Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 17-12-2017 Executado por Luiz (20-12-2017 14:45:49) Executando a partir de C:\Users\Luiz\Desktop Windows 7 Professional Service Pack 1 (X64) (2016-06-16 01:45:18) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1308743996-1395617597-108295736-500 - Administrator - Disabled) Convidado (S-1-5-21-1308743996-1395617597-108295736-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1308743996-1395617597-108295736-1017 - Limited - Enabled) Luana (S-1-5-21-1308743996-1395617597-108295736-1001 - Administrator - Enabled) => C:\Users\Luana Luiz (S-1-5-21-1308743996-1395617597-108295736-1003 - Administrator - Enabled) => C:\Users\Luiz User (S-1-5-21-1308743996-1395617597-108295736-1000 - Administrator - Enabled) => C:\Users\User ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1308743996-1395617597-108295736-1003\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.) 4shared Desktop (HKLM-x32\...\4shared Desktop) (Version: 4.0.14.27376 - 4shared) Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Reader XI (11.0.23) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) AirDroid 3.4.1.0 (HKLM-x32\...\AirDroid) (Version: 3.4.1.0 - Sand Studio) AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== ATENÇÃO AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== ATENÇÃO amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATENÇÃO amuleC (HKLM-x32\...\{19539992-061C-4E8B-9053-07B175303AF4}) (Version: 1.0.1 - amuleC) <==== ATENÇÃO amuleC (HKLM-x32\...\{418DDAC3-E16C-47C2-B5FE-4FBCAB0E10D0}) (Version: 1.0.1 - amuleC) <==== ATENÇÃO amuleC (HKLM-x32\...\{B2EFFD4E-D098-4845-9D56-DE75BEB35913}) (Version: 1.0.1 - amuleC) <==== ATENÇÃO amulesw (HKLM-x32\...\{13D7C2E9-08E7-4889-94FF-87E707184E53}) (Version: 1.0.7 - amules) <==== ATENÇÃO amulesw (HKLM-x32\...\{A0F15DF0-C935-422D-99DB-8A872E37BDCB}) (Version: 1.0.4 - amules) <==== ATENÇÃO Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software) BikaQ Rss (HKLM-x32\...\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}) (Version: 2.0.16 - BikaQ) <==== ATENÇÃO Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.4.43.6254 - BlueStack Systems, Inc.) Booking.com version 1.3.0.5019 (HKLM-x32\...\{958A475F-037D-401A-AC05-209725973E11}_is1) (Version: 1.3.0.5019 - Booking.com) <==== ATENÇÃO Charles 4.0.2 (HKLM\...\{BB74379F-7D14-4610-AA58-C20149106F05}) (Version: 4.0.2.6 - XK72 Ltd) Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version: - Cheat Engine) Cheating-Death 4.33.4 (HKLM-x32\...\Cheating-Death) (Version: - ) Compressor WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Debloater (HKLM-x32\...\{2045C97A-8D9A-47E2-A76A-E6A69CB7030B}) (Version: 3.85 - Gatesjunior Developer) Digitmax 3.0.1 (HKLM-x32\...\Digitmax 3_is1) (Version: Digitmax 3.0 - ) Facebook Gameroom 1.4.1.0 (HKLM-x32\...\{BF83FC65-8072-4850-A4CE-969A5F3570DA}) (Version: 1.4.1.0 - Facebook) Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Grand Theft Auto V version 1.0.573.1 (HKLM-x32\...\{D22681B9-93A5-4EBC-A1DD-A6B2189CBD4D}_is1) (Version: 1.0.573.1 - ) GTA: San Andreas RIP PT-BR by TemDono - #GTABrasil - BrasNET (HKLM-x32\...\Grand Theft Auto San Andreas_is1) (Version: - TemDono Design 2005) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4565 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden KingRoot °æ±¾ 3.2.0 (HKLM-x32\...\{FA3B7324-9EB4-4ADC-84D0-5461BE113832}_is1) (Version: 3.2.0 - KingRoot) K-Lite Codec Pack 11.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.0 - ) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) My Sunny Resort (HKLM-x32\...\My Sunny Resort_is1) (Version: 1.0 - MyPlayCity, Inc.) Orbit Downloader (HKLM-x32\...\Orbit_is1) (Version: - www.orbitdownloader.com) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) qksee (HKLM-x32\...\qksee) (Version: - Taiwan Shui Mu Chih Ching Technology Limited) <==== ATENÇÃO RapidTyping 5 (HKLM-x32\...\RapidTyping5) (Version: 5.1 - RapidTyping Software) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.8 - Rockstar Games) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 4.0.5.315117 - Linden Research, Inc.) Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden Software de dispositivo do Chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.22298 - TeamViewer) Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela) The Desktop Weather 2.0.1.11332 (HKLM\...\WeatherTool) (Version: 2.0.1.11332 - ShenZhen Enode Techology co,.Ltd) <==== ATENÇÃO The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - ) Torrentex version 0.1.4b (HKLM-x32\...\{B36CE58D-F635-4F82-97EE-BC6DE158BC6E}_is1) (Version: 0.1.4b - Torrentex Inc.) UC Browser (HKLM-x32\...\UCBrowser) (Version: 7.0.125.1802 - UCWeb Inc.) Uncheckit (HKLM-x32\...\Uncheckit) (Version: 2.2.4 - EVANGEL TECHNOLOGY (HK) LIMITED) <==== ATENÇÃO Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{2BA6245D-FBB9-42F6-AFD9-C0DC52763AD5}) (Version: - Microsoft) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WINSNARE (HKLM-x32\...\{56D19032-B59F-4020-994B-15912A49CD96}) (Version: 4.4.6 - WINSNARE) <==== ATENÇÃO WinZip (HKLM-x32\...\WinZip) (Version: 2.2.76 - Winzipper Pvt Ltd.) <==== ATENÇÃO WorldofTanks (HKLM-x32\...\WorldofTanks) (Version: - ) <==== ATENÇÃO YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ATENÇÃO yessearches - Uninstall (HKLM-x32\...\{ADFAC85B-868F-4BC0-95A7-6574F8C38F17}) (Version: - ) <==== ATENÇÃO ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) HKU\S-1-5-21-1308743996-1395617597-108295736-1003\...\ChromeHTML: -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) <==== ATENÇÃO ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-23] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-23] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo ContextMenuHandlers1: [4shared_Desktop] -> {EBDF1F20-C829-11D1-8233-0020AF3E97A9} => C:\Program Files (x86)\4shared Desktop\CMenu.dll [2015-03-20] () ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-23] (AVAST Software) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ContextMenuHandlers1: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers1: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers1: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll [2016-08-03] (Winziper Pvt Ltd.) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-23] (AVAST Software) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ContextMenuHandlers4: [4shared_Desktop] -> {EBDF1F20-C829-11D1-8233-0020AF3E97A9} => C:\Program Files (x86)\4shared Desktop\CMenu.dll [2015-03-20] () ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2017-07-01] () ContextMenuHandlers4: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers4: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers4: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll [2016-08-03] (Winziper Pvt Ltd.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-12-14] (Intel Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-23] (AVAST Software) ContextMenuHandlers6: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers6: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Nenhum Arquivo ContextMenuHandlers6: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll [2016-08-03] (Winziper Pvt Ltd.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0AB5A483-9471-46FE-9ACE-4BFFC8E451B2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {0D8FF434-3DC0-47E2-9068-60C131826385} - System32\Tasks\{3AB7F85C-321D-4727-B6F6-E46D4A8A9169} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Documents\the sims\Sims2\DirectX\dxsetup.exe" -d "C:\Users\User\Documents\the sims\Sims2\DirectX" Task: {1250112D-51C4-46DF-8304-8858AA3C9E66} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-12] (Adobe Systems Incorporated) Task: {15CA153C-3287-4D94-94EC-026783A32FA1} - System32\Tasks\{3E7570FF-E913-4A89-A9B3-9A0A0F0804A9} => C:\Users\Luiz\Desktop\setup-multi10.exe Task: {208AE5EF-0D58-4808-BFEA-9CF0EB571FCC} - System32\Tasks\{0000B6F5-8C14-0F75-4262-334ABAE3FFE5} => C:\Users\Luana\AppData\Local\Lumekefa\PRODUC~1.EXE [2013-04-09] () Task: {25DAA6E1-590C-44DA-B4D6-E46DB3888078} - System32\Tasks\UCBrowserUpdaterCore => C:\Program Files (x86)\UCBrowser\Application\update_task.exe [2017-12-12] (UCWeb Inc) <==== ATENÇÃO Task: {2DC83A27-B258-4E74-B9A7-22928CEEA187} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {3C7F8D50-42CB-460D-8781-482F331CF589} - System32\Tasks\R@1n-KMS\Office15ProPlus => wmic [Argument = path OfficeSoftwareProtectionProduct where (ID="b322da9c-a2e2-4058-9e4e-f59a6970bd69") call Activate] Task: {3EE2C2C3-33D9-4EF5-831A-5E3DCDF53F39} - System32\Tasks\{AE4FADC2-4B6D-43B7-B2DD-D52B481EB31B} => C:\Windows\system32\pcalua.exe -a C:\Users\User\AppData\Local\Temp\jre-8u101-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATENÇÃO Task: {528B4B73-5F83-4145-9AAF-2914C842BAD4} - System32\Tasks\SYSUSERPC50 => C:\Windows\SysWOW64\Java\ryzfxshj.4ld.vbs Task: {54916285-8726-4F8D-B372-B2CDD7CF3418} - System32\Tasks\{D03F4EEA-D9EC-4556-ADD6-330E628BD391} => C:\Windows\system32\pcalua.exe -a C:\Users\User\AppData\Local\Temp\WzEB27D.tmp\setup.exe -d C:\Users\User\AppData\Local\Temp\WzEB27D.tmp <==== ATENÇÃO Task: {554D0EA3-9DAB-4BBF-BBAE-5BF679182A01} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14] (Adobe Systems Incorporated) Task: {5D9315A0-8E58-433E-9F20-68B475BB3566} - System32\Tasks\{E6699548-1392-4605-A7F6-ADE8E4DAE417} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Documents\the sims\Sims2\Support\The Sims 2_uninst.exe" -d "C:\Users\User\Documents\the sims\Sims2\Support" Task: {5EE0E27E-44B4-4152-B308-E87A3ACFE903} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2017-12-08] (AVAST Software) Task: {5EF0C2D8-8851-4128-B51B-E6EDBFBE6B73} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {7A52F0B7-9918-4583-88D6-9B5719E97A4D} - System32\Tasks\{7D9CF9E2-A00B-984A-D804-4A1898B8660C} => C:\Users\Luana\AppData\Roaming\Segopih\Sync.exe [2013-04-27] () Task: {7AA42773-5CE0-4DA5-91E9-5CF642AF3621} - System32\Tasks\UncheckitUpdateTaskC => C:\Program Files (x86)\Uncheckit\UncheckitUpdate.exe [2016-11-11] (EVANGEL TECHNOLOGY (HK) LIMITED) <==== ATENÇÃO Task: {8249871E-4F5F-4896-828F-1D17568BE714} - System32\Tasks\Windows-PG => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe C:\windows\psgo\psgo.ps1 <==== ATENÇÃO Task: {87E6FAAD-220C-4A3B-A59C-766E99817A5A} - System32\Tasks\{281B4F48-8CC4-4891-85A8-AABD819890E9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Luiz\Desktop\LEGO Jurassic World\_CommonRedist\vcredist\2010\vcredist_x64.exe" -d "C:\Users\Luiz\Desktop\LEGO Jurassic World\_CommonRedist\vcredist\2010" Task: {90099349-E39E-4987-9AA7-8E8F785D1ACC} - System32\Tasks\UncheckitUpdateTaskDB => C:\Program Files (x86)\Uncheckit\UncheckitUpdate.exe [2016-11-11] (EVANGEL TECHNOLOGY (HK) LIMITED) <==== ATENÇÃO Task: {98226CA7-4E5B-42DC-8669-4D1E4D907056} - System32\Tasks\{4AF737B2-0220-4BEE-A635-171067292CD0} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\WinZipper\winziper.exe" -d "C:\Users\User\Documents\the sims\Sims2\DirectX" -c "o" "C:\Users\User\Documents\the sims\Sims2\DirectX\ManagedDX.CAB" <==== ATENÇÃO Task: {98DD2F0A-FA3C-4B20-B289-C6241F64C3DD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-23] (AVAST Software) Task: {A02CC4A8-71D5-4D24-AFAE-64545AA4C428} - System32\Tasks\BikaQ_FetchAndUpgrade_CanBeDel => C:\Program Files (x86)\BikaQRss\BikaQ.exe [2017-02-23] (IEC) <==== ATENÇÃO Task: {B09B4429-7A9E-463E-B88F-E9E65B49B94A} - System32\Tasks\SafeZone scheduled Autoupdate 1466009537 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {BB1C829A-E1EF-42B3-8465-5C0E73BEE8BF} - System32\Tasks\{BB93E874-02E9-4E73-A8C1-AE8789373F87} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\the sim\Sims3_1.6.6.002002_from_1.3.24.00002.exe" -d "C:\Users\User\Desktop\the sim" Task: {BBB1A5CD-F955-4867-A152-DA5362972B53} - System32\Tasks\Opera scheduled suite Autoupdate 1495372802 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [2017-05-18] (Opera Software) Task: {BC92A516-A2A9-4BF3-870C-E7F60799FEB7} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-17] () <==== ATENÇÃO Task: {C2DEF15E-94DC-4939-9558-530D1A361CFD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation) Task: {D040D0B7-612F-4C20-9BA0-431F92C86B42} - System32\Tasks\SYSUSERPC40 => C:\Windows\SysWOW64\Java\kpht2ew2.t5q.vbs Task: {D3B38AE1-B3B0-4D0F-BB96-1ECEA98A98FE} - System32\Tasks\{918140E6-75ED-476E-823E-AC70BF66AF5B} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\farmfrenzy_setup.exe -d C:\Users\User\Downloads Task: {E05D1587-B6F2-4A65-940F-56B8F2992284} - System32\Tasks\Opera scheduled Autoupdate 1495372800 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [2017-05-18] (Opera Software) Task: {E2794A14-AC91-4481-97DF-9E53986C9909} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-15] (Google Inc.) Task: {EA2B0A8C-603B-4B45-B7BF-4207C3D966CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-15] (Google Inc.) Task: {F3736AB3-40D0-4C1A-9432-2A27B97A2463} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {FB91843D-6D7E-42C6-B4D5-972E0C6F7BAF} - System32\Tasks\{FBD4B74B-A602-4AB6-8637-53F8BE3F5F88} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Documents\the sims\Sims2\eauninstall.exe" -d "C:\Users\User\Documents\the sims\Sims2" Task: {FDCEF8DD-4F5B-474A-B7A6-691A2D0F81E6} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe [2017-12-12] (UCWeb Inc) <==== ATENÇÃO (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe Task: C:\Windows\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATENÇÃO Task: C:\Windows\Tasks\UCBrowserUpdaterCore.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATENÇÃO Task: C:\Windows\Tasks\{0000B6F5-8C14-0F75-4262-334ABAE3FFE5}.job => C:\Users\Luana\AppData\Local\Lumekefa\PRODUC~1.EXE Task: C:\Windows\Tasks\{7D9CF9E2-A00B-984A-D804-4A1898B8660C}.job => C:\Users\Luana\AppData\Roaming\Segopih\Sync.exe ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) Shortcut: C:\Users\Luiz\Desktop\Nova pasta (2)\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Everrice\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) ShortcutWithArgument: C:\Users\Luiz\Desktop\Nova pasta (2)\Americanas.lnk -> C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe (UCWeb Inc.) -> hxxp://compre.vc/v2/1248175c752 ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.nuesearch.com/?type=sc&ts=1470217607&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0802&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2E3DSR7FASR7FA ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.nuesearch.com/?type=sc&ts=1470217607&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0802&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2E3DSR7FASR7FA ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.nuesearch.com/?type=sc&ts=1470217607&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0802&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2E3DSR7FASR7FA ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.nuesearch.com/?type=sc&ts=1470217607&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0802&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2E3DSR7FASR7FA ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Americanas.lnk -> C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe (UCWeb Inc.) -> hxxp://compre.vc/v2/1248175c752 ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\CasasBahia.lnk -> C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe (UCWeb Inc.) -> hxxp://hohosearch.com/?uid=1234#red=aHR0cDovL2FkLnphbm94LmNvbS9wcGMvPzMwMjkwOTg3QzI4MTIyOTMxMVQ= ShortcutWithArgument: C:\Users\Luiz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\PontoFrio.lnk -> C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe (UCWeb Inc.) -> hxxp://ad.zanox.com/ppc/?28341281C23251407T ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk -> C:\Program Files\AVAST Software\SZBrowser\launcher.exe (Avast Software) -> hxxp://www.nuesearch.com/?type=sc&ts=1470217607&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0802&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2E3DSR7FASR7FA ==================== Módulos Carregados (Whitelisted) ============== 2016-06-15 14:59 - 2016-06-15 14:59 - 000026112 _____ () C:\Windows\KMS-R@1n.exe 2016-04-26 08:47 - 2016-04-26 08:47 - 000155784 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\WeatherService.exe 2016-10-24 13:26 - 2017-12-12 06:45 - 000656784 _____ () C:\Program Files (x86)\UCBrowser\Application\UCService.exe 2017-11-23 15:43 - 2017-11-23 15:43 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll 2017-11-23 15:42 - 2017-11-23 15:42 - 000169832 