Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 31-08-2016 Executado por Leonardo (05-09-2016 09:51:09) Executando a partir de C:\Users\Leonardo\Downloads Windows 7 Ultimate (X64) (2016-07-14 17:59:06) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1935400259-802298439-4229903257-500 - Administrator - Disabled) Convidado (S-1-5-21-1935400259-802298439-4229903257-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1935400259-802298439-4229903257-1004 - Limited - Enabled) Leonardo (S-1-5-21-1935400259-802298439-4229903257-1000 - Administrator - Enabled) => C:\Users\Leonardo ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1935400259-802298439-4229903257-1000\...\uTorrent) (Version: 3.4.8.42445 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Aplicativos da Autodesk em destaque (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.9 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0039 - ASUS) AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk) Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software) Bully Scholarship Edition (HKU\S-1-5-21-1935400259-802298439-4229903257-1000\...\InstallShield_{A724605D-B399-4304-B8C7-33B3EF7D4677}) (Version: 1.00.0154 - Nombre de su organización) Bully Scholarship Edition (x32 Version: 1.00.0154 - Nombre de su organización) Hidden Corel Graphics - Windows Shell Extension (HKLM\...\_{EBDC2D0D-1E26-4EF2-BB48-C7E18F7800C6}) (Version: 16.0.0.707 - Corel Corporation) Corel Graphics - Windows Shell Extension (Version: 16.0.707 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.0.707 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - BR (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - IPM (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0.0.707 - Corel Corporation) CorelDRAW Graphics Suite X6 (x64) (Version: 16.0 - Corel Corporation) Hidden FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.) Google SketchUp 8 (HKLM-x32\...\{6B5F92BB-4272-4A69-B39B-EED000BC6192}) (Version: 3.0.14372 - Google, Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Importação do SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7167.2040 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1935400259-802298439-4229903257-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837B34E3-7C30-493C-8F6A-2B0F04E2912C}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Pacote de Driver do Windows - ASUS (ATP) Mouse (01/13/2015 1.0.0.233) (HKLM\...\8335D73177E6D80E7ADC00FED2275758BD28AEFB) (Version: 01/13/2015 1.0.0.233 - ASUS) Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.) SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 4.0.6.315555 - Linden Research, Inc.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.22.5 - Synaptics Incorporated) VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1935400259-802298439-4229903257-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1935400259-802298439-4229903257-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1935400259-802298439-4229903257-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-1935400259-802298439-4229903257-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0FF37F10-9EEC-4EE7-B285-8F2562CCABA9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {11C1AF29-C566-4F0B-9588-A7F9E1322D9C} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI) Task: {1304F9CA-B95F-4039-AE12-8B34D34A8328} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-12] (Microsoft Corporation) Task: {171B095C-DD39-4B1A-8474-9098CA1F0975} - System32\Tasks\SafeZone scheduled Autoupdate 1469493072 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-06-17] (Avast Software) Task: {1B063B3B-68C8-4EE0-899D-454EFD6CB483} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: {332617DD-F9F5-447B-BDA1-FEE08D969DE5} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {40542D46-4D83-4650-8C0C-D672D0EFCF9D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-22] (AVAST Software) Task: {621C513E-055D-4C9E-8E90-AE2E79B25F8C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {6B17235C-336A-4F66-B422-584CA9BAE0AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-15] (Google Inc.) Task: {702944B7-58DA-45F4-BF58-13F37A911303} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) Task: {7756CE7C-B510-43D8-B848-BD4441188148} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2015-03-25] (ASUSTek Computer Inc.) Task: {86177439-585B-4D25-B65A-A52F3A721DA6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-17] (AsusTek) Task: {A4AC576E-7EE1-40F6-821B-CA3ACCA36232} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-15] (Google Inc.) Task: {D27BA477-932C-433A-9B2B-F825B2731C72} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-12] (Microsoft Corporation) Task: {E2AD6067-B30C-4B83-9572-ACABFF495F06} - System32\Tasks\Driver Booster SkipUAC (Leonardo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {FFDDACDA-29CB-42F3-9793-9B1EA38BF63E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-07-22] (AVAST