Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01
Executado por Paulo Lins (2016-03-24 12:14:08)
Executando a partir de C:\Users\Paulo Lins\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-02-26 09:23:40)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1324733140-2629086526-2358931134-500 - Administrator - Disabled)
Convidado (S-1-5-21-1324733140-2629086526-2358931134-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1324733140-2629086526-2358931134-1002 - Limited - Enabled)
Paulo Lins (S-1-5-21-1324733140-2629086526-2358931134-1000 - Administrator - Enabled) => C:\Users\Paulo Lins

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Bitdefender Antivirus Free Edition (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Edition (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.15 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Master Collection CC 2014 (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C2}) (Version: 8 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (Version: 5.7.1 - Adobe Systems Incorporated) Hidden
Adobe Scout CC (Version: 1.1.3.354121 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.32 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.1 - ASUS)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros)
Atualizações da NVIDIA 2.8.1.21 (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7955 - DsNET Corp)
AutoCAD 2009 - English (HKLM\...\AutoCAD 2009 - English) (Version: 17.2.56.0 - Autodesk)
AutoCAD 2009 - English (Version: 17.2.56.0 - Autodesk) Hidden
Autodesk Backburner 2014 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 14.0.0.0 - Autodesk, Inc.)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Maya 2014 (HKLM\...\Autodesk Maya 2014) (Version: 16.0.0.0 - Autodesk)
Autodesk Maya 2014 (Version: 16.0.0.0 - Autodesk) Hidden
Autodesk SketchBook (HKLM\...\{E8771745-B470-4EB7-AF2C-D57A8CF60388}) (Version: 7.11.0000 - Autodesk)
Autodesk SketchBook Express 6.2 (HKLM-x32\...\{34CBACD3-040E-43D6-86C1-9FBE44B180BF}) (Version: 6.2.0000 - Autodesk)
Autodesk Suite Exclusives 2014 64-bit (HKLM\...\{2B1E251B-715E-4E93-A4BB-B69671405EAA}) (Version: 2.0.0.0 - Autodesk)
Avira (HKLM-x32\...\{b5675cc4-ab8b-4945-8c1d-4c5479556d6a}) (Version: 1.1.34.19732 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{e7c7c227-b742-4878-9425-f09bbf9951db}) (Version: 1.1.27.25527 - Avira Operations & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1109 - Bitdefender)
BitTorrent (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
CGS17_Setup_x64 (Version: 17.0 - Corel Corporation) Hidden
CINEMA 4D 16.050 (HKLM\...\MAXON8B6F11F9) (Version: 16.050 - MAXON Computer GmbH)
Color Efex Pro 4 (HKLM-x32\...\Color Efex Pro 4) (Version: 4.0.0.2 - Nik Software, Inc.)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 16.0.707 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
Dropbox (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.3.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON L365 Series Printer Uninstall (HKLM\...\EPSON L365 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
FileZilla Client 3.15.0.2 (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\FileZilla Client) (Version: 3.15.0.2 - Tim Kosse)
FSS Video Converter version 2.1.0.1 (HKLM-x32\...\FSS Video Converter_is1) (Version: 2.1.0.1 - FreeSmartSoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Drive (HKLM-x32\...\{895D0391-459F-4D45-B8DD-13F0DE70C66E}) (Version: 1.28.1549.1322 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
HP Deskjet 3050 J610 series Software básico do dispositivo (HKLM\...\{E6E28DE7-446E-4E27-BE37-4B6D925A385B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (HKLM\...\{14BC6853-A74E-4874-B50D-679889D1544D}) (Version: 14.0 - HP)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079F0}) (Version: 7.0.790 - Oracle)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Kobo (HKLM-x32\...\Kobo) (Version: 3.15.0 - Rakuten Kobo Inc.)
Kosmo Desktop (HKLM-x32\...\4B46F2AE-F9B1-4869-9B07-8DE93C4F3CC9) (Version: 2.0.1 - SAIG S.L. (hxxp://www.saig.es))
Magic ISO Maker v5.4 (build 0239) (HKLM-x32\...\Magic ISO Maker v5.4 (build 0239)) (Version:  - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)
