Publicité
Publicité
Commentaire : RELATORIO2
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 16.05.2018 01
Executado por Usuario (17-05-2018 10:58:10)
Executando a partir de C:\Users\Usuario\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-06-24 16:52:58)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-181393726-1050220383-1222772540-500 - Administrator - Disabled)
Convidado (S-1-5-21-181393726-1050220383-1222772540-501 - Limited - Enabled) => C:\Users\Convidado
HomeGroupUser$ (S-1-5-21-181393726-1050220383-1222772540-1002 - Limited - Enabled)
Usuario (S-1-5-21-181393726-1050220383-1222772540-1000 - Administrator - Enabled) => C:\Users\Usuario
usuário (S-1-5-21-181393726-1050220383-1222772540-1003 - Limited - Enabled) => C:\Users\usuário.Usuario-PC
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
. . (HKLM\...\{E5B0E5D9-9D25-4B2B-A7D9-8CA0F9E0DD89}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{CE33BF2E-5D59-44DF-8610-59BB289396C6}) (Version: 3.3.1.3 - Intel) Hidden
µTorrent (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.17) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Advanced Archive Password Recovery (HKLM-x32\...\{6E356EEF-203C-451B-9144-CBF099E3738A}) (Version: 4.54.55.1642 - Elcomsoft Co. Ltd.)
Advanced SystemCare 11 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 11.3.0 - IObit)
AIDA64 Extreme v5.92 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.92 - FinalWire Ltd.)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Auslogics BoostSpeed 10 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 10.0.9.0 - Auslogics Labs Pty Ltd)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 8.0.9.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 64.0.387.186 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
AVEO USB2.0 PC Camera(E2WVTM2N90829) (HKLM-x32\...\{8C8D2898-652B-4C39-BC26-C80CA58D98E1}) (Version: 1.0.5.5 - AVEO)
Backup and Sync from Google (HKLM\...\{D827660F-36C3-4CB6-BCFF-C0E066935C55}) (Version: 3.41.9267.0638 - Google, Inc.)
BisonCam (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.2728.07.3 - BisonCam)
CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.A.)
Dashlane (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\Dashlane) (Version: 5.12.0.19744 - Dashlane SAS)
Download Accelerator Plus (DAP) (HKLM-x32\...\Download Accelerator Plus (DAP)) (Version: 10060 (Build 2599) - Speedbit Ltd.)
DVD Suite (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1319 - CyberLink Corporation)
Eraser 6.2.0.2982 (HKLM\...\{DFCF78CC-3DAD-4C1E-8BC6-94DC5B73461E}) (Version: 6.2.2982 - The Eraser Project)
Freenet versão 0.7.5 build 1480 (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\{3196C62F-9C7B-4392-88B4-05C037D05518}_is1) (Version: 0.7.5 build 1480 - freenetproject.org)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HexChat (HKLM\...\HexChat_is1) (Version: 2.14.1 - HexChat)
Intel(R) Computing Improvement Program (HKLM\...\{F6B5BD59-21F0-47F8-A6C6-63BAEB1A6569}) (Version: 2.1.03720 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{4ef0c07c-1ede-4d1c-a593-83184455832b}) (Version: 3.3.1.3 - Intel)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.65.0 - JMicron Technology Corp.)
Malwarebytes versão 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 59.0.3.6691 - Mozilla)
Nero 7 Essentials (HKLM-x32\...\{9B4E6CB9-E54D-47F7-A414-E2D5740E1046}) (Version: 7.02.8507 - Nero AG)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.2414.0 - CyberLink Corporation)
Project My Screen App (HKLM-x32\...\{64537E9A-4DAE-42F9-BCD8-8AEEB84D1786}) (Version: 8.0.12349 - Microsoft Corporation)
Sandboxie 5.24 (64-bit) (HKLM\...\Sandboxie) (Version: 5.24 - Sandboxie Holdings, LLC)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.95388 - TeamViewer)
Telegram Desktop versão 1.2.17 (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.2.17 - Telegram Messenger LLP)
Unity Web Player (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
USBPcap 1.2.0.3 (HKLM\...\USBPcap) (Version: 1.2.0.3 - Tomasz Mon)
Vitamin D Video 1.4.2 (HKLM-x32\...\Vitamin D Video_is1) (Version: - Vitamin D Video, LLC)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wireshark 2.4.6 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.6 - The Wireshark developer community, hxxps://www.wireshark.org)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG)
ContextMenuHandlers1-x32: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-04-12] (Google)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-04-12] (Google)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {08BD563F-6067-455E-A740-9DFA038C1C1F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-03] (AVAST Software)
Task: {2A211EE6-3C3B-43CB-9B0F-D32866744952} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2018-02-28] (AVAST Software)
Task: {370ACE1B-E10A-4E77-884A-BA9E95C41753} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-03] (AVAST Software)
Task: {3C0473E8-DC27-4377-8166-F995ECE2FD30} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-17] (AVAST Software)
Task: {40EE8DEC-87AF-49B1-8BFB-2EABA8249D42} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-04-14] (AVAST Software)
Task: {4908AA3C-6D21-4A01-A7E9-063A88A76F25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-04] (Google Inc.)