Software) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-08-09 22:52 - 2016-08-02 19:41 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll 2016-08-09 22:52 - 2016-08-02 19:40 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll 2016-07-22 00:47 - 2016-07-22 00:47 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-09-05 08:46 - 2016-09-05 08:46 - 03080312 _____ () C:\Program Files\AVAST Software\Avast\defs\16090500\algo.dll 2016-07-22 00:47 - 2016-07-22 00:47 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-08-29 15:13 - 2016-02-24 00:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2016-08-29 15:13 - 2016-02-24 00:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2016-07-22 00:47 - 2016-07-22 00:47 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) HKU\S-1-5-21-1935400259-802298439-4229903257-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1935400259-802298439-4229903257-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Leonardo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 186.233.92.226 - 186.233.92.227 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{79AE34F6-16BB-4038-B28A-1616342E74EE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{5660F59D-B78A-41A4-9CCC-32ED93F2BD55}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{34C19DB7-449F-4ACE-8754-FD096C6257EE}] => (Allow) C:\Users\Leonardo\AppData\Local\Microsoft\OneDrive\OneDrive.exe FirewallRules: [{0DCD3FE7-270D-4369-BFB4-92E9D650478C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{238BE57A-BB52-4F02-8120-A435EC8F722F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{4D66F9FD-DC2E-4406-89E2-5E260FD1B7F5}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{218E5368-029D-495D-B44E-9F00B7969BE6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{67F9850C-9A2C-4137-8C75-9FD7F9F45EC2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{1BD7B3DA-5B5B-4391-83F6-74EFEAD5A415}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [TCP Query User{2EDA5503-D754-424D-96B6-4821F14972D3}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe FirewallRules: [UDP Query User{321FB621-CCD8-443E-A4CA-3D43B2E34F58}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) C:\program files (x86)\secondlifeviewer\slvoice.exe FirewallRules: [TCP Query User{D4EE1878-2569-4D56-B629-805C674B8A5A}C:\users\leonardo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\leonardo\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{A06CE405-24A2-4494-814E-F46CBA4EAF68}C:\users\leonardo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\leonardo\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{D072676A-1F59-47C1-8A7A-3505160F3691}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{7226DCDC-BE98-4070-BFD5-F273841E629E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{51EB508E-CF1A-4693-BA2C-895126FEFC3D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{C2E00EB8-4CD6-4DAD-BD11-1F9457193A4A}] => (Allow) LPort=50248 FirewallRules: [{F90444B2-07B1-43BB-B457-ACA1A41EB0A0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{54EB8009-93CC-4361-8339-4E2E2E4840D9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{6A30C696-7DA5-4806-9BF9-B5545A64C41E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{FEEE1393-60BA-4AEA-B0C6-340B5DB57E0F}] => (Allow) LPort=1688 FirewallRules: [{70FAD74E-1305-4522-86FE-668DE9D8C397}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{2E1FF89A-528C-4CCF-992F-201226064093}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{A4F8B32A-6D35-4559-A7C4-3996CF2539DB}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{6C6F437A-61C6-44E7-93A3-92FEA15D5787}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe ==================== Pontos de Restauração ========================= 31-08-2016 21:21:38 Windows Update 31-08-2016 21:43:40 Windows Update 31-08-2016 22:05:42 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 31-08-2016 22:16:33 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 31-08-2016 22:18:08 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:19:38 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:21:34 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 31-08-2016 22:22:21 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:25:41 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 31-08-2016 22:39:17 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 31-08-2016 22:42:41 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:44:11 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:45:37 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 31-08-2016 22:46:41 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 01-09-2016 00:16:19 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 05-09-2016 08:55:05 Windows Update 05-09-2016 09:01:37 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 05-09-2016 09:03:55 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 05-09-2016 09:08:38 Removido Microsoft Visual C++ 2005 Redistributable 05-09-2016 09:20:07 Removido Microsoft Visual C++ 2005 Redistributable (x64) 05-09-2016 09:21:52 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 05-09-2016 09:24:38 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Controlador USB (Universal Serial Bus) Description: Controlador USB (Universal Serial Bus) Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (09/05/2016 09:47:50 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\Autodesk\AutoCAD 2015\acad.exe". Assembly dependente Microsoft.VC90.