Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-07-2016 Executado por Gerson (2016-07-21 20:31:48) Executando a partir de C:\Users\Gerson\Downloads Windows 7 Ultimate (X64) (2015-09-05 23:50:22) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-232881845-207350019-2025853922-500 - Administrator - Disabled) Convidado (S-1-5-21-232881845-207350019-2025853922-501 - Limited - Enabled) Gerson (S-1-5-21-232881845-207350019-2025853922-1000 - Administrator - Enabled) => C:\Users\Gerson HomeGroupUser$ (S-1-5-21-232881845-207350019-2025853922-1004 - Limited - Enabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-232881845-207350019-2025853922-1000\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III (HKLM-x32\...\InstallShield_{FABB02D6-A7FD-4845-A6FA-60C565516712}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden Any Video Converter 5.8.4 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com) Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform) Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation) Central de Mouse e Teclado da Microsoft (Version: 2.5.166.0 - Microsoft Corporation) Hidden Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Cockatrice (HKLM-x32\...\Cockatrice) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.4.311 - Foxit Software Inc.) Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Genymotion version 2.6.0 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.6.0 - Genymobile) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Innkeeper (HKU\S-1-5-21-232881845-207350019-2025853922-1000\...\Innkeeper) (Version: 0.2.11 - Curse Inc.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2274 - Intel Corporation) iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.) Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation) K-Lite Mega Codec Pack 11.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.0 - ) LibreOffice 4.3.6.2 (HKLM-x32\...\{9F410B70-8A45-4F28-985E-F9731219BCBC}) (Version: 4.3.6.2 - The Document Foundation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{4D243BA7-9AC4-46D1-90E5-EEB88974F501}) (Version: 2.0.687.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}) (Version: 2.0.687.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Motorola Bluetooth (HKLM\...\1DF1F719-D43A-46E8-950F-65A8D96C678A.MBT_is1) (Version: 3.0.12.288 - Motorola, Inc.) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Opera Stable 37.0.2178.47 (HKLM-x32\...\Opera 37.0.2178.47) (Version: 37.0.2178.47 - Opera Software) Oracle VM VirtualBox 5.0.14 (HKLM\...\{82022940-639B-48A3-86D9-B139864105F7}) (Version: 5.0.14 - Oracle Corporation) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6278 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0174 - REALTEK Semiconductor Corp.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.9.201606210840 - Sony Mobile Communications Inc.) Speccy (HKLM\...\Speccy) (Version: 1.27 - Piriform) Spotify (HKU\S-1-5-21-232881845-207350019-2025853922-1000\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.) Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.) The Sims 4 Update v1.4.83.1010 inc Outdoor Retreat DLC (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - ) The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Wisdom-soft AutoScreenRecorder 3.1 Free (HKLM-x32\...\Wisdom-soft AutoScreenRecorder 3.1 Free) (Version: - Wisdom Software Inc.) Wondershare Filmora(Build 6.8.2) (HKLM-x32\...\Wondershare Filmora_is1) (Version: - Wondershare Software) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {194AA45C-6ED8-4265-AA70-46674411FD74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd) Task: {219E8C84-3F97-4A9B-BDD3-41790A9794C6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-16] (Google Inc.) Task: {571A871E-9DF7-4412-BF8B-D92B3A5412FC} - System32\Tasks\{896CCCF8-8A8A-4C04-B7BD-6E0D6664094E} => pcalua.exe -a C:\Users\Gerson\Desktop\pinnacle-videospin-2.0.exe -d C:\Users\Gerson\Desktop Task: {6556C343-3159-4660-B555-C192434DE82C} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation) Task: {83266AE5-900B-49D3-8FD3-2D244989B533} - System32\Tasks\Opera scheduled Autoupdate 1463855151 => C:\Program Files (x86)\Opera\launcher.exe [2016-05-17] (Opera Software) Task: {8E7E0476-84F9-40CC-BF48-A337D22AF7A7} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation) Task: {9B787BAC-C16D-41DA-9953-010AD2657766} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {A5C9E284-D481-4E5C-943F-D7C688CC8903} - System32\Tasks\{52D52544-78BF-4603-AD5F-E94E3F5CEEE0} => pcalua.exe -a E:\programas\pinnacle-videospin-2.0.exe -d E:\programas Task: {B2A5CCAE-1163-440F-A5A5-B189C9DDB9B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-16] (Google Inc.) Task: {B3690515-B691-4BC4-B029-57EAD6B5BA2D} - System32\Tasks\{E3A736E5-FAEB-425F-8B31-7915360A00ED} => pcalua.exe -a C:\Users\Gerson\AppData\Local\Temp\jre-8u77-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 Task: {C5F35CBC-82DF-46CD-9D1E-3EA68F76BE1F} - System32\Tasks\{A3725096-286D-4B3D-AEB1-867B59B9857E} => pcalua.exe -a E:\eauninstall.exe -d E:\ (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-05-15 16:26 - 2015-05-15 16:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-09-07 10:37 - 2005-06-07 12:26 - 00043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2016-05-21 15:25 - 2016-05-17 07:29 - 65892904 _____ () C:\Program Files (x86)\Opera\37.0.2178.47\opera.dll 2016-05-21 15:25 - 2016-05-17 07:29 - 02212392 _____ () C:\Program Files (x86)\Opera\37.0.2178.47\libglesv2.dll 2016-05-21 15:25 - 2016-05-17 07:29 - 00082472 _____ () C:\Program Files (x86)\Opera\37.0.2178.47\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-232881845-207350019-2025853922-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gerson\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 177.66.0.2 - 191.7.16.