Task: {49B0C1B1-33CE-4BDC-A062-3718114F4883} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6941C712-2252-4FFD-B073-5D8C8B26B13D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {73F86B2E-D4A1-4AD6-9F70-94EBE6694901} - System32\Tasks\{9223A8A8-DAF4-4D9C-9B6D-51C646962131} => C:\Program Files (x86)\AVEO\AVEO USB2.0 PC Camera(E2WVTM2N90829)\AveoCap.exe [2009-11-09] (AVEO)
Task: {835E0C3B-CE36-4D5B-8586-1A42A9E1932D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {AA808855-AFAA-49E3-8BAD-AB287BB77911} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {ACAAF8F8-3D2B-4A8B-BB3A-4E4DCF5CA3B8} - System32\Tasks\{E2475A7D-1A9A-4D0A-92D5-CC93E02DDF80} => C:\Windows\system32\pcalua.exe -a C:\Users\Usuario\Downloads\wmp11-windowsxp-x86-PT-BR.exe -d C:\Users\Usuario\Downloads
Task: {B7A3CCC0-B988-49B0-AB93-D76319C29AB4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-04] (Google Inc.)
Task: {BA01E8A6-CD03-43BC-A793-92257A6F8F83} - System32\Tasks\{91AD1D2E-00BC-49F6-ADD1-CAACD603E9FA} => C:\Program Files (x86)\AVEO\AVEO USB2.0 PC Camera(E2WVTM2N90829)\AveoCap.exe [2009-11-09] (AVEO)
Task: {D000ADA7-AD86-4380-B607-1CBD45DE3263} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {DBDA5C62-B3F3-4504-87AF-897B02179D62} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Usuario\Desktop\desktop\Avast Free Antivirus.lnk -> C:\Windows\System32\AVAST Softwares\CProgram FilesAVAST SoftwareAvastAvastUI.exe.bat ()
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\20c34e3310b104d4\Mailvelope.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kajibbejlbohfaggdiogboambcijhkke
==================== Módulos Carregados (Whitelisted) ==============
2016-06-24 15:27 - 2005-08-08 03:54 - 000167936 ____N () C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
2018-04-19 07:48 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-12 14:43 - 2018-04-12 14:43 - 046214128 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 000885992 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 002309864 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_modeler.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000270056 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\pl_agent_lib.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000260328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_acpi_battery_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000306920 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_wifi_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000231144 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\devices_use_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000277736 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_system_power_state_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000638696 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_os_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000212200 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_winstat_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000453352 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_upnp_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000375528 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_process_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000609512 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_hw_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000248040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_sgx_input.dll
2018-04-06 20:55 - 2018-04-06 20:55 - 000708328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\sql_logger.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000818408 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 000214760 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\foreground_window_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000279272 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_user_waiting_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000207080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_events_input.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000113152 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_ctypes.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000080896 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\bz2.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001585152 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_hashlib.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000128512 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32api.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000137728 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pywintypes27.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000548864 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pythoncom27.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000689664 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\unicodedata.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000438784 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32com.shell.shell.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001489408 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._core_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001007104 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._gdi_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001039872 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._windows_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001325056 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._controls_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000916992 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._misc_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001084416 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pysqlite2._sqlite.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000149504 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32file.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000136192 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32security.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000007680 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\hashobjs_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000020992 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\thumbnails_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000118784 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\usb_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000047616 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_socket.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 002224640 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_ssl.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000014848 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\common.time34.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000023040 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32event.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000033280 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.conditional.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000019968 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.winwrap.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000107520 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.volumes.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000223232 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32gui.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000173568 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_elementtree.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000169472 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pyexpat.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000048128 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32inet.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000103424 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._html2.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000046080 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_psutil_windows.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000633272 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows._cacheinvalidation.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000011776 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32crypt.pyd
