Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 28-09-2016 Executado por Thiago (28-09-2016 18:48:27) Executando a partir de D:\Downloads Windows 7 Ultimate (X64) (2016-09-12 21:01:29) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2704603297-2990201353-824464669-500 - Administrator - Disabled) Convidado (S-1-5-21-2704603297-2990201353-824464669-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2704603297-2990201353-824464669-1002 - Limited - Enabled) Thiago (S-1-5-21-2704603297-2990201353-824464669-1000 - Administrator - Enabled) => C:\Users\Thiago ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.) Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.4.0 - IObit) Ansel (Version: 372.90 - NVIDIA Corporation) Hidden Atualizações da NVIDIA 2.11.4.1 (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Batman - The Telltale Series (HKLM-x32\...\2140144872_is1) (Version: 2.0.0.3 - GOG.com) CCleaner (HKLM\...\CCleaner) (Version: 3.24 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) Dead Rising 3: Apocalypse Edition (HKLM-x32\...\Dead Rising 3: Apocalypse Edition_is1) (Version: - ) Dll-Files.com Fixer (HKLM-x32\...\Dll-Files.com Fixer_is1) (Version: 1.0 - Dll-Files.com) Dolby Axon - 1.5.1.1 (HKLM-x32\...\{17936630-5344-4F18-9970-616129E2A114}_is1) (Version: 1.5.1.1 - Dolby Laboratories) Dying Light (HKLM-x32\...\Dying Light_is1) (Version: - ) Dying Light ver. 1.11.1.0 (HKLM-x32\...\{79DA8450-1AEE-4298-9526-AD3B8D6E59A4}_is1) (Version: 1.11.1.0 - Techland) EVGA PrecisionX 16 (HKLM-x32\...\{4C5ECFC6-AF6E-42A0-988D-0A5FCBB8F0B9}) (Version: 5.3.11 - EVGA Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.4.0.125 - IObit) Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Mad Max (HKLM\...\Steam App 234140) (Version: - Avalanche Studios) Mad Max, âåðñèÿ 1.0.0.1 (HKLM-x32\...\Mad Max_is1) (Version: 1.0.0.1 - RePack by SEYTER) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - ) NVIDIA Driver de áudio HD 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.1 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) ONE PIECE BURNING BLOOD (HKLM-x32\...\ONE PIECE BURNING BLOOD_is1) (Version: - ) Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Painel de controle da NVIDIA 372.90 (Version: 372.90 - NVIDIA Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.) Rise of the Tomb Raider (HKLM-x32\...\{45F08513-973A-4C18-93FD-8E12B1908390}_is1) (Version: - Square Enix) Shadow of Mordor GOTY Edition v1.0.1951.27 versão PT-BR [BR-Repacks.com] (HKLM-x32\...\Shadow of Mordor GOTY Edition v1.0.1951.27_is1) (Version: PT-BR [BR-Repacks.com] - BR-Repacks.com) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden SMPlayer 15.11.0 (HKLM-x32\...\SMPlayer) (Version: 15.11.0 - Ricardo Villalba) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Warsaw 1.12.4.14 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.4.14 - GAS Tecnologia) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Wolcen - Lords of Mayhem (HKLM-x32\...\1458655673_is1) (Version: 2.0.0.2 - GOG.com) Wolcen: Lords of Mayhem (HKLM\...\Steam App 424370) (Version: - WOLCEN Studio) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {130BA873-F474-4E13-B5EE-A8FD0CC49BDA} - System32\Tasks\DLL-files.com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-06-19] (Dll-FIles.Com) Task: {24984A7A-D8B2-45D9-872D-E425694A0A9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd) Task: {5BAB0F9A-3527-448E-827E-3BF252AA96B8} - System32\Tasks\ASC9_SkipUac_Thiago => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-07-28] (IObit) Task: {5DD30CB7-FA78-478E-88D6-8DEBEE050875} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-19] (Google Inc.) Task: {65EC1804-64F1-455A-99AB-5B16272A845E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated) Task: {70E2D072-1BE0-422C-889D-8E6EF2B955B9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-09-13] (AVAST Software) Task: {76822129-B1D4-483E-9836-C1406DB9F686} - System32\Tasks\Uninstaller_SkipUac_Thiago => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-06-24] (IObit) Task: {7C4C990B-76C5-4801-A85D-B0D2F7A5BD8E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe [2016-09-13] (Adobe Systems Incorporated) Task: {9B07709C-CFFE-47FF-80BB-AF9439FAF4A1} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-07-20] (IObit) Task: {C8778B23-646A-4EA5-A8D9-AA33DCDC271D} - System32\Tasks\{2026B379-3735-4D79-8F68-4B028D9C9C1E} => D:\Jogos\Dead Rising 3\Dead Rising 3 - Apocalypse Edition\deadrising3.exe [2015-12-08] (CAPCOM CO., LTD.) Task: {D26904DD-6DB3-45CC-97EE-92F25D58E0AD} - System32\Tasks\DLL-files.com Fixer_UPDATES => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-06-19] (Dll-FIles.Com) Task: {D8156A5D-F632-42EF-A75B-8E572F35386B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-19] (Google Inc.) Task: {FA607E51-E228-4F5C-A01D-553668DDF6D6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-13] (AVAST Software) Task: {FEAE8FF8-31A4-43B2-BE46-65099D9E4DA3} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe [2016-04-12] (EVGA Corp.