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (09/05/2016 09:47:50 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\Autodesk\AutoCAD 2015\acad.exe". Assembly dependente Microsoft.VC90.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (09/05/2016 09:28:23 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=YG67Q ACID=? Erro Detalhado[?] Error: (09/05/2016 09:20:55 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1032. Error: (09/05/2016 09:20:55 AM) (Source: ESENT) (EventID: 490) (User: ) Description: Catalog Database (1140) Catalog Database: Falha ao tentar abrir o arquivo "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" para acesso de leitura/gravação com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação de abertura do arquivo falhará com o erro -1032 (0xfffffbf8). Error: (09/05/2016 09:19:38 AM) (Source: MsiInstaller) (EventID: 11704) (User: Leonardo-PC) Description: Product: ZD Soft Screen Recorder -- Error 1704. An installation for Microsoft Visual C++ 2005 Redistributable is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes? Error: (09/05/2016 09:18:29 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=YG67Q ACID=? Erro Detalhado[?] Error: (09/05/2016 09:18:09 AM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10605.221) TYPE: ERROR DPTF Build Version: 8.1.10605.221 DPTF Build Date: Oct 23 2015 12:24:15 Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 183 Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged Message: dataLength is invalid. Participant: TCPU [1] Domain: PKG [0] Policy: ConfigTDP Policy [0] Error: (09/05/2016 09:11:52 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Explorer.EXE versão 6.1.7600.16385 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 5d4 Hora de Início: 01d20773ed714d3c Hora de Término: 140 Caminho do Aplicativo: C:\Windows\Explorer.EXE Id do Relatório: Error: (09/05/2016 09:00:37 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: ) Description: Falha na instalação do Comprovante da Compra. 0xC004F050 Pkey Parcial=YG67Q ACID=? Erro Detalhado[?] Erros de Sistema: ============= Error: (09/05/2016 09:19:04 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} e APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (09/05/2016 09:16:09 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 09:15:01 às ‎05/‎09/‎2016 não era esperado. Error: (09/05/2016 08:48:18 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Enumerador de Barramento PnP-X IP terminou com o erro: %%-2147024883 = Os dados são inválidos. Error: (09/05/2016 08:46:55 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} e APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (09/05/2016 08:43:30 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 13:34:33 às ‎01/‎09/‎2016 não era esperado. Error: (09/01/2016 01:13:54 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} e APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (09/01/2016 06:40:57 AM) (Source: atapi) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Ide\IdePort0. Error: (09/01/2016 06:40:57 AM) (Source: atapi) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Ide\IdePort0. Error: (09/01/2016 06:33:30 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} e APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (08/31/2016 10:41:57 PM) (Source: atapi) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Ide\IdePort0. CodeIntegrity: =================================== Date: 2016-09-05 09:15:45.006 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-05 09:15:38.392 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-05 08:48:58.554 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-05 08:48:51.502 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-05 08:43:14.396 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-05 08:43:06.986 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-01 13:12:34.632 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-01 13:12:33.353 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-01 06:32:11.022 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-01 06:32:10.538 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-3317U CPU @ 1.70GHz Percentagem de memória em uso: 65% RAM física total: 3981.7 MB RAM física disponível: 1369.11 MB Virtual Total: 7961.54 MB Virtual disponível: 5402.55 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:331.59 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 9CE3A00F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================