Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 08-05-2017
Executado por sherman (09-05-2017 09:59:03)
Executando a partir de C:\Users\sherman\Downloads
Windows 10 Home Single Language Versão 1511 (X64) (2016-03-03 16:58:15)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-246924023-445947667-1718755967-500 - Administrator - Disabled)
Convidado (S-1-5-21-246924023-445947667-1718755967-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-246924023-445947667-1718755967-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-246924023-445947667-1718755967-1003 - Limited - Enabled)
sherman (S-1-5-21-246924023-445947667-1718755967-1001 - Administrator - Enabled) => C:\Users\sherman
==================== Central de Segurança ========================
(Se uma entrada for incluÃda na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
7-PDF Maker Version 1.4.1 (Build 128) (HKLM-x32\...\7-PDF Maker_is1) (Version: 7-PDF Maker - Version 1.4.1 (Build 128) - 7-PDF, Germany - Thorsten Hodes)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3015 - Acer Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2002.2 - Acer Incorporated)
Assinador Digital Registral de Documentos Eletrônicos (HKLM-x32\...\Assinador Digital Registral de Documentos Eletrônicos_is1) (Version: - ARISP - Associação dos Registradores Imobiliários de São Paulo)
Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.107.4 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AVG (HKLM\...\AvgZen) (Version: 1.181.3.3057 - AVG Technologies)
AVG (Version: 1.181.4 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation)
BRySigner 3.1.9.0 (HKLM-x32\...\{D7AF797B-6112-4FDC-8999-D05AA14666A9}) (Version: 3.1.9.0 - BRy Tecnologia)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5118 - CDBurnerXP)
CertiPlugin 1.0.0.11 (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\{E74B2E92-1570-41FB-AB75-1A618DD3FCE3}_is1) (Version: 1.0.0.11 - Certisign)
clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{340C451C-F2FD-4309-B259-580FD5E44025}) (Version: 18.1.0.661 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 18.1.661 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (Version: 18.1.661 - Corel Corporation) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.)
DWG TrueView 2016 - English (Version: 20.1.107.4 - Autodesk) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Ferramentas do Visual Studio 2005 para Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Firefox e Java Portável (HKLM-x32\...\Firefox e Java Portável 2.0) (Version: 2.0 - TRT 13ª Região)
FMW 1 (Version: 1.192.3 - AVG Technologies) Hidden
GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - )
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Earth Pro (HKLM-x32\...\{62D24387-9F2A-4629-BC77-1FD23BD8663A}) (Version: 7.1.7.2600 - Google)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Kazaa Lite K++ v2.4.3 (HKLM-x32\...\kazaalite202_is1) (Version: 2.4.3 - Kazaa Lite K++)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3006 - Acer Incorporated)
Lollipop (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\lollipop_01040957) (Version: - Lollipop Network, S.L.) <==== ATENÃÃO
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.551.2 - McAfee, Inc.)
Microsoft Office Professional Edição 2003 (HKLM-x32\...\{90110416-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Pacote de Compatibilidade para o sistema Office 2007 (HKLM-x32\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
PC App Store (HKLM-x32\...\PC App Store 4.10.1.7607) (Version: 4.10.1.7607 - Baidu, Inc.)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.26.25466 - pdfforge GmbH)
PDF Architect 4 Create Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
SafeSign 64-bits (HKLM\...\{2DF407D3-A8AD-4ACF-BFD5-5F7D42EC62FD}) (Version: 3.0.87 - A.E.T. Europe B.V.)
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sistema Ãnico de Cálculos da Justiça do Trabalho versão 2.4 (HKLM-x32\...\{1D259E93-3A80-48E4-81EC-B49F716123F6}_is1) (Version: 2.4 - Tribunal Regional do Trabalho da 20ª Região)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.1.0.9134 - Microsoft Corporation)
Skype⢠7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1240 - SUPERAntiSpyware.com)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\dwgviewr.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\en-US\dwgviewrficn.dll (Autodesk, Inc.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {15A5CAE6-1E85-40EB-A2CE-CE309A5A26B0} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-13] (Acer Incorporated)
Task: {19AF1AA8-6A39-47D0-869C-D4ACACC6AF41} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {2761BD36-779C-4651-8118-210E2EAF1FA6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-17] (Adobe Systems Incorporated)
Task: {2E34DCF6-A4FC-4814-83D3-E0C1615C8BBE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-08] (Google Inc.)
Task: {395231B0-55DA-4085-B2D9-21DC90A8240E} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {3A8B6194-A423-4DF5-989A-998E9151B242} - System32\Tasks\SYSSHERMAN50 => C:\WINDOWS\SysWOW64\Java\kxw2add3.rx4.vbs [2017-04-17] ()
Task: {456E0585-00CB-40CC-B7B2-215C8DEE8ADB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÃÃO
Task: {4B2155CB-FC55-49E6-BD34-5E3E862D7DE4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÃÃO
Task: {4BAB0C50-6641-4D7B-AA1A-840F7803E911} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-11-06] ()
Task: {5BEF48F5-28AB-44D6-9591-677E4E44AC91} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {74074330-0821-4159-A3F4-C884A83C46FA} - System32\Tasks\4931 => Wscript.exe C:\Users\sherman\AppData\Local\Temp\launchie.vbs //B <==== ATENÃÃO
Task: {76245A83-5904-43AB-BA1F-3CE2F1873EF5} - System32\Tasks\SUPERAntiSpyware Scheduled Task 7ed94f75-cf7f-49cf-b6e4-4b7f27394f0d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {76298CA0-CFE0-4851-8829-082F12F6B4F7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {774AF043-CCD9-4297-A227-82D0018672E1} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {7834210E-5FC0-4C15-A66A-30BAFADADFDE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Nenhum Arquivo <==== ATENÃÃO
Task: {7D02B52A-BF02-46F9-9C4F-102C49454443} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Nenhum Arquivo <==== ATENÃÃO
Task: {828500BA-9DBD-4898-8134-6AF8E114EA55} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-03] (AVAST Software)
Task: {86CDF5A4-BA8D-4957-9AB9-58082977B6A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {8DB67505-E22B-4785-A9D2-CFD18E69C4FC} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-19] (CyberLink)
Task: {8E3B1B8C-D5A5-4999-BB59-F7A6DC507065} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÃÃO
Task: {9B1B66C1-711B-41F6-9C81-11E05E3AA0BA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÃÃO
Task: {9C33D405-E6BE-41C9-879A-D226EDF77ABD} - System32\Tasks\{B23E25B2-CC1B-4F35-8A6E-5F886236B361} => pcalua.exe -a D:\instalar.exe -d D:\ -c /AUTORUN
Task: {A57778B9-BE38-47E1-A34D-215F29F6F8DD} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {A8303B92-721E-4F25-A2E1-F4E47F2C9A47} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {AAB26B99-57BA-4C93-ADCD-8D667FDFA211} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÃÃO
Task: {C9AADEE8-FCB7-403D-BF89-7BC27BAFD472} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-21] ()
Task: {D407EB93-F08F-412E-A8C7-4B66FF1208F2} - System32\Tasks\SUPERAntiSpyware Scheduled Task 73e4c970-1602-403b-82cb-dcd5e41291bd => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {D462D9E8-AE84-4B3D-8B0F-507E97D8DB6C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {DB12A945-1798-4833-A1F7-D8FE8BEAF5B3} - System32\Tasks\{CCE8AA74-4342-4A02-9235-D8A2FE60CBEF} => pcalua.exe -a "C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\Uninstall.exe"
Task: {DC6965DA-D785-4486-9D49-3DB1381601CE} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {DE77A273-AD1E-4585-8C41-DD4A357C30BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {F031B70D-572D-4F40-A2F0-12525EC191DD} - System32\Tasks\SafeZone scheduled Autoupdate 1493836736 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {F4BEB8B0-7080-412B-97E3-099BBE2BF8D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-08] (Google Inc.)
