\...\{D897BBE7-A355-41CB-A2E1-5BAB34D80B95}_is1) (Version: 1.13.9 - Entangled Media Corp.)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2380034176-3038914706-124590162-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0423B618-A787-481B-B9DD-F23B69CA50F3} - System32\Tasks\UCBrowserUpdater => C:\Program Files\UCBrowser\Application\update_task.exe [2017-02-21] (UCWeb Inc) <==== ATENÇÃO
Task: {1D45BA7B-EA28-4629-8ECF-EF574794100F} - System32\Tasks\Driver Booster Scheduler => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2016-05-18] (IObit)
Task: {211EBB67-C0DB-4CB7-BE73-143D10A223D7} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {3D8BB4C3-EE72-43F4-A5E8-B81802F4C8F6} - System32\Tasks\SlimDrivers Startup => C:\Program Files\SlimDrivers\SlimDrivers.exe [2015-08-19] (SlimWare Utilities, Inc.)
Task: {49FF8F1B-0E32-4B41-A5CA-FAD774B583A2} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - JORGE) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe 
Task: {5BA0949B-C572-414B-B2F5-8A0B5EE90AB8} - System32\Tasks\UCBrowserUpdaterCore => C:\Program Files\UCBrowser\Application\update_task.exe [2017-02-21] (UCWeb Inc) <==== ATENÇÃO
Task: {67B53C61-E004-43B9-A6C8-524C1394E419} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-03-13] (AVAST Software)
Task: {68C48794-B90B-4E4B-A64A-4CC7D95C05B4} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {6BF5824A-C1B8-4F95-8A74-F6B5DC898992} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe 
Task: {6D42029E-D38F-425B-A204-3E9E5CB957EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {744C6070-824D-49E8-B652-A7AFA06BC8B5} - System32\Tasks\SafeZone scheduled Autoupdate 1489461518 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-03] (Avast Software)
Task: {7F1F3ADB-E519-43F9-A418-C66B53BFAEA3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-14] (Adobe Systems Incorporated)
Task: {8463E2E6-50F7-4791-9369-56528FA4AA36} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-03-13] (AVAST Software)
Task: {A68C88FD-46CF-4C96-87A9-45B9D55D78A1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {AE7D6608-16A0-4FC4-987C-22EA673F5DD5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-19] (Piriform Ltd)
Task: {CAA5CCA9-B2DC-4954-9556-CA5301B5DB2F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {CB570D2D-9D27-4D5E-9F1E-7BFC91EBD2F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {D5F176A8-9456-4A7F-902C-AE55BF93488C} - System32\Tasks\{807D415F-0311-4815-8D69-07AE54BDE551} => pcalua.exe -a C:\Users\JORGE\AppData\Local\Temp\jre-8u65-windows-au.exe -d C:\Windows\system32 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATENÇÃO
Task: {D823A1C2-0631-486F-ACF1-62338A7BF19E} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2014-07-11] (Easeware)
Task: {DB36E96F-788A-46EE-9DE9-ADFA8336250C} - System32\Tasks\Driver Booster SkipUAC (JORGE) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2016-05-23] (IObit)
Task: {DDF79E98-E311-468A-9B5C-4E2B5F9ABD03} - System32\Tasks\{3E912138-5214-40F4-BA43-58BD57B49B5E} => C:\Program Files\WugFresh Development\Nexus Root Toolkit\NexusRootToolkit.exe [2015-03-27] ()

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe
Task: C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - JORGE).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files\SlimDrivers\SlimDrivers.exe
Task: C:\Windows\Tasks\UCBrowserUpdater.job => C:\Program Files\UCBrowser\Application\update_task.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\UCBrowserUpdaterCore.job => C:\Program Files\UCBrowser\Application\update_task.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Public\Desktop\Facebook.lnk -> C:\Program Files\UCBrowser\Application\UCBrowser.exe (UCWeb Inc.) -> hxxp://facebook.com