2018-05-17 10:05 - 2018-05-17 10:05 - 000301568 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\PIL._imaging.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000032256 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_multiprocessing.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 005458944 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\cello.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000026112 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_yappi.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000044032 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32process.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000027648 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32pipe.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000010752 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\select.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000029696 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32pdh.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000038400 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.connectivity.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000071168 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.device_monitor.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000020480 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32profile.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000026624 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32ts.pyd
2018-04-26 19:47 - 2018-04-26 00:14 - 002666328 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\swiftshader\libglesv2.dll
2018-04-26 19:47 - 2018-04-26 00:14 - 000127320 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\swiftshader\libegl.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-17 05:23 - 2018-05-17 05:23 - 005862544 _____ () C:\Program Files\AVAST Software\Avast\defs\18051700\algo.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-19 01:10 - 2018-03-19 01:10 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000011776 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\fivegiganet.dll
2018-05-12 20:18 - 2018-05-12 20:18 - 000009216 _____ () C:\ProgramData\Speedbit\DAP\Plugins\AddonsCondition.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000010240 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\MegaUploadCom.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000012800 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\SpdFileCom.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000012800 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\XSevenTo.dll
2018-05-12 20:20 - 2018-05-12 20:20 - 000010752 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\zsharenet.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [135]
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879 [135]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2018-04-02 23:24 - 000000826 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-181393726-1050220383-1222772540-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
MSCONFIG\startupreg: Freenet => "C:\Users\Usuario\AppData\Local\Freenet\FreenetTray.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: McAfeeSafeConnect => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
MSCONFIG\startupreg: PowerDVD => "C:\Program Files (x86)\CyberLink\PowerDVD\PowerDVD.exe" /autostart
MSCONFIG\startupreg: RemoteControl => "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{1A092E6E-536D-4F66-B098-6467CDAD81B2}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{24994CCD-598C-4472-8530-525F7F6FFF96}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F281A433-8C29-477B-8CEA-B72D18420C7E}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7494D93F-16D2-4E5D-A4B9-C8A0DAF0D61F}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6463B81C-20FB-4A62-8493-C9DD72E21FD6}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{119876BD-B1F8-4CB6-881B-75247DA6D521}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F6748C0D-7E4F-4BF2-9E5F-303E1E58A5CC}] => (Allow) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
FirewallRules: [{B3203FF6-A539-493A-BE4F-FC7D0E878591}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A97E0F5E-4549-483A-89C2-7F017B6DC50B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{942FBD20-3FFF-49B7-9620-5C21004C64B9}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{42C9F1D1-C8FC-4E1C-897E-4E2D23558F7F}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{1125EFDA-20A4-408B-89D7-9C115103A15F}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{F81AC2BD-25D6-4D1B-A8BC-4EF1C7AAF5CA}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{768976D5-76A4-41C5-93A9-EB3D3AF1939E}] => (Allow) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
FirewallRules: [{47014719-00B2-4EC3-A4CA-AB5362C9BE43}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{92F15844-DAC0-4701-ACA6-205ED8B9B286}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8F35A5D1-C323-44BF-907F-8211F18F6386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{062B89A6-D347-4142-BEFF-070F2FE8BA91}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{412C450F-A453-4252-AEEC-B1589960D5A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{66140693-9ABD-4397-9CF5-44ABFE53F3A3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{478BDD34-BC74-43C9-AA39-2DDE22373B72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1A492DB7-60E9-42A0-8F88-2FAE68564FC9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{575BB9D2-9D70-4A78-92AD-6FA5A52C2DA8}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [TCP Query User{D7B8D544-EF2F-4416-BAB0-C8754038FC35}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{16316384-81B0-4F9B-994F-3736E8A53DB1}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{7FA08241-8ADE-40C9-9C51-00E86C201FCB}C:\users\usuario\desktop\nova pasta\python\python.exe] => (Allow) C:\users\usuario\desktop\nova pasta\python\python.exe
FirewallRules: [UDP Query User{1216FA2D-07CB-4877-8E01-BC936446B3C2}C:\users\usuario\desktop\nova pasta\python\python.exe] => (Allow) C:\users\usuario\desktop\nova pasta\python\python.exe
FirewallRules: [TCP Query User{80BD0A9A-EC69-4D40-93B3-36DB0C177B38}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [UDP Query User{2DBED2D5-7D83-48BA-B0EA-DFB2E310C9FC}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [TCP Query User{40137E10-D4E2-4A57-BAE4-38A37D0F6D6A}C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe
FirewallRules: [UDP Query User{F105AF64-D6AE-4257-B102-5625F46D883A}C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe
FirewallRules: [TCP Query User{9840F057-4EED-4625-BC4B-B7CA0EE6E08F}C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe
FirewallRules: [UDP Query User{80A22562-0679-435E-AC3F-E5641C0A134D}C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe
FirewallRules: [{B6B8C65C-3BA2-4EAC-B0F8-9CAE43B41EFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{0F2A150D-E338-4030-9676-EA4F1A357A49}C:\program files (x86)\vitamin d video\vitamin d agent.exe] => (Allow) C:\program files (x86)\vitamin d video\vitamin d agent.exe
FirewallRules: [UDP Query User{0A3C9895-AFB5-42F2-81D8-391FFEF2BAC0}C:\program files (x86)\vitamin d video\vitamin d agent.exe] => (Allow) C:\program files (x86)\vitamin d video\vitamin d agent.exe
FirewallRules: [TCP Query User{6EF0DE26-DBEB-4346-AD6B-43EB7C8B0700}C:\users\usuario\desktop\sdi_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_r1804.exe
FirewallRules: [UDP Query User{E3FDEA35-2678-4C4B-AAAC-F1B2515C16A4}C:\users\usuario\desktop\sdi_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_r1804.exe