Mesa Gráfica Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.8-3 - Wacom Technology Corp.)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Language Pack 2013  - Portuguese/Português (Brasil) (HKLM\...\Office15.OMUI.pt-br) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 8.0 Support DLLs (HKLM-x32\...\{342F5437-C87D-4BB5-89B9-B23E16C6A395}) (Version: 1.0.0 - McNeel & Associates)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Mirroring360 (HKLM-x32\...\{2143C7CF-6CBA-4513-AC73-D410DEC57BFC}) (Version: 1.2.5.13 - Splashtop Inc.)
Mozilla Firefox 44.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 pt-BR)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Multimedia Keyboard Driver (HKLM-x32\...\{0FCCC22A-4667-49BC-AE94-B2901AD7ADF6}) (Version:  - )
MuseScore 1.3 (HKLM-x32\...\MuseScore) (Version: 1.3.0 - Werner Schweer and Others)
MyFreeCodec (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\MyFreeCodec) (Version:  - )
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.3.0.43 - Symantec Corporation)
NVIDIA Driver de gráficos 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.8.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.8.1.21 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Pacote de Driver do Windows - ASUS (ATP) Mouse  (08/27/2012 1.0.0.125) (HKLM\...\2BD897DEE9289F769D9176245811D5330A360B0B) (Version: 08/27/2012 1.0.0.125 - ASUS)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Painel de controle da NVIDIA 359.06 (Version: 359.06 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Pen Pad Driver with Macro Key Manager (HKLM-x32\...\Rmtablet) (Version:  - )
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PHP 5.3.9 (HKLM-x32\...\{95505508-5E3F-40D6-A1EA-008C75886E21}) (Version: 5.3.9 - The PHP Group)
Popcorn Time (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\Popcorn Time) (Version:  - Popcorn Official)
PreSonus Studio One 2 (HKLM-x32\...\PreSonus Studio One 2) (Version: 2.6.2.25590 - PreSonus Audio Electronics)
PreSonus Studio One 2 x64 (HKLM\...\PreSonus Studio One 2) (Version: 2.6.2.25590 - PreSonus Audio Electronics)
PS_AIO_07_D110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6685 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0100-0416-1000-0000000FF1CE}_Office15.OMUI.pt-br_{8ECA38FB-BA64-4DF3-A770-936F18495B2C}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM-x32\...\{34966AF9-F0B9-4FEF-B3E4-0A16C2C49767}) (Version: 14.1.1282 - Trimble Navigation Limited)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Splashtop Personal (HKLM-x32\...\{E7CF0F14-8C1D-41F3-85ED-579C108262C7}) (Version: 2.6.0.0 - Nome de sua empresa:)
Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.6.5.3 - Nome de sua empresa:)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.39052 - TeamViewer)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
Trapcode Suite 64-bit (HKLM-x32\...\InstallShield_{5210717F-CAFD-4F21-8DF7-6ED3862725C4}) (Version: 12.1.0 - Red Giant Software)
Trapcode Suite 64-bit (Version: 12.1.0 - Red Giant Software) Hidden
Unity (HKLM-x32\...\Unity) (Version:  - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.OMUI.pt-br_{2BA6245D-FBB9-42F6-AFD9-C0DC52763AD5}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.OMUI.pt-br_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
WordPress.com (HKLM-x32\...\WordPress.com) (Version:  - Automattic, Inc.)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.15-2 - Bitnami)
Xilisoft AVCHD Converter (HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\Xilisoft AVCHD Converter) (Version: 7.8.12.20151119 - Xilisoft)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\AutoCAD 2009\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {02B821A1-6EBA-4F35-9672-7F6EE70C5813} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000UA1cfef1b9d2be741 => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {06C597A7-AD7A-40E1-B2A5-420379B2BFF5} - System32\Tasks\EPSON L365 Series Update {7AE9512C-8F2A-47F6-8021-E9E03B4B33D4} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
