Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 29-10-2016 Executado por Lindem (30-10-2016 08:21:38) Executando a partir de C:\Users\Lindem\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2016-08-21 12:49:55) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-853946259-1225953742-1460200184-500 - Administrator - Disabled) Convidado (S-1-5-21-853946259-1225953742-1460200184-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-853946259-1225953742-1460200184-1002 - Limited - Enabled) Lindem (S-1-5-21-853946259-1225953742-1460200184-1000 - Administrator - Enabled) => C:\Users\Lindem ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-853946259-1225953742-1460200184-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated) Ansel (Version: 372.54 - NVIDIA Corporation) Hidden Atualizações da NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.4.43.6254 - BlueStack Systems, Inc.) CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien) Command & Conquer 3 (HKLM-x32\...\{DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}) (Version: 1.00.0000 - Electronic Arts Inc.) DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.2.0.0348 - DT Soft Ltd) Electronic Arts Game Updater (HKLM-x32\...\Electronic Arts Game Updater) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Host OpenAL (ADI) (HKLM-x32\...\Host OpenAL (ADI)) (Version: - ) HP Deskjet 3050 J610 series Software básico do dispositivo (HKLM\...\{E6E28DE7-446E-4E27-BE37-4B6D925A385B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java SE Development Kit 8 Update 60 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation) Legendas 3.5 (HKLM-x32\...\{461C0377-D2EC-4FB0-B038-847BC6455432}_is1) (Version: 3.5 - LegendasBrasil.org) Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.10.5.3 - Marvell) Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - ) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Fix it Center (HKLM\...\{B7588D45-AFDC-4C93-9E2E-A100F3554B64}) (Version: 1.0.0100 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 49.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 pt-BR)) (Version: 49.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla) MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD) Need For Speed - Porsche Unleashed (HKLM-x32\...\Need For Speed - Porsche Unleashed) (Version: - ) NVIDIA Driver de áudio HD 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.54 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.54 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) OSDownloader (HKLM-x32\...\{C02C8C82-197C-46C1-AD18-EB0F5BF49F8A}_is1) (Version: 1.3 - OpenSubtitles.org) Painel de controle da NVIDIA 372.54 (Version: 372.54 - NVIDIA Corporation) Hidden Potplayer-64 bit (HKLM\...\PotPlayer64) (Version: - Kakao Corp.) REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{0DF70CB6-553A-4C57-8E6D-87635EECFB78}) (Version: 1.00.0145 - REALTEK Semiconductor Corp.) Revo Uninstaller Pro 3.1.6 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.6 - VS Revo Group, Ltd.) RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder) SafeZone Stable 1.51.2220.53 (x32 Version: 1.51.2220.53 - Avast Software) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden SoundMAX (HKLM-x32\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.2.6585 - Analog Devices) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Subway Surfers (HKLM-x32\...\Subway Surfers) (Version: - ) USB Vibration Joystick (HKLM-x32\...\{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}) (Version: 2007.08.17 - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Youtube Downloader HD v. 2.9.9.28 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {12189B77-40EF-4212-8767-1FD01C9AEC55} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated) Task: {4CDFAEEF-18FB-4AD5-990A-965F66BEDF33} - System32\Tasks\SafeZone scheduled Autoupdate 1471792685 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software) Task: {626337CC-10E3-43FB-A1BD-6276F9D123C8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-08-21] (AVAST Software) Task: {749C0C2C-AC19-4338-B41F-2DE032BC5422} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.) Task: {965E126B-3511-4A9D-8448-BB4955C275E5} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-08-21] (AVAST Software) Task: {B310C12B-AA27-4A3F-858F-718EC53ED340} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) Task: {CF7588E0-2B97-4118-84E8-59CF80C0E2BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.) Task: {E93F9E18-69E1-4F19-B4B0-AFFDAEB5B24C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2016-10-24] () Task: {F4F22987-9914-462A-8D25-B96A16E12725} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) Shortcut: C:\Users\Lindem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxBatch.lnk -> I:\Games\Max Payne\MaxBatch.bat () ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> " ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> " ==================== Módulos Carregados (Whitelisted) ============== 2016-08-21 13:02 - 2016-08-11 09:49 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-01-30 03:40 - 2010-01-30 03:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2016-08-21 13:43 - 2016-01-23 08:10 - 01855488 _____ () C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe 2016-10-25 22:58 - 2016-10-20 06:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll 2016-10-25 22:58 - 2016-10-20 06:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll 2016-08-21 13:15 - 2016-08-21 13:15 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-10-30 08:02 - 2016-10-30 08:02 - 03125136 _____ () C:\Program Files\AVAST Software\Avast\defs\16103000\algo.dll 2016-08-21 13:15 - 2016-08-21 13:15 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-08-21 13:04 - 2016-06-14 18:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-10-30 08:01 - 2016-10-30 08:01 - 00098816 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32api.