Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 28-09-2016 Executado por WINDOWS 7 (30-09-2016 13:03:24) Executando a partir de C:\Users\WINDOWS 7\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2016-08-20 18:56:08) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3987664270-2404929371-1746354358-500 - Administrator - Disabled) Convidado (S-1-5-21-3987664270-2404929371-1746354358-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3987664270-2404929371-1746354358-1002 - Limited - Enabled) WINDOWS 7 (S-1-5-21-3987664270-2404929371-1746354358-1000 - Administrator - Enabled) => C:\Users\WINDOWS 7 ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3987664270-2404929371-1746354358-1000\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.) 2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version: - Microsoft) 2007 Microsoft Office Suite Service Pack 2 (SP2) (x32 Version: - Microsoft) Hidden Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.2.152.32 - Adobe Systems Incorporated) Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Atualizações da NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.20.59 - Avira Operations GmbH & Co. KG) Avira Connect (HKLM-x32\...\{82dc2ab6-088f-4e0a-8e27-bb829481d3bc}) (Version: 1.2.70.16079 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.2.70.16079 - Avira Operations GmbH & Co. KG) Hidden Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) biohazard 4 (HKLM-x32\...\{DFFCDB41-C2DA-47D6-96FF-03C05C0BEA22}) (Version: 1.00.0000 - CAPCOM) Combat Arms (HKLM-x32\...\Combat Arms) (Version: - ) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5126 - Z8Games.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Network Connections 19.3.141.0 (HKLM\...\PROSetDX) (Version: 19.3.141.0 - Intel) Jogos Level Up (HKU\S-1-5-21-3987664270-2404929371-1746354358-1000\...\bda992e0694a5bbb) (Version: 0.9.4.4 - Level Up) Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation) Microsoft .NET Framework 4.6.2 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.6.01590 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6425.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Mozilla Firefox 49.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 pt-BR)) (Version: 49.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1 - Mozilla) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Need For Speed Most Wanted Unique 1.00 (HKLM-x32\...\Need For Speed Most Wanted Unique 1.00) (Version: - ) Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA Driver de gráficos 341.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.96 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 341.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.96 - NVIDIA Corporation) NVIDIA GeForce Experience 3.0.5.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.5.22 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NvNodejs (Version: 3.0.5.22 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 9.12.2.60376 - Electronic Arts, Inc.) Painel de controle da NVIDIA 341.96 (Version: 341.96 - NVIDIA Corporation) Hidden PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd) Rocket League (HKLM-x32\...\Rocket League_is1) (Version: - Psyonix) SHIELD Streaming (Version: 7.1.0310 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.0.5.22 - NVIDIA Corporation) Hidden Software de dispositivo do Chipset Intel® (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden Solid PDF Creator (HKLM-x32\...\{DFE70CCC-0ACB-45B7-94F4-9DC6F01B7928}_is1) (Version: 9.1.3048.1 - Solid Documents) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) Trove (HKLM\...\Steam App 304050) (Version: - Trion Worlds) Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft) USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - ) Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {13F4C182-B6EF-4CB9-B1B5-19A910F53485} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated) Task: {19EDB199-8317-4526-AE3A-EF3C8C3C20CF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-02] (NVIDIA Corporation) Task: {35FADF85-2582-434D-829C-DD42BBC30297} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-02] (NVIDIA Corporation) Task: {6F1FAEFF-F412-470D-BF1B-605EF3B68351} - System32\Tasks\{21D6025B-140A-48FC-AE2B-C8B8417D80B0} => pcalua.exe -a "C:\Users\WINDOWS 7\Desktop\GAMES\The.Pirate.Jogos-Need.For.Speed.Most.Wanted.Blak.Edition-PT-BR\Tradução.exe" -d "C:\Users\WINDOWS 7\Desktop\GAMES\The.Pirate.Jogos-Need.For.Speed.Most.Wanted.Blak.Edition-PT-BR" Task: {724D502E-99A3-4F67-AB92-0E90615AA3F2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-02] (NVIDIA Corporation) Task: {89FED812-C12D-469D-9704-B97855C010D6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.) Task: {C1B9BC7E-5B05-46D2-9F65-A8B17F3A231A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.) Task: {C7F4F61C-DC9D-47BD-9493-99D8518B8D54} - System32\Tasks\SlimDrivers Startup => E:\SlimDrivers\SlimDrivers.exe Task: {D44697F6-9F71-460B-B255-4B059B3C4DC3} - System32\Tasks\{984FF21F-E06E-474B-8289-E4CC877A0538} => pcalua.exe -a C:\Users\WINDOW~1\AppData\Local\Temp\$PowerISO$\install.exe -d "C:\Users\WINDOWS 7\Desktop\GAMES\Resident Evil 4.