Task: {087E2E15-AA71-4F85-BEBC-0F0F3FF596BB} - System32\Tasks\GoogleUpdateTaskMachineUA1cfeeeb3f8a7696 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {0F1AF58C-0739-490A-A3A7-BDBE596963CB} - System32\Tasks\{885194F0-DB13-4BF6-A150-9DE81B6A7F81} => pcalua.exe -a "D:\simulador\AeroFly Professional Deluxe\#UTILITARIOS\IPACS - Config.exe" -d "D:\simulador\AeroFly Professional Deluxe\#UTILITARIOS"
Task: {176D095B-6EB2-4824-80CF-A61E23BE66F9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {1C3253FD-FF4E-4244-9BFB-89F6398BEA6C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11] (Adobe Systems Incorporated)
Task: {21EA169C-E7CC-49C9-ACFC-F40CFD9096E1} - System32\Tasks\{7B397FA9-90EB-483E-A25E-3C199D2397B0} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.14.0.104&amp;LastError=12007
Task: {24653C48-5DC0-4210-B22B-EF6775430BA8} - System32\Tasks\GoogleUpdateTaskMachineCore1cfeeeb3eb80851 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {3345628A-5B6D-441B-81DF-B79DD27255BB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {46BBF0DA-5D94-4961-96D7-D6FA52DD34D0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {4AE4DC88-0D14-4F87-87A4-A2CCBD432609} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {52E636AD-89EE-4120-8DA4-C61492DB0000} - System32\Tasks\{58178F50-8196-442B-AA6A-0C8929A60DD2} => pcalua.exe -a "C:\Program Files (x86)\ZHPDiag\ZHPhep.exe" -d "C:\Program Files (x86)\ZHPDiag"
Task: {54E46211-D4AA-438D-BBE6-585CE51CFB62} - System32\Tasks\{F1F46AB9-BDC4-4C4E-8F68-1EB74FD308BC} => pcalua.exe -a "D:\simulador\AeroFly Professional Deluxe\#UTILITARIOS\IPACS - Crack.exe" -d "D:\simulador\AeroFly Professional Deluxe\#UTILITARIOS"
Task: {5B73A421-4BB1-4E99-86FE-D5B09BB9328A} - System32\Tasks\{A1E1EEE4-E4E2-4D32-A308-AB9EFD8A4EDF} => pcalua.exe -a H:\Autorun.exe -d H:\
Task: {5BB7914A-9947-4EC7-BF3D-85F0950CC715} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000UA => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {7760B950-8E98-4F4D-8C9D-90CCEEA3FE1F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000Core => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {7BFDF557-721E-4D6E-913B-41F5C79AA0E9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000Core1cfef1b9b26249d => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {8BEEEFD9-CDF2-4BE0-8EFE-E3990FC405AF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {954BB112-ED2E-4E5B-B571-4308FC735961} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {975AA77E-1736-4F2D-B892-B56D2E547D28} - System32\Tasks\{067A72C7-E5FF-4C0D-BCFE-EC2FF41A5D0F} => pcalua.exe -a "C:\Users\Paulo Lins\Downloads\SetupHeliSimRC20.exe" -d "C:\Users\Paulo Lins\Downloads"
Task: {99FBC516-7904-401B-9A06-3B04B31CD226} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-05-07] (ASUSTek Computer Inc.)
Task: {9E1B2A44-4BE9-4D2F-959B-F75D8BD8245A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-08] (Piriform Ltd)
Task: {A70E96AA-BACD-4A90-8ADD-441F0285A6B4} - System32\Tasks\Norton Security Scan for Paulo Lins => C:\Program Files (x86)\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-10-16] (Symantec Corporation)
Task: {C90FFC09-B67F-48F5-898A-01F3D1634527} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {D2268003-10F7-47B1-9A4A-B62BA7B87BA6} - System32\Tasks\Microsoft\Windows\Software\UpdaterSrv => C:\ProgramData\UpdaterSrv\UpdaterSrv.exe [2015-11-27] () <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON L365 Series Update {7AE9512C-8F2A-47F6-8021-E9E03B4B33D4}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE:/EXE:{7AE9512C-8F2A-47F6-8021-E9E03B4B33D4} /F:UpdateSISTEMAĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfeeeb3eb80851.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfeeeb3f8a7696.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000Core.job => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000Core1cfef1b9b26249d.job => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000UA.job => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1324733140-2629086526-2358931134-1000UA1cfef1b9d2be741.job => C:\Users\Paulo Lins\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for Paulo Lins.job => C:\PROGRA~2\NORTON~2\Engine\430~1.43\Nss.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