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupfolder: C:^Users^Gerson^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Notepad.lnk => C:\Windows\pss\Notepad.lnk.Startup MSCONFIG\startupfolder: C:^Users^Gerson^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Word.lnk => C:\Windows\pss\Word.lnk.Startup MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: BTMTrayAgent => rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Gerson\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{C09D557B-8386-44A4-9FB2-F3EADD8D72C3}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AB15C397-218F-4B26-BF04-F309F98D7A71}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{150AF91D-1315-4D69-AD50-2D585D476A33}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BB7A7FE2-3C06-4C08-AA04-D71A04848D0C}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FBD90AAA-0265-40D7-97A0-4ED3089D82C5}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7950670A-06D9-42F4-B7A2-D4337028490B}] => (Allow) C:\Users\Gerson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{ADEADA0F-802B-4641-B852-1BCFDE602CDF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{20F31EED-A6EF-4FD9-A7DB-76D387B814A3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{087AB6A3-CADE-460F-AC02-7F15FBDB5334}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{EAF8B336-46EA-48B9-BE44-D856EDC2BD61}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{6B4A36B5-2BF0-4C3D-AEA3-F5539017B7A5}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{CC09C3A7-BE44-4041-89D0-651E6B0CB5D3}C:\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\pro evolution soccer 2016\pes2016.exe FirewallRules: [UDP Query User{A9117461-3871-4767-BF9F-87E621B7A805}C:\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\pro evolution soccer 2016\pes2016.exe FirewallRules: [TCP Query User{3EE09A9F-3B5A-46CB-B9A4-FCD521D7D779}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{654E3B28-AFBA-4D1B-BCF8-B4541D1C48CF}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [{7412444D-9643-473C-880C-143D2E2AAA93}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{08EB4737-AC92-465B-A78F-4E5EDEF2C05B}] => (Allow) LPort=2869 FirewallRules: [{505BDD44-0180-463E-8BBA-43631B255286}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{A4B18F6A-CD03-42A0-B034-B062E9C5F986}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{3E8D41EF-C007-4A4A-A974-9D17B02D02E3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [{2A3BFF87-B44A-447D-A1AF-7BA2B349C2B0}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{2F00B6E1-E2DE-4548-BBB9-48466F9BB4DA}] => (Allow) C:\ProgramData\winnit.exe FirewallRules: [{8B7E1366-ABAF-4A73-9378-AA356534FE29}] => (Allow) C:\ProgramData\winnit.exe FirewallRules: [TCP Query User{95915243-836B-4EF2-97E9-1F964F2FD224}C:\programdata\winnit.exe] => (Block) C:\programdata\winnit.exe FirewallRules: [UDP Query User{60C49169-3B84-4D6A-B8C7-A98564C7CD95}C:\programdata\winnit.exe] => (Block) C:\programdata\winnit.exe FirewallRules: [{11114495-9035-4BB8-9B9D-2911BA9267DF}] => (Allow) C:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{9336C827-126E-4EE1-8CDE-F285747E6140}] => (Allow) C:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe FirewallRules: [TCP Query User{E0146B7B-0729-4496-8C5F-6F45204F9F08}C:\program files (x86)\java\jre1.8.0_73\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\javaw.exe FirewallRules: [UDP Query User{751AFBBC-871D-4C95-A8CA-996033DFDD18}C:\program files (x86)\java\jre1.8.0_73\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_73\bin\javaw.exe FirewallRules: [{D9AD8DD9-FA2B-4695-8204-2874C88878B7}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe FirewallRules: [{A684A9AA-22A3-4DCE-AFC3-3B72CF8106B2}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe FirewallRules: [{93EA40CC-EDF1-4D35-B142-269B1B4A44DB}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [{86913EBC-084C-4E85-837A-DB3AFEE5E81B}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [TCP Query User{C2C8D465-4C84-4F3A-A877-8F7BECEE8B20}C:\users\gerson\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gerson\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{585B01BB-A03E-45C1-9579-D74037F35726}C:\users\gerson\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gerson\appdata\roaming\spotify\spotify.exe FirewallRules: [{7FE460C4-E383-482A-B54D-4DABD4C3E45A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{8940C43D-2AC5-4579-B383-602079FFD5F5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{F3CCF7D3-D33B-4CBB-8E14-CD5AF2E0E88A}C:\users\gerson\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gerson\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{1362B1CE-6061-414D-84E4-94E2171AF5DE}C:\users\gerson\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gerson\appdata\roaming\spotify\spotify.exe FirewallRules: [{ADDCE692-CCA0-4AF1-936F-6957126B8281}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6206298F-0C5E-462A-A39D-EB8072CC9C90}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{085145FB-48A4-4612-9872-C7DA3287C71A}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe ==================== Pontos de Restauração ========================= 10-07-2016 01:23:47 Sony PC Companion 10-07-2016 01:28:53 Installed Sony Mobile Drivers 10-07-2016 06:03:25 Revo Uninstaller's restore point - MEGAsync 10-07-2016 18:49:50 Revo Uninstaller's restore point - Sony PC Companion 2.10.094 13-07-2016 01:22:08 Revo Uninstaller's restore point - Tabletop Simulator 13-07-2016 01:26:50 Revo Uninstaller's restore point - Party Hard 13-07-2016 01:37:09 Revo Uninstaller's restore point - Coffin Dodgers 21-07-2016 19:55:06 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: CSR Bluetooth Device Description: CSR Bluetooth Device Class Guid: {a173b237-6a34-4bb5-aa63-2561160fa200} Manufacturer: Motorola, Inc. Service: BTMUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: USB2.0-CRW Description: USB2.0-CRW Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Controlador de barramento SM Description: Controlador de barramento SM Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/21/2016 01:10:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5007 Error: (07/21/2016 01:10:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5007 Error: (07/21/2016 01:10:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (07/21/2016 01:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 4009 Error: (07/21/2016 01:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 4009 Error: (07/21/2016 01:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (07/21/2016 01:10:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3010 Error: (07/21/2016 01:10:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3010 Error: (07/21/2016 01:10:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (07/21/2016 01:10:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2012 Erros de Sistema: ============= Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4108) (User: TheMachine) Description: O certificado recebido do servidor remoto não foi validado corretamente. O código de erro é 0x80092012. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor. Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4120) (User: TheMachine) Description: O seguinte alerta fatal foi gerado: 43. O estado do erro interno é 552. Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4108) (User: TheMachine) Description: O certificado recebido do servidor remoto não foi validado corretamente. O código de erro é 0x80092012. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor. Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4120) (User: TheMachine) Description: O seguinte alerta fatal foi gerado: 43. O estado do erro interno é 552. Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4108) (User: TheMachine) Description: O certificado recebido do servidor remoto não foi validado corretamente. O código de erro é 0x80092012. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor. Error: (07/21/2016 07:57:43 PM) (Source: Schannel) (EventID: 4120) (User: TheMachine) Description: O seguinte alerta fatal foi gerado: 43. O estado do erro interno é 552. Error: (07/21/2016 07:50:11 PM) (Source: Schannel) (EventID: 4108) (User: TheMachine) Description: O certificado recebido do servidor remoto não foi validado corretamente. O código de erro é 0x80092012. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor. Error: (07/21/2016 07:50:11 PM) (Source: Schannel) (EventID: 4120) (User: TheMachine) Description: O seguinte alerta fatal foi gerado: 43. O estado do erro interno é 552. Error: (07/21/2016 07:50:11 PM) (Source: Schannel) (EventID: 4108) (User: TheMachine) Description: O certificado recebido do servidor remoto não foi validado corretamente. O código de erro é 0x80092012. Falha na solicitação de conexão SSL. Os dados anexados contêm o certificado do servidor. Error: (07/21/2016 07:50:11 PM) (Source: Schannel) (EventID: 4120) (User: TheMachine) Description: O seguinte alerta fatal foi gerado: 43. O estado do erro interno é 552. CodeIntegrity: =================================== Date: 2016-07-06 13:34:38.629 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-07-06 13:34:38.629 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-07-06 13:34:05.616 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-07-06 13:34:05.615 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-07-06 13:01:15.584 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-07-06 13:01:15.584 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-05-29 22:38:27.320 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-05-29 22:38:27.320 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-05-29 22:38:11.801 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-05-29 22:38:11.800 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz Percentagem de memória em uso: 75% RAM física total: 4043.84 MB RAM física disponível: 980.02 MB Virtual Total: 8085.83 MB Virtual disponível: 4735.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:455.99 GB) (Free:271.38 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: B41A49DC) Partition 1: (Active) - (Size=9.8 GB) - (Type=27) Partition 2: (Not Active) - (Size=456 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================