Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 09.09.2018
Executado por Flávio (12-09-2018 21:06:22)
Executando a partir de C:\Users\Flávio\Desktop
Windows 10 Home Versão 1803 17134.228 (X64) (2018-05-30 19:30:02)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1210235661-1573419760-1918872127-500 - Administrator - Disabled)
Convidado (S-1-5-21-1210235661-1573419760-1918872127-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1210235661-1573419760-1918872127-503 - Limited - Disabled)
Flávio (S-1-5-21-1210235661-1573419760-1918872127-1000 - Administrator - Enabled) => C:\Users\Flávio
WDAGUtilityAccount (S-1-5-21-1210235661-1573419760-1918872127-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Ares 2.2.4 (HKLM-x32\...\Ares) (Version: 2.2.4-Build#3048 - Ares Development Group)
Ashampoo Burning Studio 2013 v.11.0.5 (HKLM-x32\...\{91B33C97-0FBA-74AE-E802-D782F5C8AA89}_is1) (Version: 11.0.5 - Ashampoo GmbH & Co. KG)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.1.5273 - AVAST Software)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Backup and Sync from Google (HKLM\...\{AEFBDB5B-899F-4AE6-B789-BA56A652A476}) (Version: 3.42.9858.3671 - Google, Inc.)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.83 - Atheros Communications)
Central de Mouse e Teclado da Microsoft (HKLM\...\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}) (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.6 - Corel Corporation) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{67971EAD-F5D1-45A6-B281-A09D3193DB3F}) (Version: 69.0.3497.7 - Google Inc.)
Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0 - Banco Bradesco S.A.)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
CoolingTech USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 4.5.0.0 - Shenzhen CoolingTech Co.,Ltd)
Corel Graphics - Windows Shell Extension (HKLM\...\_{52166132-E642-447F-9785-F9133563CE59}) (Version: 17.6.0.1021 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{52166132-E642-447F-9785-F9133563CE59}) (Version: 17.6.1021 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{909C0E2F-44AB-46A4-AE04-8FFCCDEECCFC}) (Version: 17.6.1021 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (HKLM\...\{FC41DFBE-6C39-4C84-949B-7CB1E6460C7A}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.6.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.6.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.6 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.6.0.1021 - Corel Corporation)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.3225 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Bluetooth Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Dell Inc.)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.57 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.57 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.0.6 - Dell Inc.)
Dell Support Center (HKLM\...\{0090A87C-3E0E-43D4-AA71-A71B06563A4A}) (Version: 3.1.5803.11 - PC-Doctor, Inc.) Hidden
Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5803.11 - Dell Inc.)
Dell System Detect - 1  (HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\58d94f3ce2c27db0) (Version: 7.3.0.6 - Dell)
Dell System Detect (HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\9204f5692a8faf3b) (Version: 5.4.0.4 - Dell)
Dell System Detect Bootstrapper (HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\8e3135b376bd523e) (Version: 1.1.0.15 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1200.101.218 - ALPS ELECTRIC CO., LTD.)
Dell VideoStage  (HKLM-x32\...\{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell VideoStage  (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.01.18 - Creative Technology Ltd)
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
Evernote v. 6.11.2 (HKLM-x32\...\{FC67AAF6-3477-11E8-B094-005056951CAD}) (Version: 6.11.2.7027 - Evernote Corp.)
Firebird 2.1.4.18393 (Win32) (HKLM-x32\...\FBDBServer_2_1_is1) (Version: 2.1.4.18393 - Firebird Project)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HP DeskJet 5820 series Software básico do dispositivo (HKLM\...\{E06DC247-E33E-43B1-A8EA-2CE50DACB163}) (Version: 36.0.104.57869 - Hewlett-Packard Co.)
HP Dropbox Plugin (HKLM-x32\...\{41BE4CA4-CC09-41EB-934A-123063D45AB0}) (Version: 36.0.39.57346 - HP)
HP Google Drive Plugin (HKLM-x32\...\{027F3906-4B0C-40EB-B9E2-ECF73D9A5714}) (Version: 36.0.39.57346 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6341.0 - IDT)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intelbras Cloud FF Control v1.0.1.8 (HKLM-x32\...\{89AAD60A-82CF-4b9d-9C56-C9AEDEA533E9}}_is1) (Version: 1.0.1.8 - Intelbras S.A.)
IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2014) (Version: 1.0 - Receita Federal do Brasil)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.1 - Receita Federal do Brasil)
IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil)
IRPF2017 (HKLM-x32\...\IRPF2017) (Version: 1.1 - Receita Federal do Brasil)
IRPF2018 (HKLM-x32\...\IRPF2018) (Version: 1.4 - Receita Federal do Brasil)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java(TM) 6 Update 27 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416027FF}) (Version: 6.0.270 - Oracle)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware versão 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 16.0.10325.20118 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\OneDriveSetup.exe) (Version: 18.151.0729.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.3 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{C89FA20F-0236-424C-B7D8-8E5EEDC20E15}) (Version: 13.07.3101 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.2.0 (HKLM\...\{8EC78F02-5C36-4C97-AAC4-95A3D742A285}) (Version: 6.2.0 - Motorola Inc.)
Mozilla Firefox 60.0.2 (x64 pt-BR) (HKLM\...\Mozilla Firefox 60.0.2 (x64 pt-BR)) (Version: 60.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.0.2.6730 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Palco de Música da Dell (HKLM-x32\...\{870024EE-C29E-4A17-8610-C234D00E2EA4}) (Version: 1.5.201.0 - Fingertapps)
