Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 31-07-2017
Executado por Cleusa (03-08-2017 17:11:50)
Executando a partir de C:\Users\Cleusa\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2017-04-08 16:13:58)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-4151355608-1317469567-2516924020-500 - Administrator - Disabled)
Cleusa (S-1-5-21-4151355608-1317469567-2516924020-1000 - Administrator - Enabled) => C:\Users\Cleusa
Convidado (S-1-5-21-4151355608-1317469567-2516924020-501 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.)
Adblock Plus para IE (32 bits) (HKLM\...\{6FC3D936-3475-43AF-B97D-FC313FA8CB09}) (Version: 1.6 - Eyeo GmbH)
Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Flash Player 26 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Internet Security (HKLM\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.0.2.3 - Broadcom Corporation)
ConvertXtoDVD 4.0.9.322 (HKLM\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.0.9.322 - )
CorelDRAW Graphics Suite X4 - Capture (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF012}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF016}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF013}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF017}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (HKLM\...\{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang BR (HKLM\...\{1A9DAB4D-46CD-4CBF-A9FC-28D8AA8D2FCF}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF014}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (HKLM\...\{BF439B41-0252-48DE-8B8B-0430CB26A181}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (HKLM\...\{44A27085-0616-4181-A0C3-81C7ECA17F73}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version:  - Corel Corporation)
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM\...\{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: 1.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 (HKLM\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version:  - Corel Corporation)
CyberLink PowerDVD 14 (HKLM\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.3917.58 - CyberLink Corp.)
DVDFab 9.0.2.6 (06/02/2013) Qt (HKLM\...\DVDFab 9_is1) (Version:  - Fengtao Software Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Instalação do DivX (HKLM\...\DivX Setup) (Version: 3.0.0.224 - DivX, LLC)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2182 - Intel Corporation)
Java 8 Update 141 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
MegaJogos (remove only) (HKLM\...\MegaJogos) (Version:  - )
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 51.0 (x86 pt-BR) (HKLM\...\Mozilla Firefox 51.0 (x86 pt-BR)) (Version: 51.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 51.0 - Mozilla)
Nero 7 Essentials (HKLM\...\{AAB93551-3FFE-42B2-8315-96252BBC1046}) (Version: 7.02.4861 - Nero AG)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PDF Settings CS6 (HKLM\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Popcorn-Time (HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
Qualcomm Atheros Fast Reconnect (HKLM\...\{0CA2063D-D43F-41F2-A8AC-A3C4A4C722D2}) (Version: 1.0 - QualComm Atheros)
SafeZone Stable 3.55.2393.609 (HKLM\...\SafeZone 3.55.2393.609) (Version: 3.55.2393.609 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.81460 - TeamViewer)
VC80CRTRedist - 8.0.50727.6195 (HKLM\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Warsaw 1.18.1.2 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.18.1.2 - GAS Tecnologia)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-08-03] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-08-03] (AVAST Software)
ContextMenuHandlers1: [DivXShellExtensionItem] -> {48A8A3B0-57E8-4F2B-A49D-19E02B92377B} => C:\Program Files\Common Files\DivX Shared\DivXShellExtension.dll [2017-05-25] (DivX, LLC)
ContextMenuHandlers1: [DivXShellExtensionItem64] -> {6B49A276-0DBA-43F4-BC96-A841AD11B40B} => C:\Program Files\Common Files\DivX Shared\DivXShellExtension.dll [2017-05-25] (DivX, LLC)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-08-03] (AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-07-20] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-08-03] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0FE4D5E0-026B-41E9-BE7D-8E675CF7E214} - System32\Tasks\{FDE49D5A-7AF0-492F-BD57-C87FD76A9B29} => C:\Program Files\Mozilla Firefox\firefox.exe 
Task: {11574FA2-8ED2-49AB-B0ED-75216DC67FC4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-04-08] (Google Inc.)
Task: {3840FAF6-D894-4E4E-8AD1-4FFC22CC0956} - System32\Tasks\SafeZone scheduled Autoupdate 1501787056 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-06-13] (Avast Software)
Task: {3D6B0887-3F82-4BA8-AACB-BD9B06D88126} - System32\Tasks\Opera scheduled Autoupdate 1491929375 => C:\Users\Cleusa\AppData\Local\Programs\Opera\launcher.exe
Task: {597886A1-99B9-423D-9940-A9F69A3B3EC4} - System32\Tasks\Opera scheduled Autoupdate 1500467865 => C:\Users\Cleusa\AppData\Local\Programs\Opera\launcher.exe
Task: {5FD7437C-C74C-4417-BD4E-96768834696D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {6511DCB9-36DB-4ECB-8044-9C9F3C9E8491} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-02] (Adobe Systems Incorporated)
Task: {7D14A3DB-2A4D-4998-8561-2B862EBF9ED8} - System32\Tasks\taskcleusapc14 => C:\Users\Cleusa\AppData\Local\Temp\Java\xjhhguk0.j03.vbs [2017-08-02] () <==== ATENÇÃO
Task: {B0A549BA-6D1C-4F31-AEEC-2E5D2BDF0C57} - System32\Tasks\DivXUpdate => C:\Program Files\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [2017-05-26] (DivX, LLC)
Task: {B4848BBA-C284-47D0-9BC1-46B37FE20E71} - System32\Tasks\{531C5DDC-DFAB-4098-A7FC-3C833647B305} => C:\Program Files\Mozilla Firefox\firefox.exe 
Task: {CA2548AF-5071-4D3A-85D2-4B1C1F3F4566} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-04-08] (Google Inc.)
Task: {F896FD83-FEF6-48E4-B6E0-795F348EFDF9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-08-03] (AVAST Software)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