Shortcut: C:\Users\Paulo Lins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosmo Desktop\Kosmo Desktop  - 2.0.1\Kosmo Desktop 2.0.1.lnk -> C:\Users\Paulo Lins\AppData\Local\kosmo_desktop_2.0.1\bin\Kosmo.bat ()
Shortcut: C:\Users\Paulo Lins\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Kosmo Desktop 2.0.1.lnk -> C:\Users\Paulo Lins\AppData\Local\kosmo_desktop_2.0.1\bin\Kosmo.bat ()

==================== Módulos Carregados (Whitelisted) ==============

2016-03-13 14:20 - 2016-03-13 14:20 - 00712288 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2016-03-13 14:20 - 2016-03-13 14:20 - 00111832 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2014-12-22 00:53 - 2015-11-24 20:10 - 00012080 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-02-28 12:35 - 2015-11-24 15:40 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-09 12:11 - 2014-04-03 20:55 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-08 16:53 - 2015-04-08 16:53 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2016-02-27 19:24 - 2015-12-23 05:24 - 11565384 _____ () C:\xampp\mysql\bin\mysqld.exe
2015-12-21 17:37 - 2015-08-21 15:50 - 00020568 _____ () C:\Program Files (x86)\AppBrad\NetExpressUpdater.exe
2015-12-22 17:33 - 2015-12-08 22:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2014-12-22 00:53 - 2015-11-24 20:10 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-02-27 19:24 - 2015-06-05 07:54 - 00404992 _____ () C:\xampp\apache\bin\pcre.dll
2016-02-27 19:25 - 2015-10-29 17:02 - 00129536 _____ () C:\xampp\php\libpq.dll
2016-02-27 19:24 - 2015-10-29 17:02 - 00166912 _____ () C:\xampp\apache\bin\libssh2.dll
2015-12-22 17:27 - 2015-12-08 22:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-03-14 20:00 - 2016-03-07 23:48 - 01676440 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\libglesv2.dll
2016-03-14 20:00 - 2016-03-07 23:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Windows:nlsPreferences [0]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Windows\System32:FD63E4CD_Cef.gbp [2]
AlternateDataStreams: C:\ProgramData\Microsoft:d71tjdsgm0TyN7TQgPdbbYyzAypgo [2046]
AlternateDataStreams: C:\ProgramData\Microsoft:fNcB0REzF6K1sbSWU8ragEOfg [2342]
AlternateDataStreams: C:\ProgramData\Microsoft:GQTfVMoREIxnzB5YluRdAWQ7 [2250]
AlternateDataStreams: C:\ProgramData\Microsoft:hnwmIgA0RvtisYVZxXHUKxRMzD4 [2438]
AlternateDataStreams: C:\ProgramData\Microsoft:udpiUSoiESiXCqn2jEzi [2260]
AlternateDataStreams: C:\Users\Paulo Lins\Desktop\FRST64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\359.06-desktop-win8-win7-winvista-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\atualizacao-seguranca-navegador-google (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\atualizacao-seguranca-navegador-google (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\atualizacao-seguranca-navegador-google (3).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\atualizacao-seguranca-navegador-google (4).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\atualizacao-seguranca-navegador-google.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\chromeinstall-8u73.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\FileZilla_3.15.0.2_win64-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\Instalador (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\Instalador.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\MEGAsyncSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\npp.6.5.3.Installer.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\Não confirmado 341112.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\Odin3 v3.07.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\SCAInstalacao.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\Sublime Text 2.0.2 x64 Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\suprx3.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\wampserver3_x64_apache2.4.17_mysql5.7.9_php5.6.16_php7.0.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\wampserver3_x86_apache2.4.17_mysql5.7.9_php5.6.15.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\WebStorm-11.0.3 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\WebStorm-11.0.3.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\wordpress-com-1-2-7-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\xampp-win32-5.6.15-1-VC11-installer (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\xampp-win32-5.6.15-1-VC11-installer.exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\xampp-win32-5.6.15-2-VC11-installer (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Paulo Lins\Downloads\xampp-win32-5.6.15-2-VC11-installer.exe:BDU [0]
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:d71tjdsgm0TyN7TQgPdbbYyzAypgo [2046]
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:fNcB0REzF6K1sbSWU8ragEOfg [2342]
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:GQTfVMoREIxnzB5YluRdAWQ7 [2250]
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:hnwmIgA0RvtisYVZxXHUKxRMzD4 [2438]
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:udpiUSoiESiXCqn2jEzi [2260]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\...\caixa.gov.br -> imagem.caixa.gov.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2015-05-05 16:48 - 00000840 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost 
::1             localhost 