FirewallRules: [{AB1FC7B3-FA70-41C0-A4AD-E398EDD009F2}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{2548D245-DCCE-4127-A586-1F5315AE66CE}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{F7D48DA6-2AF2-4D77-8466-198B9704D1AC}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{3BB529DB-7463-4AC5-84EA-B53B0B5BF56E}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{015855BC-3AB9-4CC2-BF54-5FAE023A8487}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{5B6B7695-7485-4668-AAE7-455DC95F1710}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{B7C3A772-F379-47AE-8734-0EE615D16EE8}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{A1BFFA1A-C66F-49E7-AB12-4673BAC1CB7B}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{EDDDBCBA-84A5-4CBF-AC52-6322C7D6B1CB}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{C8CD2494-B654-4B9E-AA1B-BE18CFCFD798}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{2719F924-3026-467A-9039-0DD364C85816}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{7299F783-9C3E-426E-9500-CF62936319D7}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [TCP Query User{97C4BA41-46B1-451E-86AF-BE985DB4BC84}C:\users\usuario\desktop\sdi_x64_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_x64_r1804.exe
FirewallRules: [UDP Query User{B82617F6-43DD-4823-9F2A-BEC9E130942D}C:\users\usuario\desktop\sdi_x64_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_x64_r1804.exe
FirewallRules: [TCP Query User{A6C845A6-F482-4304-8A50-7D6BE3EDC319}C:\program files\java\jre1.8.0_171\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\java.exe
FirewallRules: [UDP Query User{DA7ABCD6-A833-46AF-A2EC-6B5636D1B620}C:\program files\java\jre1.8.0_171\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\java.exe
FirewallRules: [{BBD96ADB-0F8A-4666-84E1-23018F2C43E7}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{BCA33F5A-5760-49B0-A7FA-FF1E94E62940}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{8B1B0452-B3CF-4DC3-9E26-74EFF1ECC520}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{0EF423F8-48BF-4AF8-A790-5DD3C9F2ACB0}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
==================== Pontos de Restauração =========================
16-05-2018 20:00:51 Windows Update
16-05-2018 22:56:44 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
17-05-2018 07:45:15 Intel® Driver & Support Assistant
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/16/2018 11:25:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: firefox.exe, versão: 52.8.0.6607, carimbo de hora: 0x00000000
Nome do módulo de falhas: xul.dll, versão: 52.8.0.6607, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0208857e
Identificação do processo com falha: 0x1758
Hora de início do aplicativo com falha: 0x01d3ed78dcfdecdd
Caminho do aplicativo com falha: C:\Users\Usuario\Desktop\Tor Browser\Browser\firefox.exe
FCaminho do módulo de falhas: C:\Users\Usuario\Desktop\Tor Browser\Browser\xul.dll
Identificação do Relatório: 9ed06d08-5979-11e8-b4c8-0090f50020ee
Error: (05/16/2018 08:36:47 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/16/2018 08:30:59 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/16/2018 04:33:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: yct.exe, versão: 3.8.0.9325, carimbo de hora: 0x5a54c39d
Nome do módulo de falhas: OLEAUT32.dll, versão: 6.1.7601.24117, carimbo de hora: 0x5add1d9b
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000204d5
Identificação do processo com falha: 0x14ec
Hora de início do aplicativo com falha: 0x01d3ed2478176ab6
Caminho do aplicativo com falha: C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
FCaminho do módulo de falhas: C:\Windows\syswow64\OLEAUT32.dll
Identificação do Relatório: 0c2bd2c0-5940-11e8-bd1f-0090f50020ee
Error: (05/15/2018 06:05:41 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/15/2018 05:53:46 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/15/2018 04:49:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: TeamViewer_Service.exe, versão: 12.1.29852.0, carimbo de hora: 0x5a97cc78
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x744c749c
Identificação do processo com falha: 0x168c
Hora de início do aplicativo com falha: 0x01d3ec85d97dce64
Caminho do aplicativo com falha: C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 1b9e8c68-5879-11e8-9462-0090f50020ee
Error: (05/15/2018 04:49:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: mscorsvw.exe, versão: 4.7.2558.0, carimbo de hora: 0x59d412cc
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x744c749c
Identificação do processo com falha: 0x1ba4
Hora de início do aplicativo com falha: 0x01d3ec85d435c0c8
Caminho do aplicativo com falha: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 1a40a21f-5879-11e8-9462-0090f50020ee
Erros de Sistema:
=============
Error: (05/17/2018 10:15:27 AM) (Source: Schannel) (EventID: 4114) (User: Usuario-PC)
Description: O certificado recebido do servidor remoto foi emitido por uma autoridade de certificação não confiável. Portanto, não é possível validar os dados contidos no certificado. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor.
Error: (05/17/2018 10:15:27 AM) (Source: Schannel) (EventID: 4120) (User: Usuario-PC)
Description: O seguinte alerta fatal foi gerado: 48. O estado do erro interno é 552.
Error: (05/17/2018 10:11:16 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Energy Server Service queencreek suspenso ao iniciar.
Error: (05/17/2018 10:09:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswbIDSAgent devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (05/17/2018 10:09:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço aswbIDSAgent.
Error: (05/17/2018 10:05:12 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
VBoxNetAdp
Error: (05/17/2018 10:04:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (05/17/2018 10:04:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK.
Windows Defender:
===================================
Date: 2016-09-04 00:27:13.649
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{04BFDD63-63D3-4F1F-BF46-4F06DA1C9141}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:AUTORIDADE NT\SERVIÇO DE REDE
CodeIntegrity:
===================================
Date: 2018-04-29 17:28:38.156
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.133
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.123
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.105
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.068
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.057
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.035
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.013
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Atom(TM) CPU D2500 @ 1.86GHz
Percentagem de memória em uso: 70%
RAM física total: 4056.86 MB
RAM física disponível: 1183.71 MB
Virtual Total: 8111.89 MB
Virtual disponível: 5324.6 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.99 GB) (Free:169.11 GB) NTFS
\\?\Volume{63639c57-3a2b-11e6-9f86-806e6f6e6963}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 4A2A9A30)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Usuario (17-05-2018 10:58:10)
Executando a partir de C:\Users\Usuario\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-06-24 16:52:58)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-181393726-1050220383-1222772540-500 - Administrator - Disabled)
Convidado (S-1-5-21-181393726-1050220383-1222772540-501 - Limited - Enabled) => C:\Users\Convidado
HomeGroupUser$ (S-1-5-21-181393726-1050220383-1222772540-1002 - Limited - Enabled)
Usuario (S-1-5-21-181393726-1050220383-1222772540-1000 - Administrator - Enabled) => C:\Users\Usuario
usuário (S-1-5-21-181393726-1050220383-1222772540-1003 - Limited - Enabled) => C:\Users\usuário.Usuario-PC
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
. . (HKLM\...\{E5B0E5D9-9D25-4B2B-A7D9-8CA0F9E0DD89}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{CE33BF2E-5D59-44DF-8610-59BB289396C6}) (Version: 3.3.1.3 - Intel) Hidden
µTorrent (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.17) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Advanced Archive Password Recovery (HKLM-x32\...\{6E356EEF-203C-451B-9144-CBF099E3738A}) (Version: 4.54.55.1642 - Elcomsoft Co. Ltd.)
