Publicité
Publicité
Commentaire : http://www.cjoint.com/c/GAck2aUHm1r
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 01-01-2017
Executado por Admin (02-01-2017 08:47:38)
Executando a partir de C:\Users\Admin\Downloads
Windows 7 Ultimate (X64) (2016-12-22 17:59:00)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Admin (S-1-5-21-482082785-3500525002-402388918-1000 - Administrator - Enabled) => C:\Users\Admin
Administrador (S-1-5-21-482082785-3500525002-402388918-500 - Administrator - Disabled)
Convidado (S-1-5-21-482082785-3500525002-402388918-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-482082785-3500525002-402388918-1002 - Limited - Enabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-482082785-3500525002-402388918-1000\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: - )
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Flash Player ActiveX+Plugins (HKLM\...\Adobe Flash Player) (Version: 24.0.0.186 - oszone.net)
Aplicativos da Autodesk em destaque 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 - Português - Brasil (Brazilian Portuguese) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - Português - Brasil (Brazilian Portuguese) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD 2016 Language Pack - Português - Brasil (Brazilian Portuguese) (HKLM\...\AutoCAD 2016 - Português - Brasil (Brazilian Portuguese)) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
DriverPack Notifier (HKLM-x32\...\DriverPack Notifier) (Version: 2.2.1 - DriverPack Solution)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
HP T120 and T520 series ICC Profiles (HKLM\...\{4F9E7F57-1D06-4B50-9691-813F87C655B8}) (Version: 2.0.0 - HP Inc.)
Impressora HP DesignJet Printer séries T120 e T520 (HKLM-x32\...\HPAmpereXL) (Version: - Hewlett-Packard Co.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7571.2075 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 48.0 (x86 ru) (HKLM-x32\...\Mozilla Firefox 48.0 (x86 ru)) (Version: 48.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Navegador Exclusivo Bradesco versão 3.0.0 (HKLM-x32\...\{2F7717E5-BFF5-479A-B29E-A615ED278B6F}_is1) (Version: 3.0.0 - Copyright (C) 2015 Scopus Tecnologia Ltda.)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Opera Stable 42.0.2393.94 (HKLM-x32\...\Opera 42.0.2393.94) (Version: 42.0.2393.94 - Opera Software)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Registro na Web HP (HKLM-x32\...\{D2FF897E-4A99-446E-8BB4-DD99CD496838}) (Version: 1.3.0.0 - HP Inc.)
Samsung SCX-3200 Series (HKLM-x32\...\Samsung SCX-3200 Series) (Version: - Samsung Electronics Co., Ltd.)
Scan Assistant (HKLM-x32\...\{BF6CF460-40C3-49BA-800A-4B934B6498B1}) (Version: 1.01.014 - Samsung Electronics Co., Ltd.)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\pt-BR\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {11F0CDFB-063D-4C0A-8541-D3130F9E7738} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-12-22] (AVAST Software)
Task: {1B0A651E-95E2-4F77-88DE-2A091A13D7B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-23] (Google Inc.)
Task: {1E3CAD1C-0800-4A4F-B5C8-164B6CD7376C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-30] (Microsoft Corporation)
Task: {22081C15-2B53-49E1-9B28-3E55FEE5C50D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-23] (Google Inc.)