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1324733140-2629086526-2358931134-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Paulo Lins\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Paulo Lins^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Paulo Lins^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Paulo Lins^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitorar alertas de tinta - HP Deskjet 3050 J610 series.lnk => C:\Windows\pss\Monitorar alertas de tinta - HP Deskjet 3050 J610 series.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
MSCONFIG\startupreg: Application Restart #5 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --flag-switches-begin --flag-switches-end --restore-last-session -- http://icm.avira.com/?data=dHJhY2s9MiUyQzMwMzUlMkMyMjc0JTJDJTI3NTclMjclMkMlMjcwMDE0MDAwMDAwMDQwNjQyJTI3JTJDJTI3cHQtYnIlMjclMkMlMjdCUiUyNyUyQyUyNzRkMTMwMGQwNGExZDE1NjE2MDFlMmI4OTc0YWI0MGUwMGJiNTU0NjUlMjclMkMlMjclMjclMkMxMzQ0JnRhcmdldD1odHRwJTNBJTJGJTJGd3d3LmF2aXJhLmNvbSUyRnB0LWJyJTJGY3liZXItYXR0YWNrcyZja3M9MzQ0Mzk2NTMwMw==
MSCONFIG\startupreg: BitTorrent => "C:\Users\Paulo Lins\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: C-Media Speaker Configuration => K:\8738xpv630a\WinXP\Setup.exe /SPEAKER
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GoogleChromeAutoLaunch_786A8DA1FE86752365222017D93E6EDF => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: Mirroring360 => "C:\Program Files (x86)\Mirroring360\Mirroring360.exe" -autorun
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Paulo Lins\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{A72D333E-1025-46F6-820F-49D939908DAC}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{E470570A-F1E4-4CC7-A489-FB8AF75BA02C}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{5ED003C8-F7C6-4D88-B7D9-EBD5247EB683}] => (Allow) LPort=7935
FirewallRules: [{C855FF54-EF4E-4AE9-90DB-AB2356294750}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0FF71781-276D-4E9A-BC40-6AC3336387B1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{656E2358-8DE8-401B-A050-26F8BF80B575}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{ED903523-2B41-42F0-98A7-54D9A1D40897}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{5002E2A8-D1DB-43CA-B985-C4C1648F79A9}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{30FA694A-47B6-4AC0-9532-890D93E336BD}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{EABD982C-55E2-4D3B-BF68-60046A3BA681}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F13E934B-0B10-446A-91A5-CD2A0488D830}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{82D8F4FF-7A58-4BED-922D-3FEEEE2C5273}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{4DA844B8-B8C9-41B7-8505-8C0FA83D043C}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{41DA5D7F-CB4A-49DE-B96D-532F5AC51FAF}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{08CBA415-B3D8-421A-BBAA-E811DEB205B3}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{7DF8B387-0E6B-4E78-B339-8235029359BA}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{80F06D3C-69F0-46A1-93A8-D8EE1EFF3A87}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{88E6161A-7D56-4B0C-8A7F-13FFB752E047}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{05069805-6982-4543-9B55-C2CEA1604137}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A0A8CF6A-94D3-47B3-BFD0-AB56D86BBF0B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{81FFF097-9963-4E64-840A-67BC643091B2}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{E959ADF9-00BF-4269-9937-E0B00D1E22D8}] => (Allow) C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{41833C99-11BA-4CB3-A1D9-B537ECBE411C}] => (Allow) C:\Users\Paulo Lins\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{971375D3-2D27-4549-A531-C192C3BE4D9B}C:\users\paulo lins\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\paulo lins\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{E18D2C10-39B8-4C98-B0F9-D5114882A344}C:\users\paulo lins\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\paulo lins\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{B36F66B0-E64F-4A87-A985-97F85465E1B6}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe
FirewallRules: [{8DFBA7DA-2ABA-491D-BBE8-1C51D94F11D6}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{3AFD3BFF-2A18-4086-A890-E024A82F088C}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{EF63CD9B-FB40-4B12-B272-D6168884212D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{92CE9A7C-3B4D-4384-B01E-B5FFB9BBC992}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{991ABB42-E0CE-46F7-B669-A2D735F49090}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E55DF62C-803B-4532-87AD-EA89C56EDACE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{23C59C1E-3EEC-4E5B-B632-E956E5B639B9}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{E26A1B84-5D56-47C4-B080-5B4A0D9BA0FD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6610B16D-0E03-4697-9705-C5A90F95DEC2}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{46A23FF0-01A5-4ACE-BAC9-6AA419837823}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4A77C8A0-67DD-449B-A482-019383D1B5C7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BC8D1EE9-8B8D-419A-92CB-6A7300792E03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D41423EB-3B45-4C57-808B-3B1DB36F83ED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{83125E36-978C-42DE-96CF-F5C4A87C7954}C:\program files (x86)\unity\editor\unity.exe] => (Allow) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [UDP Query User{DD173DA0-0A6C-45E0-989E-DB93AFFCC252}C:\program files (x86)\unity\editor\unity.exe] => (Allow) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [{2A7C4907-8CC5-4032-9A41-C4442FC5DD61}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{27491995-DB3A-4D05-A24C-BA137319A34C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B7F6949C-1545-4E44-9BA9-85D948D4E0F3}] => (Allow) C:\Program Files (x86)\Mirroring360\Mirroring360.exe