Task: {F9B81255-2696-44D1-A2B0-53152B3A8D7C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-03] (AVAST Software)
(Se uma entrada for incluÃda na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\0116avtUpdateInfo.job => C:\ProgramData\Avg_Update_0116avt\0116avt_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\1215avtUpdateInfo.job => C:\ProgramData\Avg_Update_1215avt\1215avt_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 73e4c970-1602-403b-82cb-dcd5e41291bd.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 7ed94f75-cf7f-49cf-b6e4-4b7f27394f0d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\sherman\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
Shortcut: C:\Users\sherman\AppData\Local\Microsoft\Windows\RoamingTiles\-4497119650.lnk -> hxxp://www.facebook.com/help/?ref=p
Shortcut: C:\Users\sherman\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Meus Sites no MSN\target.lnk -> hxxp://www.msnusers.co
ShortcutWithArgument: C:\Users\sherman\AppData\Local\Microsoft\Windows\Application Shortcuts\Microsoft.InternetExplorer.Default\-4497119650.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -pinnedSite -contentTile -formatVersion 0x00000002 -pinnedTimeLow 0x1f6c0166 -pinnedTimeHigh 0x01ce7649 -securityFlags 0x00000000 -url 0x00000024 hxxp://www.facebook.com/help/?ref=pf
ShortcutWithArgument: C:\Users\Public\Desktop\Netflix.lnk -> C:\ProgramData\OEM_E471269A730D\Netflix\StartURL.exe () -> hxxps://www.netflix.com/?mqso=80031250
==================== Módulos Carregados (Whitelisted) ==============
2017-03-17 07:33 - 2017-03-04 02:31 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-04-12 21:05 - 2017-03-28 07:17 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-12 21:05 - 2017-03-28 07:17 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-03-03 12:52 - 2016-03-03 12:52 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-12 16:59 - 2016-07-01 00:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2017-03-17 07:33 - 2017-03-04 00:19 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-17 07:33 - 2017-03-04 00:14 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-12 21:05 - 2017-03-28 02:01 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-04-12 21:05 - 2017-03-28 02:04 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-15 21:54 - 2017-03-15 21:54 - 03879424 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1703.601.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-04-03 16:39 - 2017-03-29 05:47 - 02885464 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-04-03 16:39 - 2017-03-29 05:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
2017-04-12 20:43 - 2017-03-31 11:50 - 31113816 _____ () C:\Users\sherman\AppData\Local\Google\Chrome\User Data\PepperFlash\25.0.0.148\pepflashplayer.dll
2012-11-02 21:38 - 2012-11-02 21:38 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-11-02 21:38 - 2012-11-02 21:38 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2013-02-25 11:02 - 2012-06-25 14:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2017-05-03 10:53 - 2017-05-03 10:52 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluÃda na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluÃda na fixlist, o Ãtem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-246924023-445947667-1718755967-1001\Software\Classes\.scr: DWGTrueViewScriptFile => C:\WINDOWS\system32\notepad.exe "%1"
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluÃda na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\bb.com.br -> www.bb.com.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\caixa.gov.br -> imagem.caixa.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluÃda na fixlist para redefinir o Hosts.)
