Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 15-10-2017
Executado por hgg (15-10-2017 12:58:11)
Executando a partir de D:\Downloads
Windows 8 Pro (X64) (2014-06-08 22:35:00)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2788307302-3240718628-409907494-500 - Administrator - Disabled)
Convidado (S-1-5-21-2788307302-3240718628-409907494-501 - Limited - Disabled)
hgg (S-1-5-21-2788307302-3240718628-409907494-1001 - Administrator - Enabled) => C:\Users\hgg
HomeGroupUser$ (S-1-5-21-2788307302-3240718628-409907494-1004 - Limited - Enabled)
UpdatusUser (S-1-5-21-2788307302-3240718628-409907494-1002 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
Adobe Acrobat Reader DC MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.159 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
Age of Mythology (HKLM-x32\...\Age of Mythology 1.0) (Version:  - )
Age of Mythology Titans Expansion Trial (HKLM-x32\...\Age of Mythology Expansion Pack Trial 1.0) (Version:  - )
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ares 2.2.4 (HKLM-x32\...\Ares) (Version: 2.2.4-Build#3048 - Ares Development Group)
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Atualizações da NVIDIA 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.7.2314 - AVAST Software)
BitTorrent (HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\BitTorrent) (Version: 7.9.9.43389 - BitTorrent Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking.com version 1.3.0.5019 (HKLM-x32\...\{958A475F-037D-401A-AC05-209725973E11}_is1) (Version: 1.3.0.5019 - Booking.com) <==== ATENÇÃO
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Classic Shell (HKLM\...\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}) (Version: 4.2.1 - IvoSoft)
Corel Graphics - Windows Shell Extension (HKLM\...\_{EBDC2D0D-1E26-4EF2-BB48-C7E18F7800C6}) (Version: 16.0.0.707 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{EBDC2D0D-1E26-4EF2-BB48-C7E18F7800C6}) (Version: 16.0.707 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{79899C6B-E315-4A3F-8904-02DEAB8D660D}) (Version: 16.0.707 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - BR (x64) (HKLM\...\{8EF2B1E1-4D7A-43FA-92C5-61DB6F0524C4}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (HKLM\...\{1967EF95-E00B-4669-8B1C-A589BE8BF24F}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (HKLM\...\{35869A6C-BA31-4F23-B52D-BC1B1E41EC1B}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (HKLM\...\{96AAAB95-AEBE-437A-B7CA-37C7BE13FFE9}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (HKLM\...\{7386B5FA-8715-481D-821F-7785110506DF}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (HKLM\...\{27AE72A4-B217-4CDC-B82B-3311E9D7460E}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (HKLM\...\{E699230D-4B5E-411E-9F45-FF50789B18DD}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (HKLM\...\{3933C06C-8239-432B-87FC-F2BDC5B49A10}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (HKLM\...\{B6DF7031-2843-44FD-9CAB-DECAB4257456}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (HKLM\...\{D7C2687D-924E-4485-B367-C7D95CBF8DDD}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (HKLM\...\{6099F026-0A98-4D40-9B3D-ED2123A8CBD0}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (HKLM\...\{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (HKLM\...\{10762393-1B90-4AC2-AF1A-4C0C04AE303F}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (HKLM\...\{7B79AE44-9B76-4815-84E5-ACAC3F0F0278}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (HKLM\...\{1E3A578C-0A7D-4820-990F-B7545C0B2303}) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (HKLM\...\{DDE82E3D-20C4-48E1-AE1D-B1F10E42CA44}) (Version: 16.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0.0.707 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (HKLM\...\{CCE7423E-1D84-4CD3-9E32-220EC9358D97}) (Version: 16.0 - Corel Corporation) Hidden
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2907 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version:  - Softland)
Galeria de Fotos (HKLM-x32\...\{9EE1AE8B-4872-41CA-8C9A-C33D899523E0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GameRanger (HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\GameRanger) (Version:  - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Injected Anti-cheat (HKLM-x32\...\Injected Anti-cheat) (Version: 16.2.0.0 - Alejandro Cortés)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2849 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.45.0 - JMicron Technology Corp.)
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Miniaurélio (HKLM-x32\...\{01A373F1-B268-43CA-A8F1-45708A62F50A}) (Version: 5.12 - Positivo Informática.)
Movie Maker (HKLM-x32\...\{C05F4139-CB6B-4272-A0BF-861FEB667F27}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 54.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 pt-BR)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
NVIDIA Driver de gráficos 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.3.59240 - Electronic Arts, Inc.)
Painel de controle da NVIDIA 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 331.65 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Pokémon Trading Card Game Online (HKLM-x32\...\{B1190819-66FF-4C39-BFC0-E83086CE3318}) (Version: 2.38.0 - The Pokémon Company International)
Polar FlowSync versão 2.6.2 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 2.6.2 - Polar Electro Oy)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0225 - REALTEK Semiconductor Corp.)
Remote Mouse version 3.002 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 3.002 - Remote Mouse)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
SeaTools for Windows (HKLM-x32\...\SeaTools for Windows) (Version:  - Seagate Technology)
Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
Teoma Search App (HKLM-x32\...\{41444150-2D54-4700-76A7-A758B70C2D01}) (Version: 12.45.1.1318 - APN, LLC)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.33.38.1020 - Electronic Arts Inc.)
UltraISO Premium V9.52 (HKLM-x32\...\UltraISO_is1) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warsaw 1.18.1.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.18.1.2 - GAS Tecnologia)
WarThunder (HKLM-x32\...\WarThunder) (Version:  - ) <==== ATENÇÃO
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WorldofTanks (HKLM-x32\...\WorldofTanks) (Version:  - ) <==== ATENÇÃO
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\hgg\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0013}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0013}\InprocServer32 -> C:\Users\hgg\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\hgg\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2788307302-3240718628-409907494-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-10] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-10] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-10] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-10] (IvoSoft)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-10] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] ()
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-10] (AVAST Software)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-10-06] (Intel Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-05-21] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2014-05-21] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-10-23] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-10] (AVAST Software)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2015-04-10] (IvoSoft)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] ()