[Game Pc].[PT-BR].[Loesch.Tr]" <==== ATENÇÃO Task: {D7BA1D32-D5D9-45C8-A7F3-54003347B1E5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-02] (NVIDIA Corporation) Task: {EDC04303-F9F8-451C-8B68-D6FA0AC8246A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-02] (NVIDIA Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\SlimDrivers Startup.job => E:\SlimDrivers\SlimDrivers.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-08-21 13:11 - 2016-05-30 14:36 - 00133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-25 18:39 - 2016-09-07 10:02 - 00030640 _____ () C:\Windows\System32\solidlocalmon.dll 2016-09-17 11:35 - 2016-09-02 08:13 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-17 11:35 - 2016-09-02 08:13 - 04488640 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-09-17 11:36 - 2016-09-02 08:13 - 00418240 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-09-14 14:02 - 2008-12-10 11:10 - 00796784 _____ () C:\Windows\USB Vibration\7906\USB Gamepad.exe 2016-09-17 00:15 - 2016-09-13 23:52 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll 2016-09-17 00:15 - 2016-09-13 23:52 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll 2016-08-21 13:14 - 2016-09-02 08:13 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-08-21 11:16 - 2016-09-08 00:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-08-21 11:16 - 2016-08-31 22:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-08-21 11:16 - 2016-08-31 22:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-08-21 11:16 - 2016-08-31 22:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-08-21 11:16 - 2016-09-20 16:28 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll 2016-08-21 11:15 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-08-21 11:15 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-08-21 11:15 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-08-21 11:15 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-08-21 11:15 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-08-21 11:16 - 2016-09-20 16:28 - 00835360 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-08-21 11:15 - 2016-07-04 19:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2016-09-17 11:35 - 2016-09-02 08:00 - 00500672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-09-17 11:35 - 2016-09-02 08:00 - 00254400 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-09-17 11:35 - 2016-09-02 08:00 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-09-17 11:35 - 2016-09-02 08:00 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-09-17 11:35 - 2016-09-02 08:00 - 00428480 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-09-17 11:35 - 2016-09-02 08:00 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-09-17 11:35 - 2016-09-02 08:00 - 00375352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2016-08-21 11:16 - 2016-08-04 17:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3987664270-2404929371-1746354358-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\WINDOWS 7\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 201.46.240.49 - 201.46.240.41 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{0953347E-B848-40A0-9AB7-2851FA57175D}] => (Allow) C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe FirewallRules: [{8AF0A41D-13B7-4EDC-97C6-6CEB3698E483}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7AB5DFBE-DE4D-432C-A27D-348BFAD58972}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{745620D0-3EAF-4578-BC58-119A0864EF92}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{3D9B58FD-7CBE-42E6-9249-7A3219318EFE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{8E3F27BF-51CB-450C-9245-57D2F3003554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{920916C7-40A3-4492-AE9A-5F72D75C7FB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{EBAD2DA0-1F81-4227-BE6D-E4241A427510}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{5EC3BC3D-8B35-4228-8D9E-6BD0B0014233}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{76221370-D77C-494C-8816-94230E8DF41F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{F0387BAE-F306-4757-BF15-31F50ADA9915}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{CEF0FF42-0F1D-450D-82BD-E2E38C4A70A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{C79F228E-BCC8-4B64-AE55-4B153D3414E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A3E9339C-711F-4A22-94BB-0CE8F398D8E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{950F0D29-AD22-4907-A904-A2750165D0