2012-07-26 02:26 - 2017-05-03 17:14 - 00000853 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Outras Ãreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-246924023-445947667-1718755967-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sherman\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER Ãtens desabilitados ==
MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\StartupFolder: => "Acer Backup Manager Tray.lnk"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "PSafeTray"
HKLM\...\StartupApproved\Run32: => "PSafeWDS"
HKLM\...\StartupApproved\Run32: => "RadioController"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "lollipop_01040957"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Skype"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [UDP Query User{632D197C-48E6-49BD-88C3-8F66DDA5469F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{13B1B67B-5C90-44DD-9296-A3EF899D98DC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{71565D2E-A0B2-4E9A-8A80-EBB094148C67}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{E7FE44BF-6D74-4A05-BCD6-FB68954B22D0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [UDP Query User{E95C55A8-0136-44D3-9D29-07173DD89828}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{BB0CDEBE-6851-47AE-BB02-07875C9173ED}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{3C68A5F0-164A-4F0C-B782-05A7D131645F}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{423C5F93-89C7-4A0E-A360-27A6F0615FE4}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{A35A55F7-144E-4174-B156-EC32234EF6D5}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{29329C16-7CEA-48FC-A736-F1A8CEA0F382}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [UDP Query User{1186834D-3482-4500-9598-9BA243E1F0CD}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{EBB45A02-2E51-4E49-AD02-A40DB51E23F4}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{CF650A31-A8CF-48F4-9403-40F29D31C750}C:\program files (x86)\kazaa lite k++\kazaalite.kpp] => (Allow) C:\program files (x86)\kazaa lite k++\kazaalite.kpp
FirewallRules: [TCP Query User{E2CF3FC1-E1AC-499F-95C6-3154D0331920}C:\program files (x86)\kazaa lite k++\kazaalite.kpp] => (Allow) C:\program files (x86)\kazaa lite k++\kazaalite.kpp
FirewallRules: [UDP Query User{A2207CA3-296D-47EF-BB87-EBD0FB982690}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [TCP Query User{7E5E62FD-8BC4-47D2-9541-A260C35E3CEC}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [{D982DD55-B284-497A-AE03-B1B8A4EE566E}] => (Allow) C:\Users\sherman\AppData\Local\Temp\7zS6736\HPDiagnosticCoreUI.exe
FirewallRules: [{3FD0D857-0509-48A3-8EA8-ECC70F4E10B6}] => (Allow) C:\Users\sherman\AppData\Local\Temp\7zS6736\HPDiagnosticCoreUI.exe
FirewallRules: [{EB4BD117-2AA4-4241-A15C-F1931C2E33BA}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe
FirewallRules: [{011AE240-FF6C-49C7-975C-A8989A012C43}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe
FirewallRules: [{C389F64C-C87C-4AE0-ADB2-93F0519CF728}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe
FirewallRules: [{C102EA8F-F726-405D-9DD2-A743F6D0083A}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe
FirewallRules: [{9AE55E7B-97A0-4286-A3C5-0618002D172D}] => (Allow) C:\Program Files (x86)\PSafe\Total\LiveUpdate360.exe
FirewallRules: [{3C6770BA-E25D-49CD-8717-CF5EDA3393E4}] => (Allow) C:\Program Files (x86)\PSafe\Total\LiveUpdate360.exe
FirewallRules: [{F7BD2C54-9DBB-413A-98B1-484DB898C371}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{640F5DBB-6D8A-4D32-B71F-EA23092D0F5B}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{98663A72-C356-409E-BF8C-6FE10DBC32F8}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManager.exe
FirewallRules: [{BA2718BC-634A-4F27-BE36-6C4BC812D8C7}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
FirewallRules: [{4693C58D-BAF0-4A8C-8DFB-93A6365CB050}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\FileExplorer.exe
FirewallRules: [{9BA6C4BB-BD4F-401F-83B8-088E95146B59}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{2F384E48-D34E-4D87-83D3-A8F4CE8AFB9B}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{AB5D5483-EE13-457C-A96E-F050B7B3A578}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{4D07EAC2-635A-4A93-9B9E-E293E192E225}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{95CFF193-DF70-439B-9B74-4C3712350A0E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{53F8F436-3F69-48F6-B46F-E7F7BC65CCD4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{0603407D-4D6A-4203-AFFA-4ACA43327C0B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{E651C1B2-2749-4ED4-B8B9-2BCCAE55B4B5}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{8A40E1B2-1A81-48A0-B25F-9E2B3FE0A2A4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{F40F0DAF-FFED-4387-97FC-A13E449010AD}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe
FirewallRules: [{6BA50AE4-66BE-4C1B-B171-8790DC673B29}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe
FirewallRules: [{159CE7F7-B11C-49FD-A6A2-C03802758809}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{B6D22048-81B2-4F6C-AF86-F337E1F0599C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{EBB60336-1334-4801-A320-E41079C4B642}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{B68E563E-672F-4FC7-A009-FBC4C06769E7}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{14CD9326-00AF-40B2-8C5F-4E37E5B1752E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{B6122708-9CEB-46AE-80AC-B86CEB0BA193}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{DA09406D-F271-4694-97B8-783ECDC566F1}] => (Allow) C:\Users\sherman\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{28517962-8ACE-4BAB-9748-271CBABDA2CA}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{EB81D8D3-82D6-489E-8C2C-57BA6AA7ACC2}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{D94DEA0B-0FA5-4289-9695-89ED9674AEAE}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe
FirewallRules: [{5874296A-25AF-460C-90AC-DD78E4EDA994}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{4BE08527-D9D4-428B-B045-CAA28CBBB0EB}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{59EB50F9-5363-4153-A786-F0B8EE7AD777}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{A13FA659-E901-4D17-9A66-095166A2C390}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{412B3067-A104-4A7A-8B0E-D5FD74CE02D7}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{5059FA84-3391-4A42-91F7-A358FFE7F56B}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{094930FF-8438-4968-86B1-444AAAF49EF4}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{62B43051-8316-4916-83EB-3873793E8913}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{650FC1F4-9AED-42B8-AEFD-9E9A4758FFD8}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{71CF8BD1-A4C7-4669-9D7C-58B996529536}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{5441CFF2-E720-4B0E-A9AD-664D5B13F51C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{3CD6A060-4C2B-4384-8504-CA265D8F234E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{88B31BA7-FCA2-4E8B-B787-F2F79A182FBF}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{A8C6573A-7175-4E3E-A355-B68CA365B3FD}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{66A7BB05-4137-4AF0-985A-D4A49BD898AA}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{176505B2-EA4A-480D-936F-E30C995AB754}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