Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 02-11-2017
Executado por walbe (03-11-2017 23:24:12)
Executando a partir de C:\Users\walbe\Desktop
Windows 10 Education Versão 1709 16299.19 (X64) (2017-10-28 21:26:08)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-679033100-1458043089-2363958997-500 - Administrator - Disabled)
Convidado (S-1-5-21-679033100-1458043089-2363958997-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-679033100-1458043089-2363958997-503 - Limited - Disabled)
walbe (S-1-5-21-679033100-1458043089-2363958997-1001 - Administrator - Enabled) => C:\Users\walbe
WDAGUtilityAccount (S-1-5-21-679033100-1458043089-2363958997-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-679033100-1458043089-2363958997-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.2.0.211 - Adobe Systems Incorporated)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assistente de Atualização do Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22256 - Microsoft Corporation)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 17.7.2314 - AVAST Software)
BenVista PhotoZoom Pro Corel Plug-In 4.5.4 (HKLM\...\PhotoZoom Pro Corel Plug-In 4) (Version: 4.5.4 - BenVista Ltd.)
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
Camtasia 9 (HKLM\...\{1D09B594-C8B5-4CF1-B927-41D9A487799C}) (Version: 9.0.5.2021 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{00ce4b8c-0138-4743-b0b8-379b2715eb44}) (Version: 9.0.5.2021 - TechSmith Corporation)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6623 - CDBurnerXP)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
Corel Graphics - Windows Shell Extension (HKLM\...\_{E7F9082A-E477-4DBC-8FBC-E19B53B7BBC9}) (Version: 19.0.0.328 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{E7F9082A-E477-4DBC-8FBC-E19B53B7BBC9}) (Version: 19.0.328 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (HKLM\...\{58B4F27F-B90B-4188-AA05-088B9788F8FF}) (Version: 19.0.328 - Corel Corporation) Hidden
Corel Update Manager (HKLM\...\{9E1EE683-0C7B-46E7-83EC-1F5A1D8F2296}) (Version: 2.4.245 - Corel corporation) Hidden
CorelDRAW Graphics Suite 2017 - BR (x64) (HKLM\...\{8ABF5677-0748-4A42-A7DF-81F13027A18F}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Capture (x64) (HKLM\...\{AC9BB7B7-A763-43C5-9830-F3B78FDB051D}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Common (x64) (HKLM\...\{B8C51F00-63AE-4327-A533-375CB7B6BF26}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Common Retail (x64) (HKLM\...\{D3CBB13B-4FE7-451A-9C8F-06FBD9A36F0B}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Connect (x64) (HKLM\...\{BD0F92AD-DFDB-4BC5-BAA5-FB27892F9483}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Custom Data (x64) (HKLM\...\{E7975CC5-05E4-45E3-AFD3-234809F694A0}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - DE (x64) (HKLM\...\{DC94E7B7-DE6C-4293-A3EF-DC41FC2FA9BC}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Draw (x64) (HKLM\...\{A16C7EEB-69CB-42A1-AD10-0E19A133D957}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - EN (x64) (HKLM\...\{DB9ECE8C-5065-4388-B70D-D137A2C03152}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - ES (x64) (HKLM\...\{0EAC29D4-5379-4595-ACE9-FA6A3DC08418}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Filters (x64) (HKLM\...\{EEC42BAD-9517-450D-AF99-FA3C16D0377C}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Font Manager (x64) (HKLM\...\{D276DE88-654E-4738-A736-6E18D12F0C34}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - FR (x64) (HKLM\...\{24BE747D-7DBA-4322-9B6D-6F7F2E931E31}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - IPM (x64) (HKLM\...