Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 08-08-2016
Executado por Paula Souza (2016-08-08 16:10:05)
Executando a partir de C:\Users\user\Downloads
Windows 8.1 Pro (X64) (2015-11-02 15:35:20)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-4263908865-4150902347-1559481974-500 - Administrator - Disabled)
Convidado (S-1-5-21-4263908865-4150902347-1559481974-501 - Limited - Disabled)
Paula Souza (S-1-5-21-4263908865-4150902347-1559481974-1001 - Administrator - Enabled) => C:\Users\user

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-4263908865-4150902347-1559481974-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
AutoCAD 2010 - English (HKLM\...\AutoCAD 2010 - English) (Version: 18.0.55.0 - Autodesk)
AutoCAD 2010 - English (Version: 18.0.55.0 - Autodesk) Hidden
AutoCAD 2010 Language Pack - English (Version: 18.0.55.0 - Autodesk) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - Acro Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.3.0.0 - Insyde Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3368 - Intel Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
KMSpico v9.0.6.20131120 (HKLM\...\KMSpico_is1) (Version: 9.0.6.20131120 - )
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0.9029 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.233 - McAfee, Inc.)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7070.2033 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4263908865-4150902347-1559481974-1001\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.780.780.110713 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21240 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7095 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0231 - REALTEK Semiconductor Corp.)
SafeZone Stable 1.51.2220.47 (x32 Version: 1.51.2220.47 - Avast Software) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.5.0 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
WinThruster (HKLM-x32\...\WinThruster_is1) (Version: 1.79 - solvusoft Corporation) <==== ATENÇÃO

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-4263908865-4150902347-1559481974-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-4263908865-4150902347-1559481974-1001_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\AutoCAD 2010\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4263908865-4150902347-1559481974-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4263908865-4150902347-1559481974-1001_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\AutoCAD 2010\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4263908865-4150902347-1559481974-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\AutoCAD 2010\acadficn.dll (Autodesk, Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {00E27641-E9A9-4B94-9843-7998A2C40B62} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-31] (AVAST Software)
Task: {04ECBEB3-3344-44DD-AAD4-76BECFCEA4B0} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {058C7314-C3AE-419A-AC67-EA86F9AA6D0D} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI)
Task: {07FFEBFA-A0DE-4939-BB6C-60D7CA300882} - System32\Tasks\{1F281B23-79B8-49CC-935C-8DFAAA79C03D} => pcalua.exe -a "C:\Program Files\Common Files\Microsoft Shared\OFFICE15\Office Setup Controller\setup.exe" -c /uninstall PROPLUS /dll OSETUP.DLL
Task: {314C3505-281C-4908-8900-A9B2FD59BC80} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {352DC789-C62C-4248-9810-5265C4D2CA64} - System32\Tasks\WinThruster_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO
Task: {3AFA6FF3-4026-410C-94F7-605AE5D1338B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-07-25] (Microsoft Corporation)
Task: {3E3FA679-0CDB-4B45-98D0-7EAC8C8E5D2D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-07-25] (Microsoft Corporation)
Task: {498711C7-7672-4712-8789-E1D6E360A9C8} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2016-07-24] (Reimage ltd.) <==== ATENÇÃO
Task: {4E5D6797-2820-4DC7-BCD4-197E55D23346} - System32\Tasks\WinThruster_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO
Task: {5193CD18-4E2B-4B57-B392-5790831B9BE9} - System32\Tasks\SafeZone scheduled Autoupdate 1469941664 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-07-25] (Avast Software)
Task: {7B6984A3-8B95-48A7-9F8D-C5FE85202DA3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-25] (Microsoft Corporation)
Task: {865923B5-3D36-4B83-A984-3C729A2192B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-02] (Google Inc.)
Task: {893F77B7-B0B7-4644-8591-EABCCD4A1AA4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-25] (Microsoft Corporation)
Task: {8D95E740-4B69-462B-A882-39360093BDF0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {9D8EB7CD-1D11-4DE4-B491-F89364180D0B} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2016-04-23] (McAfee, Inc.)
Task: {BD79700F-3DFF-4993-9BD4-14CA3BE082CB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-02] (Google Inc.)
Task: {D973035B-CA27-4F7B-AFEA-D5DB62EA8D2E} - System32\Tasks\WinThruster => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO
Task: {E823C8F2-291D-4E72-8F9D-424F7FDC8E7A} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2016-05-27] (Reimage®) <==== ATENÇÃO
Task: {F93AFDEB-1048-4005-BADD-A5C065BF3885} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4263908865-4150902347-1559481974-1001 => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-05] (Microsoft Corporation)
Task: {FAA35DEA-705F-4629-ABCD-3C18FC708C0B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WinThruster_DEFAULT.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\WinThruster_UPDATES.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-11-02 13:26 - 2013-10-23 14:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll
2015-11-02 12:57 - 2013-11-06 20:24 - 00066560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-08-05 14:57 - 2016-08-05 14:57 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-11-02 12:57 - 2013-05-29 09:41 - 00265728 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\SkypePlugin.exe
2016-08-08 15:27 - 2016-08-08 15:27 - 01162872 _____ () C:\Users\user\AppData\Local\Temp\is-19JB7.tmp\WinThruster_2016_Setup (1).tmp
2016-08-08 15:27 - 2016-08-08 15:27 - 01162872 _____ () C:\Users\user\AppData\Local\Temp\is-9SEE5.tmp\WinThruster_2016_Setup (1).tmp
2016-07-31 01:44 - 2016-07-31 01:44 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-08-08 00:19 - 2016-08-08 00:19 - 03012096 _____ () C:\Program Files\AVAST Software\Avast\defs\16080700\algo.dll
2016-07-31 01:44 - 2016-07-31 01:44 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-07-31 01:44 - 2016-07-31 01:45 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-18 23:11 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 23:11 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-08-08 15:27 - 2016-08-08 15:27 - 00002560 _____ () C:\Users\user\AppData\Local\Temp\is-VC68E.tmp\_isetup\_iscrypt.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)