Task: {5B90DD64-4C65-4F0C-92A7-A29597D87C01} - System32\Tasks\DriverPack Notifier => C:\Program Files (x86)\DriverPack Notifier\DriverPackNotifier.exe [2015-12-18] ()
Task: {5C738B92-A877-4D66-8987-309FA5B7A62A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {76336BBB-E3AE-4B2A-B2A8-01A06BE04573} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {860BBCD4-D388-43FA-BA5A-142BA2F392E6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-30] (Microsoft Corporation)
Task: {94BA463F-911D-481B-BCF9-5D488F410F35} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-12-22] (AVAST Software)
Task: {98B44CCA-24A0-4C2B-B997-B76741F90AED} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {B2B54A47-E29E-4D5D-AEDD-EC9884979D3E} - System32\Tasks\Opera scheduled Autoupdate 1482433376 => C:\Program Files (x86)\Opera\launcher.exe [2016-12-19] (Opera Software)
Task: {BFB423B2-81BF-41E9-86B8-06E05B8328DB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {F29EB557-6F5B-4081-B1C5-0B04547633AA} - System32\Tasks\{5B56B4CC-C9C8-4C12-8EB8-FB5CC4373F31} => pcalua.exe -a C:\Windows\twain_32\Samsung\smgrinst.exe -d C:\Windows\Twain_32\Samsung -c /m"Samsung" /n"Samsung SCX-3200 Series" /l"BP"
Task: {FBFD3B4B-965E-4AD4-AB75-5E9D74FE5466} - System32\Tasks\{1D760707-6549-4F08-BAD3-5EBF21976652} => pcalua.exe -a "C:\Program Files (x86)\WinRAR\uninstall.exe" -d "C:\Program Files (x86)\WinRAR" -c /setup /noexplorer
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-12-23 08:59 - 2011-04-14 00:41 - 00034304 _____ () C:\Windows\System32\ssb3ml6.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2016-12-22 17:27 - 2011-07-06 09:24 - 00688128 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2016-12-22 17:27 - 2009-11-19 07:15 - 00306688 _____ () C:\Windows\Samsung\PanelMgr\caller64.exe
2016-12-27 08:29 - 2016-07-22 08:21 - 00018936 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdater.exe
2016-12-27 08:29 - 2016-07-22 08:21 - 00038904 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdaterServerMessage.dll
2016-12-27 08:29 - 2016-07-22 08:21 - 00083960 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdaterUtil.dll
2010-03-11 01:31 - 2010-03-11 01:31 - 00333312 _____ () C:\Windows\system32\SaMinDrv.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-12-22 16:11 - 2016-12-22 16:11 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-29 16:16 - 2016-12-29 16:16 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\16122901\algo.dll
2016-12-22 16:11 - 2016-12-22 16:11 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-02 08:20 - 2017-01-02 08:20 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\17010100\algo.dll
2016-12-26 13:13 - 2016-02-24 02:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-12-26 13:13 - 2016-02-24 02:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-12-22 16:11 - 2016-12-22 16:11 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-12-09 15:09 - 2016-12-09 15:09 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\pt_br\acrotray.ptb
2016-12-02 01:54 - 2016-12-02 01:54 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 15:09 - 2016-12-09 15:09 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 23:17 - 2016-10-10 23:17 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-09 15:02 - 2016-12-09 15:02 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 23:14 - 2016-10-10 23:14 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 23:14 - 2016-10-10 23:14 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-12-22 18:10 - 2016-12-08 05:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-22 18:10 - 2016-12-08 05:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-482082785-3500525002-402388918-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-14 00:34 - 2009-06-10 19:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-482082785-3500525002-402388918-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{AC79B60B-B023-484E-ADC3-51FB707C256D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85B9F052-0E57-45F4-9F4A-7E40DABBDC92}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2627CF6B-0113-4B44-9297-FFA2616E52D6}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{20BC5F39-E98F-4E3F-AC1B-8EAA066F208E}] => C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{AAE3FB05-A0CF-47D2-A54D-C4F984CA4AC1}] => C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{48D93F1D-A879-473E-A11A-68413297CFA4}] => C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
FirewallRules: [{C8475C51-348E-4611-948D-F6C0E3F97F27}] => C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
FirewallRules: [{0335F868-E17E-4E14-9E50-C99F2389DCCB}] => C:\Windows\twain_32\Samsung\SCX3200\Sscan2io.exe
FirewallRules: [{CBE519C6-F9F0-48D4-A6FC-30B4EDF8D418}] => C:\Windows\twain_32\Samsung\SCX3200\Sscan2io.exe
FirewallRules: [TCP Query User{3291B974-71F2-41AA-B466-49077FE66C5B}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{88566A15-B3D9-4838-8AAF-75539F87B283}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{715FC64D-12FC-463C-BA9D-72CD87CDBD6D}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{90268D36-3D03-4237-B6B0-83B483BC8FF4}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{8DA6E244-0042-499B-A038-0D7A0098EB5A}] => LPort=50248
FirewallRules: [{3025F0EA-003B-40FE-BF0B-04FDC7770AD7}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{7C45E5EE-02F7-47D8-857B-014D60C13361}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{018B3E1A-A220-479F-B95B-176CF191504F}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
==================== Pontos de Restauração =========================
26-12-2016 12:21:56 DirectX instalado
26-12-2016 12:32:18 DirectX instalado
26-12-2016 12:41:43 Windows Update
26-12-2016 12:59:09 DirectX instalado
26-12-2016 13:13:56 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
26-12-2016 16:15:19 DriverPack 17.7.27
27-12-2016 08:23:29 DriverPack 17.7.27
28-12-2016 16:49:52 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
28-12-2016 16:50:10 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2016 16:50:32 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
28-12-2016 16:50:56 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (12/30/2016 05:27:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7600.16450, carimbo de hora: 0x4aebab8d
Nome do módulo de falhas: wwanapi.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5be0a8
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000000000333eb
Identificação do processo com falha: 0x5b8
Hora de início do aplicativo com falha: 0x01d262d280a3774e
Caminho do aplicativo com falha: C:\Windows\Explorer.EXE
FCaminho do módulo de falhas: C:\Windows\system32\wwanapi.dll
Identificação do Relatório: f692dd9c-cec5-11e6-b662-74d02b81a628
Error: (12/29/2016 09:04:55 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/29/2016 08:30:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/29/2016 08:30:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 01:01:20 PM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Acesso inválido ao local de memória. (HRESULT : 0x800703e6).
