Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 23-07-2016 02 Executado por fabio (2016-07-23 18:08:24) Executando a partir de C:\Users\fabio\Downloads Windows 7 Ultimate (X64) (2014-05-02 23:51:22) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1054806804-276428849-4259281459-500 - Administrator - Disabled) Convidado (S-1-5-21-1054806804-276428849-4259281459-501 - Limited - Disabled) fabio (S-1-5-21-1054806804-276428849-4259281459-1000 - Administrator - Enabled) => C:\Users\fabio HomeGroupUser$ (S-1-5-21-1054806804-276428849-4259281459-1002 - Limited - Enabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version: - Microsoft) 2007 Microsoft Office Suite Service Pack 1 (SP1) (x32 Version: - Microsoft) Hidden Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{BF0A9385-FA8F-6823-8AD4-5D725D796578}) (Version: 3.0.847.0 - Advanced Micro Devices, Inc.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version: - Blizzard Entertainment) EA Download Manager UI (x32 Version: 6.0.4 - Electronic Arts) Hidden Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.23.0 - SaveSense) Hidden <==== ATENÇÃO Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Grand Chase History v04072016 (HKLM-x32\...\{F4CA90A9-655D-4388-B6C2-0FFDDE21C2A5}_is1) (Version: v04072016 - History Games, Inc.) Guitar Hero III (HKLM-x32\...\{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}) (Version: 1.00.0000 - Aspyr) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) HydraVision (x32 Version: 4.2.216.0 - Advanced Micro Devices, Inc.) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.4.1441 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Magic Duels (HKLM\...\Steam App 316010) (Version: - Stainless Games Ltd.) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{070C55FA-FB9D-46DD-B30B-4B520A83A66A}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 pt-BR)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla) Nero 7 Ultra Edition (HKLM-x32\...\{C6115A28-F277-4E82-B067-84D28BF21046}) (Version: 7.03.1357 - Nero AG) Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.0.0 - Duodian Technology Co. Ltd.) Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (12/06/2010 4.0.0000.00000) (HKLM\...\30B2813B1F17EF6D99360A190E7F0D3BA2F0DC3C) (Version: 12/06/2010 4.0.0000.00000 - Google, Inc.) Prince of Persia Sands of Time (HKLM-x32\...\Uplay Install 111) (Version: - Ubisoft) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.52.203.2012 - Realtek) SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.) Standard Mouse Driver 70 (HKLM-x32\...\{6C4453CD-123A-40FB-8227-E23AF8748C5A}) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Top Gaming Mouse (HKLM-x32\...\{E32A8611-868C-4FCD-99D2-7F6366C9961F}}_is1) (Version: - ) Unity Web Player (HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\UnityWebPlayer) (Version: 5.0.0f4 - Unity Technologies ApS) Uplay (HKLM-x32\...\Uplay) (Version: 20.0 - Ubisoft) Windows Driver Package - BigNox Corporation (VBoxUSB) USB (09/16/2015 4.3.12) (HKLM\...\76B144D15273552931249392EDB13C0BBD52C84E) (Version: 09/16/2015 4.3.12 - BigNox Corporation) Windows Driver Package - BigNox Corporation VBoxUSBMon System (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation) Windows Driver Package - BigNox Corporation XQHDrv System (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1054806804-276428849-4259281459-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\fabio\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1054806804-276428849-4259281459-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\fabio\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1054806804-276428849-4259281459-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\fabio\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-1054806804-276428849-4259281459-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\fabio\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => Nenhum Arquivo ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0664D5C2-20C4-4CC3-B49E-8EA22FE6B69A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-06-23] (AVAST Software) Task: {0DF4CAF6-02C0-4BE2-8525-A95458827AB1} - System32\Tasks\{57AF26B0-3747-45F4-80CC-06222A819C70} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {17B87C9D-D768-4E41-B0DB-6B240C3F44E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11] (Google Inc.) Task: {17C3E5FA-549A-4167-A8AA-80BC58E555CA} - System32\Tasks\{024BBECA-3B6C-4446-B561-C5E8CEF157C4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {1CC80FC2-8E3D-44A1-9237-B11319CF8AAE} - System32\Tasks\SafeZone scheduled Autoupdate 1463261954 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-06-17] (Avast Software) Task: {26EBB95C-5858-444B-A13C-C0B48A8635F9} - System32\Tasks\{C0102D2F-7B6C-4E5F-BABB-A6643362FE94} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {26FB335C-1F84-4E56-82FD-80502F820933} - System32\Tasks\{2FC51248-4555-4746-B821-186ADD98E02D} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {2798F9E4-852B-4911-9510-93917A3A3176} - System32\Tasks\{650555E3-E383-4B9E-8FBE-260E08B9BCC1} => pcalua.exe -a D:\Setup.exe -d D:\ Task: {29C9ABC3-37E6-44D9-B6FA-AE0CFDD4CC4B} - System32\Tasks\{AAF8A5A0-A64E-4F9C-9C7C-8D8F461786D4} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\eauninstall.exe" -d "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted" Task: {2E6940E9-B330-4C69-94A1-F2DEB9C7CB3F} - System32\Tasks\{DB9980F6-D736-4F03-AA7D-B7196392739A} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {3361FF7A-50B8-431A-9D58-3395503707ED} - System32\Tasks\ASUS\i-Setup => C:\Windows\Chipset\AsusSetup.exe Task: {441DB895-A91C-4C5B-8709-EDF8245E31CA} - System32\Tasks\{CBFF5AF7-F2C0-4338-8122-9A893776C0DE} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {4C47334E-06CF-4A95-8618-668EB4397ACB} - System32\Tasks\{9ABF7C6A-1331-4B4F-9E6B-CFE99963D4B1} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\nfsmw_br.exe" -d "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted" Task: {4EDF905E-315B-4158-A87B-060383F5BE1F} - System32\Tasks\{E7C048F8-F492-4C17-9F6B-558684971AAA} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.18.0.106&LastError=404 Task: {541DB749-6F80-4AFD-8918-2487EBF6D738} - System32\Tasks\{21CBA12F-CF00-49CE-8948-D8D8C949DF90} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {6363615D-D999-4327-84F1-93A713906042} - System32\Tasks\{12EBE16B-60A3-4A9D-8C0D-A911D1874EDC} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {63FAB185-C6CE-4CC3-9A29-7E63B2DBA440} - System32\Tasks\{2C5CEAB1-30E6-4B0C-B5B0-0DF1286EF0EF} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.73.105.456/pt/abandoninstall?page=tsProgressBar Task: {65C64BF1-0922-4340-A7D7-B8A9DF5D5777} - System32\Tasks\{BA0CBFC9-4711-4870-B68C-4701050A712E} => pcalua.exe -a C:\Users\fabio\Desktop\971-wlsetup-web.exe -d C:\Users\fabio\Desktop Task: {668AA668-68DF-4D48-A5EE-F35546271130} - System32\Tasks\{D3D64599-835C-4F59-B4DD-8F3B53C7DB64} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {66C699C0-424C-4EE7-99DE-9FCBE8DC41DA} - System32\Tasks\{52EC871B-F173-49C7-B0CB-DF4F015AB05A} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {74D47FCA-1C1D-4E7B-9BB2-D9A23F3ACD46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd) Task: {795DBA94-7F15-43FD-92A8-FF864BB90B54} - System32\Tasks\{659914BE-0694-40F8-8D94-7B0B33EA33C7} => pcalua.exe -a "E:\Guitar Hero III Installer.exe" -d E:\ Task: {853ADAD5-FC04-4027-B22A-D130E5A32D2D} - System32\Tasks\{6D28444C-6BF8-415C-A8F1-6E2E6AA78E7F} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Crack\nfsmw_br.exe" -d "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Crack" Task: {89B158D9-853D-4BD9-945F-E2A3B3C98FE8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1054806804-276428849-4259281459-1000Core => C:\Users\fabio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-01] (Facebook Inc.) Task: {8B00D015-D42A-41C0-A6CC-9A32296F8CD2} - System32\Tasks\{857E8BCE-353E-4715-A5F2-ED4250B625DF} => pcalua.exe -a C:\YUGIOH\YGO\All_Cards_Unlocker_3[1].0.exe -d C:\YUGIOH\YGO Task: {8D7BB659-C70A-4032-82EA-D3E107128601} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {8E18B713-3E66-4F7D-B8B5-5F5A49BBC1D8} - System32\Tasks\{57592F06-2E63-4C18-B2E1-E2D76C84910C} => pcalua.exe -a "C:\YUGIOH\YGO\All Cards by Federico P..exe" -d C:\YUGIOH\YGO Task: {97B3E2DC-E43B-4004-B31D-945120C30BC3} - System32\Tasks\{3479C148-8706-4AFC-8099-DE7C11067DC9} => pcalua.exe -a C:\Users\fabio\Downloads\LeagueofLegends_BR_Installer_9_15_2014.exe -d C:\Windows\SysWOW64 -c /groupsextract:100;101;102; /out:"C:\Users\fabio\AppData\Roaming\Riot Games\League of Legends\prerequisites" /callbackid:4144 Task: {9F939FFA-B815-44F3-88AD-6161386840EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11] (Google Inc.) Task: {BACCDF91-BAF2-418D-BAD1-AB04135891CF} - System32\Tasks\{FA772EA4-9036-48C5-9483-7ED565FEC01E} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {BE84ADF2-E6AA-49CF-9040-0A039F27A78B} - System32\Tasks\{E8386CF5-6582-47FE-8DD0-44C86D2A87D0} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe Task: {C1F79C22-FEDD-4B87-B5C7-B52398D1690C} - System32\Tasks\{72C2ECF9-3D46-4E59-A25A-30870EF76C40} => pcalua.exe -a C:\Users\fabio\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=pcm <==== ATENÇÃO Task: {C897BF94-98B7-46BA-9508-33464B5444C2} - System32\Tasks\{2CCDE31F-056A-473B-B553-BB0947715E50} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.73.105.456/pt/abandoninstall?page=tsInstall Task: {D06004D3-24DC-4369-817D-AA880A217810} - System32\Tasks\{2EE90FEC-0CB0-4175-89E4-440FC2CA49FF} => pcalua.exe -a D:\DirectX\DXSETUP.exe -d D:\DirectX Task: {D3BF8DA1-9552-4209-9B73-BE6581D568BC} - System32\Tasks\{53B52D71-DE6A-44F3-82E0-284FFF42D386} => pcalua.exe -a "C:\Program Files (x86)\EA Games\Need for Speed Most Wanted\nfsmw_br[www.gamevicio.com.br].exe" -d "C:\Program Files (x86)\EA Games\Need for Speed Most Wanted" Task: {E168EF92-47DC-4D41-83F7-EA0938EDCEA5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software) Task: {F5F7A8BB-5420-4CCB-83C7-D774F8EBE30A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1054806804-276428849-4259281459-1000UA => C:\Users\fabio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-01] (Facebook Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1054806804-276428849-4259281459-1000Core.job => C:\Users\fabio\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1054806804-276428849-4259281459-1000UA.job => C:\Users\fabio\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GWUywm5lBtuXv2jKC7y2IkYPi.job => C:\Users\fabio\AppData\Roaming\GWUywm5lBtuXv2jKC7y2IkYPi.exe <==== ATENÇÃO ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\fabio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy/?subid=1&click_id=89c478a33d114111216f1d2e6174cbb6499aca6c --start-fullscreen ShortcutWithArgument: C:\Users\fabio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f0f44399f9fb9bdb\Chromium.lnk -> C:\Users\fabio\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> --profile-directory=Default ==================== Módulos Carregados (Whitelisted) ============== 2016-04-03 19:20 - 2016-04-03 19:20 - 00254264 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe 2016-04-03 19:20 - 2016-04-03 19:20 - 00564024 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe 2016-04-15 15:07 - 2016-04-15 15:07 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2016-06-23 21:10 - 2016-06-23 21:10 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-07-23 17:34 - 2016-07-23 17:34 - 03001344 _____ () C:\Program Files\AVAST Software\Avast\defs\16072300\algo.dll 2016-06-23 21:10 - 2016-06-23 21:10 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-06-23 21:10 - 2016-06-23 21:10 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-05-02 21:23 - 2012-03-06 04:27 - 01198872 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-06-17 23:17 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll 2016-06-17 23:17 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\Windows\System32:29AD8584_Cef.gbp [2] AlternateDataStreams: C:\Windows\System32:29AD8584_Uni.gbp [2] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\.DEFAULT\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\.DEFAULT\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\.DEFAULT\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\caixa.gov.br -> imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\google.com -> www.google.com IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\google.com.br -> www.google.com.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\itau.b.br -> www.itau.b.