ShortcutWithArgument: C:\Users\Cleusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\76f9e4d33b60b312\Popcorn-Time.lnk -> C:\Users\Cleusa\AppData\Local\Popcorn-Time\Popcorn-Time.exe (The NWJS Community) -> --user-data-dir="C:\Users\Cleusa\AppData\Local\Popcorn-Time\User Data" --profile-directory=Default --app-id=hecfofbbdfadifpemejbbdcjmfmboohj

==================== Módulos Carregados (Whitelisted) ==============

2013-09-05 00:14 - 2013-09-05 00:14 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2017-04-08 14:07 - 2014-03-17 03:38 - 000866056 _____ () C:\Program Files\CyberLink\PowerDVD14\common\UNO\UNO.dll
2017-04-08 14:07 - 2013-12-10 04:39 - 000074240 _____ () C:\Program Files\CyberLink\PowerDVD14\Common\Koan\_ctypes.pyd
2017-04-08 14:07 - 2013-12-10 04:39 - 000285184 _____ () C:\Program Files\CyberLink\PowerDVD14\Common\Koan\_hashlib.pyd
2017-04-08 14:07 - 2013-12-10 04:39 - 000040960 _____ () C:\Program Files\CyberLink\PowerDVD14\Common\Koan\_socket.pyd
2017-04-08 14:07 - 2013-12-10 04:39 - 000721920 _____ () C:\Program Files\CyberLink\PowerDVD14\Common\Koan\_ssl.pyd
2017-04-08 14:07 - 2014-03-17 03:38 - 000043784 _____ () C:\Program Files\CyberLink\PowerDVD14\Kernel\DHProcedure\DHProcedure.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 000170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 000192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 000224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 005891448 _____ () C:\Program Files\AVAST Software\Avast\defs\17080207\algo.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 000689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 000231664 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-08-03 16:03 - 2017-08-03 16:03 - 005891448 _____ () C:\Program Files\AVAST Software\Avast\defs\17080308\algo.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 001065936 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-08-03 15:55 - 2017-08-03 15:55 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-08-03 15:54 - 2017-08-03 15:54 - 000292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-08-03 15:54 - 2017-08-03 15:54 - 000134928 _____ () c:\Program Files\AVAST Software\Avast\vaarclient.dll
2017-06-29 10:13 - 2017-06-22 23:21 - 002877272 _____ () C:\Program Files\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-06-29 10:13 - 2017-06-22 23:21 - 000086360 _____ () C:\Program Files\Google\Chrome\Application\59.0.3071.115\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8]
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:89F64ABC_Bmb.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [220]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddreg32.sys:X5ZN8aGvT4 [674]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2174]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\bmb.com.br -> hxxps://bdu.bmb.com.br
IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\bmb.com.br -> bdu.bmb.com.br
IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\gastecnologia.com.br -> hxxps://cloud.gastecnologia.com.br
IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\gastecnologia.com.br -> cloud.gastecnologia.com.br
IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\mercantil.com.br -> hxxps://*.mercantil.com.br