Palco Dell (HKLM-x32\...\{30703305-42C4-4282-B3E0-49E4E0E1052A}) (Version: 1.5.201.0 - Fingertapps)
Photodex Presenter (HKLM-x32\...\Photodex Presenter) (Version:  - Photodex Corporation)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.063 - Sonic Solutions) Hidden
ProShow Producer (HKLM-x32\...\ProShow Producer) (Version:  - Photodex Corporation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.09.25 - Dell Inc.)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Serviço Xperia Companion (HKLM\...\{941E0B86-5EC0-43BC-9DA9-9BC596150B4B}) (Version: 1.6.5.0 - Sony) Hidden
Sim Plus (HKLM-x32\...\Sim Plus) (Version:  - )
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.17.6.201704121541 - Sony Mobile Communications Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Warsaw 2.5.1.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.5.1.2 - GAS Tecnologia)
WhatsApp (HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\WhatsApp) (Version: 0.3.557 - WhatsApp)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Xperia Companion (HKLM-x32\...\{27b15812-304d-4fc2-80b7-55a920f30a28}) (Version: 1.6.5.0 - Sony)
Xperia Companion (HKLM-x32\...\{9D56F227-FC8D-419D-ADEB-41E5734025BD}) (Version: 1.6.5.0 - Sony) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1210235661-1573419760-1918872127-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Flávio\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1210235661-1573419760-1918872127-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Flávio\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-09] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-09] (AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers1: [Roxio Burn] -> {E8CB9D53-A47A-42B5-9F5B-96B037C9DD4C} => C:\Program Files\Roxio\Roxio Burn\RB_ContextMenu64.dll [2010-11-10] (TODO: <Company name>)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-09] (AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-09] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0D56D64E-CA4E-4F0C-973B-315ED37ACF21} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO
Task: {19058363-BA70-4816-B95B-59109DD71A2C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {1BD8FDC7-A85B-4268-9865-A9611FA0A3B8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {22EE1977-18FB-4DBF-B02A-87AA5BC9204A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {27F83ECE-9889-4645-A3AF-233E7799660A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {33676163-1C22-4B6F-B852-771C62BD7922} - \SystemToolsDailyTest -> Nenhum Arquivo <==== ATENÇÃO
Task: {396D2879-E3AE-41BD-811C-6A86CEB24D3D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {3A881A8B-5E7D-451F-B9B3-7F777CBACD61} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {3F290B2E-92DA-4E3C-920E-45685EBF6E2F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {4D8CABB7-A0CB-4D88-AEAD-0B9B619B36B2} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {52F4F3AA-7FED-48FA-889A-32DCA3B43773} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5867E18F-6820-428F-B01B-3AEBBBA42310} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {6267CD6B-B94C-4D8E-B2B6-3F821563CC99} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {62C93B31-8CEB-489D-BB64-F259057A9B9B} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {6702E3FA-8056-4783-A961-62F8BC2679DA} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [2018-08-20] (Microsoft Corporation)
Task: {682BF088-6257-4B01-B076-5A6525C31AFF} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\WINDOWS\TEMP\is-QTTRB.tmp\corefixer.exe <==== ATENÇÃO
Task: {720B12A7-82FB-49ED-A40E-62A6471C7BB3} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {80A60329-F795-4892-AEFA-A169D75945BF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {83154DB1-E10F-4E31-8179-7F9FAAACB114} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-08-20] (Microsoft Corporation)
Task: {8D6FF188-4B94-491A-AD50-19F69EF2CC03} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {9695A075-76E3-4A0C-86B4-47E68A39ADEC} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {9D4B9F6B-FA73-4612-AC19-C49EABF5EF83} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {A40370F4-54D2-4FC6-A39E-F527286EEDC0} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {ACFC9F50-0533-475B-A374-4B95E05F5F4B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {ADD7EA38-ECCB-4F5D-B75E-75DE87935D96} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {B56F08F1-C415-4A4D-97DE-E0B3C60092DB} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {BAD34914-BA99-4F58-BF31-E8317D971F7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-08-22] (AVAST Software)
Task: {BF96E859-6FDC-4264-9618-302E90D3B718} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C877FDF1-81BC-4061-9701-3A4D3C750BD5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {CE0AF620-8D77-4B16-B4EF-4C86A3D10DB8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-20] (Microsoft Corporation)
Task: {D20AF89D-B4F0-4970-B57C-3EB4EF781BBA} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {D220F81A-FA6B-4016-B19B-871FA0955A63} - \PCDEventLauncher -> Nenhum Arquivo <==== ATENÇÃO
Task: {D2286714-4E1C-49DF-BD80-BD68A5AF3B1C} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-07-31] (AVAST Software)
Task: {D4BF5395-C588-4D79-85AB-514D9E72A135} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-09-09] (AVAST Software)
Task: {DC123FD1-961B-49F2-9B09-C94D395496C4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-20] (Microsoft Corporation)
Task: {DF01F6C5-24FB-4F75-8F34-D28515CCB332} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {EAFA3C35-39C1-4FBF-B857-36708173E28E} - \CCleanerSkipUAC -> Nenhum Arquivo <==== ATENÇÃO
Task: {EB003837-AD2A-411A-9190-A6AC4DDBF57F} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Nenhum Arquivo <==== ATENÇÃO
Task: {F90C40C2-19B0-4374-B1DF-B8D8E28C3B85} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÇÃO
Task: {FECC4527-4808-45E0-A2A2-D893A8CE1AA2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