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\itau.com.br -> bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-1054806804-276428849-4259281459-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2016-07-23 17:34 - 00002022 ____A C:\Windows\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com Existem ainda 4 mais linhas. ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1054806804-276428849-4259281459-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\fabio\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 200.175.89.139 - 200.175.5.139 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: BingSvc => C:\Users\fabio\AppData\Local\Microsoft\BingSvc\BingSvc.exe MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: DApp => C:\Program Files\PCDApp\start.vbs MSCONFIG\startupreg: Diebold - Warsaw => C:\Program Files\Diebold\Warsaw\core.exe MSCONFIG\startupreg: Facebook Update => "C:\Users\fabio\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" MSCONFIG\startupreg: MouseDriver => TiltWheelMouse.exe MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SpaceSoundPro => "C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe" MSCONFIG\startupreg: Standard Mouse Driver 70 => "C:\Program Files (x86)\Standard Mouse Driver 70\Monitor.exe" MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: TopGamingMouse => C:\Program Files (x86)\Top Gaming Mouse\GamingMouse\mousehid.exe MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\fabio\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun MSCONFIG\startupreg: Yeaplayer => C:\Program Files (x86)\Yeaplayer\Yeaplayermd.exe /autostart ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{4685839B-F7A5-4F62-9457-5EFD12889574}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{29422CAC-4574-434B-931E-366ABB709648}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{AE616F6B-5EAB-4593-A79D-0B0D93AE46B7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{345AC5DA-38A7-4B18-8389-450B2C5041D6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{22E693A1-32B4-48D4-B386-1DFE1216F0E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{4D84BDDA-7D48-47C4-B588-0DC080DC5D4D}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{7CD92947-3BAE-4772-ABBC-0E8778CD464B}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe FirewallRules: [UDP Query User{15C029E1-37D3-4636-9995-F8374450FECE}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe FirewallRules: [TCP Query User{2E986F23-876F-4CF9-92F3-F016A9AFBB96}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{03CF6124-1F5C-4FE9-BCA6-61EB09732214}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [{18679D35-8F9B-43CD-BA4A-33F95BA0B297}] => (Allow) C:\Program Files\PCDApp\cgminer.exe FirewallRules: [{5B0300BA-5475-4F87-96D8-4306CFC91F87}] => (Allow) C:\Program Files\PCDApp\cgminer.exe FirewallRules: [TCP Query User{C4DEF959-81A4-477C-9EBA-0323DC819A43}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{63EDBE77-9052-42B2-A03B-0CA0BCF9D29C}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [{FA833436-7F9B-418F-A4E1-158F87086D5A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{B67B9CC0-A014-4A03-AF78-66CBE2BBB6FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{7BDAF3CD-ABD2-46A4-B2EF-5812DCD54F24}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DBD811E5-9D33-406D-B3C4-9F939E8D3513}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{8AA8A9B2-ABC0-4F37-9262-1842E68174D8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe FirewallRules: [{86D0B16A-63B2-47FE-A69B-C26047E276B7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe FirewallRules: [{A60DA174-EC6F-480C-BECD-81EF1A7D23B5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe FirewallRules: [{46CDDA82-FC71-4078-B3A6-BCCC11D55DC6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe FirewallRules: [{3461C772-D6C8-4DD7-9BD0-40CD12416CA6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe FirewallRules: [{77D8AEE7-8BBF-49FD-A398-DE275472BD7C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe FirewallRules: [{679E2F69-85DA-40BB-AFB0-52FB00320B4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe FirewallRules: [{A4ECC453-D956-4761-B1BB-C8498952EB84}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe FirewallRules: [{43EF113C-5F82-4A81-9832-2A4092DA9E05}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe FirewallRules: [{BA33B3C3-3C25-4FE7-AE94-76B13B85F00F}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe FirewallRules: [{1D5C57D4-2467-4A9C-B862-80753C7E7C2F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe FirewallRules: [{11CB0C95-0BD3-4668-9DE0-80226DB8C825}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe FirewallRules: [TCP Query User{BB5AB39F-71FA-45CB-875B-B812A4EF3D76}C:\emulador online\ggpo.exe] => (Allow) C:\emulador online\ggpo.exe FirewallRules: [UDP Query User{85352A9C-7FF0-41D8-A067-0C22A6C87171}C:\emulador online\ggpo.exe] => (Allow) C:\emulador online\ggpo.exe FirewallRules: [TCP Query User{B2A0EA31-E42E-4443-941F-9A3375C64559}C:\emulador online\ggpofba.exe] => (Allow) C:\emulador online\ggpofba.exe FirewallRules: [UDP Query User{F8D8E272-98C0-46A1-942E-C3B9C22F5633}C:\emulador online\ggpofba.exe] => (Allow) C:\emulador online\ggpofba.exe FirewallRules: [{AFD4BB98-338B-4A0E-91D8-1B848A66DA86}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe FirewallRules: [{301FF005-368F-4187-ACAD-0E7C37E4CA14}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe FirewallRules: [{2A0965C9-1FD6-42F9-95AB-D7C0CA9C539F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe FirewallRules: [{4E97D18F-F5FA-4EAF-AA06-1761554056BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe FirewallRules: [{D0BB4BE7-98D3-4239-8E0E-BB240DF96538}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe FirewallRules: [{62033BCA-1B62-425D-8153-B6E5F1DBD6FD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe FirewallRules: [{6769C970-F368-4393-83C4-D88154C0C5E3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe FirewallRules: [{9745E70C-F126-47C6-B813-C98CEF582238}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe FirewallRules: [{10C912F7-2E07-4EB0-902B-A70FF035213D}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe FirewallRules: [{0357E54C-B52F-44E6-8BB7-0767A5E54C23}] => (Allow) C:\Program Files (x86)\baidu\Spark\Spark.exe FirewallRules: [{DD83D83B-D244-4708-9E9C-C30777B354BB}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe FirewallRules: [{5F64148D-A311-4656-9673-624A8491ADD5}] => (Allow) C:\Program Files (x86)\baidu\Spark\bdtray.exe FirewallRules: [{B367908B-C459-4494-A5FC-2B4260D6B731}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe FirewallRules: [{482D5C98-8E7B-4CFF-9CCF-82E2B933343E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe FirewallRules: [{22AF0114-D2CA-4DEB-B2CB-818D80D12C9B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E5F029EF-2472-4E97-BA42-71B2EBF3EE28}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D1A433F8-48CD-4D23-BD3C-45549C2CF17C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe FirewallRules: [{87E61A46-5276-444B-8DEA-DF9B1AEB5521}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe FirewallRules: [{95B18B2F-2A46-49DE-98EC-9AC5371CA469}] => (Allow) C:\Program Files (x86)\Mundo Canibal Apocalipse\mca-launcher.exe FirewallRules: [{9C86E504-0FFB-4331-AB8C-1F393B4AC991}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe FirewallRules: [{5EC94C62-AF55-4EAE-A483-AEC618384DF1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe FirewallRules: [{A8A030A1-E261-43A8-9504-C5CC99366A29}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe FirewallRules: [{B8474CB9-976E-4CE1-8BA6-A89EE3BDE92D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe FirewallRules: [{6C9B1BD8-785E-4459-8605-67448C18D82D}] => (Allow) C:\Users\fabio\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{1EF4DBCD-C09A-4117-9BA1-885257F77C2A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe FirewallRules: [{25AF6214-7D3D-415D-83E2-3ED28E8D8344}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe FirewallRules: [{40E32EB1-C768-4C22-9189-0C0A8EE8B300}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe FirewallRules: [{7F2ED32F-F4FD-4D85-9E90-6F58C3019B61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe FirewallRules: [{B69821BF-BF60-4FE3-9259-0A9A3238F6F5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe FirewallRules: [{39D8CF56-1E33-450C-87AB-EB6ECD98E24D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe FirewallRules: [{FC1D3BA2-BFDA-4B2E-9B56-968B697AB7A3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe FirewallRules: [{667B0EBD-D98F-4EFA-A8CD-4FA984AD6963}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe FirewallRules: [{6BEE54E1-0B89-47F6-AB5D-EF8A77BCA73D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{9CBDF429-2058-49DA-98EF-B59307D53DD3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{4C87F055-E351-4197-921A-6EE8B534C4B4}] => (Allow) C:\Users\fabio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C3B36271-7C6A-43E0-A08A-921831225D4B}] => (Allow) C:\Users\fabio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{CC003874-6B43-469B-A6E2-BB1BA85A9A35}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe FirewallRules: [UDP Query User{042458DB-6814-4D24-8CC5-0E86D7CBBF9F}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe FirewallRules: [TCP Query User{D51999E9-094C-4CC1-A135-2B87D870C1FC}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe FirewallRules: [UDP Query User{3A7E5AF0-EAF9-401F-91F9-93105C84EFDB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe FirewallRules: [TCP Query User{1AB26371-E641-467F-9630-CED0F8FF8653}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe FirewallRules: [UDP Query User{98DB49AD-5A45-4FBD-8DD7-A197DF4DF59A}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe FirewallRules: [{3EC93F13-E99D-4C0E-84FF-04330BFBD912}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{A4A50694-6F89-45AD-980E-17DAB8F49CAA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{C5C07F91-E860-4A44-956F-2105B96650F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{D06A9523-3CE6-4E83-8250-007CB6679CCC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{FD021DA4-4E36-4AB1-9D7A-F6240F9E17EE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [{D4ED80DF-0C67-434F-838B-28783C537579}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [{5264283F-CA0D-4019-B371-003F1054FE0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe FirewallRules: [{39107A9A-7426-40E8-BC1F-D844F27BC3ED}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe FirewallRules: [TCP Query User{23BC15D5-16FF-4EAC-BB4D-3F4F57633DA3}C:\emulador online\ggpo.exe] => (Allow) C:\emulador online\ggpo.exe FirewallRules: [UDP Query User{AC5F621F-AACC-40D2-85AF-F54F11D6FD8E}C:\emulador online\ggpo.exe] => (Allow) C:\emulador online\ggpo.exe FirewallRules: [{F17A57E9-4282-49BF-ADB5-975239985C93}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{81E5CC9F-DA99-4DB9-B4F1-019DD1288640}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{133D6A5B-CC85-41C9-B027-45EE21265FC1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{37D260E3-8647-4A0D-B325-8F6D8CB48A65}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{2280412A-B973-43B4-8959-D4D12FB98CE8}] => (Allow) C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe FirewallRules: [{3401C399-3A00-4E76-819A-FFE7BBAE5D0D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe FirewallRules: [TCP Query User{21A86ACF-F28E-4F11-8838-D3FCD1A8ECF4}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{8EE96886-04AF-4FB3-B48C-1897C5C816AE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{62A94462-65AD-445C-800A-74917935C7E6}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe FirewallRules: [UDP Query User{CD7149B6-8957-4035-A925-0EAC4444E9AF}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe FirewallRules: [TCP Query User{E303D05A-9A49-48C4-AC87-7F20C90010C3}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [UDP Query User{EFDD8ED7-116E-4D7E-B85A-36CF7126C78E}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{EF5B038D-0197-4727-B6B7-F2F3132D4556}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [{EDF94F1F-0695-4BFD-808F-AC8EC536677F}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [TCP Query User{FFFEE4B9-E754-426F-9D99-664DFFEB9464}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Allow) C:\program files (x86)\jfilemanager\jfilemanager.exe FirewallRules: [UDP Query User{EB6D450F-72BE-44DA-80FF-F58CD97D8C25}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Allow) C:\program files (x86)\jfilemanager\jfilemanager.exe