Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 27-02-2017 01 Executado por Usuario (28-02-2017 22:14:49) Executando a partir de C:\Users\Usuario\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2016-06-01 20:42:48) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1357384694-231197386-693505984-500 - Administrator - Disabled) Convidado (S-1-5-21-1357384694-231197386-693505984-501 - Limited - Disabled) Usuario (S-1-5-21-1357384694-231197386-693505984-1000 - Administrator - Enabled) => C:\Users\Usuario ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1357384694-231197386-693505984-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.) Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.221 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Reader X - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated) Ansel (Version: 372.54 - NVIDIA Corporation) Hidden Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Atualizações da NVIDIA 23.23.0.0 (Version: 23.23.0.0 - NVIDIA Corporation) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.4.44.6257 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Brawlhalla (HKLM\...\Steam App 291550) (Version: - Blue Mammoth Games) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5167 - Z8Games.com) CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.R.L.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0196 - Disc Soft Ltd) Driver Booster 4.1 (HKLM-x32\...\Driver Booster_is1) (Version: 4.1.0 - IObit) GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.21.000 - Runtime Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3540 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) Jogos Level Up (HKU\S-1-5-21-1357384694-231197386-693505984-1000\...\bda992e0694a5bbb) (Version: 0.9.4.4 - Level Up) K-Lite Mega Codec Pack 6.5.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.5.0 - ) League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Lightshot-5.4.0.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility) Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Nero 7 Essentials (HKLM-x32\...\{EF3E420F-2DCF-4C24-8E37-896801901046}) (Version: 7.03.1055 - Nero AG) NVIDIA Driver de áudio HD 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.54 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.54 - NVIDIA Corporation) NVIDIA GeForce Experience 3.3.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.3.0.95 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NvNodejs (Version: 3.3.0.95 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.3.5.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment) Painel de controle da NVIDIA 372.54 (Version: 372.54 - NVIDIA Corporation) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7930 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games) RSDLite (HKLM-x32\...\{494CAE58-BBC3-4782-B59F-02F163E4A32B}) (Version: 6.2.4 - Motorola) SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.3.0.95 - NVIDIA Corporation) Hidden Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1357384694-231197386-693505984-1000\...\Spotify) (Version: 1.0.49.125.g72ee7853 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1224 - SUPERAntiSpyware.com) Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.) Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) TeraCopy 2.12 (HKLM\...\TeraCopy_is1) (Version: - Code Sector Inc.) The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - ) Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Warface (HKU\S-1-5-21-1357384694-231197386-693505984-1000\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.1.417.115 - Level Up! Games) Yahoo! Powered (HKLM-x32\...\winsearch) (Version: - ) <==== ATENÇÃO ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1357384694-231197386-693505984-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {05DBCE7A-F2A0-492F-A87F-80BD30F8ED6C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-20] (NVIDIA Corporation) Task: {0F56A9E6-76B4-4DAE-A0AB-B92C8B93B305} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] () Task: {18E56F3A-B2C9-43A5-8CEF-5073D443022F} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] () Task: {221033D0-D985-4C53-9BE4-4C20C579CE04} - System32\Tasks\Yahoo! Powered ditom => Wscript.exe "C:\ProgramData\{3CB7F9D4-B6F5-7312-3033-ED50AA71669E}\lide.