FirewallRules: [TCP Query User{6C4F2CCF-90F3-4557-9B81-BF628C1830C5}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{8FD546A4-0A25-4C52-B7E6-7D3E0B9486DA}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{26C10951-8FB8-4179-AF02-D999E1CED893}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{9DF4EF1E-CBD4-4C31-B2F2-CBC09365C09F}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [TCP Query User{8CCD348E-6D3D-400B-BFB5-5A46579A5032}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{CBE84371-255F-4F2C-900A-965BC4FFD0C6}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{057C7DB8-7BC0-4A1A-9D9A-72B3BEC5CDE6}C:\users\paulo lins\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\paulo lins\appdata\local\popcorn time\nw.exe
FirewallRules: [UDP Query User{E76D65D9-69FF-4DC8-A315-B47C7F7C0E20}C:\users\paulo lins\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\paulo lins\appdata\local\popcorn time\nw.exe
FirewallRules: [{061D82D1-3BD2-46D0-8738-43A3AB9A25B2}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{7873E3BB-3C00-4487-B468-CD6625AB47E0}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{7C382770-A4B1-4EB0-A0F9-F6A361DCCFDB}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{92E6E5C1-7A96-4C11-A7FE-08DCE4741973}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{C06BCBA1-0BD0-4C05-B0FD-62446F702E3B}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{F6715390-6641-4984-A1A8-3C9C46EAE925}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{0E0588A4-8BDC-4BD5-AEC2-B7497EACB399}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{EDE275FA-F993-496B-BB49-548302B437A8}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{104D3B2F-BD64-4475-B478-1FDBF26F6C25}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{901DE0CA-A701-4316-A8F0-8B7CB7BC9A53}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{380EC0A6-3BE5-4ED7-8BF8-98A13392C4A9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7269953B-5B10-42AB-9C9D-FD1FE7AF87C9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{66F79A41-5F96-4422-A905-8A49766CD80F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{40A14CAE-0419-4D2E-81BD-1322EA17C99F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{64D3E088-C0CC-4714-BB46-5DF5C9C67F94}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BBF2B721-97F1-4423-9F6E-068DBD5A51E9}C:\program files\maxon\cinema 4d r16\cinema 4d teamrender client.exe] => (Block) C:\program files\maxon\cinema 4d r16\cinema 4d teamrender client.exe
FirewallRules: [UDP Query User{49F1DD07-65A0-46FA-B1CD-6830DBEB77AF}C:\program files\maxon\cinema 4d r16\cinema 4d teamrender client.exe] => (Block) C:\program files\maxon\cinema 4d r16\cinema 4d teamrender client.exe
FirewallRules: [{D5F4C557-DD92-4F34-9D61-15FA9B141EA3}] => (Allow) C:\Users\Paulo Lins\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{827A553D-3FD2-43A2-A1DD-CEBD3B344519}] => (Allow) C:\Users\Paulo Lins\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{09750E9B-678A-4AB7-8965-95CB93A0EE6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F752D7DC-C3B5-46E6-B640-40FF28B73E3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{4A916DE2-9E48-44FE-818F-CE62FB90FBE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3A5EF885-4FC9-443C-8FE0-438E47FA42BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{955303CD-1640-45BA-B2DF-5D60AF40FD0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{16852D06-4FE3-488B-84F5-B8D6008C3AFE}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Edge Inspect CC\EdgeInspect.exe
FirewallRules: [{2EF89189-0D11-4068-AE18-0637DA3D2E94}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{91E6EF30-C08B-4B03-8C96-8E36BCC80904}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{E5BB0F58-2A23-44F0-9942-EB7853D6E55F}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.7\FlashBuilder.exe
FirewallRules: [{CC92A125-75F5-4A45-84E5-3F7921E6AFA8}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.7\FlashBuilder.exe
FirewallRules: [TCP Query User{F3EF503B-3151-4D98-A3D4-27F96F69C5EC}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{834D8C39-B5D7-4AB6-8D12-BC064E1D6847}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{9DFC9F27-8AE2-41C9-BE73-B89096EDC5D9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{AF9F2B7A-13FC-4ACC-A6AD-DF6E67ED094E}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{1A6E642F-01EA-44B6-A152-C2F5DA43B366}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================