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00110080 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\pywintypes27.dll 2016-10-30 08:01 - 2016-10-30 08:01 - 00364544 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\pythoncom27.dll 2016-10-30 08:01 - 2016-10-30 08:01 - 00320512 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32com.shell.shell.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00776704 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_hashlib.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 01176576 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._core_.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00806400 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._gdi_.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00816128 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._windows_.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 01067008 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._controls_.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00733184 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._misc_.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00682496 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\pysqlite2._sqlite.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00088064 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_ctypes.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00119808 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32file.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00108544 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32security.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00007168 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\hashobjs_ext.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00017920 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\thumbnails_ext.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00088064 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\usb_ext.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00012800 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\common.time34.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00018432 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32event.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00167936 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32gui.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00046080 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_socket.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 01208320 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_ssl.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00128512 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_elementtree.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00127488 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\pyexpat.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00038912 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32inet.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00036864 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_psutil_windows.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00525208 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\windows._lib_cacheinvalidation.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00011264 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32crypt.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00077312 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._html2.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00027136 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_multiprocessing.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00020480 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\_yappi.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00035840 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32process.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00686080 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\unicodedata.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00078848 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._animate.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00123392 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\wx._wizard.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00024064 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32pipe.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00010240 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\select.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00025600 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32pdh.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00017408 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32profile.pyd 2016-10-30 08:01 - 2016-10-30 08:01 - 00022528 ____R () C:\Users\Lindem\AppData\Local\Temp\_MEI26522\win32ts.pyd 2016-08-22 17:14 - 2015-06-28 20:07 - 00107520 _____ () C:\Program Files (x86)\DAEMON Tools Pro\BRD.dll 2016-08-21 12:37 - 2009-12-09 22:20 - 00126976 _____ () C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\EnumDevLib.dll 2016-08-21 13:15 - 2016-08-21 13:15 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-10-30 08:08 - 2016-10-30 08:08 - 00158720 _____ () C:\Users\Lindem\AppData\Local\Temp\sfareca00001.dll 2016-08-21 18:04 - 2016-10-30 08:08 - 00192512 _____ () C:\Users\Lindem\AppData\Local\Temp\sfamcc00001.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-14 00:34 - 2009-06-10 19:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-853946259-1225953742-1460200184-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lindem\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 208.67.222.222 - 208.67.220.220 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{30B72CD3-B124-4AED-811A-BAB3F5D15DAA}] => (Allow) C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe FirewallRules: [{8CDC0EA8-2B15-48AE-8FDA-D1D16DCBBB28}] => (Allow) C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe FirewallRules: [{2A423EAF-73A7-4C64-8224-C47C2EE002FC}] => (Allow) LPort=1542 FirewallRules: [{7684D843-5331-4CC9-9D44-6DF648BEEAB5}] => (Allow) LPort=1542 FirewallRules: [{E9DDA78B-66F6-4015-BBCA-ACE646F7216F}] => (Allow) LPort=53 FirewallRules: [{1FD665AB-FCE5-43F9-BE50-736B61C355FA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{63E83CCE-8BFB-4D23-9B0F-3A1373F2309C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{3D129C56-78CB-41F1-B7F5-9A6DA7AD4D22}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2B330DAE-8F67-4E07-93D5-CA0F1F041043}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A388E74F-E1C3-45E6-B209-417630B6FE85}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{C6926A3A-774B-43D9-90E8-E78DB8F7BF60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3EDB496A-2B35-4B0D-AF26-9633A1320EDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1FBAC596-07FA-47FE-B708-7E3280C48435}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{93F256DC-9925-4858-9981-D949B8F88953}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FB1373E4-A0AB-40C7-BA79-82ABE76E162D}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{FEAA11EE-977E-4A68-888D-30C8E59D4076}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{D563C3F9-8372-487A-9858-4E6618305543}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{1A5C9513-569E-43DE-A3AF-40CCB2AC9199}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{1FC4C0F6-BBD1-4000-8042-5A00329D30A0}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CE7B49DE-714D-4A08-B6BC-8BE2EE24D0D3}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{846DABD2-88D0-4232-A78B-89FEE9AD84B1}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8BF85A9C-24D7-46EB-B0F8-07967165E1AF}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2BA2D406-D248-4C89-A0C2-B7A8EEAD3A5C}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D76C275B-ACFD-4CB4-AF33-C1A45F285EF6}] => (Allow) C:\Users\Lindem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{D79BCFCB-7638-469E-A7D5-C3F64B83D73F}C:\program files (x86)\electronic arts\need for speed - porsche unleashed\porsche.exe] => (Block) C:\program files (x86)\electronic arts\need for speed - porsche unleashed\porsche.exe FirewallRules: [UDP Query User{61171D1A-6E72-4CBB-96AB-B2A3721BFA54}C:\program files (x86)\electronic arts\need for speed - porsche unleashed\porsche.exe] => (Block) C:\program files (x86)\electronic arts\need for speed - porsche unleashed\porsche.exe FirewallRules: [{CB048D21-AC89-4233-91D5-FE1CFC463C22}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe FirewallRules: [{0E718B23-5EFE-4764-A0DB-079190B73F76}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{09D1607E-89AF-40AC-BCBE-2160C70EB83E}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{D75D32C2-622D-47F8-9582-9418D2BAE97B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 29-10-2016 09:09:47 DirectX instalado 29-10-2016 19:03:37 Installed Easy fix 50202 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (10/29/2016 09:54:57 PM) (Source: PerfNet) (EventID: 2005) (User: ) Description: Não foi possível ler dados de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status, os quatro dígitos seguintes contém IOSB.Status e os seguintes contém IOSB.Information. Error: (10/29/2016 07:18:41 PM) (Source: MsiInstaller) (EventID: 11921) (User: Lindem-PC) Description: Produto: Easy fix 50202 -- Erro 1921. O serviço 'Windows Update' (WUAUSERV) não pôde ser parado. Verifique se você tem privilégios suficientes para parar os serviços do sistema. Error: (10/29/2016 07:11:42 PM) (Source: MsiInstaller) (EventID: 11921) (User: Lindem-PC) Description: Produto: Easy fix 50202 -- Erro 1921. O serviço 'Windows Update' (WUAUSERV) não pôde ser parado. Verifique se você tem privilégios suficientes para parar os serviços do sistema. Error: (10/29/2016 07:01:41 PM) (Source: MatSvc) (EventID: 3) (User: ) Description: The MATS service encountered a web service failure. hr=0x80072EE2 Error: (10/29/2016 07:00:39 PM) (Source: MatSvc) (EventID: 3) (User: ) Description: The MATS service encountered a web service failure. hr=0x80072EE2 Error: (10/29/2016 09:08:27 AM) (Source: MsiInstaller) (EventID: 11935) (User: Lindem-PC) Description: Product: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.MFC,version="9.0.30729.6161",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070091. assembly interface: IAssemblyCacheItem, function: Commit, component: {66D3DCA5-4396-3023-BB22-E980C88CBE12} Error: (10/29/2016 09:07:21 AM) (Source: MsiInstaller) (EventID: 11935) (User: Lindem-PC) Description: Product: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.MFC,version="9.0.30729.6161",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="x86",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070091. assembly interface: IAssemblyCacheItem, function: Commit, component: {106BBB06-46FA-3230-8A99-836161C13A0C} Error: (10/29/2016 07:38:58 AM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status. Error: (10/18/2016 07:40:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: srvlegendas.exe, versão: 0.0.0.0, carimbo de hora: 0x56a35184 Nome do módulo de falhas: srvlegendas.exe, versão: 0.0.0.0, carimbo de hora: 0x56a35184 Código de exceção: 0xc0000005 Deslocamento com falha: 0x00039815 Identificação do processo com falha: 0x1088 Hora de início do aplicativo com falha: 0x01d22921373cc65b Caminho do aplicativo com falha: C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe FCaminho do módulo de falhas: C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe Identificação do Relatório: f1f11160-9516-11e6-bb4f-001d60633e0e Error: (10/18/2016 07:21:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: HD-Agent.exe, versão: 2.4.43.6254, carimbo de hora: 0x57a1728f Nome do módulo de falhas: KERNELBASE.dll, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7bafa Código de exceção: 0xe0434352 Deslocamento com falha: 0x0000b727 Identificação do processo com falha: 0x410 Hora de início do aplicativo com falha: 0x01d22920e928b3ea Caminho do aplicativo com falha: C:\Program Files (x86)\BlueStacks\HD-Agent.exe FCaminho do módulo de falhas: C:\Windows\syswow64\KERNELBASE.dll Identificação do Relatório: 4f373710-9514-11e6-bb4f-001d60633e0e Erros de Sistema: ============= Error: (10/30/2016 08:02:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço NVIDIA Streamer Service. Error: (10/30/2016 08:01:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (10/29/2016 11:57:14 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: O serviço Windows Update não foi desligado corretamente após receber um controle de pré-desligamento. Error: (10/29/2016 09:53:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço NVIDIA Streamer Service. Error: (10/29/2016 09:53:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (10/29/2016 07:22:11 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: O servidor {E60687F7-01A1-40AA-86AC-DB1CBF673334} não se registrou com o DCOM dentro do tempo limite requerido. Error: (10/29/2016 06:40:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (10/29/2016 09:50:00 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: O serviço Windows Update não foi desligado corretamente após receber um controle de pré-desligamento. Error: (10/29/2016 09:29:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço NVIDIA Streamer Service. Error: (10/29/2016 09:29:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço BlueStacks Updater Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz Percentagem de memória em uso: 78% RAM física total: 4095.12 MB RAM física disponível: 868.14 MB Virtual Total: 8188.43 MB Virtual disponível: 4786.68 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:78.03 GB) (Free:22.36 GB) NTFS Drive d: () (Fixed) (Total:154.76 GB) (Free:61.56 GB) NTFS Drive f: (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)] Drive g: () (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive h: () (Fixed) (Total:97.79 GB) (Free:58.78 GB) NTFS Drive i: () (Fixed) (Total:367.87 GB) (Free:75 GB) NTFS Drive j: () (Fixed) (Total:97.79 GB) (Free:96.98 GB) NTFS Drive k: (Disco Local) (Fixed) (Total:307.78 GB) (Free:10.85 GB) NTFS Drive l: () (Fixed) (Total:292.97 GB) (Free:25.56 GB) NTFS Drive m: (CNC3) (CDROM) (Total:5.15 GB) (Free:0 GB) UDF ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: B8584238) Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=307.8 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=293 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: C77CC77C) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=78 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=154.8 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 8424148A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=367.9 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================