Advanced SystemCare 11 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 11.3.0 - IObit)
AIDA64 Extreme v5.92 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.92 - FinalWire Ltd.)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Auslogics BoostSpeed 10 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 10.0.9.0 - Auslogics Labs Pty Ltd)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 8.0.9.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 64.0.387.186 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
AVEO USB2.0 PC Camera(E2WVTM2N90829) (HKLM-x32\...\{8C8D2898-652B-4C39-BC26-C80CA58D98E1}) (Version: 1.0.5.5 - AVEO)
Backup and Sync from Google (HKLM\...\{D827660F-36C3-4CB6-BCFF-C0E066935C55}) (Version: 3.41.9267.0638 - Google, Inc.)
BisonCam (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.2728.07.3 - BisonCam)
CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.A.)
Dashlane (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\Dashlane) (Version: 5.12.0.19744 - Dashlane SAS)
Download Accelerator Plus (DAP) (HKLM-x32\...\Download Accelerator Plus (DAP)) (Version: 10060 (Build 2599) - Speedbit Ltd.)
DVD Suite (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1319 - CyberLink Corporation)
Eraser 6.2.0.2982 (HKLM\...\{DFCF78CC-3DAD-4C1E-8BC6-94DC5B73461E}) (Version: 6.2.2982 - The Eraser Project)
Freenet versão 0.7.5 build 1480 (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\{3196C62F-9C7B-4392-88B4-05C037D05518}_is1) (Version: 0.7.5 build 1480 - freenetproject.org)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HexChat (HKLM\...\HexChat_is1) (Version: 2.14.1 - HexChat)
Intel(R) Computing Improvement Program (HKLM\...\{F6B5BD59-21F0-47F8-A6C6-63BAEB1A6569}) (Version: 2.1.03720 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{4ef0c07c-1ede-4d1c-a593-83184455832b}) (Version: 3.3.1.3 - Intel)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.65.0 - JMicron Technology Corp.)
Malwarebytes versão 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 59.0.3.6691 - Mozilla)
Nero 7 Essentials (HKLM-x32\...\{9B4E6CB9-E54D-47F7-A414-E2D5740E1046}) (Version: 7.02.8507 - Nero AG)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.2414.0 - CyberLink Corporation)
Project My Screen App (HKLM-x32\...\{64537E9A-4DAE-42F9-BCD8-8AEEB84D1786}) (Version: 8.0.12349 - Microsoft Corporation)
Sandboxie 5.24 (64-bit) (HKLM\...\Sandboxie) (Version: 5.24 - Sandboxie Holdings, LLC)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.95388 - TeamViewer)
Telegram Desktop versão 1.2.17 (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.2.17 - Telegram Messenger LLP)
Unity Web Player (HKU\S-1-5-21-181393726-1050220383-1222772540-1000\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
USBPcap 1.2.0.3 (HKLM\...\USBPcap) (Version: 1.2.0.3 - Tomasz Mon)
Vitamin D Video 1.4.2 (HKLM-x32\...\Vitamin D Video_is1) (Version: - Vitamin D Video, LLC)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wireshark 2.4.6 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.6 - The Wireshark developer community, hxxps://www.wireshark.org)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-181393726-1050220383-1222772540-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-04-12] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG)
ContextMenuHandlers1-x32: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-04-12] (Google)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-04-12] (Google)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-17] (AVAST Software)
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {08BD563F-6067-455E-A740-9DFA038C1C1F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-03] (AVAST Software)
Task: {2A211EE6-3C3B-43CB-9B0F-D32866744952} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2018-02-28] (AVAST Software)
Task: {370ACE1B-E10A-4E77-884A-BA9E95C41753} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-03] (AVAST Software)
Task: {3C0473E8-DC27-4377-8166-F995ECE2FD30} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-17] (AVAST Software)
Task: {40EE8DEC-87AF-49B1-8BFB-2EABA8249D42} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-04-14] (AVAST Software)
Task: {4908AA3C-6D21-4A01-A7E9-063A88A76F25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-04] (Google Inc.)
Task: {49B0C1B1-33CE-4BDC-A062-3718114F4883} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6941C712-2252-4FFD-B073-5D8C8B26B13D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {73F86B2E-D4A1-4AD6-9F70-94EBE6694901} - System32\Tasks\{9223A8A8-DAF4-4D9C-9B6D-51C646962131} => C:\Program Files (x86)\AVEO\AVEO USB2.0 PC Camera(E2WVTM2N90829)\AveoCap.exe [2009-11-09] (AVEO)
Task: {835E0C3B-CE36-4D5B-8586-1A42A9E1932D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {AA808855-AFAA-49E3-8BAD-AB287BB77911} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {ACAAF8F8-3D2B-4A8B-BB3A-4E4DCF5CA3B8} - System32\Tasks\{E2475A7D-1A9A-4D0A-92D5-CC93E02DDF80} => C:\Windows\system32\pcalua.exe -a C:\Users\Usuario\Downloads\wmp11-windowsxp-x86-PT-BR.exe -d C:\Users\Usuario\Downloads
Task: {B7A3CCC0-B988-49B0-AB93-D76319C29AB4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-04] (Google Inc.)