FirewallRules: [TCP Query User{06DB6B48-CA11-4296-A103-7B77A2F6B155}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe FirewallRules: [UDP Query User{A1ACABB0-E4B9-4118-8963-BDFBBD87DDF0}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe FirewallRules: [{D659E45B-DF75-4167-80F4-CDBBC17D05B1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{BB32930B-AD6A-49FB-9A73-E9144A77DC59}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{C2F1A410-025A-425F-B768-D86C0E754FB2}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{744B1EFF-CDB8-482F-A2CA-F6064A6EAACB}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [{291480AD-9052-4B58-A7D5-CA47D7251A5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7AC39E04-C360-40E0-A0B2-4E24E914F406}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{07B906C2-5E1C-4F30-B564-2295BA678A32}] => (Allow) C:\Users\fabio\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{37D4F372-D106-41D0-B338-0B6168C74799}C:\program files (x86)\diablo iii public test\diablo iii.exe] => (Block) C:\program files (x86)\diablo iii public test\diablo iii.exe FirewallRules: [UDP Query User{96CA13E1-916B-4DEE-939B-14801F1F97FC}C:\program files (x86)\diablo iii public test\diablo iii.exe] => (Block) C:\program files (x86)\diablo iii public test\diablo iii.exe FirewallRules: [TCP Query User{65F5B608-8973-4AC2-A118-B14005B25220}C:\yugioh\ygo\joey_pc.exe] => (Allow) C:\yugioh\ygo\joey_pc.exe FirewallRules: [UDP Query User{BB1AACEE-7E6C-4DF8-BF48-B336904AE34E}C:\yugioh\ygo\joey_pc.exe] => (Allow) C:\yugioh\ygo\joey_pc.exe FirewallRules: [TCP Query User{FFA2A0C7-1397-439C-B002-55A32C52593D}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe FirewallRules: [UDP Query User{4B02FF49-4B4E-40A3-A960-A35D123B3FD1}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe FirewallRules: [TCP Query User{553F743C-477D-44A6-BA04-393CD2E1240C}C:\gh3.exe] => (Allow) C:\gh3.exe FirewallRules: [UDP Query User{DCC88D81-32DF-435D-8F68-4F546B81E57D}C:\gh3.exe] => (Allow) C:\gh3.exe FirewallRules: [{19338A91-895E-44DF-B6A9-E39FAF17CC9A}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE FirewallRules: [{0C3C170D-0838-4F4B-9D3F-7DED8BAE456B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE FirewallRules: [{FA53D1A9-B66B-43B3-A93C-BD4F993BBD91}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE FirewallRules: [{24D3C12F-EA2D-472A-8763-0028152245C1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE FirewallRules: [{650ED5CA-BC82-4236-94B0-7444B5E3CA48}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{3363B726-899C-4430-81DF-B72667254C31}] => (Allow) C:\Program Files (x86)\Grand Chase History\main.exe FirewallRules: [{705E1DFF-F23F-4A34-8880-F2D61CB2BCB9}] => (Allow) C:\Program Files (x86)\Grand Chase History\main.exe FirewallRules: [{8A386585-159C-43BF-ACF1-AD1D7CD0F5CE}] => (Allow) C:\Users\fabio\AppData\Roaming\Nox\bin\Nox.exe FirewallRules: [{C8653FEC-A97A-4FEE-B558-ACB61D9FFD8A}] => (Allow) C:\Program Files\Bignox\BigNoxVM\RTNoxVMHandle.exe FirewallRules: [{F95CF55D-29C3-464D-A207-B45BB78E23ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magic Duels\MagicDuels.exe FirewallRules: [{BF53BDE9-F2F0-453B-840A-68AD79CE69A3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magic Duels\MagicDuels.exe ==================== Pontos de Restauração ========================= 20-07-2016 18:28:34 Ponto de Verificação Agendado 21-07-2016 19:41:24 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 20:35:16 Instalação de Pacote de Driver de Dispositivo: BigNox Corporation Controladores USB (barramento serial universal) 23-07-2016 17:40:57 WinThruster sáb, jul 23, 16 17:40 23-07-2016 17:52:06 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 23-07-2016 17:53:36 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 23-07-2016 17:56:17 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 23-07-2016 17:57:52 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: badriver Description: badriver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: badriver Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/22/2016 06:30:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x0005237a Identificação do processo com falha: 0xf04 