IE trusted site: HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\...\mercantildobrasil.com.br -> hxxps://*.mercantildobrasil.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2017-08-02 20:18 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-4151355608-1317469567-2516924020-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Cleusa\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{D3E4A415-51DC-412C-8C3C-D267F57A869D}] => (Allow) C:\Program Files\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{6D38B018-74A8-4E8D-A13B-CB631182B1ED}] => (Allow) C:\Program Files\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{6A964F0A-2106-447C-A529-882BF3727101}] => (Allow) C:\Program Files\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{6A1DFE80-91C3-4BA3-A017-6A2B0B7C8F42}] => (Allow) C:\Program Files\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{FC76909E-7C43-4397-815B-E334864C9044}] => (Allow) C:\Program Files\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{5936B6B1-1040-45FE-9BA2-749DC12D5BC1}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{F78A30B1-99FF-4447-94FB-0267015D69B7}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [TCP Query User{FB25425F-3A48-4B60-A442-92884C0B645B}C:\program files\java\jre1.8.0_121\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\java.exe
FirewallRules: [UDP Query User{F84E5B1C-EF84-4AC4-AD1D-B44E22B08559}C:\program files\java\jre1.8.0_121\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\java.exe
FirewallRules: [{4BF17E90-342A-4288-A942-54E6DD71578B}] => (Allow) C:\Users\Cleusa\AppData\Local\Programs\Opera\44.0.2510.23876\opera.exe
FirewallRules: [TCP Query User{6A48C784-3095-4FFC-84C8-3C1D6D46236E}C:\users\cleusa\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\cleusa\megajogos\jre\jre\bin\java.exe
FirewallRules: [UDP Query User{C60D340C-9716-4A4F-8BD3-ECBCC2BF662E}C:\users\cleusa\megajogos\jre\jre\bin\java.exe] => (Allow) C:\users\cleusa\megajogos\jre\jre\bin\java.exe
FirewallRules: [TCP Query User{EA44D5FA-11E5-488B-B754-FCC5517EA24B}C:\users\cleusa\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\cleusa\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [UDP Query User{1245E0F8-8F62-4D14-AE20-8F209F73A2CF}C:\users\cleusa\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\cleusa\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [{D862492B-F201-4403-BD29-E54AB0A041F3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{3C0C5B56-076D-4712-8344-C23FDC0E9EA6}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{57057676-6733-4EA3-8913-C7C9672A8CB7}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CC1505CD-B092-407F-9884-C86A39FA8ED2}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ED9F4B02-3DF8-4263-BA79-0D9BF3205F7F}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{91369F31-177D-428C-86E5-BBCBBA4CA58C}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CD0219FE-F501-494A-A0E6-466B7B975489}] => (Allow) C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A18436CC-3201-4B3A-9027-895CEEF4F764}] => (Allow) C:\Users\Cleusa\AppData\Local\Programs\Opera\46.0.2597.26374\opera.exe
FirewallRules: [{8345D34E-EDE8-462D-B088-71106234279B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{95341109-427F-4A18-A8BD-3644E847B15A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{8847DB27-4813-49B0-864A-1CAD0EEA64A3}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{515D086A-F320-411A-9442-0F66EC4AF926}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{867AC5EF-7345-40BA-8912-993146498DF7}] => (Allow) powershell.exe
FirewallRules: [{FC71963E-E7E1-4933-8D8B-5E466650BFE1}] => (Allow) powershell.exe
FirewallRules: [{BAE70AC2-5910-4D70-8BD0-326B39D8D35E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DD404F03-4338-4FA9-948D-F3520D94AEE4}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609\SZBrowser.exe
FirewallRules: [{DCF44D4F-C8AC-4FF4-B2EE-CCF50129B4B3}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609_0\SZBrowser.exe