\{904B10A6-0D9C-4645-9C61-504FA92B9220}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - IPM Content (x64) (HKLM\...\{54F024CB-16AF-4CC0-9BC2-D2507E7C6C01}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - IT (x64) (HKLM\...\{546B4AB1-64CF-4713-8750-B21CD86874F9}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - NL (x64) (HKLM\...\{6A8F754C-F722-4C4C-AAC2-50B386FD604A}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - PHOTO-PAINT (x64) (HKLM\...\{B2D66383-4F98-4108-B6A3-F9CF8715875C}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Redist (x64) (HKLM\...\{47865C60-4ED8-4678-B23F-C2D1C2DDC09C}) (Version: 19.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Setup Files (x64) (HKLM\...\{07B49D5C-2AB6-4D40-8A9B-BEDA6021A7C7}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - VBA (x64) (HKLM\...\{5330DEB9-A612-4679-ACC1-D3D9C6190824}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - VideoBrowser (x64) (HKLM\...\{C451F155-26B7-48F2-8A8F-9428B4D479D2}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Workspaces (x64) (HKLM\...\{F3EFAF0E-DF3C-4384-8A0F-90D79FEFD7F5}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Writing Tools (x64) (HKLM\...\{E38357D4-1B80-400F-A6D7-B4D5DD83D979}) (Version: 19.1 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 (64-Bit) (HKLM\...\_{07B49D5C-2AB6-4D40-8A9B-BEDA6021A7C7}) (Version: 19.1.0.419 - Corel Corporation)
CorelDRAW Graphics Suite 2017 (HKLM\...\{03E21392-CE4A-4FC6-B593-370E7A7E345A}) (Version: 19.1 - Corel Corporation) Hidden
D110 (HKLM-x32\...\{8C208B2B-0869-4891-AA54-33DB81A583C0}) (Version: 140.0.353.000 - Hewlett-Packard) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.0.3 - IObit)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{A5E2418D-B360-419D-AAAD-0D8F2E98FBF6}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (HKLM-x32\...\{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}) (Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.8528.2147 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
MultiSync versão 1.8.4 (HKLM-x32\...\{0EEBB9D7-8544-4AB9-B1AB-B98ECE94308B}_is1) (Version: 1.8.4 - Multilaser SA)
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2147 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2147 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden
Pacote de Driver do Windows - Action-Broadcom - Multilaser (WinUSB) AndroidUsbDeviceClass  (07/09/2013 8.0.0000.00000) (HKLM\...\8C71CE83F233512807C7AEBCB854CCD9732B9CFB) (Version: 07/09/2013 8.0.0000.00000 - Action-Broadcom - Multilaser)
Pacote de Driver do Windows - Android (WUDFRd) WPD  (04/07/2013 5.2.5326.4762) (HKLM\...\11A0B871BAD4BD9A57E59C3635218E2427AA2C62) (Version: 04/07/2013 5.2.5326.4762 - Android)
Pacote de Driver do Windows - DriverCoding Corporation (vcom_modem) Modem  (05/26/2014 1.0.0.21) (HKLM\...\2047AB3E52276300798FF9B5A1ACF4F330E8FE2B) (Version: 05/26/2014 1.0.0.21 - DriverCoding Corporation)
Pacote de Driver do Windows - Fuzhou Rockchip (Rockusb) Rockusb Device  (03/06/2013 3.40.0000) (HKLM\...\BA01DFAE9289B8499510F8E4ACAC13200815C00E) (Version: 03/06/2013 3.40.0000 - Fuzhou Rockchip)
Pacote de Driver do Windows - Fuzhou Rockchip (Rockusb) Rockusb Device  (03/12/2013 3.50.0000) (HKLM\...\E61F92A80645103CE462D803F3F61FE46F88EFBD) (Version: 03/12/2013 3.50.0000 - Fuzhou Rockchip)
Pacote de Driver do Windows - Fuzhou Rockchip (Rockusb) Rockusb Device  (05/30/2016 4.50.0000) (HKLM\...\274D440A73BB8672550FF386358EAB8E9A94C1A9) (Version: 05/30/2016 4.50.0000 - Fuzhou Rockchip)