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b33434237463944342d423646352d373331322d333033332d4544353041413731363639457d5c636f736f6e6f" "433a5c50726f6772616d446174615c7b33434237463944342d423646352d373331322d333033 (a entrada de dados tem 78 mais caracteres). Task: {221E4C7C-F793-4B61-8EAF-BA12C5F3A840} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-12-22] (AVAST Software) Task: {2682555E-1A9E-4C30-B036-FF02D4995525} - System32\Tasks\SUPERAntiSpyware Scheduled Task 95d87912-1682-4998-a24b-679c93ae5005 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {34EE0CFB-1DD7-41D1-80BC-FB4EF5CC828F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-14] (Adobe Systems Incorporated) Task: {49937039-C270-4973-B78E-F37E76C917E9} - System32\Tasks\{D34914BF-0F44-4A96-8EBA-830F3EB33435} => C:\Users\Usuario\AppData\Local\{55A86~1\synctask.exe [2017-02-28] () <==== ATENÇÃO Task: {50BE2828-3880-463B-9989-B79BA22689EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.) Task: {5957CD43-65F7-4014-8D3A-9FCEC0110F1B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {59A9A6E7-7C0F-4797-AAAE-DE48B6689D9C} - System32\Tasks\SUPERAntiSpyware Scheduled Task 21163425-5e26-431d-ba6b-f68b3d6ddb24 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {60C5141C-BF2A-4495-9B08-F75677235CDC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.) Task: {76D0AF14-82CB-4B00-B0B5-DCBCCF0A28CE} - System32\Tasks\SafeZone scheduled Autoupdate 1465659157 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software) Task: {89B983A7-66A6-4BE9-8F82-C9F4AA17EDA5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation) Task: {93B31666-0EEB-4778-9380-52925A1C893D} - System32\Tasks\Driver Booster SkipUAC (Usuario) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-11-25] (IObit) Task: {976FEC16-BB5A-4B34-8192-CAA24D456B8C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation) Task: {9824F52B-AB7A-444E-8BD5-FA59C1DAD6D3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation) Task: {9DA4CFF1-B6A4-4359-BCBA-61910F28384D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation) Task: {B290377D-EE8C-4B5B-8A6F-51589F36C486} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-21] (IObit) Task: {B2CEA6E1-0323-4242-A39D-B90BFA4AD3ED} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software) Task: {C5B3E669-40B7-4FED-8520-362AD468231C} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2016-07-11] () Task: {C5E5C232-91F2-4117-AF1C-65969F4CA840} - System32\Tasks\update-S-1-5-21-1357384694-231197386-693505984-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2016-07-11] () Task: {D7AE9070-C02B-47CE-AA6D-96BBA7E12A06} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20] (NVIDIA Corporation) Task: {DBCBF70B-374F-403A-9D45-7176CF757524} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-20] (NVIDIA Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 21163425-5e26-431d-ba6b-f68b3d6ddb24.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 95d87912-1682-4998-a24b-679c93ae5005.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\Windows\Tasks\update-S-1-5-21-1357384694-231197386-693505984-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\Yahoo! Powered ditom.job => Wscript.exe C:\ProgramData\{3CB7F9D4-B6F5-7312-3033-ED50AA71669E}\lide.txt <==== ATENÇÃO Task: C:\Windows\Tasks\{D34914BF-0F44-4A96-8EBA-830F3EB33435}.job => C:\Users\Usuario\AppData\Local\{55A86~1\synctask.exe <==== ATENÇÃO ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-08-27 15:26 - 2016-08-11 08:49 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00025648 _____ () C:\Program Files\CyberGhost 6\BugSplatDotNet.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00306736 _____ () C:\Program Files\CyberGhost 6\MobileConcepts45.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00120368 _____ () C:\Program Files\CyberGhost 6\CyberGhost.RESTCommunicator.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00081968 _____ () C:\Program Files\CyberGhost 6\MPHelper.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00095792 _____ () C:\Program Files\CyberGhost 6\ZendeskApi.Client.dll 2016-12-04 01:40 - 2017-02-06 10:42 - 00057904 _____ () C:\Program Files\CyberGhost 6\ZendeskApi.Contracts.dll 2016-12-02 23:25 - 2017-01-20 15:39 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-02 23:25 - 2017-01-20 15:39 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-12-22 02:14 - 2016-12-22 02:14 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-02-28 20:49 - 2017-02-28 20:49 - 05990096 _____ () C:\Program Files\AVAST Software\Avast\defs\17022802\algo.dll 2016-12-22 02:14 - 2016-12-22 02:14 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-09-02 21:30 - 2016-12-23 15:28 - 00657184 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-09-02 21:30 - 2016-08-31 22:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-09-02 21:30 - 2016-08-31 22:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-09-02 21:30 - 2016-08-31 22:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-09-02 21:30 - 2017-01-18 22:30 - 02327840 _____ () C:\Program Files (x86)\Steam\video.dll 2016-09-02 21:30 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-09-02 21:30 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-09-02 