Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 17-12-2016
Executado por marcelo (19-12-2016 11:58:42)
Executando a partir de C:\Users\marcelo\Desktop
Windows 7 Ultimate (X64) (2016-02-23 14:08:23)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-201733743-844242722-110362520-500 - Administrator - Disabled)
Convidado (S-1-5-21-201733743-844242722-110362520-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-201733743-844242722-110362520-1002 - Limited - Enabled)
marcelo (S-1-5-21-201733743-844242722-110362520-1000 - Administrator - Enabled) => C:\Users\marcelo

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (Version: 7.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Any Video Converter Ultimate 5.8.4 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version:  - Any-Video-Converter.com)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AVG (Version: 16.131.7924 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4739 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.131.7924 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CGS17_Setup_x64 (Version: 17.0 - Corel Corporation) Hidden
Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0 - Bradesco (Departamento de Seguranca Corporativa))
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Estudo de melhoria do produto HP Deskjet 2050 J510 series (HKLM\...\{B4861B32-A6CD-4E01-BB79-3F19ED307B59}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
Gerenciador de Smartphone da Apowersoft versão 2.7.4 (HKLM-x32\...\{4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1) (Version: 2.7.4 - APOWERSOFT LIMITED)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP Deskjet 2050 J510 series Ajuda (HKLM-x32\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP LaserJet Professional CP1520 Series (HKLM-x32\...\{5C069542-CA13-4f1b-B90C-28C6430F4992}) (Version:  - Hewlett-Packard)
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version:  - )
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
HPLaserJetHelp_LearnCenter (HKLM-x32\...\{E15C68A1-9CA5-44AC-A7F7-6C0673F196A8}) (Version: 1.01.0000 - Hewlett-Packard)
HPLJUT (HKLM-x32\...\{229D6185-BD7E-494B-A73B-C5215BE0690E}) (Version: 1.00.0008 - HP)
hppCP1520LaserJetService (x32 Version: 001.007.00319 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 002.007.00397 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppTLBXFXCP1520 (x32 Version: 001.007.00647 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (x32 Version: 1.0.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
hpzTLBXFX (x32 Version: 006.007.00770 - Hewlett-Packard) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.376.2 - McAfee, Inc.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 47.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 pt-BR)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
Pacote de Compatibilidade para o sistema Office 2007 (HKLM-x32\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
PC Mechanic (HKLM-x32\...\{1F88FC5D-4D46-448A-AF59-7061FFC6ABBF}_is1) (Version: 1.0.18.4 - Uniblue Systems Limited) <==== ATENÇÃO
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
Software básico do dispositivo HP Deskjet 2050 J510 series (HKLM\...\{9C957F82-7EE0-423D-A386-587C9A4A83FB}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
Software Informer 1.5.1315.0 (HKLM\...\Software Informer_is1) (Version:  - Informer Technologies, Inc.)
Sony PC Companion 2.10.094 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.094 - Sony)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0B4C9EC6-74EE-4B52-BD5C-60EA79A19546} - System32\Tasks\PC-Mechanic Maintenance => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2016-06-27] (Uniblue Systems Limited) <==== ATENÇÃO
Task: {28B78D71-DF92-4EBE-96F6-3B9913F95351} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {2CDA9338-AB30-4461-8B01-0AE03DF3C306} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {31CC5461-32F8-4431-9E64-B4144FA1C916} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {31FFACF2-31E6-42F9-9ED5-1E848657CE62} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe
Task: {382E5A5C-E2D9-466E-B534-CCDF6894FD89} - System32\Tasks\0116piUpdateInfo => C:\ProgramData\Avg_Update_0116pi\0116pi_AVG-Secure-Search-Update.exe [2016-01-10] ()
Task: {6085CE30-3689-4AB3-8519-BBA4460F1F08} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {7A3FCCAF-D4B4-4952-8B41-11855D983CC7} - System32\Tasks\PC-Mechanic Startup => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2016-06-27] (Uniblue Systems Limited) <==== ATENÇÃO
Task: {A10E2ABA-24DB-43D3-BE7C-9C338F045CE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-23] (Google Inc.)
Task: {CCBC40A6-2D54-481E-A8E9-150A22EE336A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {E7387829-6225-4B4D-A0F8-812B9A8DA3C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-23] (Google Inc.)
Task: {FAB8E140-7564-495E-B6CD-2D2BC51B97E2} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-05-02] (Hewlett Packard)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\0116piUpdateInfo.job => C:\ProgramData\Avg_Update_0116pi\0116pi_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\PC-Mechanic Maintenance.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\PC-Mechanic Startup.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2016-03-14 12:40 - 2016-10-03 12:02 - 00980552 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2016-02-27 20:53 - 2012-08-21 17:07 - 00288768 _____ () C:\Windows\System32\HP1100LM.DLL
2016-02-27 20:54 - 2012-08-21 17:07 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2016-03-18 23:56 - 2016-03-18 23:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-03-18 23:56 - 2016-03-18 23:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-01-30 03:40 - 2010-01-30 03:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2016-02-23 12:22 - 2012-03-26 18:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-03-14 12:48 - 2016-10-03 12:02 - 02180680 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2016-12-09 19:45 - 2016-12-08 06:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-09 19:45 - 2016-12-08 06:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2014-03-14 23:03 - 2014-03-14 23:03 - 00798576 _____ () c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Draw\PsiClient.dll
2010-01-30 03:40 - 2010-01-30 03:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
2016-11-28 18:36 - 2016-11-28 18:36 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Windows\System32:852A75FB_Cef.gbp [2]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-201733743-844242722-110362520-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-201733743-844242722-110362520-1000\...\caixa.gov.br -> imagem.caixa.gov.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-14 00:34 - 2016-12-04 12:52 - 00000863 ____N C:\Windows\system32\Drivers\etc\hosts