==================== Pontos de Restauração =========================

10-07-2017 08:29:11 Windows Update
14-07-2017 13:46:54 Windows Update
29-07-2017 16:42:24 Windows Update
02-08-2017 16:42:28 Operação de restauração
02-08-2017 21:09:18 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
03-08-2017 12:58:26 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (08/03/2017 03:57:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll". 
Assembly dependente Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (08/03/2017 02:19:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/03/2017 02:04:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa iexplore.exe versão 11.0.9600.18739 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 141c

Hora de Início: 01d30c750ada6223

Hora de Término: 223

Caminho do Aplicativo: C:\Program Files\Internet Explorer\iexplore.exe

Id do Relatório:

Error: (08/03/2017 01:02:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/03/2017 12:47:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/03/2017 12:04:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files\cyberlink\powerdvd14\movie\powerdvd cinema\mcepacifier\x64\MCEPacifier.exe". 
Assembly dependente Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (08/03/2017 11:58:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa uTorrent.exe versão 3.5.0.43916 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 95c

Hora de Início: 01d30c68a0296a1f

Hora de Término: 0

Caminho do Aplicativo: C:\Users\Cleusa\AppData\Roaming\uTorrent\uTorrent.exe

Id do Relatório: 1574a125-785c-11e7-8bd6-b870f472c1ae

Error: (08/03/2017 11:57:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/02/2017 09:24:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/02/2017 08:34:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: plugin-container.exe, versão: 54.0.1.6388, carimbo de hora: 0x5953d640
Nome do módulo de falhas: xul.dll, versão: 54.0.1.6388, carimbo de hora: 0x5953d62e
Código de exceção: 0x80000003
Deslocamento com falha: 0x008a6bcb
Identificação do processo com falha: 0x15d8
Hora de início do aplicativo com falha: 0x01d30be76e35f652
Caminho do aplicativo com falha: C:\Program Files\Mozilla Firefox\plugin-container.exe
FCaminho do módulo de falhas: C:\Program Files\Mozilla Firefox\xul.dll
Identificação do Relatório: 1eeb0ab7-77db-11e7-a4ee-b870f472c1ae


Erros de Sistema:
=============
Error: (08/03/2017 04:06:08 PM) (Source: atapi) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Ide\IdePort0.

Error: (08/03/2017 04:06:08 PM) (Source: atapi) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Ide\IdePort0.

Error: (08/03/2017 02:18:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Weather Lite Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (08/03/2017 02:18:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Service Installer TrueKey devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (08/03/2017 01:01:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Weather Lite Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (08/03/2017 01:01:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Intel Security True Key devido ao seguinte erro: 
O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (08/03/2017 01:01:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Intel Security True Key.

Error: (08/03/2017 01:00:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Service Installer TrueKey devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (08/03/2017 12:58:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Gbp Service foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 1000 milissegundos: Reiniciar o serviço.

Error: (08/03/2017 12:58:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Adobe Acrobat Update Service foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Percentagem de memória em uso: 64%
RAM física total: 2358.71 MB
RAM física disponível: 831.26 MB
Virtual Total: 4715.74 MB
Virtual disponível: 2443.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:596.07 GB) (Free:531.06 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 46F08286)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================