Task: {BA01E8A6-CD03-43BC-A793-92257A6F8F83} - System32\Tasks\{91AD1D2E-00BC-49F6-ADD1-CAACD603E9FA} => C:\Program Files (x86)\AVEO\AVEO USB2.0 PC Camera(E2WVTM2N90829)\AveoCap.exe [2009-11-09] (AVEO)
Task: {D000ADA7-AD86-4380-B607-1CBD45DE3263} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {DBDA5C62-B3F3-4504-87AF-897B02179D62} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Usuario\Desktop\desktop\Avast Free Antivirus.lnk -> C:\Windows\System32\AVAST Softwares\CProgram FilesAVAST SoftwareAvastAvastUI.exe.bat ()
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\20c34e3310b104d4\Mailvelope.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kajibbejlbohfaggdiogboambcijhkke
==================== Módulos Carregados (Whitelisted) ==============
2016-06-24 15:27 - 2005-08-08 03:54 - 000167936 ____N () C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
2018-04-19 07:48 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-12 14:43 - 2018-04-12 14:43 - 046214128 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 000885992 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 002309864 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_modeler.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000270056 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\pl_agent_lib.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000260328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_acpi_battery_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000306920 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_wifi_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000231144 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\devices_use_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000277736 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_system_power_state_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000638696 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_os_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000212200 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_winstat_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000453352 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_upnp_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000375528 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_process_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000609512 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_hw_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000248040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_sgx_input.dll
2018-04-06 20:55 - 2018-04-06 20:55 - 000708328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\sql_logger.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000818408 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
2018-04-06 20:54 - 2018-04-06 20:54 - 000214760 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\foreground_window_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000279272 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_user_waiting_input.dll
2018-04-06 20:54 - 2018-04-06 20:54 - 000207080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_events_input.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000113152 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_ctypes.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000080896 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\bz2.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001585152 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_hashlib.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000128512 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32api.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000137728 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pywintypes27.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000548864 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pythoncom27.dll
2018-05-17 10:06 - 2018-05-17 10:06 - 000689664 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\unicodedata.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000438784 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32com.shell.shell.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001489408 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._core_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001007104 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._gdi_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001039872 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._windows_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001325056 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._controls_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000916992 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._misc_.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 001084416 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pysqlite2._sqlite.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000149504 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32file.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000136192 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32security.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000007680 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\hashobjs_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000020992 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\thumbnails_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000118784 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\usb_ext.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000047616 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_socket.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 002224640 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_ssl.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000014848 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\common.time34.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000023040 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32event.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000033280 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.conditional.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000019968 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.winwrap.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000107520 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.volumes.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000223232 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32gui.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000173568 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_elementtree.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000169472 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\pyexpat.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000048128 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32inet.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000103424 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\wx._html2.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000046080 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_psutil_windows.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000633272 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows._cacheinvalidation.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000011776 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32crypt.pyd