{91B4BD4A-ED32-4205-BE8F-1B4DD0B4959F}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{BE939284-9F66-4F69-95BB-A19DC52E9889}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{E5D04BCF-08D9-4BBB-80E4-84E5C986490B}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{B4C5B667-1AE8-4860-B9B4-6A34A16E0BE7}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{C27E66D3-22CC-4CA6-8E1A-945C66FCC534}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{B8B8F5EE-B27C-477C-8CAF-F4F9BA94CB09}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{EE710161-A51D-4F46-BD40-3ECA36DA48BE}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{5EAC5E87-BA8E-4366-9EF9-D5615EEF0856}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{10E60504-196C-4FDC-95DD-D6A51D9636F4}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{300656D0-5C6A-48EB-954A-09B75F62F1FC}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7BFAF59D-F79F-4FD3-907F-E1FB14D96A38}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{92AF459D-F9D6-4417-B7D4-BB81ABC8BAE6}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{1211AB8B-8B02-41AB-8EBE-8F71CC45D7CF}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7C88A0DC-B7C3-4B41-8FC5-47AD0F474142}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{62E93B0A-5D2F-47C7-9662-76DC55B4E89B}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{05FB7E28-D082-41EA-8FF7-148145D64FFC}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{63062498-00FA-4772-9E8D-E0366A7002A0}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{43329E51-B52C-4F68-80C6-4DEEF0DCE590}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{C6784E30-AF35-4A85-91D3-A2770194DBE6}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{D8FE2F8C-C120-49EC-91C5-1725CB8A656D}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{E2C1DCCB-EA2E-401D-A4B1-24671975A939}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{20B7AF68-824A-4219-9EAE-A5D191331F2F}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{00F7B12B-FE6D-44F6-9735-0E3944EE7375}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{3B92740E-4877-4061-9D5B-CCCDE9A134CE}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{EF4F9A86-97AB-4E29-82C5-33F7B48D2BB0}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{1A2D1D18-87EF-4BD8-85D4-A11C3C714188}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7C9434D9-F9E1-4575-B085-93E707F9E34C}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{5A587894-4A81-4188-82B6-576505B7ED47}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [TCP Query User{F56A5C81-5DA6-41C1-830A-EB3017AB9114}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{21B674C5-10F0-4361-A065-7BB3D3AEE888}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [{6306F8C4-EDBA-4FC9-B644-72284B01AB8C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1EDD0639-EEE5-4200-923B-25D3C922D5BB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A59767F5-35CA-44F2-A248-9273E326481B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{B58E7AC7-5A9E-4C17-BCA2-4EBC7D9983AE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{CC754AC1-4A73-4EAB-AD76-00588E2FE723}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{B0F0BF1A-73E9-490A-AD37-003C4C0C38AF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{83B0B416-EAA2-4170-9B02-439FEDFB2220}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{07E47A02-A8C8-43CA-9AAF-DCB50A85A16A}] => (Allow) C:\Program Files (x86)\PSafe\Total\safemon\QHSafeTray.exe
FirewallRules: [{E8B4972B-9EE9-474D-A7CE-1CD17AB8EBB7}] => (Allow) C:\Program Files (x86)\PSafe\Total\safemon\QHSafeTray.exe
FirewallRules: [TCP Query User{92999722-684A-4EE3-BB1D-837D4680EBC1}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [UDP Query User{6FF134DB-7437-4B55-8B67-CAF72432AE3B}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [{11070E76-A68D-4469-B69C-CC73A4CA3A54}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{74683064-986E-449B-8E5F-71CE1A2A99E9}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [UDP Query User{ECD5D0A3-BB04-4B70-8227-71BD914C7C7F}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [{C6DB1321-F206-4E66-8F6C-801362518DE8}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
==================== Pontos de Restauração =========================
21-04-2017 17:54:31 Windows Update
24-04-2017 18:04:38 Windows Update
02-05-2017 10:00:03 Windows Update
03-05-2017 10:42:38 Removed Norton Online Backup
07-05-2017 16:14:28 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/09/2017 06:28:13 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/07/2017 06:50:14 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/07/2017 04:14:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
System Error:
Acesso negado.
.
Error: (05/05/2017 10:05:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SHERMAN)
Description: Falha na ativação do aplicativo Microsoft.Windows.Photos_8wekyb3d8bbwe!App com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (05/05/2017 10:03:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa AvastUI.exe versão 17.4.3482.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponÃveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.
ID do Processo: 19ec
Hora de InÃcio: 01d2c463ce58f85f
Hora de Término: 60000
Caminho do Aplicativo: C:\Program Files\AVAST Software\Avast\AvastUI.exe
ID do Relatório: f5bca777-3192-11e7-bf5c-20898404d9c4
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (05/05/2017 09:41:20 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/03/2017 04:26:25 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: O Windows não consegue carregar a DLL rdyboost do contador extensÃvel. Os primeiros quatro bytes (DWORD) da seção de Dados contêm o código de erro do Windows.
Error: (05/03/2017 03:36:01 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll".
Assembly dependente Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (05/03/2017 11:02:15 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/03/2017 10:43:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
System Error:
Acesso negado.
.
Erros de Sistema:
=============
Error: (05/09/2017 09:47:40 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/09/2017 07:37:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200b: Hewlett-Packard - Imaging - Null Print - HP Deskjet 3510 series.
Error: (05/09/2017 07:30:22 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/09/2017 06:30:06 AM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {F3B4E234-7A68-4E43-B813-E4BA55A065F6} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/09/2017 06:26:40 AM) (Source: Schannel) (EventID: 4114) (User: SHERMAN)
Description: O certificado recebido do servidor remoto foi emitido por uma autoridade de certificação não confiável. Portanto, não é possÃvel validar os dados contidos no certificado. Falha na solicitação de conexão TLS. Os dados anexados contêm o certificado do servidor.
Error: (05/09/2017 06:16:22 AM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/09/2017 06:08:35 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 06:06:38 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 06:03:23 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 12:35:27 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {F3B4E234-7A68-4E43-B813-E4BA55A065F6} não se registrou no DCOM dentro do tempo limite necessário.
