Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 27-07-2016 Executado por David (2016-07-29 13:26:10) Executando a partir de h:\Users\David\Desktop Windows 8.1 (X64) (2016-07-24 23:37:38) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-13895662-2233022800-3322615296-500 - Administrator - Disabled) Convidado (S-1-5-21-13895662-2233022800-3322615296-501 - Limited - Enabled) David (S-1-5-21-13895662-2233022800-3322615296-1001 - Administrator - Enabled) => C:\Users\David ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-13895662-2233022800-3322615296-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) AIMP (HKLM-x32\...\AIMP) (Version: v4.00.1687, 18.01.2016 - AIMP DevTeam) Atualizações da NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden BlueStacks App Player (HKLM-x32\...\{D080F290-4B2A-4C67-9757-63DA0C6E8855}) (Version: 2.0.0.1011 - BlueStack Systems, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0152 - Disc Soft Ltd) Epic Games Launcher (HKLM-x32\...\{23073CBA-4A21-464F-9874-0FF6B7727C7C}) (Version: 1.1.77.0 - Epic Games, Inc.) Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.6 - Androxyde) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.82 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.5.3 - PandoraTV) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Mirror's Edge™ (HKLM-x32\...\{AEDBD563-24BB-4EE3-8366-A654DAC2D988}) (Version: 1.0.1.0 - Electronic Arts) MouseServer version 1.7.1 (HKLM-x32\...\{E13018F5-FFC7-4729-9C1B-1A85807D03E6}_is1) (Version: 1.7.1 - Necta Co.) Mozilla Firefox 47.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 pt-BR)) (Version: 47.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla) NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA Driver de gráficos 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.95 - NVIDIA Corporation) NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) Painel de controle da NVIDIA 341.95 (Version: 341.95 - NVIDIA Corporation) Hidden SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden Sony Mobile Emma (HKLM-x32\...\Emma) (Version: 2.15.14.201510090937 - Sony Mobile Communications Inc.) UE4 Prerequisites (x64) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (x32 Version: 1.0.13.0 - Epic Games, Inc.) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {35314F5D-0E61-46AB-AC8A-4FCDD11895A6} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-11-29] (@ByELDI) Task: {6C625A68-96C1-4443-97A1-448214EE163B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.) Task: {897AC735-DF4A-4A5F-8497-1319999D3C95} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-07-24 21:01 - 2016-01-29 07:49 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-07-25 12:26 - 2016-07-25 12:26 - 00001024 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\ICU\icu4c-53_1\Win64\VS2013\icudt53.dll 2016-07-25 12:27 - 2016-07-25 12:40 - 73048064 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll 2016-07-25 12:27 - 2016-07-25 12:27 - 02653696 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll 2016-07-25 12:27 - 2016-07-25 12:27 - 00087552 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll 2016-07-25 12:21 - 2016-07-25 12:22 - 09758328 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe 2016-07-24 22:46 - 2016-07-18 22:31 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libglesv2.dll 2016-07-24 22:46 - 2016-07-18 22:31 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libegl.dll 2015-12-01 14:21 - 2016-07-24 21:18 - 03287552 _____ () C:\Program Files (x86)\BlueStacks\libGLESv2.dll ==================== Alternate Data Streams (Whitelisted) ========= ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2013-08-22 10:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-13895662-2233022800-3322615296-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\David\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está desabilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{132378FA-4F79-4791-BC0D-727AB6E1A126}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{3ECEB0C9-EF99-4BC2-8B11-FE09D24C3389}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{139180CB-1E96-46C3-9268-5B155FD8F32C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{51429F84-2F15-4FED-9573-E20567FEA2E0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{AD09E2A6-3C73-4EB9-A50D-5A7C8F46BB71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B9E0DF77-A0A6-4AF6-8AD6-AD8C67C9588A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8BBC11B2-4751-4AC6-A44A-7CCB1B1046D0}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1471FCE6-C132-4DDC-AF21-86581E063443}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9F3BE96F-B58D-41BE-B605-234AFA39E713}] => (Allow) F:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe FirewallRules: [{9947DB21-9199-43A2-B26A-F40A2BD6801B}] => (Allow) F:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe FirewallRules: [{D1A7451D-C8C8-41C0-A8FD-759A277EF349}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{CEC346BB-3D2F-43B6-9E5F-87A446E9BCE0}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe FirewallRules: [{D2D61855-8F73-457A-8A87-413C25B70B66}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe FirewallRules: [{3DED1E90-8D70-4BCD-8226-6A9BCA60633A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{CF16FDDA-5711-4ECF-84FD-2950C6E65A2E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Pontos de Restauração ========================= 29-07-2016 12:27:02 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/29/2016 01:12:11 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (07/29/2016 03:27:28 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll4 Error: (07/29/2016 03:27:27 AM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Error: (07/29/2016 03:27:26 AM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Error: (07/29/2016 03:27:21 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: MSDTCC:\Windows\system32\msdtcuiu.DLL4 Error: (07/29/2016 03:27:17 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: LsaC:\Windows\System32\Secur32.dll4 Error: (07/29/2016 03:27:16 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: ESENTC:\Windows\system32\esentprf.dll4 Error: (07/29/2016 03:27:16 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll4 Error: (07/28/2016 12:32:47 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll4 Error: (07/28/2016 12:32:32 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Erros de Sistema: ============= Error: (07/29/2016 10:28:39 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (07/29/2016 04:55:40 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (07/29/2016 04:40:43 AM) (Source: volsnap) (EventID: 14) (User: ) Description: As cópias de sombra do volume C: foram anuladas devido a uma falha de E/S no volume C:. Error: (07/29/2016 03:37:31 AM) (Source: DCOM) (EventID: 10010) (User: Renegado) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (07/29/2016 03:37:00 AM) (Source: DCOM) (EventID: 10010) (User: Renegado) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (07/28/2016 02:29:56 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (07/28/2016 02:16:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT) Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de Definição Windows Defender – KB2267602 (Definição 1.225.2655.0). Error: (07/28/2016 12:44:03 PM) (Source: DCOM) (EventID: 10010) (User: Renegado) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (07/28/2016 12:43:32 PM) (Source: DCOM) (EventID: 10010) (User: Renegado) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (07/27/2016 10:37:45 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT) Description: Um alerta fatal foi gerado e enviado ao ponto de extremidade remoto. Isso pode resultar no término da conexão. O código de erro fatal definido do protocolo TLS é 40. O estado de erro do Windows SChannel é 252. ==================== Informações da Memória =========================== Processador: Intel(R) Pentium(R) CPU G2030 @ 3.00GHz Percentagem de memória em uso: 47% RAM física total: 4059.95 MB RAM física disponível: 2123.4 MB Virtual Total: 5979.95 MB Virtual disponível: 3401.36 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.69 GB) (Free:72.43 GB) NTFS Drive e: (Mirror's Edge) (CDROM) (Total:6.09 GB) (Free:0 GB) UDF Drive f: () (Fixed) (Total:234.38 GB) (Free:150.71 GB) NTFS Drive g: (JOGOS ETC) (Fixed) (Total:231.37 GB) (Free:107.55 GB) NTFS Drive h: (User) (Fixed) (Total:232.54 GB) (Free:112.01 GB) NTFS Drive i: () (Fixed) (Total:148.95 GB) (Free:148.84 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 63AE63AE) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 0003D7CB) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 33E51638) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=148.9 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 3E73C745) Partition 1: (Active) - (Size=234.4 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.4 GB) - (Type=OF Extended) ==================== Fim de Addition.txt ============================