Error: (12/28/2016 10:46:04 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 10:46:04 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 08:52:20 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/27/2016 11:16:30 AM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Acesso inválido ao local de memória. (HRESULT : 0x800703e6).
Error: (12/27/2016 10:16:00 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Erros de Sistema:
=============
Error: (12/30/2016 02:28:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 14:26:19 às 30/12/2016 não era esperado.
Error: (12/29/2016 05:38:09 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (12/29/2016 04:56:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 16:38:21 às 29/12/2016 não era esperado.
Error: (12/29/2016 04:14:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 15:54:04 às 29/12/2016 não era esperado.
Error: (12/29/2016 12:47:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 12:35:27 às 29/12/2016 não era esperado.
Error: (12/29/2016 11:47:18 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 11:35:31 às 29/12/2016 não era esperado.
Error: (12/29/2016 10:45:13 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 10:43:21 às 29/12/2016 não era esperado.
Error: (12/29/2016 09:28:44 AM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (12/29/2016 09:26:34 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 09:18:06 às 29/12/2016 não era esperado.
Error: (12/29/2016 08:07:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
CodeIntegrity:
===================================
Date: 2017-01-02 08:46:44.507
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:46:44.504
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:55.665
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:55.663
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:52.048
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:52.036
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:51.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:51.634
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:40:42.225
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:40:42.223
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Percentagem de memória em uso: 37%
RAM física total: 8142.47 MB
RAM física disponível: 5055.03 MB
Virtual Total: 16283.08 MB
Virtual disponível: 13371.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:820.72 GB) NTFS
Drive f: (CONCRETTAR) (Removable) (Total:14.91 GB) (Free:14.05 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 62E1EFF2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 14.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por Admin (02-01-2017 08:47:38)
Executando a partir de C:\Users\Admin\Downloads
Windows 7 Ultimate (X64) (2016-12-22 17:59:00)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Admin (S-1-5-21-482082785-3500525002-402388918-1000 - Administrator - Enabled) => C:\Users\Admin
Administrador (S-1-5-21-482082785-3500525002-402388918-500 - Administrator - Disabled)
Convidado (S-1-5-21-482082785-3500525002-402388918-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-482082785-3500525002-402388918-1002 - Limited - Enabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-482082785-3500525002-402388918-1000\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: - )
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Flash Player ActiveX+Plugins (HKLM\...\Adobe Flash Player) (Version: 24.0.0.186 - oszone.net)
Aplicativos da Autodesk em destaque 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 - Português - Brasil (Brazilian Portuguese) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - Português - Brasil (Brazilian Portuguese) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD 2016 Language Pack - Português - Brasil (Brazilian Portuguese) (HKLM\...\AutoCAD 2016 - Português - Brasil (Brazilian Portuguese)) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
DriverPack Notifier (HKLM-x32\...\DriverPack Notifier) (Version: 2.2.1 - DriverPack Solution)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
HP T120 and T520 series ICC Profiles (HKLM\...\{4F9E7F57-1D06-4B50-9691-813F87C655B8}) (Version: 2.0.0 - HP Inc.)
Impressora HP DesignJet Printer séries T120 e T520 (HKLM-x32\...\HPAmpereXL) (Version: - Hewlett-Packard Co.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7571.2075 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 48.0 (x86 ru) (HKLM-x32\...\Mozilla Firefox 48.0 (x86 ru)) (Version: 48.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Navegador Exclusivo Bradesco versão 3.0.0 (HKLM-x32\...\{2F7717E5-BFF5-479A-B29E-A615ED278B6F}_is1) (Version: 3.0.0 - Copyright (C) 2015 Scopus Tecnologia Ltda.)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Opera Stable 42.0.2393.94 (HKLM-x32\...\Opera 42.0.2393.94) (Version: 42.0.2393.94 - Opera Software)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Registro na Web HP (HKLM-x32\...\{D2FF897E-4A99-446E-8BB4-DD99CD496838}) (Version: 1.3.0.0 - HP Inc.)
Samsung SCX-3200 Series (HKLM-x32\...\Samsung SCX-3200 Series) (Version: - Samsung Electronics Co., Ltd.)