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000859216 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000292408 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000281536 _____ () C:\Program Files\AVAST Software\Avast\x64\tasks_core.dll 2017-05-05 12:39 - 2017-05-05 00:20 - 000107672 _____ () C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe 2016-04-26 08:47 - 2016-04-26 08:47 - 001049736 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\WeatherEntryDll.dll 2016-10-31 17:45 - 2017-07-01 00:42 - 000598528 _____ () C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll 2016-06-15 14:35 - 2005-06-07 13:26 - 000043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2017-12-14 09:58 - 2017-12-12 06:53 - 002171280 _____ () C:\Program Files (x86)\UCBrowser\Application\7.0.125.1802\UCAgent.exe 2017-11-23 15:43 - 2017-11-23 15:43 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000151104 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll 2017-12-19 16:58 - 2017-12-19 16:58 - 005766800 _____ () C:\Program Files\AVAST Software\Avast\defs\17121902\algo.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000710056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-11-23 15:43 - 2017-11-23 15:43 - 000245608 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2017-12-20 11:25 - 2017-12-20 11:25 - 005766800 _____ () C:\Program Files\AVAST Software\Avast\defs\17122000\algo.dll 2016-08-03 07:49 - 2016-08-03 07:49 - 000582144 _____ () C:\Program Files (x86)\WinZipper\curlpp.dll 2016-08-03 07:49 - 2016-08-03 07:49 - 000066560 _____ () C:\Program Files (x86)\WinZipper\zlib1.dll 2017-02-09 12:49 - 2017-02-09 17:46 - 000122880 _____ () c:\program files (x86)\gub\gubzl.dll 2017-05-05 13:08 - 2017-05-27 17:57 - 000347648 _____ () C:\Users\Luiz\AppData\Local\background_fault\bf.dll 2016-09-26 23:10 - 2014-01-16 15:43 - 000397312 _____ () C:\Program Files\Orbitdownloader\wtlctrl.dll 2017-07-06 00:26 - 2017-07-06 00:26 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-11-23 15:42 - 2017-11-23 15:42 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2016-10-31 17:43 - 2017-07-01 00:42 - 000569856 _____ () C:\Users\User\AppData\Local\MEGAsync\ShellExtX32.dll 2017-05-05 13:00 - 2017-04-19 02:04 - 002864984 _____ () C:\Program Files (x86)\Everrice\Application\libglesv2.dll 2017-05-05 13:00 - 2017-04-19 02:04 - 000087384 _____ () C:\Program Files (x86)\Everrice\Application\libegl.dll 2017-12-14 09:18 - 2017-12-01 11:12 - 017844736 _____ () C:\Users\Luiz\AppData\Local\Everrice\User Data\PepperFlash\28.0.0.126\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-14 00:34 - 2017-12-20 11:23 - 000003226 _____ C:\Windows\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1308743996-1395617597-108295736-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Luiz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall do Windows está desabilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{0CE9EF4D-0677-4AFA-9136-A13B5B034D38}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{92E3DD4C-4A22-473C-A263-78E1CD17792E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{99DC55BF-CF80-4DAC-9B7B-816BADA323FE}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{B1415A0F-FA6B-41B6-A0F1-8885974FEA47}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{1406F15F-71DE-4336-B037-9406211EA57E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{BD54ED0C-6A27-40AE-B062-3FBF97B24718}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{7A4E0CED-4779-4999-873C-7288C2583CB2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{A667486D-0A4D-4D19-9AD9-08ADC7E38718}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{E786A2B8-D505-4591-8327-C0F4A7FCE1AB}] => (Allow) C:\Windows\KMS-R@1n.exe FirewallRules: [{D5A30AB4-83F8-46C2-B4A3-F6A94C4F52F3}] => (Allow) C:\Windows\KMS-R@1n.exe FirewallRules: [{644B5C76-46B5-47C2-A1B1-1E302D4BC6FF}] => (Allow) C:\Users\User\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{1B1D1966-8F73-4D29-B650-7E4C0EE2BDF1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2E2C677D-94AE-4094-B612-DFB330BCA6B1}] => (Allow) C:\Users\User\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{262C82B3-A277-43D1-AD65-612353629686}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\125\tencentdl.exe