==================== Módulos Carregados (Whitelisted) ==============

2018-04-11 20:34 - 2018-04-11 20:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2018-04-11 20:34 - 2018-04-11 20:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 20:34 - 2018-04-11 20:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-16 15:20 - 2018-08-03 00:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2018-05-30 11:03 - 2018-05-30 11:03 - 046281248 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-09-12 20:22 - 2018-09-12 20:22 - 000113152 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_ctypes.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000080896 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\bz2.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001585152 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_hashlib.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000128512 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32api.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000137728 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\pywintypes27.dll
2018-09-12 20:22 - 2018-09-12 20:22 - 000548864 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\pythoncom27.dll
2018-09-12 20:22 - 2018-09-12 20:22 - 000689664 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\unicodedata.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000438784 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32com.shell.shell.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001489408 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._core_.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001007104 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._gdi_.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001039872 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._windows_.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001325056 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._controls_.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000916992 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._misc_.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 001084416 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\pysqlite2._sqlite.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000149504 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32file.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000136192 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32security.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000007680 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\hashobjs_ext.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000020992 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\thumbnails_ext.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000118784 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\usb_ext.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000047616 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_socket.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 002224640 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_ssl.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000014848 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\common.time34.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000023040 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32event.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000034304 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows.conditional.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000020480 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows.winwrap.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000110080 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows.volumes.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000223232 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32gui.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000173568 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_elementtree.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000169472 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\pyexpat.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000048128 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32inet.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000103424 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\wx._html2.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000046080 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_psutil_windows.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000633272 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows._cacheinvalidation.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000011776 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32crypt.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000301568 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\PIL._imaging.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000032256 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_multiprocessing.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 005458944 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\cello.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000026112 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\_yappi.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000044032 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32process.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000027648 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32pipe.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000010752 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\select.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000029696 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32pdh.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000038400 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows.connectivity.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000073216 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\windows.device_monitor.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000020480 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32profile.pyd
2018-09-12 20:22 - 2018-09-12 20:22 - 000026624 _____ () C:\Users\Flávio\AppData\Local\Temp\_MEI15522\win32ts.pyd
2018-09-12 20:28 - 2018-09-12 20:29 - 035124736 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-09-12 20:28 - 2018-09-12 20:29 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-09-12 20:28 - 2018-09-12 20:29 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-27 17:38 - 2017-09-27 17:39 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-12 20:28 - 2018-09-12 20:29 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-08 18:18 - 2018-08-07 21:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-08 18:18 - 2018-08-07 21:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-09-09 13:38 - 2018-09-09 13:38 - 000575704 _____ () c:\program files\avast software\avast\streamback.dll
2018-04-19 11:42 - 2018-04-19 11:42 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-04-19 12:14 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\bb.com.br -> aapj.bb.com.br
IE trusted site: HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\gastecnologia.com.br -> cloud.gastecnologia.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2018-08-22 13:27 - 000000849 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1       localhost 