CodeIntegrity:
===================================
Date: 2017-04-22 10:09:05.583
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-17 13:08:30.112
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-17 10:49:34.464
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.421
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.384
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.345
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.272
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-13 16:54:33.926
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-13 14:56:14.348
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-13 14:56:14.313
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
Percentagem de memória em uso: 53%
RAM física total: 5957.28 MB
RAM física disponível: 2758.5 MB
Virtual Total: 20805.28 MB
Virtual disponível: 17720.76 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:448.73 GB) (Free:362.77 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: FA2BD881)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por sherman (09-05-2017 09:59:03)
Executando a partir de C:\Users\sherman\Downloads
Windows 10 Home Single Language Versão 1511 (X64) (2016-03-03 16:58:15)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-246924023-445947667-1718755967-500 - Administrator - Disabled)
Convidado (S-1-5-21-246924023-445947667-1718755967-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-246924023-445947667-1718755967-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-246924023-445947667-1718755967-1003 - Limited - Enabled)
sherman (S-1-5-21-246924023-445947667-1718755967-1001 - Administrator - Enabled) => C:\Users\sherman
==================== Central de Segurança ========================
(Se uma entrada for incluÃda na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
7-PDF Maker Version 1.4.1 (Build 128) (HKLM-x32\...\7-PDF Maker_is1) (Version: 7-PDF Maker - Version 1.4.1 (Build 128) - 7-PDF, Germany - Thorsten Hodes)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3015 - Acer Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2002.2 - Acer Incorporated)
Assinador Digital Registral de Documentos Eletrônicos (HKLM-x32\...\Assinador Digital Registral de Documentos Eletrônicos_is1) (Version: - ARISP - Associação dos Registradores Imobiliários de São Paulo)
Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.107.4 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AVG (HKLM\...\AvgZen) (Version: 1.181.3.3057 - AVG Technologies)
AVG (Version: 1.181.4 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation)
BRySigner 3.1.9.0 (HKLM-x32\...\{D7AF797B-6112-4FDC-8999-D05AA14666A9}) (Version: 3.1.9.0 - BRy Tecnologia)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5118 - CDBurnerXP)
CertiPlugin 1.0.0.11 (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\{E74B2E92-1570-41FB-AB75-1A618DD3FCE3}_is1) (Version: 1.0.0.11 - Certisign)
clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{340C451C-F2FD-4309-B259-580FD5E44025}) (Version: 18.1.0.661 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 18.1.661 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (Version: 18.1.661 - Corel Corporation) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.)
DWG TrueView 2016 - English (Version: 20.1.107.4 - Autodesk) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Ferramentas do Visual Studio 2005 para Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Firefox e Java Portável (HKLM-x32\...\Firefox e Java Portável 2.0) (Version: 2.0 - TRT 13ª Região)
FMW 1 (Version: 1.192.3 - AVG Technologies) Hidden
GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - )
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Earth Pro (HKLM-x32\...\{62D24387-9F2A-4629-BC77-1FD23BD8663A}) (Version: 7.1.7.2600 - Google)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Kazaa Lite K++ v2.4.3 (HKLM-x32\...\kazaalite202_is1) (Version: 2.4.3 - Kazaa Lite K++)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3006 - Acer Incorporated)
Lollipop (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\lollipop_01040957) (Version: - Lollipop Network, S.L.) <==== ATENÃÃO
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.551.2 - McAfee, Inc.)
Microsoft Office Professional Edição 2003 (HKLM-x32\...\{90110416-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Pacote de Compatibilidade para o sistema Office 2007 (HKLM-x32\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
PC App Store (HKLM-x32\...\PC App Store 4.10.1.7607) (Version: 4.10.1.7607 - Baidu, Inc.)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.26.25466 - pdfforge GmbH)
PDF Architect 4 Create Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (Version: 4.0.9.25450 - pdfforge GmbH) Hidden
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
SafeSign 64-bits (HKLM\...\{2DF407D3-A8AD-4ACF-BFD5-5F7D42EC62FD}) (Version: 3.0.87 - A.E.T. Europe B.V.)
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sistema Ãnico de Cálculos da Justiça do Trabalho versão 2.4 (HKLM-x32\...\{1D259E93-3A80-48E4-81EC-B49F716123F6}_is1) (Version: 2.4 - Tribunal Regional do Trabalho da 20ª Região)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.1.0.9134 - Microsoft Corporation)
Skype⢠7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1240 - SUPERAntiSpyware.com)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\sherman\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\dwgviewr.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-246924023-445947667-1718755967-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\en-US\dwgviewrficn.dll (Autodesk, Inc.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {15A5CAE6-1E85-40EB-A2CE-CE309A5A26B0} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-13] (Acer Incorporated)
Task: {19AF1AA8-6A39-47D0-869C-D4ACACC6AF41} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {2761BD36-779C-4651-8118-210E2EAF1FA6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-17] (Adobe Systems Incorporated)
Task: {2E34DCF6-A4FC-4814-83D3-E0C1615C8BBE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-08] (Google Inc.)
Task: {395231B0-55DA-4085-B2D9-21DC90A8240E} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {3A8B6194-A423-4DF5-989A-998E9151B242} - System32\Tasks\SYSSHERMAN50 => C:\WINDOWS\SysWOW64\Java\kxw2add3.rx4.vbs [2017-04-17] ()
Task: {456E0585-00CB-40CC-B7B2-215C8DEE8ADB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÃÃO
Task: {4B2155CB-FC55-49E6-BD34-5E3E862D7DE4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÃÃO
Task: {4BAB0C50-6641-4D7B-AA1A-840F7803E911} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-11-06] ()
Task: {5BEF48F5-28AB-44D6-9591-677E4E44AC91} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {74074330-0821-4159-A3F4-C884A83C46FA} - System32\Tasks\4931 => Wscript.exe C:\Users\sherman\AppData\Local\Temp\launchie.vbs //B <==== ATENÃÃO
Task: {76245A83-5904-43AB-BA1F-3CE2F1873EF5} - System32\Tasks\SUPERAntiSpyware Scheduled Task 7ed94f75-cf7f-49cf-b6e4-4b7f27394f0d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {76298CA0-CFE0-4851-8829-082F12F6B4F7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {774AF043-CCD9-4297-A227-82D0018672E1} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {7834210E-5FC0-4C15-A66A-30BAFADADFDE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Nenhum Arquivo <==== ATENÃÃO
Task: {7D02B52A-BF02-46F9-9C4F-102C49454443} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Nenhum Arquivo <==== ATENÃÃO
Task: {828500BA-9DBD-4898-8134-6AF8E114EA55} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-03] (AVAST Software)
Task: {86CDF5A4-BA8D-4957-9AB9-58082977B6A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {8DB67505-E22B-4785-A9D2-CFD18E69C4FC} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-19] (CyberLink)
Task: {8E3B1B8C-D5A5-4999-BB59-F7A6DC507065} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÃÃO
Task: {9B1B66C1-711B-41F6-9C81-11E05E3AA0BA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÃÃO
Task: {9C33D405-E6BE-41C9-879A-D226EDF77ABD} - System32\Tasks\{B23E25B2-CC1B-4F35-8A6E-5F886236B361} => pcalua.exe -a D:\instalar.exe -d D:\ -c /AUTORUN
Task: {A57778B9-BE38-47E1-A34D-215F29F6F8DD} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {A8303B92-721E-4F25-A2E1-F4E47F2C9A47} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {AAB26B99-57BA-4C93-ADCD-8D667FDFA211} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÃÃO
Task: {C9AADEE8-FCB7-403D-BF89-7BC27BAFD472} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-21] ()
Task: {D407EB93-F08F-412E-A8C7-4B66FF1208F2} - System32\Tasks\SUPERAntiSpyware Scheduled Task 73e4c970-1602-403b-82cb-dcd5e41291bd => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {D462D9E8-AE84-4B3D-8B0F-507E97D8DB6C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÃÃO
Task: {DB12A945-1798-4833-A1F7-D8FE8BEAF5B3} - System32\Tasks\{CCE8AA74-4342-4A02-9235-D8A2FE60CBEF} => pcalua.exe -a "C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\Uninstall.exe"
Task: {DC6965DA-D785-4486-9D49-3DB1381601CE} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {DE77A273-AD1E-4585-8C41-DD4A357C30BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {F031B70D-572D-4F40-A2F0-12525EC191DD} - System32\Tasks\SafeZone scheduled Autoupdate 1493836736 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {F4BEB8B0-7080-412B-97E3-099BBE2BF8D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-08] (Google Inc.)