0.0.0.1	mssplus.mcafee.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-201733743-844242722-110362520-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\marcelo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 189.5.128.61 - 189.5.128.66
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: AvgUi => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
MSCONFIG\startupreg: CE76F26A4A4D658A57029FD8A13CE72F0827A6D0._service_run => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: vProt => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{C2DE318D-B6BB-44F3-9934-F8C80D84086D}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{F8248C00-AADA-40DE-80A3-75DEEADEB76F}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{2FC53630-5066-4CE1-977A-874974DEE5D3}C:\program files (x86)\emule\emuletorrent.exe] => C:\program files (x86)\emule\emuletorrent.exe
FirewallRules: [UDP Query User{FBA3B099-66AA-4C7E-8023-0FD908C7A573}C:\program files (x86)\emule\emuletorrent.exe] => C:\program files (x86)\emule\emuletorrent.exe
FirewallRules: [{8A68856D-2722-44A2-B009-AC642752F37F}] => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{4EDDB696-A8C2-4AF7-9346-FB6BAE316156}] => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{909743EC-69CD-42B4-85D9-B28D7D5C4979}] => C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe
FirewallRules: [{CBFBF254-022A-477A-B652-9C394ABC1382}] => C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe
FirewallRules: [{6295A2C3-16E9-404D-A0C8-A3C36ECE7E57}] => LPort=9100
FirewallRules: [{7282D94F-96D1-42BF-B0E0-FCA5BFC3CF19}] => LPort=427
FirewallRules: [{F13421ED-1EAF-4E3F-88CC-E741A8605F91}] => LPort=161
FirewallRules: [{5BA54670-9499-49A4-BC51-F09C6ED510AA}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6E303422-81DD-442C-8033-6CFEAA951C3B}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3DC089CB-4062-4EC9-8C09-964AF025916F}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{55CE993C-9D5C-4F19-8E36-19712FCEBAC7}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{11F4CDC5-335E-4EFA-BE32-5DD14AB880F0}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{EFB0AB9A-D91B-424E-A1CA-33851901B8F7}] => %ProgramFiles%\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDRW.exe
FirewallRules: [{ECC3AA39-9E98-4E4B-9EA1-9CA48E9EE2C0}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{12313473-B37A-4E72-975E-1E41D3D02B33}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F8C30FFD-5A7B-40FF-BD06-9E25D28782DD}] => %ProgramFiles%\Common Files\Protexis\License Service\PsiService_2.exe
FirewallRules: [{034709F7-5DB9-42E5-B9A5-27D5A079B05F}] => %ProgramFiles%\Common Files\Protexis\License Service\PsiService_2.exe
FirewallRules: [{7499872B-DCB4-4442-9A42-9D6842E3EDF8}] => %ProgramFiles%\Common Files\Protexis\License Service\PsiService_2.exe
FirewallRules: [{C7EDCD78-A1E4-4855-B70D-6DFAB4A57ADC}] => %ProgramFiles%\Common Files\Protexis\License Service\PsiService_2.exe
FirewallRules: [{154C2535-CBB5-4599-A96E-7D144ADABD28}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{E06E8B11-E7FF-4937-89F6-33E67AFE15A4}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{30B00F8A-DF11-43DE-9D2B-D21E77B30EB1}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [{365A740B-1B51-4718-80E8-21CC19C06CFF}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [{67FCEC70-79F4-46EA-9347-2E7273E585D9}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\iOS Recorder.exe
FirewallRules: [{6B0DF4F0-ECC3-44B5-BDD7-2CF5909E9A92}] => C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\iOS Recorder.exe
FirewallRules: [{139B49F0-4797-4CF5-B1C0-037FE94AF764}] => C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{EA6E6A06-3A3C-4E7C-BA3C-49FBE49B58C8}] => C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{10EA3438-7F37-453F-B09A-BC31E68D2A5F}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{F59F885C-5F41-47E1-B13F-BE51E1E71DA9}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{8B278403-544C-43F9-A55C-63F12F203EA8}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{0F006A43-5026-4D08-80C3-845096128468}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{76ABD0D0-4F3D-4CD4-9ADC-DA5369945AF5}] => E:\Pointblank\PointBlank.exe
FirewallRules: [{83F5EFA8-E006-4991-B78E-AD6CE8C4E552}] => E:\Pointblank\PointBlank.exe
FirewallRules: [{45421DFF-4EA0-4DA1-9F8A-81EAFD618272}] => C:\ongame\PointBlank.exe
FirewallRules: [{D4EE46D9-0378-4327-8D2C-9D604036F287}] => C:\ongame\PointBlank.exe
FirewallRules: [{9418A58A-13DE-4DDD-AEF5-3BC9434DA093}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{F1709A98-BBF6-4E60-9EEC-BD932C322AB3}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{164DEC9F-BDC9-4314-9972-F9F671495418}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{90D30477-0A61-4DF2-95E2-4356D6009F07}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{C68D40E0-E90C-4187-81B8-54E62C2DA78A}] => c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{F311AD9F-B960-4535-9568-FC4CB6BE9E57}] => c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{3846AC6A-B976-48DD-ADF6-B6499555EC2B}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