FirewallRules: [{C4D5579C-CD2B-4F27-BF08-C50289B07D75}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\125\tencentdl.exe FirewallRules: [TCP Query User{716ABE00-79B1-41E8-B408-9DD84C5D8934}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe FirewallRules: [UDP Query User{B53AAEFD-47D5-47E4-AFE4-6B22B7B7C228}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe FirewallRules: [{F3B2FFD0-CA01-40A8-BDF8-8FAC4874BE1A}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B376FEA3-B404-4CF3-B9E0-3F05A78DF9F0}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9AB29199-8FCD-4054-8167-F1BD375137D9}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{64033C90-27FD-4C3B-B5B1-D1E69EB4AC2F}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{20DCC90B-A9AC-4868-AE0E-7CF79A91BC0A}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2F5ED480-642E-470F-B158-BD0A5E270F47}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3FFCFFCE-3B78-4FCE-9FB1-4F91CF36C9C1}] => (Allow) C:\Users\User\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{F5C3E693-58B0-41C6-BB65-97F09A7F6127}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{2E1B25EE-2ED4-42BA-8E82-DABEA5971BB9}] => (Allow) LPort=2869 FirewallRules: [{FEC82C70-6142-4F77-914E-93937DE53BFB}] => (Allow) LPort=1900 FirewallRules: [{1026A7AE-D045-44F8-89A6-2423E4DA2F4E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{FFB2CF37-AC41-4614-860E-6C3F900D08B3}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{37110414-4FBE-483F-83B7-116FC5E3C020}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{2A47390F-FBCA-4CDC-8956-71D3B1B94CCF}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{C8E661F7-0F33-46B9-867D-679709B91444}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{1F6770FF-8D1F-4324-9D81-7C1FF5BA420B}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{0435557A-333D-4578-898D-6C5DF4124EF6}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{01C11BC8-87D5-4DB9-A65F-836B9DD7C9EB}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{DB90F1FC-0B73-464F-9B4C-7A3202BCD5B5}] => (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{00783AB6-682E-4D51-848A-09880F4B778C}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{2866D8F3-268F-4BB3-9C7D-99EEA0EE0938}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{A792921D-1CFA-4C79-8470-F42061D82C45}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe FirewallRules: [{EBA26F40-68C0-44A2-A785-FFBD3B95BF4E}] => (Allow) C:\Users\User\Desktop\Nova pasta (3)\Steam.exe FirewallRules: [{547F9345-CA7E-4E20-A02A-93FE77A9C480}] => (Allow) C:\Users\User\Desktop\Nova pasta (3)\Steam.exe FirewallRules: [{2D6A0C83-4232-4840-B5DA-ACE9F0964BBD}] => (Allow) C:\Users\User\Desktop\Farm Frenzy 3\FarmFrenzy3.exe FirewallRules: [{8A0D6B53-2EC8-47AD-86A8-A231ED711043}] => (Allow) C:\Users\User\Desktop\Farm Frenzy 3\FarmFrenzy3.wrp.exe FirewallRules: [{778788B7-85B4-40DD-AC13-C9B28AEEBA0B}] => (Allow) C:\Users\User\Desktop\Farm Frenzy 3\F2PHttpDaemon.exe FirewallRules: [{2E183FB2-ACF4-423F-A579-122CE129568C}] => (Allow) C:\Users\User\Desktop\Farm Frenzy 3\farmfrenzy3.wrp.exe FirewallRules: [{F34ABC0A-3B7A-45FB-9EF5-D8560B8A4DE8}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{883718F4-1B51-4911-9323-84C817E0D9AF}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{19D99C7B-5D10-4554-A30A-4725004DFF0A}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4CDD3DA4-6E29-4A4F-99CF-9AB32BCEAF40}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B75907B9-87D8-46B2-B93B-9E67B17AA4B4}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F2703658-A539-4134-965F-B2761C4FB205}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1B1E8ED3-A928-458D-92D1-8A7245334780}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D6B15E20-3130-4E43-872A-A27E57961BA4}] => (Allow) C:\Users\Luiz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4C7FE1EC-E07E-40D4-878E-8FF4EF5494EF}] => (Allow) C:\Torrentex\Torrentex.exe FirewallRules: [{85A17427-722B-4442-A174-659E1174A9ED}] => (Allow) C:\Torrentex\Torrentex.exe FirewallRules: [Torrentex-In-TCP] => (Allow) C:\Torrentex\Torrentex.exe FirewallRules: [Torrentex-In-UDP] => (Allow) C:\Torrentex\Torrentex.exe FirewallRules: [TelnetServer-TlntSvr-TCP-In] => (Allow) %systemroot%\system32\tlntsvr.exe FirewallRules: [TelnetServer-Tlntadmn-RPC-In] => (Allow) %systemroot%\system32\tlntsvr.exe FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [{6C294297-4675-4C61-919A-E8BC185E4D60}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{4DA95DE1-09C5-44E6-AB6A-3582D45741FE}] => (Allow) C:\Program Files (x86)\Everrice\Application\chrome.exe FirewallRules: [{5418DB1E-1FAC-4A82-B4EE-14ACBB529CE3}] => (Allow) C:\Users\internet\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{EE83ED89-7929-4EAB-9DBA-EF44DB36961C}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\45.0.2552.869\opera.exe FirewallRules: [{ED7B5E76-FF48-4719-8A4D-84531B0FA507}] => (Allow) C:\Program Files (x86)\MIO\loader\wdcxwd5000aakx-08u6aa0_wd-wcc2e3dsr7fasr7fa.dat FirewallRules: [{582E80D5-5BD5-4F84-9A48-0D665F3003EE}] => (Allow) C:\Program Files (x86)\MIO\loader\wdcxwd5000aakx-08u6aa0_wd-wcc2e3dsr7fasr7fa.dat FirewallRules: [{5AE7C7E0-C4A0-415C-989B-35C24160BA6C}] => (Allow) C:\Program Files (x86)\Alawar Games\Farm Frenzy 4\FarmFrenzy4.wrp.exe FirewallRules: [{D4171673-EF96-486F-94E0-ABC8AE0FC190}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [{5106C6EA-637F-48C2-BD8B-BFD74E332676}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe StandardProfile\AuthorizedApplications: [C:\Program Files\Orbitdownloader\orbitdm.exe] => Enabled:Orbit StandardProfile\AuthorizedApplications: [C:\Program Files\Orbitdownloader\orbitnet.exe] => Enabled:Orbit ==================== Pontos de Restauração ========================= ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: p1483053799am Description: p1483053799am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1483053799am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: p1482538255am Description: p1482538255am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1482538255am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: p1485345365am Description: p1485345365am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1485345365am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Microsoft PS/2 Mouse Description: Microsoft PS/2 Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: p1486124751am Description: p1486124751am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1486124751am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (12/20/2017 11:59:16 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: SYSUSER-PC.exe, versão: 0.0.0.0, carimbo de hora: 0x576429c7 Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7601.23915, carimbo de hora: 0x59b94f2a Código de exceção: 0xe053534f Deslocamento com falha: 0x000000000001a06d Identificação do processo com falha: 0x%9 Hora de início do aplicativo com falha: 0xSYSUSER-PC.exe0 Caminho do aplicativo com falha: SYSUSER-PC.exe1 FCaminho do módulo de falhas: SYSUSER-PC.exe2 Identificação do Relatório: SYSUSER-PC.exe3 Error: (12/20/2017 11:34:03 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/20/2017 11:24:14 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/19/2017 08:51:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: SYSUSER-PC.exe, versão: 0.0.0.0, carimbo de hora: 0x576429c7 Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7601.23915, carimbo de hora: 0x59b94f2a Código de exceção: 0xe053534f Deslocamento com falha: 0x000000000001a06d Identificação do processo com falha: 0x%9 Hora de início do aplicativo com falha: 0xSYSUSER-PC.exe0 Caminho do aplicativo com falha: SYSUSER-PC.exe1 FCaminho do módulo de falhas: SYSUSER-PC.exe2 Identificação do Relatório: SYSUSER-PC.exe3 Error: (12/19/2017 08:23:01 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/19/2017 09:26:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: SYSUSER-PC.exe, versão: 0.0.0.0, carimbo de hora: 0x576429c7 Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7601.23915, carimbo de hora: 0x59b94f2a Código de exceção: 0xe053534f Deslocamento com falha: 0x000000000001a06d Identificação do processo com falha: 0x%9 Hora