Task: {F9B81255-2696-44D1-A2B0-53152B3A8D7C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-03] (AVAST Software)
(Se uma entrada for incluÃda na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\0116avtUpdateInfo.job => C:\ProgramData\Avg_Update_0116avt\0116avt_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\1215avtUpdateInfo.job => C:\ProgramData\Avg_Update_1215avt\1215avt_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 73e4c970-1602-403b-82cb-dcd5e41291bd.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 7ed94f75-cf7f-49cf-b6e4-4b7f27394f0d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\sherman\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
Shortcut: C:\Users\sherman\AppData\Local\Microsoft\Windows\RoamingTiles\-4497119650.lnk -> hxxp://www.facebook.com/help/?ref=p
Shortcut: C:\Users\sherman\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Meus Sites no MSN\target.lnk -> hxxp://www.msnusers.co
ShortcutWithArgument: C:\Users\sherman\AppData\Local\Microsoft\Windows\Application Shortcuts\Microsoft.InternetExplorer.Default\-4497119650.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -pinnedSite -contentTile -formatVersion 0x00000002 -pinnedTimeLow 0x1f6c0166 -pinnedTimeHigh 0x01ce7649 -securityFlags 0x00000000 -url 0x00000024 hxxp://www.facebook.com/help/?ref=pf
ShortcutWithArgument: C:\Users\Public\Desktop\Netflix.lnk -> C:\ProgramData\OEM_E471269A730D\Netflix\StartURL.exe () -> hxxps://www.netflix.com/?mqso=80031250
==================== Módulos Carregados (Whitelisted) ==============
2017-03-17 07:33 - 2017-03-04 02:31 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-04-12 21:05 - 2017-03-28 07:17 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-12 21:05 - 2017-03-28 07:17 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-03-03 12:52 - 2016-03-03 12:52 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-12 16:59 - 2016-07-01 00:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2017-03-17 07:33 - 2017-03-04 00:19 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-17 07:33 - 2017-03-04 00:14 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-12 21:05 - 2017-03-28 02:01 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-04-12 21:05 - 2017-03-28 02:04 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-15 21:54 - 2017-03-15 21:54 - 03879424 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1703.601.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-04-03 16:39 - 2017-03-29 05:47 - 02885464 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-04-03 16:39 - 2017-03-29 05:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
2017-04-12 20:43 - 2017-03-31 11:50 - 31113816 _____ () C:\Users\sherman\AppData\Local\Google\Chrome\User Data\PepperFlash\25.0.0.148\pepflashplayer.dll
2012-11-02 21:38 - 2012-11-02 21:38 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-11-02 21:38 - 2012-11-02 21:38 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-11-02 21:37 - 2012-11-02 21:37 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2013-02-25 11:02 - 2012-06-25 14:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2017-05-03 10:53 - 2017-05-03 10:52 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-03 15:34 - 2017-05-03 15:34 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluÃda na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluÃda na fixlist, o Ãtem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-246924023-445947667-1718755967-1001\Software\Classes\.scr: DWGTrueViewScriptFile => C:\WINDOWS\system32\notepad.exe "%1"
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluÃda na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\bb.com.br -> www.bb.com.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\caixa.gov.br -> imagem.caixa.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluÃda na fixlist para redefinir o Hosts.)