Scan Assistant (HKLM-x32\...\{BF6CF460-40C3-49BA-800A-4B934B6498B1}) (Version: 1.01.014 - Samsung Electronics Co., Ltd.)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\pt-BR\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-482082785-3500525002-402388918-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {11F0CDFB-063D-4C0A-8541-D3130F9E7738} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-12-22] (AVAST Software)
Task: {1B0A651E-95E2-4F77-88DE-2A091A13D7B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-23] (Google Inc.)
Task: {1E3CAD1C-0800-4A4F-B5C8-164B6CD7376C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-30] (Microsoft Corporation)
Task: {22081C15-2B53-49E1-9B28-3E55FEE5C50D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-23] (Google Inc.)
Task: {5B90DD64-4C65-4F0C-92A7-A29597D87C01} - System32\Tasks\DriverPack Notifier => C:\Program Files (x86)\DriverPack Notifier\DriverPackNotifier.exe [2015-12-18] ()
Task: {5C738B92-A877-4D66-8987-309FA5B7A62A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {76336BBB-E3AE-4B2A-B2A8-01A06BE04573} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {860BBCD4-D388-43FA-BA5A-142BA2F392E6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-30] (Microsoft Corporation)
Task: {94BA463F-911D-481B-BCF9-5D488F410F35} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-12-22] (AVAST Software)
Task: {98B44CCA-24A0-4C2B-B997-B76741F90AED} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {B2B54A47-E29E-4D5D-AEDD-EC9884979D3E} - System32\Tasks\Opera scheduled Autoupdate 1482433376 => C:\Program Files (x86)\Opera\launcher.exe [2016-12-19] (Opera Software)
Task: {BFB423B2-81BF-41E9-86B8-06E05B8328DB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {F29EB557-6F5B-4081-B1C5-0B04547633AA} - System32\Tasks\{5B56B4CC-C9C8-4C12-8EB8-FB5CC4373F31} => pcalua.exe -a C:\Windows\twain_32\Samsung\smgrinst.exe -d C:\Windows\Twain_32\Samsung -c /m"Samsung" /n"Samsung SCX-3200 Series" /l"BP"
Task: {FBFD3B4B-965E-4AD4-AB75-5E9D74FE5466} - System32\Tasks\{1D760707-6549-4F08-BAD3-5EBF21976652} => pcalua.exe -a "C:\Program Files (x86)\WinRAR\uninstall.exe" -d "C:\Program Files (x86)\WinRAR" -c /setup /noexplorer
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-12-23 08:59 - 2011-04-14 00:41 - 00034304 _____ () C:\Windows\System32\ssb3ml6.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2015-01-27 21:23 - 2015-01-27 21:23 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2016-12-22 17:27 - 2011-07-06 09:24 - 00688128 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2016-12-22 17:27 - 2009-11-19 07:15 - 00306688 _____ () C:\Windows\Samsung\PanelMgr\caller64.exe
2016-12-27 08:29 - 2016-07-22 08:21 - 00018936 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdater.exe
2016-12-27 08:29 - 2016-07-22 08:21 - 00038904 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdaterServerMessage.dll
2016-12-27 08:29 - 2016-07-22 08:21 - 00083960 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdaterUtil.dll
2010-03-11 01:31 - 2010-03-11 01:31 - 00333312 _____ () C:\Windows\system32\SaMinDrv.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-12-22 16:11 - 2016-12-22 16:11 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-29 16:16 - 2016-12-29 16:16 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\16122901\algo.dll
2016-12-22 16:11 - 2016-12-22 16:11 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-02 08:20 - 2017-01-02 08:20 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\17010100\algo.dll
2016-12-26 13:13 - 2016-02-24 02:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-12-26 13:13 - 2016-02-24 02:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-12-22 16:11 - 2016-12-22 16:11 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-12-09 15:09 - 2016-12-09 15:09 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\pt_br\acrotray.ptb
2016-12-02 01:54 - 2016-12-02 01:54 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 15:09 - 2016-12-09 15:09 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 23:17 - 2016-10-10 23:17 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-09 15:02 - 2016-12-09 15:02 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 23:14 - 2016-10-10 23:14 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 23:14 - 2016-10-10 23:14 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-12-22 18:10 - 2016-12-08 05:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-22 18:10 - 2016-12-08 05:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-482082785-3500525002-402388918-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-14 00:34 - 2009-06-10 19:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-482082785-3500525002-402388918-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{AC79B60B-B023-484E-ADC3-51FB707C256D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85B9F052-0E57-45F4-9F4A-7E40DABBDC92}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2627CF6B-0113-4B44-9297-FFA2616E52D6}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{20BC5F39-E98F-4E3F-AC1B-8EAA066F208E}] => C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{AAE3FB05-A0CF-47D2-A54D-C4F984CA4AC1}] => C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{48D93F1D-A879-473E-A11A-68413297CFA4}] => C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
FirewallRules: [{C8475C51-348E-4611-948D-F6C0E3F97F27}] => C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
FirewallRules: [{0335F868-E17E-4E14-9E50-C99F2389DCCB}] => C:\Windows\twain_32\Samsung\SCX3200\Sscan2io.exe