A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{A9C8493B-6E54-43E7-85F6-6472C396AC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{5ABA5020-0A4F-4ACF-A845-A496784E4AE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{C9D4B8E9-E0C4-4FE0-9B7E-304E556FD71F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{9937773A-9BE4-4EBF-9396-AB8275D997C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{8BD84679-7D1C-4548-AFC5-E36E87C9AA99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{689E0DF0-746B-480F-80EB-10F72B9EB9B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{8DF14393-85F7-46B9-BA41-529B5436C7B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{143B0A5F-50AA-46D0-973B-546FA28B84B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{A435C6C9-9538-4B83-9702-17CAEEC18011}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{519EB76A-F32F-431D-B38D-D7CDD82FB33F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{152A2713-94FE-45BE-9A35-E387A55DF20F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{B2EAF5DE-5689-4F34-AA7C-701686F71E1B}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{91714B01-5247-43E1-8A85-92184E1E33F8}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{40EEF6A8-4A8F-4CA6-9B68-2118BAA3426A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe FirewallRules: [{DCE2CEF0-57F3-4798-9C79-E94DC40819A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe FirewallRules: [{5BE12D0A-FD22-4872-977A-2159B755180B}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe FirewallRules: [{97C7B2F6-DB0B-491A-8992-BDB5167E2524}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{ABB71408-45E0-4440-9719-6BF504390D5D}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BB28C542-8352-4BDF-9B26-18D05904EA7A}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D6E0A669-7B36-4EF1-8B68-682FE80DBA78}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{77EACA0F-13C1-4676-A8E5-21F77CDBFC39}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AA1671CF-AAA7-44B4-B10B-A5AF074B7D2F}] => (Allow) C:\Users\WINDOWS 7\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{18829E47-EB10-4D3C-BA72-5BFA6E2F128A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{34C54E2D-3493-4FC6-90C1-9D70B0785E80}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [TCP Query User{1C3F0E20-AB7A-487A-B3F2-F1CCD804194D}C:\program files (x86)\gridxprime\need for speed most wanted unique\speed.exe] => (Allow) C:\program files (x86)\gridxprime\need for speed most wanted unique\speed.exe FirewallRules: [UDP Query User{A9C84E5E-B677-4B6D-A8F7-968CCB9B11FC}C:\program files (x86)\gridxprime\need for speed most wanted unique\speed.exe] => (Allow) C:\program files (x86)\gridxprime\need for speed most wanted unique\speed.exe FirewallRules: [{1D94E766-BCDF-430D-861D-5F30854B7722}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{2271DC3F-D407-4A78-97D5-08E08E519747}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{D702DCD7-39D1-45A5-ACFA-A5E1284CFBA7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{8752A6D1-0BC0-4043-81C3-07758E1C1638}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{8ADAA286-2BE3-4C3B-B568-E9C6F219F49A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{F05DEF70-45F3-4346-8CB1-733FAD295890}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6C4DA30B-CEFA-44BF-AF9A-5BEE46854560}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{CF22F44C-515D-4FE5-81E5-5E189922A359}C:\users\windows 7\appdata\local\apps\2.0\9l2czcj1.mam\h8vbm02q.ah0\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\windows 7\appdata\local\apps\2.0\9l2czcj1.mam\h8vbm02q.ah0\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{197BD8C7-7696-4265-932E-0B89903DCEC7}C:\users\windows 7\appdata\local\apps\2.0\9l2czcj1.mam\h8vbm02q.ah0\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\windows 7\appdata\local\apps\2.0\9l2czcj1.mam\h8vbm02q.ah0\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{846CCEB1-16E2-4EB2-BBC7-B5690EDD07E9}] => (Allow) C:\Level Up\Combat Arms\NMService.exe FirewallRules: [{26E49EFA-6E88-4DF5-92E5-54BB235D4465}] => (Allow) C:\Level Up\Combat Arms\NMService.exe FirewallRules: [TCP Query User{EE606045-B766-4F12-88F1-33B4A3EA1AB0}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe FirewallRules: [UDP Query User{4F3CBD57-741C-4821-9E75-55E9CECFB23B}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe ==================== Pontos de Restauração ========================= 09-09-2016 17:18:47 DirectX instalado 14-09-2016 14:02:18 Installed USB Network Joystick 14-09-2016 14:19:36 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 14-09-2016 14:21:20 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 16-09-2016 07:40:44 Installed biohazard 4 16-09-2016 07:49:15 DirectX instalado 17-09-2016 00:20:49 Installed biohazard 4 18-09-2016 