==================== Módulos Carregados (Whitelisted) ==============

2017-03-13 23:53 - 2017-03-13 23:53 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-03-29 21:12 - 2017-03-29 21:12 - 05898752 _____ () C:\Program Files\AVAST Software\Avast\defs\17032902\algo.dll
2017-03-13 23:54 - 2017-03-13 23:54 - 00655056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-03-31 22:26 - 2017-03-31 22:26 - 05908480 _____ () C:\Program Files\AVAST Software\Avast\defs\17033101\algo.dll
2015-11-02 13:24 - 2017-02-21 06:32 - 00629648 _____ () C:\Program Files\UCBrowser\Application\UCService.exe
2015-09-01 00:21 - 2009-08-10 16:14 - 00027184 _____ () C:\Windows\snuvcdsm.exe
2017-03-13 23:54 - 2017-03-13 23:54 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-03-13 23:51 - 2017-03-13 23:51 - 00290352 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2015-08-24 15:28 - 2015-08-24 15:28 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2017-02-19 04:48 - 2017-03-13 23:03 - 00244224 _____ () C:\Users\JORGE\AppData\Local\younity\younity-native\libraries\libYounityNativeUtils.dll
2017-02-19 04:49 - 2017-02-19 04:49 - 00200192 _____ () C:\Users\JORGE\AppData\Local\younity\younity-native\libraries\libYounityPowerMonitor.dll
2017-02-19 04:50 - 2017-02-19 04:50 - 00211968 _____ () C:\Users\JORGE\AppData\Local\younity\younity-native\libraries\libYounityFileMonitor.dll
2017-02-19 04:50 - 2017-03-31 22:28 - 00244224 _____ () C:\Users\JORGE\AppData\Local\younity\younity-native\binaries\CORE_RL_lcms_.dll
2017-02-19 04:50 - 2017-03-31 22:28 - 00091648 _____ () C:\Users\JORGE\AppData\Local\younity\younity-native\binaries\IM_MOD_RL_PNG_.dll
2017-02-22 00:13 - 2017-02-21 06:55 - 02106768 _____ () C:\Program Files\UCBrowser\Application\6.1.2015.1007\UCAgent.exe
2017-03-31 22:35 - 2017-03-31 22:35 - 00098816 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32api.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00110080 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\pywintypes27.dll
2017-03-31 22:35 - 2017-03-31 22:35 - 00364544 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\pythoncom27.dll
2017-03-31 22:35 - 2017-03-31 22:35 - 00320512 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32com.shell.shell.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00914432 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_hashlib.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 01176576 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._core_.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00806400 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._gdi_.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00816128 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._windows_.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 01067008 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._controls_.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00733184 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._misc_.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00682496 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\pysqlite2._sqlite.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00088064 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_ctypes.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00686080 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\unicodedata.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00119808 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32file.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00108544 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32security.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00007168 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\hashobjs_ext.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00017920 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\thumbnails_ext.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00088064 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\usb_ext.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00012800 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\common.time34.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00018432 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32event.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00167936 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32gui.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00046080 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_socket.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 01303552 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_ssl.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00128512 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_elementtree.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00127488 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\pyexpat.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00038912 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32inet.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00036864 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_psutil_windows.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00524248 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\windows._lib_cacheinvalidation.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00011264 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32crypt.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00123392 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._wizard.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00077312 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._html2.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00027648 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_multiprocessing.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00020480 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\_yappi.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00035840 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32process.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00078848 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\wx._animate.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00024064 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32pipe.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00010240 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\select.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00025600 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32pdh.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00017408 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32profile.pyd