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {08CCFFE1-A341-46B7-92A5-1D4D6E946F9D} - \Yahoo! Powered lodan -> Nenhum Arquivo <==== ATENÇÃO
Task: {3D660683-E65E-4BA7-AE02-2C523269D289} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-10-10] (AVAST Software)
Task: {3FD4804C-33FE-4CE7-974B-A537FE68FD15} - System32\Tasks\SafeZone scheduled Autoupdate 1454815291 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {498010E6-DBAD-4815-BEA9-ACE167BD84F1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6CFA2896-EB7F-4C06-8A15-91EEAA538EAA} - System32\Tasks\{3038EDEC-8053-445C-A989-B0F01C9E0805} => C:\Windows\system32\pcalua.exe -a "D:\Downloads\aomx10to103 (1).exe" -d D:\Downloads
Task: {82151FAA-970A-47BE-A642-1CCFA7915D9B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {87E5134C-8416-4A9B-86CE-3DFBF05AA30F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-20] (Adobe Systems Incorporated)
Task: {A15E7BB0-2A8E-428E-9054-F1E0E12F2128} - System32\Tasks\AdobeAAMUpdater-1.0-A-hgg => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {C1E9D601-0C4C-4A42-A027-4723688B1484} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {DCF4D64D-9780-4CA7-9BCF-E2A35CFA21BE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-10] (Adobe Systems Incorporated)
Task: {F5A1A02D-D496-4BAE-9219-7131BB612369} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {F6C876F2-154B-463B-8471-17688A90A272} - System32\Tasks\Search Provided by Bing lodan => C:\Windows\system32\wscript.exe "C:\ProgramData\{CE050B66-4447-81A0-C281-1FE258C3942C}\doti.txt" "68747470733a2f2f79786870612e636f6d" "433a5c50726f6772616d446174615c7b43453035304236362d343434372d383141302d433238312d3146453235384333393432437d5c6d6963617265" "433a5c50726f6772616d446174615c7b43453035304236362d343434372d383141302d4332 (a entrada de dados tem 80 mais caracteres). <==== ATENÇÃO
Task: {FFF9E495-90F1-4156-9F6A-9F3E8698235C} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] ()

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Search Provided by Bing lodan.job => Wscript.exe  C:\ProgramData\{CE050B66-4447-81A0-C281-1FE258C3942C}\doti.txt <==== ATENÇÃO
Task: C:\Windows\Tasks\Yahoo! Powered lodan.job => Wscript.exe  C:\ProgramData\{F9013C62-7343-B6A4-F585-28E66FC7A328}\doti.txt <==== ATENÇÃO

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


ShortcutWithArgument: C:\Users\hgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --app-window-size=1366,768
ShortcutWithArgument: C:\Users\hgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=3&click_id=1c2e651c887dd096077e276295f5139b0a7cc195 --start-fullscreen
ShortcutWithArgument: C:\Users\hgg\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=3&click_id=1c2e651c887dd096077e276295f5139b0a7cc195 --start-fullscreen
ShortcutWithArgument: C:\Users\hgg\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --app-window-size=1366,768