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DLL-files.com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\Windows\Tasks\DLL-files.com Fixer_UPDATES.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-09-12 18:25 - 2016-09-16 19:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-09-19 18:12 - 2016-09-13 23:52 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll 2016-09-19 18:12 - 2016-09-13 23:52 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll 2016-09-13 07:07 - 2016-09-13 07:07 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-09-13 07:07 - 2016-09-13 07:07 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-09-28 16:49 - 2016-09-28 16:49 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16092801\algo.dll 2016-09-16 14:55 - 2016-06-14 22:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-09-13 08:33 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll 2016-09-13 08:33 - 2015-12-28 13:49 - 00629536 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll 2016-09-13 07:07 - 2016-09-13 07:07 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-09-13 08:33 - 2015-12-23 18:32 - 00355616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl 2016-09-13 08:33 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl 2016-09-13 08:33 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl 2016-09-13 08:34 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2016-09-13 08:34 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2016-09-12 18:36 - 2016-09-08 00:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-09-12 18:36 - 2016-08-31 22:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-09-12 18:36 - 2016-08-31 22:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-09-12 18:36 - 2016-08-31 22:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-09-12 18:36 - 2016-09-20 16:28 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll 2016-09-12 18:36 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-09-12 18:36 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-09-12 18:36 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-09-12 18:36 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-09-12 18:36 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-09-12 18:36 - 2016-09-20 16:28 - 00835360 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-09-12 18:36 - 2016-07-04 19:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2016-09-12 18:36 - 2016-08-04 17:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2016-09-12 18:36 - 2015-09-24 20:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2016-09-12 18:34 - 2013-08-02 14:07 - 00073728 _____ () C:\Program Files (x86)\DolbyAxon\zlib1.dll 2016-09-28 18:32 - 2016-09-28 18:32 - 00148480 _____ () C:\Users\Thiago\AppData\Local\Temp\DVPB77D.tmp ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Windows\System32:C32C6AFB_Bb.gbp [2] AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [2022] AlternateDataStreams: C:\Windows\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686] AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198] AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\bb.com.br -> aapj.bb.com.br IE trusted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\gastecnologia.com.br -> cloud.gastecnologia.com.br IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-2704603297-2990201353-824464669-1000\...\100sexlinks.com -> 100sexlinks.com Existem ainda 4789 sites a mais. ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2704603297-2990201353-824464669-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Thiago\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.25.