==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Áudio do vídeo Intel(R)
Description: Áudio do vídeo Intel(R)
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel(R) Corporation
Service: IntcDAud
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: nvvad_WaveExtensible
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (03/24/2016 10:43:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/24/2016 10:24:35 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418225

Error: (03/24/2016 07:52:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7988

Error: (03/24/2016 07:52:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7988

Error: (03/24/2016 07:52:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/24/2016 07:52:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6989

Error: (03/24/2016 07:52:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6989

Error: (03/24/2016 07:52:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/24/2016 07:52:34 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5991

Error: (03/24/2016 07:52:34 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5991


Erros de Sistema:
=============
Error: (03/24/2016 10:45:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:45:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:45:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:44:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:44:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:44:19 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: 
gbpddfac
gbpddreg

Error: (03/24/2016 10:43:33 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)

Error: (03/24/2016 10:42:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Mobizen plugin devido ao seguinte erro: 
%%2

Error: (03/24/2016 10:40:14 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/22/2016 07:02:31 AM) (Source: volsnap) (EventID: 36) (User: )
Description: As cópias de sombra do volume C: foram anuladas porque o armazenamento de cópia de sombra não pôde crescer devido a um limite imposto pelo usuário.


CodeIntegrity:
===================================
  Date: 2015-10-20 13:34:54.945
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.940
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.936
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.878
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.580
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.576
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.572
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:54.518
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:53.438
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\amd64_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_f3153036f55ab3f5\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.

  Date: 2015-10-20 13:34:53.434
  Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume3\$Windows.~BT\Updates\Critical\8e08ca47-f6ba-409d-82de-698e324c0004\amd64_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_f3153036f55ab3f5\werfault.exe because the signing certificate has been revoked.  Check with the publisher to see if a new signed version of the kernel module is available.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Percentagem de memória em uso: 39%
RAM física total: 8077.91 MB
RAM física disponível: 4855.5 MB
Virtual Total: 16154.03 MB
Virtual disponível: 12079.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:247.7 GB) (Free:8.58 GB) NTFS
Drive d: (Novo volume) (Fixed) (Total:683.59 GB) (Free:94.53 GB) NTFS
Drive f: (Adobe_MC_2014_2) (CDROM) (Total:3.68 GB) (Free:0 GB) CDFS
Drive g: (Adobe_MC_2014_3) (CDROM) (Total:4.01 GB) (Free:0 GB) CDFS
Drive i: (The Giant) (CDROM) (Total:3.66 GB) (Free:0 GB) UDF

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A4F662C9)

Partition: GPT.

==================== Fim de Addition.txt ============================