Pacote de Driver do Windows - Fuzhou Rockchip (Rockusb) Rockusb Device  (08/05/2013 3.70.0000) (HKLM\...\20BAB42A3EFA96A512A3479105D342498A3184E2) (Version: 08/05/2013 3.70.0000 - Fuzhou Rockchip)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2012 7.0.0000.00001) (HKLM\...\DD5996E7B3B8B7F86BD863BE2D13D10BAEEDF5EE) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2013 7.0.0000.00001) (HKLM\...\DD35777ACC26D30A3585F9724356AF8111A6F38C) (Version: 08/27/2013 7.0.0000.00001 - Google, Inc.)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Pacote de Driver do Windows - Intel Mobile Communications (FlashUSB) USB  (02/27/2013 1.0.1.1) (HKLM\...\89A31D53C4CE7F8726A41F92C00C28DD9A6063CD) (Version: 02/27/2013 1.0.1.1 - Intel Mobile Communications)
Pacote de Driver do Windows - MediaTek (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\2E9801D8F9A89DC85984265D7F276A92C20B2386) (Version: 08/28/2014 11.0.0000.00000 - MediaTek)
Pacote de Driver do Windows - MediaTek Inc. (usbser) Ports  (01/05/2012 2.0000.0.1) (HKLM\...\49D9ABA9270C5BDFD7AE1BEB607D36B26BB90235) (Version: 01/05/2012 2.0000.0.1 - MediaTek Inc.)
Pacote de Driver do Windows - MediaTek Inc. (usbser) Ports  (12/24/2011 2.0000.0.0) (HKLM\...\D0E6296D177F42BB31C0200E49412003DB6C4633) (Version: 12/24/2011 2.0000.0.0 - MediaTek Inc.)
Pacote de Driver do Windows - MediaTek Inc. (wdm_usb) Ports  (09/11/2014 3.0.1437.1) (HKLM\...\66A62A3F16514960CD462B8824B09E4A7FE265A7) (Version: 09/11/2014 3.0.1437.1 - MediaTek Inc.)
Pacote de Driver do Windows - MediaTek Inc. Net  (07/14/2011 1.1129.00) (HKLM\...\82772948FB7C46F14FD600BD1159B798ED29DF1C) (Version: 07/14/2011 1.1129.00 - MediaTek Inc.)
Pacote de Driver do Windows - Microsoft (USBCCID) SmartCardReader  (08/01/2015 5.2.3790.2724) (HKLM\...\27B404834637CEB4D0B87E3ABA7E8FE5F85796C3) (Version: 08/01/2015 5.2.3790.2724 - Microsoft)
Pacote de Driver do Windows - Microsoft (WUDFRd) WPD  (02/22/2006 5.2.5326.4762) (HKLM\...\FC8B4D3786074DD664F9509502110D60E97232EC) (Version: 02/22/2006 5.2.5326.4762 - Microsoft)
Pacote de Driver do Windows - Rockchip, Inc. (WinUSB) AndroidUsbDeviceClass  (06/03/2014 4.00.0000) (HKLM\...\7DC9352B9F4C06F5856E7DF7615B0BEEC8B0A88D) (Version: 06/03/2014 4.00.0000 - Rockchip, Inc.)
Pacote de Driver do Windows - Spreadtrum (dcportcfg) USB  (12/21/2012 1.0.0.82) (HKLM\...\183CED17F0384798B7F878A90578E6DBA8652E94) (Version: 12/21/2012 1.0.0.82 - Spreadtrum)
Pacote de Driver do Windows - Spreadtrum Communications Inc (sprd_wvmdm) Modem  (12/21/2012 1.0.0.198) (HKLM\...\783B44AE2A6CF0F850FB3EB6D192366E5D2F895E) (Version: 12/21/2012 1.0.0.198 - Spreadtrum Communications Inc)
Pacote de Driver do Windows - Spreadtrum Communications Inc. (sprd_wvcom) Ports  (03/27/2014 1.0.0.188) (HKLM\...\C8AABFC2BAB9DE5B5319DA2286F2074BFD60B52C) (Version: 03/27/2014 1.0.0.188 - Spreadtrum Communications Inc.)
Pacote de Driver do Windows - Spreadtrum Communications Inc. (sprd_wvcom) Ports  (12/21/2012 1.0.0.198) (HKLM\...\4A413B20C3575B298BCB68ECB8C21729C645DCB3) (Version: 12/21/2012 1.0.0.198 - Spreadtrum Communications Inc.)
Pacote de Driver do Windows - USB Devices (usbUDisc) USB  (01/24/2014 1.0.0.1) (HKLM\...\B2A7D664285C0D269794E0F21D756D5138D1FB29) (Version: 01/24/2014 1.0.0.1 - USB Devices)
Photo Stamp Remover 9.1 (HKLM-x32\...\Photo Stamp Remover_is1) (Version: 9.1 - SoftOrbits)
PS_AIO_07_D110_SW_Min (HKLM-x32\...\{7904CF06-95E1-4507-92F3-3A4FFDF51DCB}) (Version: 140.0.365.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7695 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.2.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.2.0 - VS Revo Group, Ltd.)
Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.28.5.4848 - Enigma Software Group, LLC)
Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.342.000 - Hewlett-Packard) Hidden
Suporte para Aplicativos Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
