Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-07-2016 Executado por Gleison (2016-07-21 20:59:43) Executando a partir de C:\Users\Gleison\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2016-07-15 02:12:24) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-448808523-452927058-3420153218-500 - Administrator - Disabled) Convidado (S-1-5-21-448808523-452927058-3420153218-501 - Limited - Disabled) Gleison (S-1-5-21-448808523-452927058-3420153218-1000 - Administrator - Enabled) => C:\Users\Gleison HomeGroupUser$ (S-1-5-21-448808523-452927058-3420153218-1002 - Limited - Enabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Atualizações da NVIDIA 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Curse Client (HKU\S-1-5-21-448808523-452927058-3420153218-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse) Dell System Detect (HKU\S-1-5-21-448808523-452927058-3420153218-1000\...\58d94f3ce2c27db0) (Version: 7.6.0.17 - Dell) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.106 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden HP Officejet Pro 8600 Software básico do dispositivo (HKLM\...\{B7218FC4-74AB-46B0-9D44-FFDCEE3535E2}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3165 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) NVIDIA Driver de gráficos 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation) NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation) Painel de controle da NVIDIA 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.230 - Qualcomm Atheros Communications) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0032 - Realtek) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0FDC0109-9687-4009-AE59-31AD92527123} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {7A69202B-E122-4893-9362-52BC2F0E1F94} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-12-04] (@ByELDI) Task: {8369D391-F2EB-45AA-A11A-4239E0318517} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {94A0E825-F043-47E7-A499-9CBE20A3C956} - System32\Tasks\UpdaterService => C:\Users\Gleison\AppData\Roaming\Microsoft\taskhostw.exe Task: {9E9FA020-D23D-4D14-BAF8-7185CF1D9A03} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-14] (Google Inc.) Task: {C457C84E-008C-4E55-92CB-10FAFBC1035B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {C5C7F56B-2372-4F20-B9B8-C1DBE8385418} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-14] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-07-15 19:54 - 2013-10-23 05:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-07-02 22:51 - 2013-07-02 22:51 - 00086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll 2016-07-15 00:23 - 2016-07-15 00:23 - 00016384 _____ () C:\Users\Gleison\AppData\Local\Apps\2.0\WT8Z6K9A.N8G\CR0JEK57.4PW\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.WowDb.dll 2016-07-15 00:23 - 2016-07-15 00:23 - 00035840 _____ () C:\Users\Gleison\AppData\Local\Apps\2.0\WT8Z6K9A.N8G\CR0JEK57.4PW\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.Advertising.dll 2016-07-15 00:23 - 2016-07-15 00:23 - 00099840 _____ () C:\Users\Gleison\AppData\Local\Apps\2.0\WT8Z6K9A.N8G\CR0JEK57.4PW\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.CMOD2.dll 2016-07-14 23:58 - 2016-06-23 10:26 - 02336584 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libglesv2.dll 2016-07-14 23:58 - 2016-06-23 10:25 - 00107336 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-448808523-452927058-3420153218-1000\...\dell.com -> dell.com ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-448808523-452927058-3420153218-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gleison\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.25.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{AB8DE70D-3F4D-4B91-A262-A7F1D03ADEFC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{91678E9F-1E78-4F5D-8D2A-2E95E02563EC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{A3D13B33-750F-427D-8736-0B8738098D6D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{74D26BAD-251A-4895-AB6C-2DB9DF07F59D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{92422672-80F7-4F11-8042-4A4C13A41749}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{83A245C9-2E93-45C2-B30F-FDF6F6B4A5F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{05611568-9D9D-4A6D-92DE-E4B28CD8D603}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{66DA9078-E325-4580-A46E-E3FA6EDEC092}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{96995AE3-965F-40E3-8C32-C6F90F3A1824}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe FirewallRules: [{743B402C-7F28-4588-B982-F8AEC1936DCF}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe FirewallRules: [{E8EECF0C-0B77-4FE9-8E71-3D4234B926E5}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe FirewallRules: [{3A962299-557B-485F-A112-F053D922D83A}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe FirewallRules: [{61A11D94-7F6A-476B-9E61-F3B7B13FA52A}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe FirewallRules: [{33028486-B66B-40A6-857B-8FC154507AC5}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{7B21EE6A-309D-4BA7-80BC-A6F55E002741}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{F68057F4-BA9E-41BC-86FF-89FD79B3DC50}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{876206B3-6AF6-403A-82B9-31E6AD54423D}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{AE6E1405-E98F-48E5-A676-02D134992F1B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe ==================== Pontos de Restauração ========================= 21-07-2016 20:32:09 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Controlador de barramento SM Description: Controlador de barramento SM Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Controlador USB (Universal Serial Bus) Description: Controlador USB (Universal Serial Bus) Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Controlador de comunicação PCI simples Description: Controlador de comunicação PCI simples Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Controlador Ethernet Description: Controlador Ethernet Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/21/2016 08:37:09 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/21/2016 08:28:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/21/2016 08:27:12 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/21/2016 01:49:11 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/21/2016 01:40:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/21/2016 01:39:37 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/20/2016 11:22:38 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/20/2016 11:22:03 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/20/2016 11:21:02 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Error: (07/20/2016 11:20:55 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=K4PMD ACID=? Erro Detalhado[?] Erros de Sistema: ============= Error: (07/21/2016 03:57:20 PM) (Source: volsnap) (EventID: 36) (User: ) Description: As cópias de sombra do volume C: foram anuladas porque o armazenamento de cópia de sombra não pôde crescer devido a um limite imposto pelo usuário. Error: (07/15/2016 12:11:30 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Intel(R) Content Protection HECI Service terminou com o erro: %%-2147024637 = Não há mais dados disponíveis. Error: (07/15/2016 12:10:32 AM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1. Error: (07/15/2016 12:10:31 AM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1. Error: (07/15/2016 12:10:31 AM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1. Error: (07/14/2016 11:15:12 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR2. Error: (07/14/2016 11:15:12 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR2. Error: (07/14/2016 11:15:11 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR2. Error: (07/14/2016 11:15:11 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR2. Error: (07/14/2016 11:15:10 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR2. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-4500U CPU @ 1.80GHz Percentagem de memória em uso: 72% RAM física total: 8096.45 MB RAM física disponível: 2200.58 MB Virtual Total: 16191.08 MB Virtual disponível: 9136.45 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.02 GB) (Free:794.07 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: EDB4AD44) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================