de início do aplicativo com falha: 0xSYSUSER-PC.exe0 Caminho do aplicativo com falha: SYSUSER-PC.exe1 FCaminho do módulo de falhas: SYSUSER-PC.exe2 Identificação do Relatório: SYSUSER-PC.exe3 Error: (12/19/2017 09:06:53 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/19/2017 08:56:57 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/18/2017 11:51:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: SYSUSER-PC.exe, versão: 0.0.0.0, carimbo de hora: 0x576429c7 Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7601.23915, carimbo de hora: 0x59b94f2a Código de exceção: 0xe053534f Deslocamento com falha: 0x000000000001a06d Identificação do processo com falha: 0x%9 Hora de início do aplicativo com falha: 0xSYSUSER-PC.exe0 Caminho do aplicativo com falha: SYSUSER-PC.exe1 FCaminho do módulo de falhas: SYSUSER-PC.exe2 Identificação do Relatório: SYSUSER-PC.exe3 Error: (12/18/2017 11:33:01 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Erros de Sistema: ============= Error: (12/20/2017 12:21:18 PM) (Source: volsnap) (EventID: 36) (User: ) Description: As cópias de sombra do volume C: foram anuladas porque o armazenamento de cópia de sombra não pôde crescer devido a um limite imposto pelo usuário. Error: (12/20/2017 11:31:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço Agrupamento de Rede de Mesmo Nível depende do serviço Protocolo PNRP, mas não foi possível iniciá-lo devido ao seguinte erro: %%-2140993535 Error: (12/20/2017 11:31:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Protocolo PNRP terminou com o erro: %%-2140993535 Error: (12/20/2017 11:31:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço Agrupamento de Rede de Mesmo Nível depende do serviço Protocolo PNRP, mas não foi possível iniciá-lo devido ao seguinte erro: %%-2140993535 Error: (12/20/2017 11:31:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Protocolo PNRP terminou com o erro: %%-2140993535 Error: (12/20/2017 11:31:29 AM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: A nuvem do Protocolo de Resolução de Nomes de Mesmo Nível não foi iniciada porque houve falha na criação da identidade padrão com o código de erro: 0x80630801. Error: (12/20/2017 11:31:29 AM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: A nuvem do Protocolo de Resolução de Nomes de Mesmo Nível não foi iniciada porque houve falha na criação da identidade padrão com o código de erro: 0x80630801. Error: (12/20/2017 11:31:19 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: O serviço Agrupamento de Rede de Mesmo Nível depende do serviço Protocolo PNRP, mas não foi possível iniciá-lo devido ao seguinte erro: %%-2140993535 Error: (12/20/2017 11:31:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Protocolo PNRP terminou com o erro: %%-2140993535 Error: (12/20/2017 11:31:19 AM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: A nuvem do Protocolo de Resolução de Nomes de Mesmo Nível não foi iniciada porque houve falha na criação da identidade padrão com o código de erro: 0x80630801. CodeIntegrity: =================================== Date: 2016-09-15 15:31:02.835 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-15 15:31:02.804 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-11 11:40:02.336 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-11 11:40:02.070 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-31 10:25:43.460 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-31 10:25:42.836 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-26 13:07:17.946 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-26 13:07:17.758 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-26 12:52:51.899 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-26 12:52:51.696 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Pentium(R) CPU G4400 @ 3.30GHz Percentagem de memória em uso: 65% RAM física total: 3980.71 MB RAM física disponível: 1355.82 MB Virtual Total: 7959.61 MB Virtual disponível: 5302.7 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.27 GB) (Free:2.6 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BA0BD947) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================