2012-07-26 02:26 - 2017-05-03 17:14 - 00000853 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Outras Ãreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-246924023-445947667-1718755967-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sherman\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER Ãtens desabilitados ==
MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\StartupFolder: => "Acer Backup Manager Tray.lnk"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "PSafeTray"
HKLM\...\StartupApproved\Run32: => "PSafeWDS"
HKLM\...\StartupApproved\Run32: => "RadioController"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "lollipop_01040957"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
HKU\S-1-5-21-246924023-445947667-1718755967-1001\...\StartupApproved\Run: => "Skype"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluÃda na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [UDP Query User{632D197C-48E6-49BD-88C3-8F66DDA5469F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{13B1B67B-5C90-44DD-9296-A3EF899D98DC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{71565D2E-A0B2-4E9A-8A80-EBB094148C67}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{E7FE44BF-6D74-4A05-BCD6-FB68954B22D0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [UDP Query User{E95C55A8-0136-44D3-9D29-07173DD89828}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{BB0CDEBE-6851-47AE-BB02-07875C9173ED}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{3C68A5F0-164A-4F0C-B782-05A7D131645F}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{423C5F93-89C7-4A0E-A360-27A6F0615FE4}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{A35A55F7-144E-4174-B156-EC32234EF6D5}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{29329C16-7CEA-48FC-A736-F1A8CEA0F382}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [UDP Query User{1186834D-3482-4500-9598-9BA243E1F0CD}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{EBB45A02-2E51-4E49-AD02-A40DB51E23F4}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{CF650A31-A8CF-48F4-9403-40F29D31C750}C:\program files (x86)\kazaa lite k++\kazaalite.kpp] => (Allow) C:\program files (x86)\kazaa lite k++\kazaalite.kpp
FirewallRules: [TCP Query User{E2CF3FC1-E1AC-499F-95C6-3154D0331920}C:\program files (x86)\kazaa lite k++\kazaalite.kpp] => (Allow) C:\program files (x86)\kazaa lite k++\kazaalite.kpp
FirewallRules: [UDP Query User{A2207CA3-296D-47EF-BB87-EBD0FB982690}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [TCP Query User{7E5E62FD-8BC4-47D2-9541-A260C35E3CEC}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [{D982DD55-B284-497A-AE03-B1B8A4EE566E}] => (Allow) C:\Users\sherman\AppData\Local\Temp\7zS6736\HPDiagnosticCoreUI.exe
FirewallRules: [{3FD0D857-0509-48A3-8EA8-ECC70F4E10B6}] => (Allow) C:\Users\sherman\AppData\Local\Temp\7zS6736\HPDiagnosticCoreUI.exe
FirewallRules: [{EB4BD117-2AA4-4241-A15C-F1931C2E33BA}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe
FirewallRules: [{011AE240-FF6C-49C7-975C-A8989A012C43}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe
FirewallRules: [{C389F64C-C87C-4AE0-ADB2-93F0519CF728}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe
FirewallRules: [{C102EA8F-F726-405D-9DD2-A743F6D0083A}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe
FirewallRules: [{9AE55E7B-97A0-4286-A3C5-0618002D172D}] => (Allow) C:\Program Files (x86)\PSafe\Total\LiveUpdate360.exe
FirewallRules: [{3C6770BA-E25D-49CD-8717-CF5EDA3393E4}] => (Allow) C:\Program Files (x86)\PSafe\Total\LiveUpdate360.exe
FirewallRules: [{F7BD2C54-9DBB-413A-98B1-484DB898C371}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{640F5DBB-6D8A-4D32-B71F-EA23092D0F5B}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{98663A72-C356-409E-BF8C-6FE10DBC32F8}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManager.exe
FirewallRules: [{BA2718BC-634A-4F27-BE36-6C4BC812D8C7}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
FirewallRules: [{4693C58D-BAF0-4A8C-8DFB-93A6365CB050}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\FileExplorer.exe
FirewallRules: [{9BA6C4BB-BD4F-401F-83B8-088E95146B59}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{2F384E48-D34E-4D87-83D3-A8F4CE8AFB9B}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{AB5D5483-EE13-457C-A96E-F050B7B3A578}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{4D07EAC2-635A-4A93-9B9E-E293E192E225}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{95CFF193-DF70-439B-9B74-4C3712350A0E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{53F8F436-3F69-48F6-B46F-E7F7BC65CCD4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{0603407D-4D6A-4203-AFFA-4ACA43327C0B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{E651C1B2-2749-4ED4-B8B9-2BCCAE55B4B5}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{8A40E1B2-1A81-48A0-B25F-9E2B3FE0A2A4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{F40F0DAF-FFED-4387-97FC-A13E449010AD}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe
FirewallRules: [{6BA50AE4-66BE-4C1B-B171-8790DC673B29}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe
FirewallRules: [{159CE7F7-B11C-49FD-A6A2-C03802758809}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{B6D22048-81B2-4F6C-AF86-F337E1F0599C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{EBB60336-1334-4801-A320-E41079C4B642}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{B68E563E-672F-4FC7-A009-FBC4C06769E7}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{14CD9326-00AF-40B2-8C5F-4E37E5B1752E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{B6122708-9CEB-46AE-80AC-B86CEB0BA193}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{DA09406D-F271-4694-97B8-783ECDC566F1}] => (Allow) C:\Users\sherman\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{28517962-8ACE-4BAB-9748-271CBABDA2CA}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{EB81D8D3-82D6-489E-8C2C-57BA6AA7ACC2}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{D94DEA0B-0FA5-4289-9695-89ED9674AEAE}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe
FirewallRules: [{5874296A-25AF-460C-90AC-DD78E4EDA994}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{4BE08527-D9D4-428B-B045-CAA28CBBB0EB}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{59EB50F9-5363-4153-A786-F0B8EE7AD777}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{A13FA659-E901-4D17-9A66-095166A2C390}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{412B3067-A104-4A7A-8B0E-D5FD74CE02D7}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{5059FA84-3391-4A42-91F7-A358FFE7F56B}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{094930FF-8438-4968-86B1-444AAAF49EF4}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{62B43051-8316-4916-83EB-3873793E8913}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{650FC1F4-9AED-42B8-AEFD-9E9A4758FFD8}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{71CF8BD1-A4C7-4669-9D7C-58B996529536}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{5441CFF2-E720-4B0E-A9AD-664D5B13F51C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{3CD6A060-4C2B-4384-8504-CA265D8F234E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{88B31BA7-FCA2-4E8B-B787-F2F79A182FBF}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{A8C6573A-7175-4E3E-A355-B68CA365B3FD}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{66A7BB05-4137-4AF0-985A-D4A49BD898AA}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{176505B2-EA4A-480D-936F-E30C995AB754}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{91B4BD4A-ED32-4205-BE8F-1B4DD0B4959F}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{BE939284-9F66-4F69-95BB-A19DC52E9889}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{E5D04BCF-08D9-4BBB-80E4-84E5C986490B}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{B4C5B667-1AE8-4860-B9B4-6A34A16E0BE7}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{C27E66D3-22CC-4CA6-8E1A-945C66FCC534}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{B8B8F5EE-B27C-477C-8CAF-F4F9BA94CB09}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{EE710161-A51D-4F46-BD40-3ECA36DA48BE}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{5EAC5E87-BA8E-4366-9EF9-D5615EEF0856}