Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 15-02-2017
Executado por Usuario (15-02-2017 10:06:52)
Executando a partir de C:\Users\Usuario\Desktop
Windows 8.1 Pro (X64) (2015-10-20 17:19:32)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3905628631-1190870867-20479397-500 - Administrator - Disabled)
Convidado (S-1-5-21-3905628631-1190870867-20479397-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3905628631-1190870867-20479397-1005 - Limited - Enabled)
Usuario (S-1-5-21-3905628631-1190870867-20479397-1003 - Administrator - Enabled) => C:\Users\Usuario

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

A360 Desktop (HKLM\...\{7758802D-9486-4883-9927-CCAC366A3BA4}) (Version: 7.2.3.1800 - Autodesk)
ACA & MEP 2017 Object Enabler (Version: 7.9.45.0 - Autodesk) Hidden
ACAD Private (Version: 21.0.52.0 - Autodesk) Hidden
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Aplicativos da Autodesk em destaque 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
AutoCAD 2017 - English (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 Language Pack - English (Version: 21.0.52.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk)
Autodesk AutoCAD 2017 - English (HKLM\...\AutoCAD 2017 - English) (Version: 21.0.52.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2017 Add-in 64 bit (HKLM\...\{276A67E0-71EB-4827-B5F7-2ACF02BC1A5B}) (Version: 4.37.6853 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
Autodesk ReCap 360 (Version: 3.0.0.52 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CLICK DISK (HKLM-x32\...\{4D443C7D-33C5-4257-B8B7-9CF5B48AB710}_is1) (Version:  - Click Disk  - Guia Eletrônico)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DEMO - SIG CONSTRUTORA (HKLM-x32\...\DEMO SIG CONSTRUTORA_is1) (Version:  - )
DWG TrueView 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production)
Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.)
Importação do SketchUp 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 9.7.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.0 - )
KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM\...\Office15.PRJPRO) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 pt-BR)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Nero 7 Essentials (HKLM-x32\...\{27C0CED3-E9FA-4EA0-96AA-FAECE5F81046}) (Version: 7.03.0824 - Nero AG)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
SketchUp 2016 (HKLM\...\{8539258A-B911-475F-94E8-8AA394D95B40}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Stardock Start8 (HKLM\...\Start8_is1) (Version: 1.31 - Stardock Software, Inc.)
STR (HKLM-x32\...\STRAP) (Version:  - )
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
VIVO INTERNET v1.0.4.2192 (HKLM-x32\...\Broad Mobi HSPA Modem Normal Version_is1) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0014}\InprocServer32 -> C:\Users\Usuario\AppData\Local\GAS Tecnologia\GBBD\npsf_tec_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0014}\InprocServer32 -> C:\Users\Usuario\AppData\Local\GAS Tecnologia\GBBD\npsf_tec_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3905628631-1190870867-20479397-1003_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Usuario\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {07A15862-2051-4FA5-8A21-30B2B4416D82} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-20] (AVAST Software)
Task: {20BFB702-AE0A-4A86-A985-25450908C2F0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {300305B4-AC72-4CBF-AD57-C90899D934B3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {3B302E48-5A3E-40CF-A460-2E13D3923A43} - \Optimize Start Menu Cache Files-S-1-5-21-3905628631-1190870867-20479397-1001 -> Nenhum Arquivo <==== ATENÇÃO
Task: {45C1D659-0B86-4F1D-BD8F-6BF2BE07CE4E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {485CC098-DA6C-4A79-8ED9-1ACC9F5A789E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {49373B56-7BFE-4182-88F3-88B2A8115499} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-30] (AVAST Software)
Task: {4FA69A91-84FB-4D8D-97D1-643BCFCE6C2C} - System32\Tasks\{1134285C-ACDD-4098-AD92-E99E82ACF326} => C:\ProgramData\reup\568E5DAF.exe [2015-11-16] ()
Task: {79DF80D5-2F07-4AFE-9388-95AF48FC1A37} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-20] (Google Inc.)
Task: {846228B3-66ED-430F-98FA-DB313AB863E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-20] (Google Inc.)
Task: {B67BD472-D7BC-4AB3-A5A9-C826452C5C90} - \WPD\SqmUpload_S-1-5-21-3905628631-1190870867-20479397-1002 -> Nenhum Arquivo <==== ATENÇÃO
Task: {C59031F3-0D8D-44B8-8F20-4097572417D9} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe 
Task: {D1471D4B-AFEA-4BB0-A65F-95EDC645255C} - \Optimize Start Menu Cache Files-S-1-5-21-3905628631-1190870867-20479397-1002 -> Nenhum Arquivo <==== ATENÇÃO
Task: {E8616A8E-6E43-47D7-BA70-E21E28C5E0A7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {ED47EBBB-6B43-499C-8505-D13CC263FEC9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {F3E87F30-9BE8-4839-A8AF-6E748E0A9798} - \WPD\SqmUpload_S-1-5-21-3905628631-1190870867-20479397-1001 -> Nenhum Arquivo <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\{1134285C-ACDD-4098-AD92-E99E82ACF326}.job => C:\ProgramData\reup\568E5DAF.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-10-13 05:45 - 2015-10-13 05:45 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-08-16 12:10 - 2015-11-11 12:17 - 01474560 _____ () C:\Program Files (x86)\VIVO INTERNET\InstallService.exe
2012-11-26 23:54 - 2012-11-26 23:54 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-10-20 15:44 - 2015-10-20 15:44 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-10-20 15:44 - 2015-10-20 15:44 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-02-15 09:16 - 2017-02-15 09:16 - 06461832 _____ () C:\Program Files\AVAST Software\Avast\defs\17021500\algo.dll
2015-10-20 15:44 - 2015-10-20 15:44 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-02-07 09:30 - 2017-02-01 07:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-07 09:30 - 2017-02-01 07:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:r0d3jo5 [20]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1270]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\Users\Todos os Usuários\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\e-unicred.com.br -> hxxps://gbbd.e-unicred.com.br
IE trusted site: HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\e-unicred.com.br -> gbbd.e-unicred.com.br
IE trusted site: HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\unicred-poa.com.br -> www.unicred-poa.com.br
IE trusted site: HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\unicred.com.br -> hxxp://www.unicred.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 11:25 - 2016-09-12 14:47 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3905628631-1190870867-20479397-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\Pictures\07-08-15\061.JPG
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\StartupApproved\Run: => "Desliga Aí! 2.4"
HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\StartupApproved\Run: => "iCloudPhotos"
HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-3905628631-1190870867-20479397-1003\...\StartupApproved\Run: => "iCloudServices"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{05961C80-B17F-4FA3-ACF1-21C4DA5D47FD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{07E34AB1-6293-456E-A21A-879BD352528E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{36E95C32-10DD-4BBB-99DD-20A44E7F514F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{97C73E6A-BFBB-4428-B022-DA3D1B20D976}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2227E401-C0B5-449E-979A-91DA530F5977}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{68C2B196-DA94-48C5-896A-B3D2D776D8EF}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{8DF3F7F9-6D91-46E9-AC0E-F79CA96577F2}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{0A9532D5-552F-4843-B9CF-1781E88130A6}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{1FE0E995-3C21-433B-9391-6EA0999963FC}] => (Allow) C:\Users\Usuario\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{506C08F6-4DF1-4769-AD9A-A0E2D5D08F1C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{174E4F3F-3868-4620-AA71-658A5F2C8DC8}] => (Allow) LPort=2869
FirewallRules: [{137E14A0-0516-47F1-A480-E9F6F5C91747}] => (Allow) LPort=1900
FirewallRules: [{E3793E25-C78E-40E1-AFCB-1FF41DCE533F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FAF317A0-6CD4-4315-B13E-A908D97585BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D8CC8ED8-E815-4971-9F71-06338D16D01B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{8CD16DD8-98F9-44EB-924C-5293974CDD2E}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{DFA11C94-CC09-4949-857A-35F6D5CC9C6B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{01B48EFC-67F8-460F-AE3B-94DCA11F7135}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{992FD6DC-3543-4B72-A8ED-6E27E27773B5}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{A3DCF78F-285A-4A21-9A5B-F9ECA20B99DE}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{C40F149E-FBEE-4363-BFBE-C9B0FBF92088}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{71419EAC-6046-47F4-A168-74D6AA4895C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BB64487A-5E6E-4CAC-ABA3-6F976CB2EB7A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2E902F3B-E0D3-49DB-92DA-6C342EDB30D1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3EE6CB9B-0301-4392-814A-CDB153DB9FDB}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{2A6807C0-6D66-4A0D-A549-E56E9AA0650C}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{496DB4DA-DFE9-4291-B42A-E5014BCED742}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [TCP Query User{A189C6E7-DDE7-4B56-8413-E9EC5F1F6702}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{CE5CDB5C-2E29-40E0-9EFE-1F7AD1289BD9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{412845F3-DF1D-4EA6-92BB-0D608CF47EF4}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{D8D8974E-8027-47FB-AFDC-830A1041B7D8}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{1C64D06A-9605-4416-95F6-78F149CA37A4}] => (Allow) LPort=1688
FirewallRules: [{B526BBD1-8E3A-4369-A953-55CE5B68F95F}] => (Allow) LPort=1688
FirewallRules: [{AF6A91F1-1690-440C-B66B-B505B557E04C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