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Flávio\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{f40032ce-e086-4f3e-bfd7-5861efdde548}.jpg
DNS Servers: 192.168.15.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

MSCONFIG\startupfolder: C:^Users^Flávio^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\DellTPad\Apoint.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Diebold - Warsaw => C:\Program Files\Diebold\Warsaw\core.exe
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: Uninstall C: => 
HKLM\...\StartupApproved\Run: => "QuickSet"
HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run: => "GLSystray"
HKLM\...\StartupApproved\Run32: => "Dell Registration"
HKU\S-1-5-21-1210235661-1573419760-1918872127-1000\...\StartupApproved\Run: => "OfficeSyncProcess"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{C9B67034-6177-4A88-A58F-DE62B2E9ED68}] => (Allow) C:\Program Files\HP\HP DeskJet 5820 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{AAA5CBBB-24D3-4034-BE1A-0A888FE81E3D}] => (Allow) LPort=5357
FirewallRules: [{9455A538-3D3B-448A-A0C0-A0469C5BD561}] => (Allow) C:\Program Files\HP\HP DeskJet 5820 series\Bin\DeviceSetup.exe
FirewallRules: [{2BC4BB62-1E88-4782-9DA5-981CE28FE9D3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{DC0FDEF5-BFCD-4BF1-9230-9038BA9C4206}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [UDP Query User{40D6D3BC-AB2B-48E0-9921-12B2A7777E56}C:\program files (x86)\intelbras\sim plus\sim plus\simplus.exe] => (Allow) C:\program files (x86)\intelbras\sim plus\sim plus\simplus.exe
FirewallRules: [TCP Query User{89490307-E63B-4303-8185-B4B7177E2CC1}C:\program files (x86)\intelbras\sim plus\sim plus\simplus.exe] => (Allow) C:\program files (x86)\intelbras\sim plus\sim plus\simplus.exe
FirewallRules: [{6ED43359-6F76-4294-844F-2E15F58F24EB}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{107EE8DC-6965-4E9A-9BFB-2645C50D295C}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{261A6624-121F-431A-8A9A-52A65D8FB12C}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe
FirewallRules: [UDP Query User{0EDF4B9A-F74A-4639-98A1-4526E9F590CF}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{3860C35C-43C4-48E0-A872-A840C542C00E}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{197E883F-3326-4697-9B22-CF3083648D9D}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [TCP Query User{47BDA248-8CB9-4D65-9D10-EAC91CA21EF0}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{321EA859-3F42-4EB3-9F93-49573B7F3A0E}] => (Allow) LPort=3050
FirewallRules: [UDP Query User{F35ED305-A7A2-45D7-8C44-6B1B4127FC14}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{C3BB9B29-560B-454C-A4C0-C926D236E394}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [{F6FDA0FF-E5A5-4F88-B107-59D8BAB42C6A}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{59976C46-0D28-4C1B-A1F7-D1CC437DAA88}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{B320F8E5-61AD-4851-87F4-4328EB835A78}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{CB90F2C8-C7FB-4988-84A3-205C452570AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{CAF7B9C7-2616-4E52-B02B-CCB87C8B899B}] => (Allow) LPort=2869
FirewallRules: [{B93CF003-FB38-4440-B1CF-D9163D7C1D56}] => (Allow) LPort=1900
FirewallRules: [{70AE5B2B-D618-41B5-8ED6-FD2E79424BF3}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{6E385F5D-FB39-4A5A-B43A-AEA2490B2A9D}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{B6E4AB19-2DE1-4ACA-8A28-1657AA903A28}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{EF22B38B-6BB9-4ADA-80D8-926CD01C603A}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{001047A6-A70E-47EE-A467-F23DC1BE58AB}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{ACAD8D20-4FE6-4639-B73B-986DB76D139D}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [TCP Query User{3D8B582A-6B93-45B6-BE16-D57C1D36F57C}C:\program files (x86)\time4popcorn\popcorn time\popcorn-time.exe] => (Allow) C:\program files (x86)\time4popcorn\popcorn time\popcorn-time.exe
FirewallRules: [UDP Query User{C51AEC9E-F93E-4F86-BEA2-087E6FF10CCB}C:\program files (x86)\time4popcorn\popcorn time\popcorn-time.exe] => (Allow) C:\program files (x86)\time4popcorn\popcorn time\popcorn-time.exe
FirewallRules: [{C0C47ED7-B006-41B2-87FD-CFF28CE9B2F2}] => (Allow) C:\WINDOWS\SysWOW64\muzapp.exe
FirewallRules: [{16E6F189-A072-4ECE-A5EA-8993BC2BC8F4}] => (Allow) C:\WINDOWS\SysWOW64\muzapp.exe
FirewallRules: [{F7ED1043-D1CC-4B5D-80F6-3732D1AFD471}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{B2965366-9632-4B0C-BAA6-AE2482B4541C}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{B0F8E0BE-C7B2-470C-8F7A-6EEDC23AD3F9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BFA3C9C2-6B95-424C-9F08-6DCC531B33C1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{3B4FF1BA-AC5B-4C77-8ABE-A52E47284CDC}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{F60868E9-7A1D-40E3-A7D3-9253B8679B7C}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{E4D0CD33-1EE2-48C7-B57D-54F8CA4DFF29}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{11A4CA72-7B45-4A55-8688-C73D6E102537}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{CAEBA756-5476-4069-ABCE-1DD4D6A415EF}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\69.0.3497.7\remoting_host.exe
FirewallRules: [{CDFE05CC-411D-436B-BEC5-15D68BE4642D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{486C8243-D28A-454F-B0F1-FC9657AA445E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{2C8824C8-1DC2-4367-8620-4E2CC869EF8E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