2018-05-17 10:05 - 2018-05-17 10:05 - 000301568 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\PIL._imaging.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000032256 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_multiprocessing.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 005458944 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\cello.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000026112 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\_yappi.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000044032 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32process.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000027648 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32pipe.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000010752 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\select.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000029696 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32pdh.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000038400 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.connectivity.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000071168 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\windows.device_monitor.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000020480 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32profile.pyd
2018-05-17 10:06 - 2018-05-17 10:06 - 000026624 _____ () C:\Users\Usuario\AppData\Local\Temp\_MEI25362\win32ts.pyd
2018-04-26 19:47 - 2018-04-26 00:14 - 002666328 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\swiftshader\libglesv2.dll
2018-04-26 19:47 - 2018-04-26 00:14 - 000127320 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\swiftshader\libegl.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-17 05:23 - 2018-05-17 05:23 - 005862544 _____ () C:\Program Files\AVAST Software\Avast\defs\18051700\algo.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-19 01:10 - 2018-03-19 01:10 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-05-17 01:11 - 2018-05-17 01:11 - 000293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000011776 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\fivegiganet.dll
2018-05-12 20:18 - 2018-05-12 20:18 - 000009216 _____ () C:\ProgramData\Speedbit\DAP\Plugins\AddonsCondition.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000010240 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\MegaUploadCom.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000012800 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\SpdFileCom.dll
2018-05-12 20:19 - 2018-05-12 20:19 - 000012800 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\XSevenTo.dll
2018-05-12 20:20 - 2018-05-12 20:20 - 000010752 _____ () C:\ProgramData\Speedbit\DAP\Plugins\189AE673-13C1-4133-A470-8C4DDD1ACB8C\1.0.1.3_0\zsharenet.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [135]
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879 [135]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2018-04-02 23:24 - 000000826 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-181393726-1050220383-1222772540-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
MSCONFIG\startupreg: Freenet => "C:\Users\Usuario\AppData\Local\Freenet\FreenetTray.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: McAfeeSafeConnect => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
MSCONFIG\startupreg: PowerDVD => "C:\Program Files (x86)\CyberLink\PowerDVD\PowerDVD.exe" /autostart
MSCONFIG\startupreg: RemoteControl => "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{1A092E6E-536D-4F66-B098-6467CDAD81B2}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{24994CCD-598C-4472-8530-525F7F6FFF96}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F281A433-8C29-477B-8CEA-B72D18420C7E}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7494D93F-16D2-4E5D-A4B9-C8A0DAF0D61F}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6463B81C-20FB-4A62-8493-C9DD72E21FD6}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{119876BD-B1F8-4CB6-881B-75247DA6D521}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F6748C0D-7E4F-4BF2-9E5F-303E1E58A5CC}] => (Allow) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
FirewallRules: [{B3203FF6-A539-493A-BE4F-FC7D0E878591}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A97E0F5E-4549-483A-89C2-7F017B6DC50B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{942FBD20-3FFF-49B7-9620-5C21004C64B9}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{42C9F1D1-C8FC-4E1C-897E-4E2D23558F7F}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{1125EFDA-20A4-408B-89D7-9C115103A15F}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{F81AC2BD-25D6-4D1B-A8BC-4EF1C7AAF5CA}C:\users\usuario\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\usuario\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{768976D5-76A4-41C5-93A9-EB3D3AF1939E}] => (Allow) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
FirewallRules: [{47014719-00B2-4EC3-A4CA-AB5362C9BE43}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{92F15844-DAC0-4701-ACA6-205ED8B9B286}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8F35A5D1-C323-44BF-907F-8211F18F6386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{062B89A6-D347-4142-BEFF-070F2FE8BA91}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{412C450F-A453-4252-AEEC-B1589960D5A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{66140693-9ABD-4397-9CF5-44ABFE53F3A3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{478BDD34-BC74-43C9-AA39-2DDE22373B72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1A492DB7-60E9-42A0-8F88-2FAE68564FC9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{575BB9D2-9D70-4A78-92AD-6FA5A52C2DA8}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [TCP Query User{D7B8D544-EF2F-4416-BAB0-C8754038FC35}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{16316384-81B0-4F9B-994F-3736E8A53DB1}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{7FA08241-8ADE-40C9-9C51-00E86C201FCB}C:\users\usuario\desktop\nova pasta\python\python.exe] => (Allow) C:\users\usuario\desktop\nova pasta\python\python.exe
FirewallRules: [UDP Query User{1216FA2D-07CB-4877-8E01-BC936446B3C2}C:\users\usuario\desktop\nova pasta\python\python.exe] => (Allow) C:\users\usuario\desktop\nova pasta\python\python.exe
FirewallRules: [TCP Query User{80BD0A9A-EC69-4D40-93B3-36DB0C177B38}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [UDP Query User{2DBED2D5-7D83-48BA-B0EA-DFB2E310C9FC}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [TCP Query User{40137E10-D4E2-4A57-BAE4-38A37D0F6D6A}C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe
FirewallRules: [UDP Query User{F105AF64-D6AE-4257-B102-5625F46D883A}C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\google drive\mrvine\zeronet-win-dist\zeronet.exe
FirewallRules: [TCP Query User{9840F057-4EED-4625-BC4B-B7CA0EE6E08F}C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe
FirewallRules: [UDP Query User{80A22562-0679-435E-AC3F-E5641C0A134D}C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe] => (Allow) C:\users\usuario\downloads\zeronet-win-dist\zeronet.exe
FirewallRules: [{B6B8C65C-3BA2-4EAC-B0F8-9CAE43B41EFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{0F2A150D-E338-4030-9676-EA4F1A357A49}C:\program files (x86)\vitamin d video\vitamin d agent.exe] => (Allow) C:\program files (x86)\vitamin d video\vitamin d agent.exe
FirewallRules: [UDP Query User{0A3C9895-AFB5-42F2-81D8-391FFEF2BAC0}C:\program files (x86)\vitamin d video\vitamin d agent.exe] => (Allow) C:\program files (x86)\vitamin d video\vitamin d agent.exe