Tradução Vegas Pro 15.0 Build 177 15.0 Build 177 (HKLM-x32\...\Tradução Vegas Pro 15.0 Build 177 15.0 Build 177) (Version: 15.0 Build 177 - MAGIX Computer Products Intl. Co.)
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VEGAS Pro 15.0 (HKLM\...\{E0F91FB0-7FC4-11E7-B8E9-95BE57594EAC}) (Version: 15.0.177 - VEGAS)
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-45745E619B8C}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\walbe\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\walbe\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\walbe\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\amd64\FileSyncShell64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-679033100-1458043089-2363958997-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [			IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2017-06-23] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] ()
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-29] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-29] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-29] (AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-04] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-29] (AVAST Software)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {00E717F2-4125-44E1-BBDB-B3EC69AECE5C} - System32\Tasks\Driver Booster SkipUAC (walbe) => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe [2017-10-13] (IObit)
Task: {0A471451-C450-412E-9E6F-C0A6E5FE0B07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-26] (Google Inc.)
Task: {0C36A98E-B78C-4334-965A-C513C992112A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-25] ()
Task: {1E1A1994-CBD0-46CC-95A7-3B0AAC7A5209} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-26] (Google Inc.)
Task: {337CF0D8-15ED-4FE8-ACF2-5984C792A45F} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {470F34FD-3CEF-4183-97DA-48593638B4FF} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {48FC6EAA-ED1F-4FEF-AA1D-6F56D243A0B0} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-walberluizsantos@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {551CC26D-BD1A-406F-BB91-393075D756FA} - System32\Tasks\R@1n-KMS\Windows64Education => wmic [Argument = path SoftwareLicensingProduct where (ID="e0c42288-980c-4788-a014-c080d2e1926e") call Activate]
Task: {62BD6E4C-CE2C-45BA-B5F8-133BB78CEF89} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset
Task: {72B7744C-262E-4BBA-9C51-7CBC16C4562A} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [2017-05-10] (MAGIX Software GmbH)
Task: {9FEE0858-9400-49CC-A8C0-C409038C259B} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\Scheduler.exe [2017-08-30] (IObit)
Task: {B415D37A-8DE8-4546-A616-3D9D312167DD} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe [2017-08-12] (Enigma Software Group USA, LLC.)
Task: {CD8BB68C-BE0A-4FFA-A62F-FE61459BE308} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-10-29] (AVAST Software)
Task: {D8A371F1-BA23-471F-A20E-DEEB1E2EE9C2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {DB5AD083-7E71-4173-A009-A5D91E0EB58F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-10-29] (Microsoft Corporation)
Task: {DC1B7EAC-EEF3-4023-BA6B-181D0B93E7D2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-23] (Microsoft Corporation)
Task: {ED3B0E91-2500-4670-A871-F3F6F46DF94A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-25] ()
Task: {EE7B443F-9AB0-4ECA-914E-7CCEAE11A648} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-10-29] (Microsoft Corporation)
Task: {FCD414B3-7F3F-40EB-BF19-58C1AF2FC0F6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-23] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