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/21/2016 07:19:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x00033913 Identificação do processo com falha: 0xe0c Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/17/2016 10:59:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000371d3 Identificação do processo com falha: 0xc3c Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/14/2016 05:07:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000371d3 Identificação do processo com falha: 0xf40 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/13/2016 04:16:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000371d3 Identificação do processo com falha: 0xe74 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/11/2016 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000335f2 Identificação do processo com falha: 0xafc Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/11/2016 06:43:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000371d3 Identificação do processo com falha: 0xf30 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/10/2016 11:46:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x0003317f Identificação do processo com falha: 0x990 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/10/2016 11:19:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x000371d3 Identificação do processo com falha: 0xfe8 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Error: (07/04/2016 05:11:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16385, carimbo de hora: 0x4a5bdb3b Código de exceção: 0xc0000005 Deslocamento com falha: 0x00033913 Identificação do processo com falha: 0xe8c Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 FCaminho do módulo de falhas: GbpSv.exe2 Identificação do Relatório: GbpSv.exe3 Erros de Sistema: ============= Error: (07/23/2016 05:35:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:35:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:35:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:35:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:35:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:35:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:34:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:34:07 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: badriver gbpddfac gbpddreg Error: (07/23/2016 05:34:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Update gooternet devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (07/23/2016 05:33:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Baidu MoboMarket Service devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. CodeIntegrity: =================================== Date: 2016-07-23 17:34:47.093 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\GbPlugin\gbprcm64.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-23 17:34:42.519 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\GbPlugin\wsftprp64.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-23 17:33:47.989 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-23 17:33:47.474 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-22 18:28:33.063 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\GbPlugin\wsftprp64.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-22 18:28:33.043 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\GbPlugin\gbprcm64.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-22 18:27:52.584 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-22 18:27:52.381 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-21 20:15:27.085 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\GbPlugin\wsftprp64.sys because the set of per-page image hashes could not be found on the system. Date: 2016-07-21 20:15:27.065 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\GbPlugin\gbprcm64.sys because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz Percentagem de memória em uso: 17% RAM física total: 16317.73 MB RAM física disponível: 13438.29 MB Virtual Total: 32633.59 MB Virtual disponível: 29648.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:680.01 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D972D26B) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================