Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 16-10-2016 Executado por Marcelo (16-10-2016 09:02:37) Executando a partir de C:\Users\Marcelo\Desktop Microsoft Windows 7 Ultimate (X86) (2014-06-19 20:13:16) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1619413534-147187851-2194178100-500 - Administrator - Disabled) ASPNET (S-1-5-21-1619413534-147187851-2194178100-1004 - Limited - Enabled) Convidado (S-1-5-21-1619413534-147187851-2194178100-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1619413534-147187851-2194178100-1002 - Limited - Enabled) Marcelo (S-1-5-21-1619413534-147187851-2194178100-1000 - Administrator - Enabled) => C:\Users\Marcelo ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1619413534-147187851-2194178100-1000\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.) Adobe Reader X (10.1.12) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AA1000000001}) (Version: 10.1.12 - Adobe Systems Incorporated) Age of Empires II HD (c) Microsoft Studios version 1 (HKLM\...\QWdlIG9mIEVtcGlyZXMgSUkgSEQgKGMpIE1pY3Jvc29mdCBTdHVkaW9z_is1) (Version: 1 - ) Age of Empires II HD The Forgotten (HKLM\...\QWdlb2ZFbXBpcmVzSUlIRFRoZUZvcmdvdHRlbg==_is1) (Version: 1 - ) Age of Empires III - The Asian Dynasties (HKLM\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III - The Asian Dynasties (Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III - The WarChiefs (HKLM\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III - The WarChiefs (Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III (HKLM\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III (Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Mythology: Extended Edition Tale of the Dragon (HKLM\...\YWdlb2ZteXRob2xvZ3lleHRlbmRlZGVkaXRpb24_is1) (Version: 1 - ) Aoe World Aok Patch Br (HKLM\...\Aoe World Aok Patch Br) (Version: - ) Aoe World Tc Patch Br (HKLM\...\Aoe World Tc Patch Br) (Version: - ) avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software) CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Commandos - Behind Enemy Lines (HKLM\...\Commandos - Behind Enemy Lines_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Commandos - Beyond the Call of Duty (HKLM\...\Commandos - Beyond the Call of Duty_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Commandos 2 - Men of Courage (HKLM\...\Commandos 2 - Men of Courage_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Commandos 3 - Destination Berlin (HKLM\...\Commandos 3 - Destination Berlin_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Componente de Segurança Bradesco (HKLM\...\scpbrad) (Version: 1.0.0 - Bradesco (Departamento de Seguranca Corporativa)) CorelDRAW Graphics Suite X3 (HKLM\...\{63218538-4A69-497F-8455-904261B0E9E4}) (Version: 13.0 - Corel Corporation) CutePDF Writer 3.1 (HKLM\...\CutePDF Writer Installation) (Version: 3.1 - Acro Software Inc.) CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304a - CyberLink Corp.) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Desperados Wanted Dead or Alive (HKLM\...\Desperados Wanted Dead or Alive_is1) (Version: - GOG.com) DOSBox SVN-Daum version 20150124 (HKLM\...\{AA388FA6-2142-4E89-B75E-C3315BA37171}_is1) (Version: 20150124 - ) EN (Version: 13.0 - Corel Corporation) Hidden Facebook Games Arcade 0.10.0.3 (HKLM\...\{C3B7C124-136A-4E19-B21C-BDA26F8BA5A7}) (Version: 0.10.0.3 - Facebook) Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Firebird 2.5.2.26540 (Win32) (HKLM\...\FBDBServer_2_5_is1) (Version: 2.5.2.26540 - Firebird Project) FontNav (Version: 5.0 - Corel Corporation) Hidden Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKU\S-1-5-21-1619413534-147187851-2194178100-1000\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden HP Deskjet 1000 J110 series Software básico do dispositivo (HKLM\...\{5E50D9DE-DBDF-447D-975C-C8617A608544}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) Instalação do DivX (HKLM\...\DivX Setup) (Version: 3.0.0.58 - DivX, LLC) Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) LG Mobile Driver (HKLM\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.1.1 - LG Electronics) Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 1.1 Spanish Language Pack (HKLM\...