==================== Pontos de Restauração =========================

04-09-2018 15:14:23 Ponto de Verificação Agendado
12-09-2018 20:50:55 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Qualcomm Atheros AR3011 Bluetooth 3.0
Description: Qualcomm Atheros AR3011 Bluetooth 3.0
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

Name: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Description: Dispositivo USB Desconhecido (Falha na Solicitação de Descritor de Dispositivo)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (09/12/2018 08:23:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x100c
Hora de início do aplicativo com falha: 0x01d44aef81b92c61
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: 97701337-68a4-4968-9b84-464e103ad898
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/12/2018 08:22:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x100c
Hora de início do aplicativo com falha: 0x01d44aef81b92c61
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: c135431d-516e-41ed-afc5-d7ee5c694049
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 08:17:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x1688
Hora de início do aplicativo com falha: 0x01d44a25974aa3f4
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: 0d66f3df-45db-4c11-8ff4-fe3e463cffa5
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 08:17:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x1688
Hora de início do aplicativo com falha: 0x01d44a25974aa3f4
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: a2234488-95bc-497a-ac8a-1d1d84115c16
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 11:23:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x1da0
Hora de início do aplicativo com falha: 0x01d449dafd5383c1
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: 04fd2e9a-a12c-4300-a25b-69b28bae890a
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 11:23:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Nome do módulo com falha: sttray64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a89
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000000d7ca
ID do processo com falha: 0x1da0
Hora de início do aplicativo com falha: 0x01d449dafd5383c1
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\sttray64.exe
Caminho do módulo com falha: C:\Program Files\IDT\WDM\sttray64.exe
ID do Relatório: d7aeec93-9b2a-46d0-9795-65bf59796373
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 11:20:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: STacSV64.exe, versão: 1.0.6341.0, carimbo de data/hora: 0x4ddf1a4c
Nome do módulo com falha: ntdll.dll, versão: 10.0.17134.228, carimbo de data/hora: 0x6d15b6d7
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000102a1
ID do processo com falha: 0x6b0
Hora de início do aplicativo com falha: 0x01d449da94328ffa
Caminho do aplicativo com falha: C:\Program Files\IDT\WDM\STacSV64.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll
ID do Relatório: 776e0b0a-ae69-4448-af61-6b8051b62678
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/11/2018 11:20:23 AM) (Source: STacSV) (EventID: 32767) (User: AUTORIDADE NT)
Description: Connection to the Storage interface failed