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{10E60504-196C-4FDC-95DD-D6A51D9636F4}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{300656D0-5C6A-48EB-954A-09B75F62F1FC}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7BFAF59D-F79F-4FD3-907F-E1FB14D96A38}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{92AF459D-F9D6-4417-B7D4-BB81ABC8BAE6}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{1211AB8B-8B02-41AB-8EBE-8F71CC45D7CF}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7C88A0DC-B7C3-4B41-8FC5-47AD0F474142}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{62E93B0A-5D2F-47C7-9662-76DC55B4E89B}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{05FB7E28-D082-41EA-8FF7-148145D64FFC}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{63062498-00FA-4772-9E8D-E0366A7002A0}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{43329E51-B52C-4F68-80C6-4DEEF0DCE590}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{C6784E30-AF35-4A85-91D3-A2770194DBE6}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{D8FE2F8C-C120-49EC-91C5-1725CB8A656D}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{E2C1DCCB-EA2E-401D-A4B1-24671975A939}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{20B7AF68-824A-4219-9EAE-A5D191331F2F}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{00F7B12B-FE6D-44F6-9735-0E3944EE7375}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{3B92740E-4877-4061-9D5B-CCCDE9A134CE}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{EF4F9A86-97AB-4E29-82C5-33F7B48D2BB0}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{1A2D1D18-87EF-4BD8-85D4-A11C3C714188}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{7C9434D9-F9E1-4575-B085-93E707F9E34C}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [{5A587894-4A81-4188-82B6-576505B7ED47}] => (Allow) C:\Program Files (x86)\PSafe\pssmartup.exe
FirewallRules: [TCP Query User{F56A5C81-5DA6-41C1-830A-EB3017AB9114}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{21B674C5-10F0-4361-A065-7BB3D3AEE888}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [{6306F8C4-EDBA-4FC9-B644-72284B01AB8C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1EDD0639-EEE5-4200-923B-25D3C922D5BB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A59767F5-35CA-44F2-A248-9273E326481B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{B58E7AC7-5A9E-4C17-BCA2-4EBC7D9983AE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{CC754AC1-4A73-4EAB-AD76-00588E2FE723}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{B0F0BF1A-73E9-490A-AD37-003C4C0C38AF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{83B0B416-EAA2-4170-9B02-439FEDFB2220}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{07E47A02-A8C8-43CA-9AAF-DCB50A85A16A}] => (Allow) C:\Program Files (x86)\PSafe\Total\safemon\QHSafeTray.exe
FirewallRules: [{E8B4972B-9EE9-474D-A7CE-1CD17AB8EBB7}] => (Allow) C:\Program Files (x86)\PSafe\Total\safemon\QHSafeTray.exe
FirewallRules: [TCP Query User{92999722-684A-4EE3-BB1D-837D4680EBC1}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [UDP Query User{6FF134DB-7437-4B55-8B67-CAF72432AE3B}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [{11070E76-A68D-4469-B69C-CC73A4CA3A54}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{74683064-986E-449B-8E5F-71CE1A2A99E9}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [UDP Query User{ECD5D0A3-BB04-4B70-8227-71BD914C7C7F}C:\windows\syswow64\java\syssherman50.exe] => (Allow) C:\windows\syswow64\java\syssherman50.exe
FirewallRules: [{C6DB1321-F206-4E66-8F6C-801362518DE8}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
==================== Pontos de Restauração =========================
21-04-2017 17:54:31 Windows Update
24-04-2017 18:04:38 Windows Update
02-05-2017 10:00:03 Windows Update
03-05-2017 10:42:38 Removed Norton Online Backup
07-05-2017 16:14:28 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/09/2017 06:28:13 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/07/2017 06:50:14 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/07/2017 04:14:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
System Error:
Acesso negado.
.
Error: (05/05/2017 10:05:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SHERMAN)
Description: Falha na ativação do aplicativo Microsoft.Windows.Photos_8wekyb3d8bbwe!App com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (05/05/2017 10:03:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa AvastUI.exe versão 17.4.3482.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponÃveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.
ID do Processo: 19ec
Hora de InÃcio: 01d2c463ce58f85f
Hora de Término: 60000
Caminho do Aplicativo: C:\Program Files\AVAST Software\Avast\AvastUI.exe
ID do Relatório: f5bca777-3192-11e7-bf5c-20898404d9c4
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (05/05/2017 09:41:20 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/03/2017 04:26:25 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: O Windows não consegue carregar a DLL rdyboost do contador extensÃvel. Os primeiros quatro bytes (DWORD) da seção de Dados contêm o código de erro do Windows.
Error: (05/03/2017 03:36:01 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll".
Assembly dependente Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (05/03/2017 11:02:15 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SHERMAN)
Description: microsoft.bingnews_8wekyb3d8bbwe1009
Error: (05/03/2017 10:43:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
System Error:
Acesso negado.
.
Erros de Sistema:
=============
Error: (05/09/2017 09:47:40 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/09/2017 07:37:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200b: Hewlett-Packard - Imaging - Null Print - HP Deskjet 3510 series.
Error: (05/09/2017 07:30:22 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/09/2017 06:30:06 AM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {F3B4E234-7A68-4E43-B813-E4BA55A065F6} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/09/2017 06:26:40 AM) (Source: Schannel) (EventID: 4114) (User: SHERMAN)
Description: O certificado recebido do servidor remoto foi emitido por uma autoridade de certificação não confiável. Portanto, não é possÃvel validar os dados contidos no certificado. Falha na solicitação de conexão TLS. Os dados anexados contêm o certificado do servidor.
Error: (05/09/2017 06:16:22 AM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/09/2017 06:08:35 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 06:06:38 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 06:03:23 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: O Leitor de Cartão Inteligente 'Giesecke & Devrient GmbH StarSign CUT 0' rejeitou o IOCTL 0x313520: Função incorreta.. Se o erro persistir, talvez o cartão inteligente ou o leitor não estejam funcionando corretamente.
Cabeçalho do comando: XX XX XX XX
Error: (05/08/2017 12:35:27 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {F3B4E234-7A68-4E43-B813-E4BA55A065F6} não se registrou no DCOM dentro do tempo limite necessário.
CodeIntegrity:
===================================
Date: 2017-04-22 10:09:05.583
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-17 13:08:30.112
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-17 10:49:34.464
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.421
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.384
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.345
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 10:49:34.272
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-13 16:54:33.926
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-13 14:56:14.348
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-13 14:56:14.313
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
Percentagem de memória em uso: 53%
RAM física total: 5957.28 MB
RAM física disponível: 2758.5 MB
Virtual Total: 20805.28 MB
Virtual disponível: 17720.76 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:448.73 GB) (Free:362.77 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: FA2BD881)
Partition: GPT.
==================== Fim de Addition.txt ============================