\{83169D43-4660-4347-BC95-E9D6E6BE65CE}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Outlook Connector (HKLM\...\{95140000-0081-0416-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation) MNGer 1.51 (HKLM\...\MNGer, MNG Player_is1) (Version: - Tom Speirs) Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSI to redistribute MS VS2005 CRT libraries (HKLM\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) Multi Jogos 1.00 (HKLM\...\Multi Jogos 1.00) (Version: 1.00 - Arcade) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0179 - REALTEK Semiconductor Corp.) Samsung RAW Converter 4 (HKLM\...\InstallShield_{D09E159D-0264-4597-B200-A9B4C0866F25}) (Version: 4 - Samsung) Samsung RAW Converter 4 (Version: 4 - Samsung) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) StarCraft II: Heart of the Swarm (c) Blizzard Entertainment version 1 (HKLM\...\U3RhckNyYWZ0IElJOiBIZWFydCBvZiB0aGUgU3dhcm0gKGMp~BFC02D25_is1) (Version: 1 - ) Stronghold 2 Deluxe (HKLM\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios) Stronghold Legends (HKLM\...\{66A405D2-BA14-4594-BF36-B3B544F0754E}) (Version: 1.10.0000 - Firefly Studios) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.4.12 - Synaptics Incorporated) TeamViewer 11 (HKLM\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) UltraISO Premium V9.3 (HKLM\...\UltraISO_is1) (Version: - ) Unity Web Player (HKU\S-1-5-21-1619413534-147187851-2194178100-1000\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS) Update Manager (Version: 4.60 - Corel Corporation) Hidden VBA (Version: 6.2 - Corel Corporation) Hidden VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.4400 - Broadcom Corporation) Windows Essentials Media Codec Pack 4.0 [32-Bit] (HKLM\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec) Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{037FB476-15E0-4ED1-B11A-E420B750B1A8}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2015\acad.exe => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{2837E0FE-686B-4CB0-BE53-0EA097EAF71B}\InprocServer32 -> C:\Windows\Downloaded Program Files\isusweb.dll (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Marcelo\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.30.3\psuser.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{5AFAFE48-7107-4FE5-B21A-86A4254541DD}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{5B7524C8-2446-40E9-9474-94A779DBA224}\InprocServer32 -> C:\Windows\Downloaded Program Files\isusweb.dll (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{621D3650-F1D3-414C-97F9-03A02B211261}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{623E415A-22EF-4DAA-A2FF-E68E77A673C9}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.29.5\psuser.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{885BB46A-3F1E-44C3-A01B-A7D9260CC98B}\InprocServer32 -> C:\Windows\Downloaded Program Files\dwusplay.dll (InstallShield Software Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Marcelo\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{915C2CEB-216B-4B7C-89E4-9ED3512D58D9}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{92C5E738-7372-4CD6-BE57-15833624EBF3}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{9CAAD2EA-177B-4D07-871F-47255B5D30F3}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{B391A1DB-28C8-4506-A43C-5BD6051F16BA}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.21.115\psuser.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.29.1\psuser.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E42CE23D-69F9-480A-A15F-BFF5E4D170C3}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E50C953D-311A-481B-8F8D-C55E65AF7417}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Marcelo\AppData\Local\Google\Update\1.3.31.5\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E9880553-B8A7-4960-A668-95C68BED571E}\InprocServer32 -> C:\Windows\Downloaded Program Files\isusweb.dll (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{E9A93328-79D4-4AED-A778-146E7191F8BC}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\ISDM.