FirewallRules: [TCP Query User{6EF0DE26-DBEB-4346-AD6B-43EB7C8B0700}C:\users\usuario\desktop\sdi_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_r1804.exe
FirewallRules: [UDP Query User{E3FDEA35-2678-4C4B-AAAC-F1B2515C16A4}C:\users\usuario\desktop\sdi_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_r1804.exe
FirewallRules: [{AB1FC7B3-FA70-41C0-A4AD-E398EDD009F2}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{2548D245-DCCE-4127-A586-1F5315AE66CE}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{F7D48DA6-2AF2-4D77-8466-198B9704D1AC}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{3BB529DB-7463-4AC5-84EA-B53B0B5BF56E}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{015855BC-3AB9-4CC2-BF54-5FAE023A8487}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{5B6B7695-7485-4668-AAE7-455DC95F1710}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{B7C3A772-F379-47AE-8734-0EE615D16EE8}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{A1BFFA1A-C66F-49E7-AB12-4673BAC1CB7B}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{EDDDBCBA-84A5-4CBF-AC52-6322C7D6B1CB}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{C8CD2494-B654-4B9E-AA1B-BE18CFCFD798}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{2719F924-3026-467A-9039-0DD364C85816}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{7299F783-9C3E-426E-9500-CF62936319D7}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [TCP Query User{97C4BA41-46B1-451E-86AF-BE985DB4BC84}C:\users\usuario\desktop\sdi_x64_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_x64_r1804.exe
FirewallRules: [UDP Query User{B82617F6-43DD-4823-9F2A-BEC9E130942D}C:\users\usuario\desktop\sdi_x64_r1804.exe] => (Allow) C:\users\usuario\desktop\sdi_x64_r1804.exe
FirewallRules: [TCP Query User{A6C845A6-F482-4304-8A50-7D6BE3EDC319}C:\program files\java\jre1.8.0_171\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\java.exe
FirewallRules: [UDP Query User{DA7ABCD6-A833-46AF-A2EC-6B5636D1B620}C:\program files\java\jre1.8.0_171\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\java.exe
FirewallRules: [{BBD96ADB-0F8A-4666-84E1-23018F2C43E7}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{BCA33F5A-5760-49B0-A7FA-FF1E94E62940}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{8B1B0452-B3CF-4DC3-9E26-74EFF1ECC520}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{0EF423F8-48BF-4AF8-A790-5DD3C9F2ACB0}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
==================== Pontos de Restauração =========================
16-05-2018 20:00:51 Windows Update
16-05-2018 22:56:44 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
17-05-2018 07:45:15 Intel® Driver & Support Assistant
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/16/2018 11:25:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: firefox.exe, versão: 52.8.0.6607, carimbo de hora: 0x00000000
Nome do módulo de falhas: xul.dll, versão: 52.8.0.6607, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0208857e
Identificação do processo com falha: 0x1758
Hora de início do aplicativo com falha: 0x01d3ed78dcfdecdd
Caminho do aplicativo com falha: C:\Users\Usuario\Desktop\Tor Browser\Browser\firefox.exe
FCaminho do módulo de falhas: C:\Users\Usuario\Desktop\Tor Browser\Browser\xul.dll
Identificação do Relatório: 9ed06d08-5979-11e8-b4c8-0090f50020ee
Error: (05/16/2018 08:36:47 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/16/2018 08:30:59 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/16/2018 04:33:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: yct.exe, versão: 3.8.0.9325, carimbo de hora: 0x5a54c39d
Nome do módulo de falhas: OLEAUT32.dll, versão: 6.1.7601.24117, carimbo de hora: 0x5add1d9b
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000204d5
Identificação do processo com falha: 0x14ec
Hora de início do aplicativo com falha: 0x01d3ed2478176ab6
Caminho do aplicativo com falha: C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
FCaminho do módulo de falhas: C:\Windows\syswow64\OLEAUT32.dll
Identificação do Relatório: 0c2bd2c0-5940-11e8-bd1f-0090f50020ee
Error: (05/15/2018 06:05:41 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/15/2018 05:53:46 PM) (Source: MsiInstaller) (EventID: 11935) (User: AUTORIDADE NT)
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (05/15/2018 04:49:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: TeamViewer_Service.exe, versão: 12.1.29852.0, carimbo de hora: 0x5a97cc78
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x744c749c
Identificação do processo com falha: 0x168c
Hora de início do aplicativo com falha: 0x01d3ec85d97dce64
Caminho do aplicativo com falha: C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 1b9e8c68-5879-11e8-9462-0090f50020ee
Error: (05/15/2018 04:49:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: mscorsvw.exe, versão: 4.7.2558.0, carimbo de hora: 0x59d412cc
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x744c749c
Identificação do processo com falha: 0x1ba4
Hora de início do aplicativo com falha: 0x01d3ec85d435c0c8
Caminho do aplicativo com falha: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 1a40a21f-5879-11e8-9462-0090f50020ee
Erros de Sistema:
=============
Error: (05/17/2018 10:15:27 AM) (Source: Schannel) (EventID: 4114) (User: Usuario-PC)
Description: O certificado recebido do servidor remoto foi emitido por uma autoridade de certificação não confiável. Portanto, não é possível validar os dados contidos no certificado. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor.
Error: (05/17/2018 10:15:27 AM) (Source: Schannel) (EventID: 4120) (User: Usuario-PC)
Description: O seguinte alerta fatal foi gerado: 48. O estado do erro interno é 552.
Error: (05/17/2018 10:11:16 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Energy Server Service queencreek suspenso ao iniciar.
Error: (05/17/2018 10:09:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswbIDSAgent devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (05/17/2018 10:09:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço aswbIDSAgent.
Error: (05/17/2018 10:05:12 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
VBoxNetAdp
Error: (05/17/2018 10:04:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
Error: (05/17/2018 10:04:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK.
Windows Defender:
===================================
Date: 2016-09-04 00:27:13.649
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{04BFDD63-63D3-4F1F-BF46-4F06DA1C9141}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:AUTORIDADE NT\SERVIÇO DE REDE
CodeIntegrity:
===================================
Date: 2018-04-29 17:28:38.156
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.133
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.123
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.105
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.068
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.057
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.035
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
Date: 2018-04-29 17:28:38.013
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Atom(TM) CPU D2500 @ 1.86GHz
Percentagem de memória em uso: 70%
RAM física total: 4056.86 MB
RAM física disponível: 1183.71 MB
Virtual Total: 8111.89 MB
Virtual disponível: 5324.6 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.99 GB) (Free:169.11 GB) NTFS
\\?\Volume{63639c57-3a2b-11e6-9f86-806e6f6e6963}\ (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 4A2A9A30)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================