30-01-2017 23:58:37 Ponto de Verificação Agendado
09-02-2017 22:20:39 Ponto de Verificação Agendado
15-02-2017 07:34:53 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
15-02-2017 07:35:47 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (02/15/2017 09:57:25 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/15/2017 09:56:19 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (02/15/2017 09:53:18 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/15/2017 09:52:11 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (02/15/2017 09:49:14 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/15/2017 09:48:06 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (02/15/2017 09:35:06 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/15/2017 09:34:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (02/15/2017 09:17:54 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/15/2017 09:17:06 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable


Erros de Sistema:
=============
Error: (02/15/2017 09:54:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:54:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:50:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:50:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:46:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:46:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:32:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:32:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:14:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Autodesk Application Manager Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (02/15/2017 09:14:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.


CodeIntegrity:
===================================
  Date: 2014-01-14 10:30:25.957
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-01-14 10:30:25.926
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-01-14 10:29:55.096
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-01-14 10:29:55.002
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-01-14 10:29:54.877
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-01-14 10:29:54.721
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5 CPU M 480 @ 2.67GHz
Percentagem de memória em uso: 26%
RAM física total: 5942.68 MB
RAM física disponível: 4387.31 MB
Virtual Total: 6902.68 MB
Virtual disponível: 5324.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:775.22 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0061BAD1)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================