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{F1522EC1-F84F-4CE2-A38C-F9384B0DFD41}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision Corporation) CustomCLSID: HKU\S-1-5-21-1619413534-147187851-2194178100-1000_Classes\CLSID\{FFF2D28F-E4EE-44D9-8104-8E71556757F6}\localserver32 -> C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision Corporation) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {054EDE57-5A8C-4E40-B293-6F4A6A26F5A1} - System32\Tasks\{5A95D550-4708-45C1-99CD-587124905F71} => pcalua.exe -a "C:\Age of Empires III\autorun.exe" -d "C:\Age of Empires III" Task: {0CE2F270-34DB-45C3-BB76-0AF777BB057F} - System32\Tasks\{509C16B7-739F-4D86-9C39-50FCC9B5CFB3} => pcalua.exe -a "D:\New Folder\Age of Empires III\autorun.exe" -d "D:\New Folder\Age of Empires III" Task: {36D4640D-B644-40B7-BBFB-CB635347632A} - \WinTaske -> Nenhum Arquivo <==== ATENÇÃO Task: {3B43D2F1-54E2-42B5-AD91-2B99B316A776} - System32\Tasks\{22E9F76C-092C-421D-AF32-8C457A6553C6} => pcalua.exe -a "C:\Users\Marcelo\Downloads\Stronghold 2\MtxOne\Acrobat\setup.exe" -d "C:\Users\Marcelo\Downloads\Stronghold 2\MtxOne\Acrobat" Task: {3FF2EDFF-E8AE-4F9A-986D-6C650C9EDEFD} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [2014-06-20] () Task: {6524BD57-6F64-45F9-9E08-702BB4785721} - System32\Tasks\{3FC0676E-815F-4124-919B-F6FD8F328ABD} => pcalua.exe -a "C:\Age of Empires III\setup.exe" -d "C:\Age of Empires III" Task: {6F8C83A5-B9A9-433D-8DF0-0E01CC79F6AD} - System32\Tasks\{AB4640CC-64BF-4E3E-93B5-0238157C0624} => pcalua.exe -a "C:\Program Files\Multi Jogos\Player video Mng Conversor\Conversor de Video MNG.exe" -d "C:\Program Files\Multi Jogos\Player video Mng Conversor" Task: {827C8456-0611-4DF0-9C59-957A9B1FB8A4} - System32\Tasks\Windows Codec Update Service => C:\Program Files\Essentials Codec Pack\WECPUpdate.exe [2012-02-03] (MediaCodec.Org) Task: {8D9D8DFF-7E37-40F2-8606-D1713ED000F1} - System32\Tasks\{1F8980C0-C0C1-455B-BC45-44F4256D575A} => pcalua.exe -a "D:\New Folder\Age of Empires III\setup.exe" -d "D:\New Folder\Age of Empires III" Task: {910E666B-E37B-4D40-BB1E-91815A9ECB61} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000Core => C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-09-17] (Facebook Inc.) Task: {BEA68EDE-B60A-4A42-AED5-8665BB3AFE6E} - System32\Tasks\DivXUpdate => C:\Program Files\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe [2016-04-13] (DivX, LLC) Task: {DC39DEF2-96B3-4224-AA96-84AF8C09F440} - System32\Tasks\{0BF29568-E22E-4DBB-A01F-FF55EA23F224} => pcalua.exe -a C:\Users\Marcelo\Downloads\TOUCHPAD\SETUP.EXE -d C:\Users\Marcelo\Downloads\TOUCHPAD Task: {DDDD15FC-9DB5-456E-97B0-FBB1C7A5F1A8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000UA => C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-09-17] (Facebook Inc.) Task: {ED2253E8-A90A-4FEE-A6F2-C247DC974876} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000UA => C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.) Task: {EDA83CA3-1110-489A-9279-03615A67EBD2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-28] (AVAST Software) Task: {F1E6BCB8-6741-4E53-B8D6-8AF9C60450BB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000Core => C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.) Task: {F8BE31BB-E36F-402D-A11A-D8000F530A4B} - System32\Tasks\{EBA84D53-95A0-4076-B1F3-15A1A416A2A4} => pcalua.exe -a "C:\Users\Marcelo\Downloads\Stronghold 2\Setup.Now.exe" -d "C:\Users\Marcelo\Downloads\Stronghold 2" (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000Core.job => C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000UA.job => C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000Core.job => C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619413534-147187851-2194178100-1000UA.job => C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2014-07-28 20:38 - 2014-07-28 20:38 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2016-10-15 08:44 - 2016-10-15 08:44 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101500\algo.dll 2016-10-16 07:55 - 2016-10-16 07:55 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101600\algo.dll 2014-08-18 12:26 - 2009-05-23 01:12 - 06578816 _____ () C:\Program Files\OnBIT\MySQL\bin\mysqld.exe 2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2014-06-20 01:26 - 2010-02-10 18:10 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll 2012-01-10 21:12 - 2012-01-10 21:12 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll 2014-07-28 20:38 - 2014-07-28 20:38 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-10-15 09:47 - 2016-09-25 00:47 - 01805416 _____ () C:\Users\Marcelo\AppData\Local\Google\Chrome\Application\53.0.2785.143\libglesv2.dll 2016-10-15 09:47 - 2016-09-25 00:47 - 00093288 _____ () C:\Users\Marcelo\AppData\Local\Google\Chrome\Application\53.0.2785.143\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) HKU\S-1-5-21-1619413534-147187851-2194178100-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:04 - 2014-06-20 01:32 - 00000921 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 genuine.microsoft.com 127.0.0.1 mpa.one.microsoft.com 127.0.0.1 sls.microsoft.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1619413534-147187851-2194178100-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcelo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: RemoteRegistry => 3 MSCONFIG\Services: SDRSVC => 3 MSCONFIG\Services: Spooler => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: Themes => 2 MSCONFIG\Services: WbioSrvc => 3 MSCONFIG\Services: wuauserv => 2 MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Marcelo\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: Chromium => "c:\users\marcelo\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session MSCONFIG\startupreg: DivXMediaServer => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe MSCONFIG\startupreg: Facebook Update => "C:\Users\Marcelo\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: Google Update => "C:\Users\Marcelo\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: HW_OPENEYE_OUC_VIVO INTERNET => "C:\Program Files\VIVO INTERNET\UpdateDog\ouc.exe" MSCONFIG\startupreg: ISUSPM Startup => "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup MSCONFIG\startupreg: ISUSScheduler => "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{03DEBE47-8136-4E08-8D40-E50561EA2604}] => (Allow) C:\Users\Marcelo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E2001BA4-D304-4E54-8F68-62F1B292E5E6}] => (Allow) C:\Users\Marcelo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{FB9F9962-6359-48A0-9071-2A0B64500C76}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe FirewallRules: [UDP Query User{07F7EA0B-0308-4C11-9787-40FEC829EDBF}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe FirewallRules: [{2911341E-DA71-434A-8BFD-37F2313A3EF7}] => (Allow) C:\Program Files\Firefly Studios\Stronghold Legends\StrongholdLegends.exe FirewallRules: [{FBFB1080-17C4-4D80-AE68-E08569B33C9E}] => (Allow) C:\Program Files\Firefly Studios\Stronghold Legends\StrongholdLegends.exe FirewallRules: [{1B0314FB-CC28-4161-8B51-092A43722C05}] => (Allow) C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [{F78BFA69-E847-4D60-8B24-E955892BB4D1}] => (Allow) C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [TCP Query User{A6EA7646-8DFB-4901-A0E7-C1A7D1D948F4}C:\program files\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe] => (Allow) C:\program files\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe FirewallRules: [UDP Query User{087BEAC8-68E8-4432-8996-CC333731C8BC}C:\program files\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe] => (Allow) C:\program files\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe FirewallRules: [TCP Query User{A6A36771-0EFC-4442-89BC-E53CC21AFCC9}C:\program files\firefly studios\stronghold 2\stronghold2.exe] => (Allow) C:\program files\firefly studios\stronghold 2\stronghold2.exe FirewallRules: [UDP Query User{3A36CCBC-76D5-4828-BA3C-80DEED78ECA5}C:\program files\firefly studios\stronghold 2\stronghold2.exe] => (Allow) C:\program files\firefly studios\stronghold 2\stronghold2.exe FirewallRules: [TCP Query User{E4FC1155-6A19-4E32-B748-A4A38EB25E7B}C:\program files\firefly studios\stronghold legends\strongholdlegends.exe] => (Allow) C:\program files\firefly studios\stronghold legends\strongholdlegends.exe FirewallRules: [UDP Query User{13AF3DA2-3D02-4EA4-A7C5-68A34ADC2E9E}C:\program files\firefly studios\stronghold legends\strongholdlegends.exe] => (Allow) C:\program files\firefly studios\stronghold legends\strongholdlegends.exe FirewallRules: [{07A2FF03-A31A-45F2-8F83-EA67C756E53A}] => (Allow) C:\Users\Marcelo\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{520718A4-10C9-4DD5-989B-7FA2BBE60DCD}] => (Allow) C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [{242612BC-1ADC-41DB-88B9-BEACB9ABECF9}] => (Allow) C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [{2E04089C-6669-4AC4-8A30-C8D7CCF93C75}] => (Allow) C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe FirewallRules: [{CA22B8C7-D518-43A5-A636-32C01FB688E2}] => (Allow) C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe FirewallRules: [{4FAB2601-FEB5-4FDF-BCB6-2FA64741C578}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{34EE5B88-5797-4818-B9B0-BBC6DAD55CA6}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{0886C1CE-D32A-4229-A22C-69616E35F7F0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{5A48AED0-3219-4D60-A908-9CEA8820F01A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{1BF4AB0F-0229-4436-A7A1-4E526A77C934}C:\users\marcelo\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\marcelo\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{441F4593-E55F-46F8-9CE4-D70267FF1D6F}C:\users\marcelo\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\marcelo\appdata\local\akamai\netsession_win.exe FirewallRules: [{53F98C3B-1F3C-4850-9121-8BB3AF066666}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{652A0F0B-A18C-4817-9EA5-8C022FAF0082}C:\users\marcelo\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcelo\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{30AFF414-90AC-4BFB-B4E0-FCD0832349A1}C:\users\marcelo\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcelo\appdata\local\akamai\netsession_win.exe FirewallRules: [{CCDF408C-849E-4FA8-A655-A1A7E824C5FD}] => (Allow) C:\Users\Marcelo\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{84AAC347-2399-472C-8E9A-A670861E291A}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{50E6EC0E-F2C8-4A96-B34B-020212C102B2}] => (Allow) LPort=2869 FirewallRules: [{7C27138B-2CF1-40C0-9F51-3DB6F8AB2D0E}] => (Allow) LPort=1900 FirewallRules: [{FD65CA5C-2C62-402C-B1D4-649E9A7B3352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe FirewallRules: [{5CAB1B71-5A2C-4D74-AE06-EE433FAB962F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe FirewallRules: [{9D97071B-6154-4BC9-B77D-08EDD8B7ADD4}] => (Block) C:\Arquivos de Programas\StarCraft II\Versions\Base24944\SC2.exe FirewallRules: [{D992A4D6-E371-4375-AC50-D4C29FF30867}] => (Allow) C:\Program Files\StarCraft II\Versions\Base24944\SC2.exe FirewallRules: [{65A825A0-2CB3-400F-853B-A0E5E523732C}] => (Allow) C:\Program Files\StarCraft II\Versions\Base24944\SC2.exe FirewallRules: [{83105A18-4E85-4DC4-813D-DAAF3657F7C2}] => (Allow) C:\Program Files\StarCraft II\Versions\Base24944\SC2.exe FirewallRules: [{2D7FFEB5-DA1D-4EB9-9663-608891434E0F}] => (Allow) C:\Program Files\StarCraft II\Versions\Base24944\SC2.exe FirewallRules: [{BC5C7BE1-3B05-40D4-AE98-9C5B244D5A41}] => (Allow) C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe FirewallRules: [{27F0D73F-255C-48DC-970E-925EF1184C4B}] => (Allow) C:\Users\Marcelo\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 15-10-2016 22:58:50 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 16-10-2016 02:32:12 Windows Update 16-10-2016 07:29:17 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 16-10-2016 07:51:20 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 07:56:07 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 07:57:28 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 07:58:12 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 08:10:17 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 16-10-2016 08:11:04 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 16-10-2016 08:12:27 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 08:33:26 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 08:34:08 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 08:35:10 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 16-10-2016 08:45:02 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-10-2016 08:47:54 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 16-10-2016 08:49:31 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 16-10-2016 08:50:14 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: asfilterdrv Description: asfilterdrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: asfilterdrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Dispositivo Periférico Bluetooth Description: Dispositivo Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: crfilterdrv Description: crfilterdrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: crfilterdrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (10/16/2016 08:30:06 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: iexplore.exe, versão: 8.0.7600.16385, carimbo de hora: 0x4a5bc69e Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdaae Código de exceção: 0xc0000005 Deslocamento com falha: 0x0000bdf4 Identificação do processo com falha: 0xbf8 Hora de início do aplicativo com falha: 0x01d227a09f7e8786 Caminho do aplicativo com falha: C:\Program Files\Internet Explorer\iexplore.exe FCaminho do módulo de falhas: C:\Windows\system32\KERNELBASE.dll Identificação do Relatório: e2e9dbf8-9393-11e6-9d7e-000df090b12e Error: (10/16/2016 12:30:25 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\HP\HP Deskjet 1000 J110 series\DriverStore\Pipeline\amd64\hpinkins8811.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (10/15/2016 10:25:55 PM) (Source: SideBySide) (EventID: 59) (User: ) Description: Falha na geração de contexto de ativação para "F:\setup.exe". Erro no arquivo de manifesto ou de diretiva F:\setup.exe", na linha 0. Sintaxe XMl inválida. Error: (10/15/2016 10:25:26 PM) (Source: SideBySide) (EventID: 59) (User: ) Description: Falha na geração de contexto de ativação para "F:\setup.exe". Erro no arquivo de manifesto ou de diretiva F:\setup.exe", na linha 0. Sintaxe XMl inválida. Error: (10/15/2016 01:53:40 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\HP\HP Deskjet 1000 J110 series\DriverStore\Pipeline\amd64\hpinkins8811.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (10/15/2016 11:42:58 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\HP\HP Deskjet 1000 J110 series\DriverStore\Pipeline\amd64\hpinkins8811.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (10/12/2016 01:28:33 PM) (Source: Google Update) (EventID: 20) (User: ALEXANDRE-PC) Description: Event-ID 20 Error: (10/12/2016 01:22:18 PM) (Source: Google Update) (EventID: 20) (User: ALEXANDRE-PC) Description: Event-ID 20 Error: (10/10/2016 07:22:17 PM) (Source: Google Update) (EventID: 20) (User: ALEXANDRE-PC) Description: Event-ID 20 Error: (10/10/2016 04:22:18 PM) (Source: Google Update) (EventID: 20) (User: ALEXANDRE-PC) Description: Event-ID 20 Erros de Sistema: ============= Error: (10/16/2016 08:30:50 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: O servidor {0002DF01-0000-0000-C000-000000000046} não se registrou com o DCOM dentro do tempo limite requerido. Error: (10/16/2016 07:54:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/15/2016 08:41:06 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/12/2016 01:14:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/11/2016 11:02:28 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/10/2016 06:38:10 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/10/2016 03:23:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/09/2016 05:26:23 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/09/2016 08:24:11 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv Error: (10/08/2016 11:59:20 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: asfilterdrv crfilterdrv ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU M 390 @ 2.67GHz Percentagem de memória em uso: 76% RAM física total: 2997.86 MB RAM física disponível: 706.71 MB Virtual Total: 5991.94 MB Virtual disponível: 3451.37 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:297 GB) (Free:72.2 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] Drive d: () (Fixed) (Total:297.67 GB) (Free:90.18 GB) NTFS Drive h: (AOMX: Tale) (CDROM) (Total:1.72 GB) (Free:0 GB) UDF Drive i: (AOE3X) (CDROM) (Total:0.61 GB) (Free:0 GB) CDFS Drive j: (StarCraft II Hea) (CDROM) (Total:13.53 GB) (Free:0 GB) CDFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 2ED5A191) Partition 1: (Not Active) - (Size=1.5 GB) - (Type=12) Partition 2: (Active) - (Size=297 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=297.7 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================