2017-03-31 22:35 - 2017-03-31 22:35 - 00022528 ____R () C:\Users\JORGE\AppData\Local\Temp\_MEI3522\win32ts.pyd
2017-03-11 21:32 - 2017-03-09 02:31 - 02187096 _____ () C:\Program Files\Google\Chrome\Application\57.0.2987.98\libglesv2.dll
2017-03-11 21:32 - 2017-03-09 02:31 - 00086360 _____ () C:\Program Files\Google\Chrome\Application\57.0.2987.98\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2009-06-10 18:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2380034176-3038914706-124590162-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 200.184.46.14 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{9F16F4E4-35D7-4288-93A1-C03F9782BA01}] => (Allow) %SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
FirewallRules: [TCP Query User{F986CE12-5BE7-476F-9907-1C919F092423}C:\program files\java\jdk1.8.0_25\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_25\bin\jmc.exe
FirewallRules: [UDP Query User{2F235410-51FA-498A-8F29-88AA4AD147E4}C:\program files\java\jdk1.8.0_25\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_25\bin\jmc.exe
FirewallRules: [{E48A1550-DA21-45FE-BEA8-7F9C636A820A}] => (Allow) C:\Users\JORGE\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D723AE30-149B-483F-A5CD-081E44507ACC}] => (Allow) C:\Users\JORGE\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0FC45235-673F-4267-8C65-A42BFB400581}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe
FirewallRules: [{AF6F169B-E7CB-4AB9-A62E-E80EA3602092}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{152DC30C-FA74-4C93-9A57-8999C8A63F1E}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{83CF1E07-EE72-482D-A7C7-A37FF8381168}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7BC45AD3-45B0-40EF-9C0B-3ABBF06025EC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{B30DD517-C000-4E64-B5AD-5B3A020486D0}C:\users\jorge\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jorge\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A8445C53-3CAA-4BE8-BD66-79ECA62333D0}C:\users\jorge\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jorge\appdata\roaming\spotify\spotify.exe
FirewallRules: [{87FAF778-6415-48BF-95B3-47E532593A75}] => (Block) C:\users\jorge\appdata\roaming\spotify\spotify.exe
FirewallRules: [{F87CF783-95F2-40EF-9C38-ABDEF6D195CF}] => (Block) C:\users\jorge\appdata\roaming\spotify\spotify.exe
FirewallRules: [{5963B5D7-C61E-49A3-9425-52D27C3EC2D8}] => (Allow) C:\Program Files\UCBrowser\Application\UCBrowser.exe
FirewallRules: [TCP Query User{05FB2AEC-295D-4D1C-A5BC-FCEFEB5AA59B}C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe] => (Block) C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe
FirewallRules: [UDP Query User{DE11552C-A079-4F1E-8707-F27B52708C1A}C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe] => (Block) C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe
FirewallRules: [{492289DA-A9FA-4457-AB4F-5C1F508A1D2D}] => (Allow) C:\Users\JORGE\AppData\Local\Temp\7zS24AE\HPDiagnosticCoreUI.exe
FirewallRules: [{BA33BC4E-AE89-4D69-9998-C441E96F9616}] => (Allow) C:\Users\JORGE\AppData\Local\Temp\7zS24AE\HPDiagnosticCoreUI.exe
FirewallRules: [{D7A67169-A320-4331-B3A4-300C22C98541}] => (Allow) C:\Users\JORGE\AppData\Local\Temp\7zS3A1D\HPDiagnosticCoreUI.exe
FirewallRules: [{617EA760-E26A-4910-82B3-BC8909D6A9A3}] => (Allow) C:\Users\JORGE\AppData\Local\Temp\7zS3A1D\HPDiagnosticCoreUI.exe
FirewallRules: [{C3AC9B24-52B9-4F46-A4F2-ABCB1AB92CA7}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{B1111A34-C795-400E-BC08-9847F36C2D4A}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{157FC52F-C0FA-473E-B71A-C244D767401A}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{BCFD6020-6CFA-474F-B86B-AF33B5908391}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{AE185ECB-3CAB-42A6-AAE7-96EBA3D9BA88}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{BC13E6A2-0EA8-4DF0-BFF6-1B6E1143A516}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{5122FD76-674D-49D0-B2D6-CA6C1D5FA0FF}C:\users\jorge\appdata\local\ucbrowser\user data_i18n\thunder\1.0.0.0\download\minithunderplatform.exe] => (Block) C:\users\jorge\appdata\local\ucbrowser\user data_i18n\thunder\1.0.0.0\download\minithunderplatform.exe
FirewallRules: [UDP Query User{D3201DF1-0C4D-4ACC-B2CA-110888259DED}C:\users\jorge\appdata\local\ucbrowser\user data_i18n\thunder\1.0.0.0\download\minithunderplatform.exe] => (Block) C:\users\jorge\appdata\local\ucbrowser\user data_i18n\thunder\1.0.0.0\download\minithunderplatform.exe
FirewallRules: [TCP Query User{97331CA5-6E4F-4CC9-BAFE-DBC2C471B3BD}D:\easysetupassistant\easysetupassistant.exe] => (Allow) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{345781AD-34F0-4904-8B07-705FB598E0CD}D:\easysetupassistant\easysetupassistant.exe] => (Allow) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [{50516B8C-ADBC-471C-8CB5-6A23DDB8ADC9}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe
FirewallRules: [{08621C05-FDBD-4902-92A4-E72AF5C34EF0}] => (Allow) C:\Users\JORGE\appdata\local\younity\jre-windows-32\launch4j-tmp\younity.exe
FirewallRules: [{75A985BA-E0A0-403D-9C4C-B42A4A5D54FD}] => (Allow) C:\Users\JORGE\appdata\local\younity\jre-windows-32\launch4j-tmp\younity.exe
FirewallRules: [{C5224450-844D-45D5-AE64-CF5A14595DC0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{EF91C539-6715-4E55-9A00-FF7C6353684C}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{09D4F3B8-8A05-4102-B38A-2DEAA5E2E4FA}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{93B218F0-E32A-43EA-ADD4-6334B9DD1A8F}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.561\SZBrowser.exe
FirewallRules: [{00B9D0F5-32E6-427E-BCB5-80D499E5B374}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.590\SZBrowser.exe