==================== Módulos Carregados (Whitelisted) ==============

2017-09-29 11:41 - 2017-09-29 11:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-08-14 04:48 - 2017-08-14 04:48 - 000491600 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll
2017-09-29 11:42 - 2017-09-30 12:31 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-09-29 11:42 - 2017-09-30 12:31 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-09-22 00:22 - 2017-09-21 05:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-09-22 00:22 - 2017-09-21 05:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
2017-09-14 22:12 - 2017-09-14 22:12 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-18 00:14 - 2017-10-18 16:49 - 025741312 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-10-18 00:14 - 2017-10-18 16:49 - 009257984 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 18:31 - 2017-09-26 18:34 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 000217088 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-10-29 12:41 - 2017-10-29 12:41 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-10-29 12:40 - 2017-10-29 12:40 - 000234280 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-10-29 12:41 - 2017-10-29 12:42 - 000703336 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2017-03-18 19:03 - 2017-09-05 22:53 - 000001710 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1	www.techsmith.com
127.0.0.1	activation.cloud.techsmith.com
127.0.0.1	oscount.techsmith.com
127.0.0.1	updater.techsmith.com
127.0.0.1	tsccloud.cloudapp.net
127.0.0.1	assets.cloud.techsmith.com
127.0.0.1	camtasia.studio.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 157.56.8.159
127.0.0.1 69.167.144.15
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 157.56.8.159
127.0.0.1 69.167.144.15
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-679033100-1458043089-2363958997-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 177.23.152.66 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-679033100-1458043089-2363958997-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-679033100-1458043089-2363958997-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-679033100-1458043089-2363958997-1001\...\StartupApproved\Run: => "OneDriveSetup"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{0A3F5E6A-F094-40FA-B105-2F02F16F8914}] => (Allow) C:\Users\walbe\Desktop\UltraAdwareKiller64.exe
FirewallRules: [{5793EAFD-DE22-48BC-BAFB-3728FF79DE53}] => (Allow) C:\Users\walbe\Desktop\UltraAdwareKiller64.exe
FirewallRules: [{5DD428EF-4554-469B-9FC3-0CA740277453}] => (Allow) C:\Users\walbe\Desktop\UltraAdwareKiller.exe
FirewallRules: [{5E0DAB5F-CED4-4A11-9480-974F83F2273B}] => (Allow) C:\Users\walbe\Desktop\UltraAdwareKiller.exe
FirewallRules: [{8C57FBE3-73B0-4CF1-BEF8-598A2F4E2E23}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe
FirewallRules: [{81105F81-117A-43F2-86CD-B2375E909080}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe
FirewallRules: [{D68B6FAB-A497-4E71-85C3-97D518A3EE40}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe
FirewallRules: [{5172C6C7-B5FB-4867-AC76-0BD97518FBCE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe
FirewallRules: [{BF620AD8-D2A8-4F22-8F01-0376C14FA02E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe
FirewallRules: [{D3F433D2-4992-4BA7-B46D-0F333240587C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe
FirewallRules: [{CA6035C9-60F4-47A0-B88B-A74436F248D3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{A393ED7B-15FB-4306-80C0-2553A80A1607}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{74EB0185-B071-4C13-9811-20C7594682A9}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6F9B6F27-58F3-4F0B-A0A9-B781AB7005AF}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3EB42C75-D1C1-4B06-B084-5909A1831043}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EE95FD0F-D304-4168-BE57-82D9013C9A58}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E70EB62F-ED80-4F4E-8EC5-CF0EBC57A394}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{39025A66-A08B-4950-84A8-03A47495305D}] => (Allow) C:\Users\walbe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D99250E2-E1DE-42C9-86F0-33E07551F945}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
FirewallRules: [{FB8BA7C5-CDC3-4EF8-B088-03D393243515}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{626F641E-14EF-417A-A493-5091074369B3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5214D939-A114-49C9-9BDF-7F9A3ADFDE8E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{11D6E4FA-FEA6-45F7-BE7B-000DFA8EB9CF}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{3CD57BEB-0DA0-447A-B01A-F7F616FC1BC5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{22C3F38D-C64F-465E-A2DB-AEA0C5E5D254}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{72F78918-5846-49C3-8F80-C74CEA019ACA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{3A4FBA22-BAA3-4C6A-950E-4D31043DC469}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{24F0FC54-CE9C-48EA-B90C-C9C33D6B62B0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{DD0C7044-4C3F-4AF8-9B47-FB53BAAB586D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{183D16B6-D286-4AC4-A38A-BCE5F8DD7871}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{A784F073-2849-4115-94B1-49F16D14B546}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{356C9B4B-ED1D-4B43-ACD6-EE1D13B144ED}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{4A0964D2-362A-4A60-9611-F4104ACE4501}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{4A83E85E-06BF-4514-B08D-9E29FBC5A2AD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{B990CB1E-D95E-405F-AA74-5E891D45759F}] => (Allow) LPort=8318
FirewallRules: [{39CFCF1C-FBA9-4C2C-96C7-4234B5DD975D}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite 2017\Programs64\CorelDrw.exe
FirewallRules: [{FAC57427-5CD6-474F-A24E-3F4D1ACE38B4}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{9EF2914E-7EBB-4126-81F0-2F92FDE8A860}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{90339B92-EAD2-420F-91A2-16806142E1F8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{7CDC8B47-2F37-408E-A65D-ED4403620A65}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe

==================== Pontos de Restauração =========================

28-10-2017 22:35:18 Windows Update
02-11-2017 13:12:58 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (11/03/2017 10:35:01 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/03/2017 10:34:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/03/2017 10:33:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=TimerEvent

Error: (11/03/2017 07:30:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkQuarantineRetry

Error: (11/03/2017 07:25:32 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/03/2017 05:30:19 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/03/2017 05:29:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/03/2017 05:07:55 PM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {41FD88F7-F295-4D39-91AC-A85F3149A05B} foi rejeitada

Error: (11/03/2017 05:07:55 PM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} foi rejeitada

Error: (11/03/2017 05:07:27 PM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {41FD88F7-F295-4D39-91AC-A85F3149A05B} foi rejeitada


Erros de Sistema:
=============
Error: (11/03/2017 11:03:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço hpqcxs08 foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (11/03/2017 11:03:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Serviço de Descoberta de dispositivos CUE HP foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (11/03/2017 10:32:22 PM) (Source: DCOM) (EventID: 10016) (User: WALBER)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário WALBER\walbe SID (S-1-5-21-679033100-1458043089-2363958997-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (11/03/2017 07:57:52 PM) (Source: DCOM) (EventID: 10005) (User: AUTORIDADE NT)
Description: O DCOM obteve o erro "1115" ao tentar iniciar o serviço tiledatamodelsvc com argumentos "Não Disponível" para executar o servidor:
{B31118B2-1F49-48E5-B6F5-BC21CAEC56FB}

Error: (11/03/2017 05:36:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço hpqcxs08 foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (11/03/2017 05:36:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Serviço de Descoberta de dispositivos CUE HP foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (11/03/2017 05:28:09 PM) (Source: DCOM) (EventID: 10016) (User: WALBER)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário WALBER\walbe SID (S-1-5-21-679033100-1458043089-2363958997-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (11/03/2017 05:27:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 17:18:44 do dia ‎03/‎11/‎2017 não era esperado.

Error: (11/03/2017 04:59:31 PM) (Source: DCOM) (EventID: 10016) (User: WALBER)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário WALBER\walbe SID (S-1-5-21-679033100-1458043089-2363958997-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (11/03/2017 04:02:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço hpqcxs08 foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).


==================== Informações da Memória =========================== 

Processador: Intel(R) Celeron(R) CPU N2807 @ 1.58GHz
Percentagem de memória em uso: 56%
RAM física total: 3985.12 MB
RAM física disponível: 1747.92 MB
Virtual Total: 4165.48 MB
Virtual disponível: 1397.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:366.28 GB) (Free:309.8 GB) NTFS
Drive d: (Backup) (Fixed) (Total:98.12 GB) (Free:61.56 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 0C08C810)

Partition: GPT.

==================== Fim de Addition.txt ============================