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{664CC3B9-1CFC-4EE5-AD38-F97831F583EE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{650921D0-8802-46BB-9595-45BDBF0A946A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{712513B3-E6E4-40DF-B45B-961FF87F5339}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe FirewallRules: [{16DAA306-32E1-470A-B553-33897291201A}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe FirewallRules: [{C7059236-3FD2-44E8-B99C-3A5E7867C779}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D740CB36-562E-438E-B4C8-AB20B82DF97A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{93CD2D8A-972B-4DAF-8A67-6B400A5138F3}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{316C30B7-2EA1-4B4A-B65C-C9D62726A805}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5859415A-B9D6-4388-84F1-8C46BB0E6DA8}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5D4F9318-BF87-409B-8859-60EC6F38A57A}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1E390E35-8791-406A-8766-EE81555BC25D}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6B951FE4-8924-4FC2-9B1B-980359F8D6D9}] => (Allow) C:\Users\Thiago\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{13F308F9-257A-44BC-A645-EB839322AC46}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{A4147ACD-D7F5-4AE7-9D53-474F6FD1CE71}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{7E47532E-CA41-4610-AE95-0AC246E33190}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1E09DD8B-1B42-4435-AA98-9774A8221260}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F17DF215-1F42-4441-B4CD-2EEBFC81BA46}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{92E34377-33FB-4025-BF3C-CC5731D4909D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{CA7E099D-1E60-4EED-B195-0A1638C7EE20}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{2E7ADB7E-914E-4219-B33A-451E9051F3E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{A9A3DA21-60EA-4D78-932C-576C8876E65B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D3E1E1AF-1820-418D-A7DD-3E7920483862}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D3A86F33-6A71-4710-A8EA-B2FE8BEC93E4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{1283BE4C-027F-4112-A100-EA121C1286BE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{A2980A25-5B90-4F61-A69D-4B851586FCD8}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{74B2C7B2-D580-4086-BA72-A19B122B3B24}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{4CB843E4-AF66-445B-9457-20C86C96639B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{29AB8A05-A226-48FB-B822-9CBF34789A25}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{44302704-46A3-4235-94CE-2ABDF68F0A25}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Mad Max\MadMax.exe FirewallRules: [{77492B6D-36D9-4C39-897A-F8C72EF080AC}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Mad Max\MadMax.exe FirewallRules: [{3CF7A283-4A74-471C-8DA5-C1B467DC1CCD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{1EED959B-E092-47CB-B063-86F9D0F502C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{DE416F5A-19D2-495E-8191-E19773C06D6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{421B4C1D-489A-43AE-AD50-6562D6AD1450}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E3959CB3-26C3-4AF6-ABFA-7C1496C98B8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B79CEF30-99D6-4708-AA37-6779DC51DE26}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{E867AA69-0C5C-4E84-87F2-8DBBB94BCC1A}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{D3C89498-02F5-4D7B-ADF5-B8759ABF0265}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{3D15C614-8279-4096-91E8-FDAD3DB9D9A9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [TCP Query User{4627AC73-22C9-4F2A-99CA-D837C77DA870}D:\jogos\dying light\dying light\dyinglightgame.exe] => (Block) D:\jogos\dying light\dying light\dyinglightgame.exe FirewallRules: [UDP Query User{34437515-6124-4F7E-9726-691775869446}D:\jogos\dying light\dying light\dyinglightgame.exe] => (Block) D:\jogos\dying light\dying light\dyinglightgame.exe FirewallRules: [{CAB078F8-039B-4F71-88CF-FBE2A30E285A}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{962EC6F8-7410-4456-8A0D-D3BA7795C5D5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{5876F07E-3A29-49CB-957F-F21C4CC21834}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{33715F8F-FE7C-485A-B4D7-6A9183636F43}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D0293200-CDD4-4CB7-8581-3C2D5C472E11}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{7A59B5A6-D705-4784-A050-8DDBCE14D70C}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Wolcen\win_x64\Wolcen.exe FirewallRules: [{DC9C2184-FF70-4490-A32A-E4E8D260F113}] => (Allow) D:\Jogos\SteamLibrary\SteamApps\common\Wolcen\win_x64\Wolcen.exe ==================== Pontos de Restauração ========================= 16-09-2016 14:56:41 DirectX instalado 16-09-2016 15:31:29 DLL-Files.com Fixer sex, set 16, 16 15:31 16-09-2016 16:01:49 Installed EVGA PrecisionX 16. 16-09-2016 16:02:22 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 16-09-2016 16:02:24 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 16-09-2016 16:15:47 DirectX instalado 19-09-2016 18:03:25 DLL-Files.com Fixer seg, set 19, 16 18:03 21-09-2016 18:00:51 DLL-Files.com Fixer qua, set 21, 16 18:00 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (09/23/2016 11:55:47 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Wolcen.exe versão 3.7.