HKU\S-1-5-21-4263908865-4150902347-1559481974-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 10:25 - 2013-08-22 10:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-4263908865-4150902347-1559481974-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\Pictures\Eu.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{1D3ACF16-078A-4072-90B5-BC347A0AE895}] => (Allow) C:\Program Files\KMSpico\KMSServer.exe
FirewallRules: [{00E4CB2C-E887-4B91-82EB-F064CF12525A}] => (Allow) C:\Program Files\KMSpico\KMSServer.exe
FirewallRules: [TCP Query User{BE7C2E34-3EA3-42DB-B0D9-2C9F46764850}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{50D09B10-F4EA-4D63-8382-FAB95166C1F4}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{D288EDEC-B79A-4980-A8F9-0877ACEC159B}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{2248E5A2-F2AB-4C98-A6FF-DDF76B054218}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [{BCC2561A-2F6B-4B9D-ABDE-EFB2618CA0DD}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{46D261A2-E6E8-4EB5-8B00-6FAE90CD248C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{3527A2D5-9776-46D1-995C-933D16CC6117}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{310CA3DD-8A4C-4B82-B5A0-E247EB947567}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{912E2811-4BF8-4859-B60E-CCBD3AF0F134}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A48C86A5-9814-46F8-B132-0E6C1E76AA50}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C5D6E055-09F4-4CF1-BC93-25C89A869F33}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E3FC5855-9CCE-4656-982F-2F540B0BB218}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1F877C28-2F0B-4792-9866-52075CDA75ED}] => (Allow) C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{02519436-3090-4B40-AEED-571CF302612C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{5CAD448E-7CB5-4D87-8DBA-ED8F84E9F798}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{BDB9D6E6-CD56-4D23-8BB8-7634D9DBB415}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe

==================== Pontos de Restauração =========================

28-06-2016 15:25:29 Ponto de Verificação Agendado
25-07-2016 18:00:20 Ponto de Verificação Agendado
05-08-2016 15:20:15 Ponto de Verificação Agendado
08-08-2016 15:37:03 WinThruster seg, ago 08, 16  15:36

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (08/08/2016 03:58:54 PM) (Source: MsiInstaller) (EventID: 10005) (User: positivo)
Description: Product: Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026 -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2203. The arguments are: C:\Windows\Installer\inprogressinstallinfo.ipi, -2147287008,

Error: (08/08/2016 03:35:02 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Erro no arquivo de manifesto ou de política UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2", na linha UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.

Error: (08/08/2016 03:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: positivo)
Description: Falha na ativação do aplicativo Microsoft.BingWeather_8wekyb3d8bbwe!App com o erro: -2144927148. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/08/2016 03:04:30 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Falha na instalação do Comprovante da Compra. 0xC004F069
Pkey Parcial=MG8K9
ACID=?
Erro Detalhado[?]

Error: (08/08/2016 02:57:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 67000

Error: (08/08/2016 02:57:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 67000

Error: (08/08/2016 02:57:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/08/2016 02:53:30 PM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo Mapi16. Descrição do erro: Não foi possível encontrar o módulo especificado.  (HRESULT : 0x8007007e).

Error: (08/08/2016 02:53:22 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Falha na instalação do Comprovante da Compra. 0xC004F069
Pkey Parcial=MG8K9
ACID=?
Erro Detalhado[?]

Error: (08/08/2016 12:36:47 AM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo Mapi16. Descrição do erro: Não foi possível encontrar o módulo especificado.  (HRESULT : 0x8007007e).


Erros de Sistema:
=============
Error: (08/08/2016 03:35:44 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/08/2016 03:35:13 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (08/08/2016 03:34:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Detecção de Serviços Interativos terminou com o erro: 
%%1 = Função incorreta.

Error: (08/08/2016 02:59:01 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:58:31 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:58:00 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:57:26 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:56:00 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:55:29 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (08/08/2016 02:54:59 PM) (Source: DCOM) (EventID: 10010) (User: positivo)
Description: {0006F03A-0000-0000-C000-000000000046}


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentagem de memória em uso: 71%
RAM física total: 1940.87 MB
RAM física disponível: 554.33 MB
Virtual Total: 3924.87 MB
Virtual disponível: 1893.46 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:440.03 GB) (Free:372.35 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 58B48C2E)
Partition 1: (Not Active) - (Size=25.3 GB) - (Type=OF Extended)
Partition 2: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=440 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================