==================== Módulos Carregados (Whitelisted) ==============

2013-12-18 14:42 - 2013-12-18 14:42 - 000013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2015-12-01 22:44 - 2013-10-23 06:20 - 000102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-03-16 17:08 - 2017-03-16 17:08 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-08-15 22:18 - 2016-06-25 09:52 - 000018432 _____ () C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
2017-03-22 02:00 - 2017-08-22 11:45 - 000302920 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2014-06-08 21:28 - 2012-09-27 23:26 - 000087040 _____ () C:\Windows\PersonalizeEnabler.exe
2014-06-08 21:28 - 2012-09-26 21:31 - 000084992 _____ () C:\Windows\SLCHook.dll
2014-06-08 21:28 - 2009-03-07 03:02 - 000102912 _____ () C:\Windows\EasyHook64.dll
2017-03-22 02:00 - 2017-08-22 11:45 - 000620872 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2012-07-26 08:40 - 2012-07-26 08:37 - 000170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000169832 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000846752 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000286712 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2010-01-30 03:40 - 2010-01-30 03:40 - 004254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2017-10-10 17:59 - 2017-10-10 17:59 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000217088 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000151104 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll
2017-10-14 17:44 - 2017-10-14 17:44 - 005880504 _____ () C:\Program Files\AVAST Software\Avast\defs\17101400\algo.dll
2017-10-10 17:59 - 2017-10-10 17:59 - 000700656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-10-15 10:00 - 2017-10-15 10:00 - 005880504 _____ () C:\Program Files\AVAST Software\Avast\defs\17101500\algo.dll
2013-12-18 14:42 - 2013-12-18 14:42 - 000013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-08-15 22:18 - 2015-05-26 20:54 - 000152576 _____ () C:\Program Files (x86)\Remote Mouse\FileS.dll
2017-07-08 15:22 - 2017-07-08 15:23 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-10-10 17:58 - 2017-10-10 17:58 - 000234280 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2010-01-30 03:41 - 2010-01-30 03:41 - 004254560 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:612EB6FB_Bb.gbp [2]
AlternateDataStreams: C:\Windows\System32:612EB6FB_Uni.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [2770]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\bb.com.br -> hxxps://seg.bb.com.br
IE trusted site: HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2012-07-26 03:26 - 2017-10-15 09:31 - 000002131 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2788307302-3240718628-409907494-1001\Control Panel\Desktop\\Wallpaper -> D:\Desktop\Fotos\dalila.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