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 1754 Hora de Início: 01d215aa7f3c0a3c Hora de Término: 25 Caminho do Aplicativo: D:\Jogos\Umbra\Wolcen - Lords of Mayhem\Bin64\Wolcen.exe Id do Relatório: ce3e4e51-819d-11e6-9ed1-305a3a9e3b8c Error: (09/23/2016 11:54:54 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Wolcen.exe versão 3.7.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 16e4 Hora de Início: 01d215aa644b2170 Hora de Término: 10 Caminho do Aplicativo: D:\Jogos\Umbra\Wolcen - Lords of Mayhem\Bin64\Wolcen.exe Id do Relatório: ae566b58-819d-11e6-9ed1-305a3a9e3b8c Error: (09/22/2016 07:39:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bc9bb Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000 Código de exceção: 0xc000041d Deslocamento com falha: 0x0000000003bd0fd8 Identificação do processo com falha: 0x708 Hora de início do aplicativo com falha: 0x01d214b1e8de600c Caminho do aplicativo com falha: C:\Windows\Explorer.EXE FCaminho do módulo de falhas: unknown Identificação do Relatório: d7c20085-80b0-11e6-9e86-305a3a9e3b8c Error: (09/21/2016 06:26:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: ROTTR.exe, versão: 1.0.668.1, carimbo de hora: 0x577f7f9d Nome do módulo de falhas: MSVCR110.dll, versão: 11.0.51106.1, carimbo de hora: 0x5098826e Código de exceção: 0xc0000005 Deslocamento com falha: 0x000000000003c3b9 Identificação do processo com falha: 0x168c Hora de início do aplicativo com falha: 0x01d2144d58aeb6c7 Caminho do aplicativo com falha: D:\Jogos\tomb raider\Rise of the Tomb Raider\ROTTR.exe FCaminho do módulo de falhas: D:\Jogos\tomb raider\Rise of the Tomb Raider\MSVCR110.dll Identificação do Relatório: ff73c14c-8041-11e6-9ffd-305a3a9e3b8c Error: (09/20/2016 08:48:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: ROTTR.exe, versão: 1.0.668.1, carimbo de hora: 0x577f7f9d Nome do módulo de falhas: MSVCR110.dll, versão: 11.0.51106.1, carimbo de hora: 0x5098826e Código de exceção: 0xc0000005 Deslocamento com falha: 0x000000000003c3b9 Identificação do processo com falha: 0xafc Hora de início do aplicativo com falha: 0x01d21394f677e6ff Caminho do aplicativo com falha: D:\Jogos\tomb raider\Rise of the Tomb Raider\ROTTR.exe FCaminho do módulo de falhas: D:\Jogos\tomb raider\Rise of the Tomb Raider\MSVCR110.dll Identificação do Relatório: c2a00897-7f8c-11e6-9fca-305a3a9e3b8c Error: (09/20/2016 06:28:34 AM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Não é possível inicializar o índice. Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (09/20/2016 06:28:34 AM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Não é possível inicializar o aplicativo. Contexto: Aplicativo Windows Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (09/20/2016 06:28:34 AM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Não é possível inicializar o objeto coletor. Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (09/20/2016 06:28:34 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Não é possível inicializar o plug-in em . Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: Elemento não encontrado. (HRESULT : 0x80070490) (0x80070490) Error: (09/20/2016 06:28:33 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Não é possível inicializar o plug-in em . Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Erros de Sistema: ============= Error: (09/23/2016 11:25:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Steam Client Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/23/2016 11:25:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Steam Client Service. Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 Error: (09/23/2016 11:58:48 AM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: Event-ID 13 CodeIntegrity: =================================== Date: 2016-09-20 16:46:13.522 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-20 16:46:13.522 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz Percentagem de memória em uso: 49% RAM física total: 8136.66 MB RAM física disponível: 4090.45 MB Virtual Total: 16271.47 MB Virtual disponível: 11699.53 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:151.6 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] Drive d: () (Fixed) (Total:736.1 GB) (Free:230.44 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00040BDA) Partition 1: (Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=736.1 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================