FirewallRules: [{CBE519C6-F9F0-48D4-A6FC-30B4EDF8D418}] => C:\Windows\twain_32\Samsung\SCX3200\Sscan2io.exe
FirewallRules: [TCP Query User{3291B974-71F2-41AA-B466-49077FE66C5B}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{88566A15-B3D9-4838-8AAF-75539F87B283}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{715FC64D-12FC-463C-BA9D-72CD87CDBD6D}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{90268D36-3D03-4237-B6B0-83B483BC8FF4}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{8DA6E244-0042-499B-A038-0D7A0098EB5A}] => LPort=50248
FirewallRules: [{3025F0EA-003B-40FE-BF0B-04FDC7770AD7}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{7C45E5EE-02F7-47D8-857B-014D60C13361}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{018B3E1A-A220-479F-B95B-176CF191504F}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
==================== Pontos de Restauração =========================
26-12-2016 12:21:56 DirectX instalado
26-12-2016 12:32:18 DirectX instalado
26-12-2016 12:41:43 Windows Update
26-12-2016 12:59:09 DirectX instalado
26-12-2016 13:13:56 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
26-12-2016 16:15:19 DriverPack 17.7.27
27-12-2016 08:23:29 DriverPack 17.7.27
28-12-2016 16:49:52 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
28-12-2016 16:50:10 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2016 16:50:32 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
28-12-2016 16:50:56 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (12/30/2016 05:27:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7600.16450, carimbo de hora: 0x4aebab8d
Nome do módulo de falhas: wwanapi.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5be0a8
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000000000333eb
Identificação do processo com falha: 0x5b8
Hora de início do aplicativo com falha: 0x01d262d280a3774e
Caminho do aplicativo com falha: C:\Windows\Explorer.EXE
FCaminho do módulo de falhas: C:\Windows\system32\wwanapi.dll
Identificação do Relatório: f692dd9c-cec5-11e6-b662-74d02b81a628
Error: (12/29/2016 09:04:55 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/29/2016 08:30:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/29/2016 08:30:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 01:01:20 PM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Acesso inválido ao local de memória. (HRESULT : 0x800703e6).
Error: (12/28/2016 10:46:04 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 10:46:04 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/28/2016 08:52:20 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (12/27/2016 11:16:30 AM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Acesso inválido ao local de memória. (HRESULT : 0x800703e6).
Error: (12/27/2016 10:16:00 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\microsoft office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de diretiva c:\program files (x86)\microsoft office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Erros de Sistema:
=============
Error: (12/30/2016 02:28:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 14:26:19 às 30/12/2016 não era esperado.
Error: (12/29/2016 05:38:09 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (12/29/2016 04:56:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 16:38:21 às 29/12/2016 não era esperado.
Error: (12/29/2016 04:14:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 15:54:04 às 29/12/2016 não era esperado.
Error: (12/29/2016 12:47:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 12:35:27 às 29/12/2016 não era esperado.
Error: (12/29/2016 11:47:18 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 11:35:31 às 29/12/2016 não era esperado.
Error: (12/29/2016 10:45:13 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 10:43:21 às 29/12/2016 não era esperado.
Error: (12/29/2016 09:28:44 AM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (12/29/2016 09:26:34 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 09:18:06 às 29/12/2016 não era esperado.
Error: (12/29/2016 08:07:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro:
O serviço não respondeu à requisição de início ou controle em tempo hábil.
CodeIntegrity:
===================================
Date: 2017-01-02 08:46:44.507
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:46:44.504
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:55.665
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:55.663
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:52.048
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:52.036
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:51.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:45:51.634
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:40:42.225
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-01-02 08:40:42.223
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\VIASysFx.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Percentagem de memória em uso: 37%
RAM física total: 8142.47 MB
RAM física disponível: 5055.03 MB
Virtual Total: 16283.08 MB
Virtual disponível: 13371.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:820.72 GB) NTFS
Drive f: (CONCRETTAR) (Removable) (Total:14.91 GB) (Free:14.05 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 62E1EFF2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 14.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fim de Addition.txt ============================