Erros de Sistema:
=============
Error: (09/12/2018 08:39:17 PM) (Source: DCOM) (EventID: 10016) (User: FLÁVIO-PC)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário Flávio-PC\Flávio SID (S-1-5-21-1210235661-1573419760-1918872127-1000) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (09/11/2018 01:13:52 PM) (Source: DCOM) (EventID: 10016) (User: FLÁVIO-PC)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário Flávio-PC\Flávio SID (S-1-5-21-1210235661-1573419760-1918872127-1000) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (09/11/2018 11:20:51 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Falha indeterminada do adaptador Bluetooth local; ele não será usado. O driver foi descarregado.

Error: (09/11/2018 11:20:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço STacSV foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (09/11/2018 11:20:23 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 21:50:37 do dia ‎10/‎09/‎2018 não era esperado.

Error: (09/10/2018 09:51:45 PM) (Source: DCOM) (EventID: 10016) (User: FLÁVIO-PC)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário Flávio-PC\Flávio SID (S-1-5-21-1210235661-1573419760-1918872127-1000) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (09/10/2018 08:28:34 PM) (Source: DCOM) (EventID: 10016) (User: FLÁVIO-PC)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário Flávio-PC\Flávio SID (S-1-5-21-1210235661-1573419760-1918872127-1000) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (09/10/2018 03:44:07 PM) (Source: DCOM) (EventID: 10016) (User: FLÁVIO-PC)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário Flávio-PC\Flávio SID (S-1-5-21-1210235661-1573419760-1918872127-1000) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.


Windows Defender:
===================================
Date: 2018-09-09 14:04:54.672
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.263.48.0
Origem da Atualização: Centro de Proteção contra Malware da Microsoft
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SERVIÇO DE REDE
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.14600.4
Código de erro: 0x80072ee7
Descrição do erro: O nome ou o endereço do servidor não pôde ser resolvido 

Date: 2018-09-09 14:04:54.671
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.263.48.0
Origem da Atualização: Centro de Proteção contra Malware da Microsoft
Tipo de Assinatura: Anti-spyware
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SERVIÇO DE REDE
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.14600.4
Código de erro: 0x80072ee7
Descrição do erro: O nome ou o endereço do servidor não pôde ser resolvido 

Date: 2018-09-09 14:04:54.671
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.263.48.0
Origem da Atualização: Centro de Proteção contra Malware da Microsoft
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SERVIÇO DE REDE
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.14600.4
Código de erro: 0x80072ee7
Descrição do erro: O nome ou o endereço do servidor não pôde ser resolvido 

Date: 2018-09-09 14:04:42.360
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.263.48.0
Origem da Atualização: Servidor do Microsoft Update
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.14600.4
Código de erro: 0x80240438
Descrição do erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 

Date: 2018-08-17 14:08:09.571
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.263.48.0
Origem da Atualização: Centro de Proteção contra Malware da Microsoft
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SERVIÇO DE REDE
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.14600.4
Código de erro: 0x80072ee7
Descrição do erro: O nome ou o endereço do servidor não pôde ser resolvido 

CodeIntegrity:
===================================

Date: 2018-09-12 20:54:36.183
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-10 10:42:07.603
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\WSLBSCRWH64.DLL that did not meet the Microsoft signing level requirements.

Date: 2018-09-05 11:32:11.332
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\WSLBSCRWH64.DLL that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 12:38:40.920
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-24 13:19:16.583
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-23 21:53:39.589
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\WSLBSCRWH64.DLL that did not meet the Microsoft signing level requirements.

Date: 2018-08-20 12:04:44.658
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-07-17 11:07:51.917
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Diebold\Warsaw\WSLBDHM64.DLL that did not meet the Store signing level requirements.

==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
Percentagem de memória em uso: 75%
RAM física total: 4004.27 MB
RAM física disponível: 988.42 MB
Virtual Total: 8100.27 MB
Virtual disponível: 5205.62 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:452.47 GB) (Free:309.06 GB) NTFS

\\?\Volume{e8be261c-e58d-11e0-ad3c-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:13.25 GB) (Free:5.38 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 70AF3AA9)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452.5 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================