13-12-2016 11:22:13 Ponto de Verificação Agendado

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Controlador de comunicação PCI simples
Description: Controlador de comunicação PCI simples
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Controlador Ethernet
Description: Controlador Ethernet
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Controlador de barramento SM
Description: Controlador de barramento SM
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (12/19/2016 11:16:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0x9f8
Hora de início do aplicativo com falha: 0x01d259fa18d94fe9
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: 6a16b1e4-c5ed-11e6-bf4f-e81132bedde8

Error: (12/15/2016 03:03:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0xd08
Hora de início do aplicativo com falha: 0x01d256f50261fc5e
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: 59de7337-c2e8-11e6-bbe4-e81132bedde8

Error: (12/15/2016 12:31:45 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe".Erro no arquivo de manifesto ou de diretiva "", na linha.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (12/14/2016 11:28:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0xc6c
Hora de início do aplicativo com falha: 0x01d256727479f728
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: be1919be-c265-11e6-8b16-e81132bedde8

Error: (12/14/2016 03:52:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0xa00
Hora de início do aplicativo com falha: 0x01d25632cc08cfdd
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: 1c11e012-c226-11e6-a191-e81132bedde8

Error: (12/13/2016 11:16:27 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe".Erro no arquivo de manifesto ou de diretiva "", na linha.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (12/13/2016 10:57:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0xa6c
Hora de início do aplicativo com falha: 0x01d255404865605a
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: a593fc5c-c133-11e6-81ea-e81132bedde8

Error: (12/10/2016 12:33:49 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe".Erro no arquivo de manifesto ou de diretiva "", na linha.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (12/09/2016 05:59:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: HPLaserJetService.exe, versão: 2.7.397.0, carimbo de hora: 0x4bc33882
Nome do módulo de falhas: hppccompio.DLL, versão: 1.2.0.19, carimbo de hora: 0x4bab86d4
Código de exceção: 0xc0000417
Deslocamento com falha: 0x000058a9
Identificação do processo com falha: 0x974
Hora de início do aplicativo com falha: 0x01d252568ff9c2a3
Caminho do aplicativo com falha: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
FCaminho do módulo de falhas: C:\Windows\system32\hppccompio.DLL
Identificação do Relatório: ef4b2bf6-be49-11e6-b831-e81132bedde8

Error: (12/09/2016 03:44:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa iexplore.exe versão 8.0.7600.16385 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 988

Hora de Início: 01d25243e74cbec2

Hora de Término: 4

Caminho do Aplicativo: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Id do Relatório: 2bf0fb17-be37-11e6-8fe8-e81132bedde8


Erros de Sistema:
=============
Error: (12/19/2016 11:18:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (12/19/2016 11:18:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (12/19/2016 11:18:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (12/19/2016 11:17:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço HP LaserJet Service foi encerrado inesperadamente.  Isso aconteceu 1 vez(es).

Error: (12/19/2016 11:17:12 AM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (12/19/2016 11:16:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (12/19/2016 11:16:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (12/19/2016 11:16:47 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: 
gbpddfac
gbpddreg

Error: (12/19/2016 11:16:40 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para FailureActions com o seguinte erro: 
Acesso negado.

Error: (12/19/2016 11:16:24 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A chamada ScRegSetValueExW falhou para FailureActions com o seguinte erro: 
Acesso negado.


CodeIntegrity:
===================================
  Date: 2016-11-26 12:24:14.584
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-26 12:24:14.584
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-26 12:15:50.916
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-26 12:15:50.896
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 20:16:31.713
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 20:16:31.708
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 20:12:10.789
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 20:12:10.768
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 16:55:20.058
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-11-21 16:55:20.054
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\xspirit.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz
Percentagem de memória em uso: 56%
RAM física total: 5845.54 MB
RAM física disponível: 2528.75 MB
Virtual Total: 11689.22 MB
Virtual disponível: 8258.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:350.22 GB) NTFS
Drive d: (PIXEL_CORUMBAISO) (CDROM) (Total:4.36 GB) (Free:0 GB) UDF

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F85EF014)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================