Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 20-04-2017
Executado por gilvando 123 (21-04-2017 21:19:08) Run:1
Executando a partir de C:\Users\gilvando 123\Desktop
Perfis Carregados: gilvando 123 (Perfis Disponíveis: gilvando 123)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
start
CloseProcesses:
GroupPolicy: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-1a93f666
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-1a93f666
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131256316377583497&GUID=385C27E7-C8E6-42CF-AE2A-211906E52609
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://oem.msn.com/?pc=NMJB
SearchScopes: HKLM -> DefaultScope {9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-1a93f666&q={searchTerms}
SearchScopes: HKLM -> {9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-1a93f666&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-1a93f666&q={searchTerms}
SearchScopes: HKLM-x32 -> {9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-1a93f666&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3069889820-3373727436-1154643513-1001 -> DefaultScope {9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} URL = 
SearchScopes: HKU\S-1-5-21-3069889820-3373727436-1154643513-1001 -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-1a93f666&q={searchTerms}
CHR Extension: (Avast SafePrice) - C:\Users\gilvando 123\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-21]
S3 DIRECTIO; \??\C:\wst2\programs\BurnInTest\DirectIo64.sys [X]
2014-02-12 08:08 - 2014-02-12 08:08 - 0510976 _____ () C:\ProgramData\DRV10.tmp
2014-02-12 08:08 - 2014-02-12 08:08 - 5501952 _____ (OEM) C:\ProgramData\E1010.tmp
Task: {379A44B0-2093-460A-B5C4-82C3C9CCD154} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic 
Task: {74A54BEC-362D-4336-A81A-FE4BD788079E} - \Bing Search Engine midar -> Nenhum Arquivo <==== ATENÇÃO 
Task: {B2FC3329-70C9-4D7F-81B8-AE1EC027306F} - System32\Tasks\R@1n-KMS\Windows62CoreSingleLanguage => wmic 
Task: {BEB08BDC-250B-430C-A1F1-2CB6FDE93565} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated) 
Task: {FBD22CB5-EC4A-4F9D-A6AD-D9D39E63F3BC} - System32\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F} => C:\Users\GILVAN~1\AppData\Roaming\UPDATE~1\sync.exe <==== ATENÇÃO 
Task: C:\Windows\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F}.job => C:\Users\GILVAN~1\AppData\Roaming\UPDATE~1\sync.exe <==== ATENÇÃO 
ShortcutWithArgument: C:\Users\gilvando 123\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\94192485.sys => ""="Driver" 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\94192485.sys => ""="Driver" 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" 
C:\Windows\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F}.job
CreateRestorePoint:
EmptyTemp:
Reboot:
end
*****************

Processos fechados com sucesso.
C:\Windows\system32\GroupPolicy\Machine => movido com sucesso
C:\Windows\system32\GroupPolicy\GPT.ini => movido com sucesso
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => movido com sucesso
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => valor restaurado com sucesso
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => valor restaurado com sucesso
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => valor restaurado com sucesso
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => valor restaurado com sucesso
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => valor restaurado com sucesso
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} => chave removido (a) com sucesso.
HKCR\CLSID\{9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} => chave não encontrado (a). 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => valor restaurado com sucesso
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} => chave removido (a) com sucesso.
HKCR\Wow6432Node\CLSID\{9AE482A6-FAD9-45DD-BB8F-EFD5F4CF9CC3} => chave não encontrado (a). 
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => valor removido (a) com sucesso.
HKU\S-1-5-21-3069889820-3373727436-1154643513-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{d4fee3d1-1014-4db8-a824-573bf9ab51c7} => chave removido (a) com sucesso.
HKCR\CLSID\{d4fee3d1-1014-4db8-a824-573bf9ab51c7} => chave não encontrado (a). 
C:\Users\gilvando 123\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => movido com sucesso
HKLM\System\CurrentControlSet\Services\DIRECTIO => chave removido (a) com sucesso.
DIRECTIO => serviço removido (a) com sucesso.
C:\ProgramData\DRV10.tmp => movido com sucesso
C:\ProgramData\E1010.tmp => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{379A44B0-2093-460A-B5C4-82C3C9CCD154} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{379A44B0-2093-460A-B5C4-82C3C9CCD154} => chave removido (a) com sucesso.
C:\Windows\System32\Tasks\R@1n-KMS\Office16ProPlus => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS\Office16ProPlus => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{74A54BEC-362D-4336-A81A-FE4BD788079E} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74A54BEC-362D-4336-A81A-FE4BD788079E} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bing Search Engine midar => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2FC3329-70C9-4D7F-81B8-AE1EC027306F} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2FC3329-70C9-4D7F-81B8-AE1EC027306F} => chave removido (a) com sucesso.
C:\Windows\System32\Tasks\R@1n-KMS\Windows62CoreSingleLanguage => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS\Windows62CoreSingleLanguage => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BEB08BDC-250B-430C-A1F1-2CB6FDE93565} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEB08BDC-250B-430C-A1F1-2CB6FDE93565} => chave removido (a) com sucesso.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FBD22CB5-EC4A-4F9D-A6AD-D9D39E63F3BC} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBD22CB5-EC4A-4F9D-A6AD-D9D39E63F3BC} => chave removido (a) com sucesso.
C:\Windows\System32\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F} => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{28FCC88A-7956-A95B-0AC9-138ECE70F77F} => chave removido (a) com sucesso.
C:\Windows\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F}.job => movido com sucesso
C:\Users\gilvando 123\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk => Atalho argumento removido (a) com sucesso..
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\94192485.sys => chave removido (a) com sucesso.
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => chave removido (a) com sucesso.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\94192485.sys => chave removido (a) com sucesso.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => chave removido (a) com sucesso.
"C:\Windows\Tasks\{28FCC88A-7956-A95B-0AC9-138ECE70F77F}.job" => não encontrado (a).
Ponto de Restauração criado com sucesso.

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10678488 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 64742826 B
Edge => 0 B
Chrome => 26767731 B
Firefox => 86741454 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 824 B
NetworkService => 0 B
gilvando 123 => 170813491 B

RecycleBin => 4903 B
EmptyTemp: => 355.1 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 21:21:02 ====