14:05:24 Removed Skype™ 7.27 18-09-2016 14:06:01 Removed Skype™ 7.27 26-09-2016 13:05:00 Removido Mediatek Wireless LAN 29-09-2016 11:57:28 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (09/30/2016 12:42:48 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/30/2016 12:40:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: IProsetMonitor.exe, versão: 19.3.136.0, carimbo de hora: 0x53bd7b47 Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7c8f9 Código de exceção: 0xc0000005 Deslocamento com falha: 0x000000000004e4b4 Identificação do processo com falha: 0x218 Hora de início do aplicativo com falha: 0x01d21b2b6c9c0861 Caminho do aplicativo com falha: C:\Windows\system32\IProsetMonitor.exe FCaminho do módulo de falhas: C:\Windows\SYSTEM32\ntdll.dll Identificação do Relatório: 3cbf97a2-8724-11e6-9107-00270e11f49d Error: (09/30/2016 12:01:27 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/30/2016 11:46:46 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/30/2016 08:45:33 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/29/2016 01:27:24 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/29/2016 12:11:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/29/2016 12:02:48 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: hl.exe, versão: 1.1.1.1, carimbo de hora: 0x48feaf5a Nome do módulo de falhas: steam.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x4a0fe93e Código de exceção: 0xc0000005 Deslocamento com falha: 0x73e0d1a0 Identificação do processo com falha: 0x1294 Hora de início do aplicativo com falha: 0x01d21a627da799ee Caminho do aplicativo com falha: C:\Games\Counter-Strike\hl.exe FCaminho do módulo de falhas: steam.dll Identificação do Relatório: c855bd15-8655-11e6-8eac-00270e11f49d Error: (09/29/2016 12:02:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: hl.exe, versão: 1.1.1.1, carimbo de hora: 0x48feaf5a Nome do módulo de falhas: steam.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x4a0fe93e Código de exceção: 0xc0000005 Deslocamento com falha: 0x73e0d1a0 Identificação do processo com falha: 0x159c Hora de início do aplicativo com falha: 0x01d21a62589b15ff Caminho do aplicativo com falha: C:\Games\Counter-Strike\hl.exe FCaminho do módulo de falhas: steam.dll Identificação do Relatório: b366e696-8655-11e6-8eac-00270e11f49d Error: (09/29/2016 08:26:04 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Erros de Sistema: ============= Error: (09/30/2016 12:42:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Origin Web Helper Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/30/2016 12:42:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Origin Web Helper Service. Error: (09/30/2016 12:01:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Origin Web Helper Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/30/2016 12:01:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Origin Web Helper Service. Error: (09/30/2016 11:46:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Origin Web Helper Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/30/2016 11:46:36 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Origin Web Helper Service. Error: (09/30/2016 08:45:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Origin Web Helper Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/30/2016 08:45:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Origin Web Helper Service. Error: (09/29/2016 01:27:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Origin Web Helper Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/29/2016 01:27:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Origin Web Helper Service. CodeIntegrity: =================================== Date: 2016-09-07 14:28:57.491 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-07 14:28:57.491 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-07 00:08:10.288 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-07 00:08:10.288 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-07 00:05:06.585 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-07 00:05:06.585 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-06 23:44:19.398 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-06 23:44:19.398 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-06 23:34:33.022 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-06 23:34:33.022 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\womic.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz Percentagem de memória em uso: 83% RAM física total: 3957.38 MB RAM física disponível: 648.06 MB Virtual Total: 7912.95 MB Virtual disponível: 4499.58 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.5 GB) (Free:666.16 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B5708B5C) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================