HKLM\...\StartupApproved\Run: => "AutoKMS"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "Diebold - Warsaw"
HKLM\...\StartupApproved\Run: => "SysTrayApp"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "UCam_Menu"
HKLM\...\StartupApproved\Run32: => "PowerDVD13Agent"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "ares"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "Polar FlowSync"
HKU\S-1-5-21-2788307302-3240718628-409907494-1001\...\StartupApproved\Run: => "Steam"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{8F2B594C-8E1E-4458-8B38-0BEA96066F7F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [UDP Query User{0642E1D3-091B-45D8-8E78-DFD0CC2429CD}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [TCP Query User{0523EAC6-6B6F-40E4-98BD-0F60A84F33B8}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{A188FA26-3C70-4178-88B5-CC70BB81409C}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [{91A2E58A-FF14-4038-A215-D7F96700B8BD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A3BD6F24-ED54-426A-AA8F-A183526C42A4}] => (Allow) LPort=2869
FirewallRules: [{F5213A75-A7EA-47D5-A468-3F10CC5B2A47}] => (Allow) LPort=1900
FirewallRules: [{8D771E09-336A-43C4-9F1C-7DA10ABB9197}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CCB74FE7-03A7-4025-A0EE-EB0351EA8DF0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2838B8AE-EAA7-4BF8-85F2-CA10339B90E0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{02BF0C49-06F1-4239-A32A-D12EC7425C96}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4F466A0D-EF2B-4FC4-A0B8-2730DF3892A1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{69A5E711-249E-4D98-9AD1-BB814EB87330}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2250DA3C-C363-4770-83F6-4BF65370421D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{90129C94-16C4-4517-A912-B63433545A39}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{2EDED24F-5894-4319-AD7A-F66C51592AFC}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{B9673803-A5B2-4A32-9948-4797A8BFC88D}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{C5FD2F70-FABF-4086-9358-AC9240865DD1}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{0ED96444-7819-48FA-9284-C3240EA95230}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4BF428C2-C73F-40E5-991B-8B7A79821733}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FF0515A0-0B7C-4B18-B0F9-73FD312CA47A}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E9A15CB6-4D9A-4CE9-A798-84CE0DC06685}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{484B265A-52F0-4F1C-9880-CF0AD93D3251}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6F478D76-6AC1-41A8-B901-728E620B39B4}] => (Allow) C:\Users\hgg\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{721C7FA0-D22D-42BA-9745-C97CAF306244}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CAC85C82-8122-4247-8FA9-5CA433B0A046}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C5FD84E6-6F1A-4589-874F-6A7B248CEA86}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FDE56624-4909-4FE2-882C-EDB23CE5C680}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{51D5D4EC-1363-45FF-962A-EB1E75CE8589}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{45E07711-4C3D-44A6-B0C7-437C5B8BB5CA}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{46DF8505-0447-49F9-A8DE-962FE9F244E3}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [{C316806D-BA44-4295-8347-5C663F0E04FF}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [TCP Query User{4E99C2DA-3E53-4549-9184-86F7B7FD9C9B}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe
FirewallRules: [UDP Query User{87A4AEFA-138B-44FC-B04F-757D4BB14AA0}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe
FirewallRules: [{0BACA438-4478-4E87-8DB5-4588026F1ABE}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{6B01B966-179F-4E01-A6E3-C7247317B992}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1AEB5DB5-A117-4CC7-95C6-9D33E3EA26ED}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B872B6C4-CD28-4F60-B7B0-0A8A2936B4AC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A0043C62-6B00-4B13-9630-C71373566E31}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{59684DDF-CA91-4F59-8DED-8D967FBB8B47}] => (Block) %ProgramFiles% (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe
FirewallRules: [{D9312AA9-898E-413C-84F6-9AD83883AE07}] => (Block) %ProgramFiles%\Adobe\Adobe Premiere Pro CC\Adobe Premiere Pro.exe
FirewallRules: [{86BAA69D-99E1-4A67-8FF2-E1B4608FC858}] => (Block) %ProgramFiles% (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe
FirewallRules: [{8482728B-1AD1-4D7B-B0CD-A78C356E9A91}] => (Block) %ProgramFiles%\Adobe\Adobe Premiere Pro CC\Adobe Premiere Pro.exe
FirewallRules: [{A42BDCB0-986F-4489-A190-3C38C7233AA2}] => (Allow) C:\Users\hgg\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{5FCFF74A-B9EB-481F-BD89-D95E82C6FCF3}] => (Allow) C:\Users\hgg\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{EB3860C5-3983-4B08-B686-CF98F3C025C8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CF78AD97-B788-4C79-A754-B3825686519B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{ABC4FD2D-73EB-403F-AD2F-ED42EB53161C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1C38A7B6-B512-4B20-BE20-7FFCC21D7D73}] => (Allow) LPort=5354
FirewallRules: [{9C822208-FC13-40E6-8B55-DE3EE3836A25}] => (Allow) LPort=5354
FirewallRules: [{5DA072C8-3D71-4808-A988-4F8B8D23B1D8}] => (Allow) LPort=5354
FirewallRules: [{C227B34C-4512-484B-BC49-9FF28B9E57DD}] => (Allow) LPort=5354
FirewallRules: [TCP Query User{9C6C8F59-0541-4321-8539-018202A12A03}C:\users\hgg\appdata\roaming\bittorrent\updates\7.9.9_43296.exe] => (Allow) C:\users\hgg\appdata\roaming\bittorrent\updates\7.9.9_43296.exe
FirewallRules: [UDP Query User{0C33AE17-5DB3-4CA4-9FFD-EE8DA5840D37}C:\users\hgg\appdata\roaming\bittorrent\updates\7.9.9_43296.exe] => (Allow) C:\users\hgg\appdata\roaming\bittorrent\updates\7.9.9_43296.exe
FirewallRules: [{9341C152-2689-4EAC-B48D-014A2D5CB273}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{A25AF52B-B0EA-4A2B-BF06-CA301DBA831F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{A3980C4C-DA87-401C-AB9D-21824CD0E595}C:\program files (x86)\age of mythology extended edition\aomx.exe] => (Allow) C:\program files (x86)\age of mythology extended edition\aomx.exe
FirewallRules: [UDP Query User{4FD07089-BEDB-40A7-A770-32BB6FB19224}C:\program files (x86)\age of mythology extended edition\aomx.exe] => (Allow) C:\program files (x86)\age of mythology extended edition\aomx.exe
FirewallRules: [TCP Query User{75E80A10-9443-4ED6-8EFB-9C8DE7096DB7}C:\users\hgg\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\hgg\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{A0DB9A4D-83EA-42AA-8A43-30835130D799}C:\users\hgg\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\hgg\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{1FF49B5C-5149-4B23-89FE-D570008EC1AB}C:\program files (x86)\microsoft games\age of mythology\aom.exe] => (Allow) C:\program files (x86)\microsoft games\age of mythology\aom.exe
FirewallRules: [UDP Query User{1E3830BF-134B-41AD-BB55-1B4CC3C6111F}C:\program files (x86)\microsoft games\age of mythology\aom.exe] => (Allow) C:\program files (x86)\microsoft games\age of mythology\aom.exe
FirewallRules: [{6B03B039-B78E-407C-A284-520BD7C31933}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{1FDC0035-789A-4AA0-BC77-6DC0E523D896}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [TCP Query User{02C8C083-8E37-41F0-8EE5-E3002D84DEE8}C:\users\hgg\appdata\roaming\utorrent\updates\3.5.0_43916.exe] => (Block) C:\users\hgg\appdata\roaming\utorrent\updates\3.5.0_43916.exe
FirewallRules: [UDP Query User{086E04C4-1656-405E-8C7E-4A133D17CD92}C:\users\hgg\appdata\roaming\utorrent\updates\3.5.0_43916.exe] => (Block) C:\users\hgg\appdata\roaming\utorrent\updates\3.5.0_43916.exe
FirewallRules: [{126DD847-7017-472B-8328-1D7961E38AEC}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609_0\SZBrowser.exe
FirewallRules: [{A3A5E0CA-6823-40D3-8241-1D9C7D3F061C}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{F120C4E0-2586-42AE-BAC6-9322B6DE5A8F}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{42582E8E-A09A-44BE-A207-E88EFFEFD1F5}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{77E8D1CC-55A7-4C22-B562-9F76D2826133}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{D3894CC5-8342-465F-947E-6A3C830BAA4D}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{466335F1-D69D-410A-97F3-36B70F4948A0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================