21:30 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-09-02 21:30 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-09-02 21:30 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-09-02 21:30 - 2017-01-18 22:30 - 00838432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-09-02 21:30 - 2016-07-04 19:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2016-09-03 15:04 - 2017-02-19 11:11 - 51777648 _____ () C:\Users\Usuario\AppData\Roaming\Spotify\libcef.dll 2016-12-22 02:14 - 2016-12-22 02:14 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-09-03 15:04 - 2017-02-19 11:11 - 01803888 _____ () C:\Users\Usuario\AppData\Roaming\Spotify\libglesv2.dll 2016-09-03 15:04 - 2017-02-19 11:11 - 00086128 _____ () C:\Users\Usuario\AppData\Roaming\Spotify\libegl.dll 2014-04-07 11:31 - 2014-04-07 11:31 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll 2016-12-13 15:11 - 2017-01-05 00:12 - 68813088 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2016-09-02 21:30 - 2017-01-18 22:30 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll 2016-12-02 23:25 - 2017-01-20 15:39 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-12-02 23:25 - 2017-01-20 15:39 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-02 23:25 - 2017-01-20 15:39 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-12-02 23:26 - 2017-01-20 15:38 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2016-12-02 23:26 - 2017-01-20 10:36 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-12-02 23:26 - 2017-01-20 10:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-12-02 23:26 - 2017-01-20 10:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-12-02 23:26 - 2017-01-20 10:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-12-02 23:26 - 2017-01-20 10:36 - 00537656 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-12-02 23:26 - 2017-01-20 10:36 - 00468024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-12-02 23:26 - 2017-01-20 10:36 - 01066552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2017-01-25 18:06 - 2017-01-20 10:36 - 01014840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node 2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2017-02-07 16:45 - 2017-02-01 06:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll 2017-02-07 16:45 - 2017-02-01 06:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll 2016-06-01 17:50 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1357384694-231197386-693505984-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: Chew7Hale => "C:\Windows\System32\hale.exe" /nolog MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" MSCONFIG\startupreg: NBKeyScan => "C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe" MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{2F706F76-6E93-49EF-A576-30F3D425047E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{0EFFC01E-9B74-4EC0-B647-DCF7E82A968A}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [TCP Query User{5A934A9E-D62D-4C61-B04D-87F1465C4DA5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{F46D643A-282D-4B70-93A1-2E5B62AB1427}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{D4862754-3238-4932-BFF1-A4FAB88A362F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{6824BDB9-B341-4B51-B2E3-93EF999C014B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{BD1B97C7-7147-461F-8CD3-C93A16E367FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{758269EE-509D-40CB-82F0-132CFFDEEA6B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E235B73D-6599-4E0B-BF14-C8CC47061F85}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{F77D457F-F105-4338-B851-FA4961F8556B}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{021E51AD-A8F6-4E3C-8EA2-384BDAAB52FA}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe FirewallRules: [{B3B0487A-943F-461D-B982-F7360A84050B}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe FirewallRules: [{491C56FF-8D9C-4968-BB22-EDE59296C4EE}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe FirewallRules: [TCP Query User{198A0C68-77D7-483F-AB11-31C823B3B4EA}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{52B1D20D-A366-4E00-883C-81CB22E4CDCE}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{8A8961BD-953A-4804-93A7-9AF0D62BF773}C:\program files (x86)\motorola\rsd lite\sdl.exe] => (Allow) C:\program files (x86)\motorola\rsd lite\sdl.exe FirewallRules: [UDP Query User{7215CC74-AAAC-41BA-B145-A348F47CA3B5}C:\program files (x86)\motorola\rsd lite\sdl.exe] => (Allow) C:\program files (x86)\motorola\rsd lite\sdl.exe FirewallRules: [{D86808BA-37B2-4877-83C7-4B295F335598}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{39D22324-788B-44A7-8418-642B292C0EBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{F648552E-DDEF-4398-B1CF-0C07462FAB55}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DFB87A71-11B6-4DA1-8EE8-CDB01C90E590}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{62013206-D9B9-43AF-840C-D5F83F726770}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{2CB08197-44BF-4ECD-8D60-95FB246CDF53}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{30911395-7BD5-44A0-922D-C82CE27EC618}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{FC23311B-B9C7-48BD-82B2-997D8ACC8A11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{913F1A9B-109D-49A6-8E21-E8CC7B79EBDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{E83732C6-CA6C-44BA-912C-58FBDD8FEA05}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{38C1A740-B6A7-4D3E-90FC-0A65F1840AF8}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{2387BBA9-815A-4CD0-97BC-730867F52B39}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{89453F83-4249-4914-B6BE-DFB9F2D1C130}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2968C85D-7FD5-44B7-B16A-36336973EF8C}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5EDCAA25-3E42-4AFD-92B7-2A704D8E754A}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4E5142ED-D590-4D48-B597-0FEB9599A0EA}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C008EA92-61D4-4967-ACE0-30EC76FA54FE}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F0A3631F-44F5-4749-A1EF-895B60FC3473}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{D1F457A4-F947-4BA7-8755-8C0E1557BD8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{FF8A24BC-549F-4327-BFE4-F0C9DB02EE42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{999194E2-B3DC-4E30-83AB-4AE7D3FF1177}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{B9C448BC-EA9C-44E8-9458-0176A51C0BB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{C70E09D4-0D98-4FCD-9667-E3775E176324}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8588CFD6-E9E2-4E86-93EF-7F1B350A9990}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6ADF9FA5-EEC9-4E36-83FF-EFA32C7A4104}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe FirewallRules: [{7A8544D4-5DCE-4C3E-8952-3B9FF62F7DD2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe FirewallRules: [{5C81A6A8-BF9F-4891-95B7-BD66B152BF67}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe FirewallRules: [{82E3606C-B75D-4EEB-B2FE-6AD3E8ED996B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe FirewallRules: [{09951141-BDFE-44EB-93AE-D9CBAB49D0E9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe FirewallRules: [{7F97A785-8344-4897-BE53-5BECC2506480}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe FirewallRules: [{AF711247-84BA-4CFD-92B4-008A3CA7A85D}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe FirewallRules: [TCP Query User{406AAC56-360E-4BD2-BC27-73FDE19A853E}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{6B0F5927-04D4-4DA7-9CC5-74FB33A19F14}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{580FD12B-2CAC-4F27-9261-7ECE98AEC236}C:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{149E5591-FB1A-4CB0-B6D1-149025AC5C45}C:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{9F50070C-CD74-4941-A67A-C2DCB85C94F7}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{634CBB19-E5F1-4FD3-8891-15647223F84A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{C60381FF-B0F1-45E6-B8B6-349BF1EE33AF}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [UDP Query User{0B1E17ED-B585-4BAD-ACC5-8DDDCE3DEB91}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [{41C3FC5A-C96C-4302-980D-FC10A7572F3D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C5220ED8-60B2-4933-A728-54EBA956C1DA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{A3A7F8A5-11EC-4720-8286-1E6028D1685D}C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe FirewallRules: [UDP Query User{C0EC74E4-2CD1-4B2B-B462-9F5C409DA844}C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe FirewallRules: [TCP Query User{B7CBCE50-1E20-4F9E-B4DF-98B8F8A96DD9}C:\users\usuario\appdata\local\apps\2.0\p7p4r5vh.l90\3vj50bt9.p2r\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\usuario\appdata\local\apps\2.0\p7p4r5vh.l90\3vj50bt9.p2r\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{FF104158-870F-4CF4-BB51-E811739E42FD}C:\users\usuario\appdata\local\apps\2.0\p7p4r5vh.l90\3vj50bt9.p2r\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\usuario\appdata\local\apps\2.0\p7p4r5vh.l90\3vj50bt9.p2r\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{B3179FB1-1667-4B16-AFFD-0C29B2D9BE04}C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe] => (Allow) C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe FirewallRules: [UDP Query User{397C3C89-B6DC-4052-93A6-92EA31D4DEAB}C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe] => (Allow) C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe FirewallRules: [{A97DCB73-4322-4CBA-95ED-F70E5617D8FF}] => (Block) C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe FirewallRules: [{76527F95-9ABE-4EE5-9BD6-AD59285077A0}] => (Block) C:\users\usuario\downloads\slime.rancher.v0.4.2d\slime.rancher.v0.4.2d\x64\slimerancher.exe FirewallRules: [{9800F41C-A655-4EC2-A0C9-E68C30A82AEA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{6094C377-C7CA-483D-92DF-D5FF48EB1DF1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{2F5E092F-280F-449D-928E-08545F7EAE22}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [TCP Query User{DF97217C-65E0-478A-A522-65BF57CD373F}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe FirewallRules: [UDP Query User{52540ACF-F9A4-4597-9919-BEAB1105AC16}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe ==================== Pontos de Restauração ========================= 28-02-2017 00:22:24 Ponto de Verificação Agendado 28-02-2017 20:51:03 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (02/28/2017 10:06:54 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Não foi possível abrir o objeto de desempenho do serviço do Servidor. Os primeiros quatro bytes (DWORD) da seção de dados contém o código do status. Error: (02/28/2017 08:52:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144 Nome do módulo de falhas: SHELL32.dll, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7c9a6 Código de exceção: 0xc0000005 Deslocamento com falha: 0x000000000009270f Identificação do processo com falha: 0x690 Hora de início do aplicativo com falha: 0x01d2921c4034062b Caminho do aplicativo com falha: C:\Windows\Explorer.EXE FCaminho do módulo de falhas: C:\Windows\system32\SHELL32.dll Identificação do Relatório: 05d21aa7-fe11-11e6-9649-fcaa14fc571b Error: (02/28/2017 08:52:43 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Usuario-PC) Description: O aplicativo ou serviço 'BlueStacks Agent' não pôde ser encerrado. Error: (02/27/2017 06:09:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 9095 Error: (02/27/2017 06:09:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 9095 Error: (02/27/2017 06:09:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/27/2017 06:09:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8096 Error: (02/27/2017 06:09:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8096 Error: (02/27/2017 06:09:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/27/2017 06:09:43 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7082 Erros de Sistema: ============= Error: (02/28/2017 10:06:11 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: O servidor {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} não se registrou com o DCOM dentro do tempo limite requerido. Error: (02/28/2017 10:05:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (02/28/2017 10:05:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (02/28/2017 08:45:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (02/28/2017 08:45:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (02/28/2017 12:46:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (02/28/2017 12:46:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (02/28/2017 12:45:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço CyberGhost 6 Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (02/28/2017 12:45:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço CyberGhost 6 Service. Error: (02/28/2017 12:22:48 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. CodeIntegrity: =================================== Date: 2017-02-28 22:04:58.842 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-28 22:04:58.842 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-28 20:41:40.820 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-28 20:41:40.789 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-28 12:42:38.164 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-28 12:42:38.148 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-27 15:34:41.855 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-27 15:34:41.839 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-27 04:02:14.340 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-02-27 04:02:14.324 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Informaes da Memria =========================== Processador: Intel(R) Core(TM) i3-4370 CPU @ 3.80GHz Percentagem de memria em uso: 23% RAM fsica total: 16254.97 MB RAM fsica disponvel: 12445.78 MB Virtual Total: 32508.12 MB Virtual disponvel: 28371.07 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:664.44 GB) NTFS ==================== MBR & Tabela de Parties ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C20B3D44) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================