==================== Pontos de Restauração =========================

01-04-2017 03:22:14 Windows 7 Service Pack 1

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (04/01/2017 05:40:02 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 05:40:02 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 05:40:01 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 05:37:20 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 05:37:06 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 04:37:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 03:44:59 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 03:43:35 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 03:37:01 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (04/01/2017 03:14:48 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\system32\conhost.exe". 
Assembly dependente Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.


Erros de Sistema:
=============
Error: (04/01/2017 03:14:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2742595).

Error: (04/01/2017 03:08:34 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2487367).

Error: (04/01/2017 03:08:14 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2656351).

Error: (03/31/2017 10:25:28 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Windows Update suspenso ao iniciar.

Error: (03/29/2017 10:03:52 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: O serviço Windows Update não foi desligado corretamente após receber um controle de pré-desligamento.

Error: (03/29/2017 10:03:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2742595).

Error: (03/29/2017 09:54:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2487367).

Error: (03/29/2017 09:53:45 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2656351).

Error: (03/29/2017 09:17:28 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Windows Update suspenso ao iniciar.

Error: (03/28/2017 03:41:38 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de segurança do Microsoft .NET Framework 4 no Windows XP, Windows Server 2003, Windows Vista, Windows 7 e Windows Server 2008 x86 (KB2736428).


==================== Informações da Memória =========================== 

Processador: Pentium(R) Dual-Core CPU T4400 @ 2.20GHz
Percentagem de memória em uso: 71%
RAM física total: 3000.93 MB
RAM física disponível: 857.48 MB
Virtual Total: 6000.14 MB
Virtual disponível: 3118.56 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:286.27 GB) (Free:179.73 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4E684E67)
Partition 1: (Not Active) - (Size=11.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=286.3 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================