==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (10/15/2017 12:48:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Explorer.EXE versão 6.2.9200.16384 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 864

Hora de Início: 01d345a91edd6502

Hora de Término: 9033

Caminho do Aplicativo: C:\Windows\Explorer.EXE

ID do Relatório: bf2c4513-b1b7-11e7-bf3a-9c2a70895162

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha:

Error: (10/15/2017 10:01:02 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007007B
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/15/2017 10:00:59 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007007B
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/15/2017 10:00:25 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007007B
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/15/2017 09:33:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007267C
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (10/15/2017 02:06:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15578

Error: (10/15/2017 02:06:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15578

Error: (10/15/2017 02:06:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/15/2017 02:06:31 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007007B
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/14/2017 09:52:42 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Falha ao criar ponto de restauração (Processo = C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe -Embedding; Descrição = Instalador de Módulos do Windows; Erro = 0x80070422).


Erros de Sistema:
=============
Error: (10/15/2017 09:34:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/15/2017 09:31:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/15/2017 09:31:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/15/2017 09:31:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/15/2017 09:30:18 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORIDADE NT)
Description: 0xc000014d0

Error: (10/15/2017 09:31:01 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 20:48:50 do dia ‎14/‎10/‎2017 não era esperado.

Error: (10/14/2017 08:48:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/14/2017 08:48:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (10/14/2017 08:46:44 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (10/14/2017 07:48:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.


CodeIntegrity:
===================================
  Date: 2017-10-15 09:30:47.682
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-10-14 18:47:34.427
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-10-13 20:36:20.178
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-10-11 16:18:05.083
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-10-09 13:27:13.659
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-09-25 10:57:29.035
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-09-16 15:49:27.611
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-09-11 15:09:26.818
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-09-06 17:43:16.025
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

  Date: 2017-08-31 22:14:08.115
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentagem de memória em uso: 37%
RAM física total: 6000.54 MB
RAM física disponível: 3723.85 MB
Virtual Total: 12144.54 MB
Virtual disponível: 9808.03 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:243.8 GB) (Free:19.72 GB) NTFS
Drive d: () (Fixed) (Total:687.37 GB) (Free:396.21 GB) NTFS
Drive g: (AOM_D1) (CDROM) (Total:0.5 GB) (Free:0 GB) CDFS
Drive h: (AOM_D2) (CDROM) (Total:0.49 GB) (Free:0 GB) CDFS
Drive i: () (CDROM) (Total:4.2 GB) (Free:0 GB) UDF

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B0718520)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=243.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=687.4 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================