Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 27.01.2018 Executado por gusta (01-02-2018 23:47:56) Executando a partir de C:\Users\gusta\Downloads Windows 10 Pro Versão 1709 16299.192 (X64) (2017-12-31 02:41:06) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1292664160-793961451-1825548134-500 - Administrator - Disabled) cicer (S-1-5-21-1292664160-793961451-1825548134-1003 - Limited - Enabled) => C:\Users\cicer Convidado (S-1-5-21-1292664160-793961451-1825548134-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1292664160-793961451-1825548134-503 - Limited - Disabled) gusta (S-1-5-21-1292664160-793961451-1825548134-1001 - Administrator - Enabled) => C:\Users\gusta WDAGUtilityAccount (S-1-5-21-1292664160-793961451-1825548134-504 - Limited - Disabled) willm (S-1-5-21-1292664160-793961451-1825548134-1002 - Administrator - Enabled) => C:\Users\willm ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Kaspersky Free (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Free (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Atualizações da NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden BitTorrent (HKU\S-1-5-21-1292664160-793961451-1825548134-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform) CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 390.65 - NVIDIA Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation) Intel(R) Network Connections 22.9.16.0 (HKLM\...\PROSetDX) (Version: 22.9.16.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.0.1015 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden Kaspersky Free (HKLM-x32\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden Kaspersky Free (HKLM-x32\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) K-Lite Mega Codec Pack 13.6.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1292664160-793961451-1825548134-1001\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1292664160-793961451-1825548134-1002\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Need For Speed Underground (HKLM-x32\...\{A99968BE-C155-474C-0089-33239DEE1CE2}) (Version: - ) Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - ) Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - ) NVIDIA Driver de áudio HD 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Driver de gráficos 390.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 390.65 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 390.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 390.65 - NVIDIA Corporation) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Painel de controle da NVIDIA 390.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 390.65 - NVIDIA Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8273 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Software de dispositivo do Chipset Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Update for Skype for Business 2015 (KB4011638) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011638) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUSR_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011638) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7}) (Version: - Microsoft) Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden WhatsApp (HKU\S-1-5-21-1292664160-793961451-1825548134-1001\...\WhatsApp) (Version: 0.2.8082 - WhatsApp) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2017-12-31] (AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2017-12-31] (AO Kaspersky Lab) ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2017-12-31] (AO Kaspersky Lab) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-01-03] (NVIDIA Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2017-12-31] (AO Kaspersky Lab) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0D7C86F3-5DEF-406B-9B4A-6BA0E2BDF01F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {205E94CD-9D40-47C7-BB69-6AB293999123} - System32\Tasks\S-1-5-21-1292664160-793961451-1825548134-1001\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation) Task: {3E3226BF-5363-4D1D-B264-6A27A6C36B89} - \Optimize Thumbnail Cache Files -> Nenhum Arquivo <==== ATENÇÃO Task: {50B5A4CA-116C-4847-8B87-7A7376B44463} - System32\Tasks\InstallShield® Update Service Scheduler => C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe [2017-10-07] (InstallShield®) Task: {AC6F343F-2C63-48B8-8C29-C954DC838086} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {C1C0A014-1111-4EA5-90D7-02993A503E13} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {CEC2AB1C-BCA4-464D-B72C-3A13AC78E772} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-13] (Piriform Ltd) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2018-01-13 15:56 - 2018-01-03 23:44 - 000544056 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll 2017-12-31 12:47 - 2017-12-31 01:06 - 001360016 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2017-12-31 01:01 - 2017-11-15 23:41 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-10-26 15:21 - 2017-10-26 15:21 - 000419328 ____R () C:\Program Files\Intel\Wired Networking\NCS2\Agent\AdapterAgnt.DLL 2017-09-29 11:41 - 2017-09-29 11:41 - 000184432 _____ () C:\Windows\SYSTEM32\inputhost.dll 2017-12-31 00:52 - 2018-01-03 21:50 - 000134448 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-12-31 14:43 - 2017-11-26 10:23 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-31 14:45 - 2017-11-26 10:01 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-01-31 07:30 - 2018-01-31 07:30 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-01-31 07:30 - 2018-01-31 07:30 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-01-31 07:30 - 2018-01-31 07:30 - 025135104 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-01-31 07:30 - 2018-01-31 07:30 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\skypert.dll 2018-01-31 07:30 - 2018-01-31 07:30 - 000667136 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2017-11-14 08:07 - 2017-11-14 08:07 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll 2017-12-13 16:04 - 2017-12-13 16:04 - 000086344 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2018-01-13 16:00 - 2018-01-12 22:43 - 002144528 _____ () C:\Users\gusta\AppData\Local\WhatsApp\app-0.2.8000\ffmpeg.dll 2018-02-01 23:31 - 2018-02-01 23:31 - 000489984 _____ () \\?\C:\Users\gusta\AppData\Local\Temp\9126.tmp.node 2018-01-13 16:00 - 2018-01-12 22:43 - 002555152 _____ () C:\Users\gusta\AppData\Local\WhatsApp\app-0.2.8000\libglesv2.dll 2018-01-13 16:00 - 2018-01-12 22:43 - 000096528 _____ () C:\Users\gusta\AppData\Local\WhatsApp\app-0.2.8000\libegl.dll 2018-02-01 23:31 - 2018-02-01 23:31 - 000489984 _____ () \\?\C:\Users\gusta\AppData\Local\Temp\DD04.tmp.node 2018-01-09 21:56 - 2018-01-03 07:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-09 21:56 - 2018-01-03 07:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2017-12-31 01:11 - 2017-06-27 07:49 - 000081368 _____ () C:\Program Files (x86)\ASUS\AXSP\2.00.09\ATKEX.dll 2018-01-16 23:50 - 2018-01-31 13:30 - 000033576 _____ () C:\Program Files (x86)\ASUS\AXSP\2.00.09\PEbiosinterface32.dll 2018-01-16 23:51 - 2017-05-05 04:39 - 006065152 _____ () C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.18\libprotobufd.dll 2017-12-31 17:46 - 2017-12-31 17:46 - 000836968 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\kpcengine.2.3.dll 2017-11-09 00:44 - 2017-11-09 00:44 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-12-31 01:01 - 2017-11-15 23:41 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-12-31 16:50 - 2017-11-29 03:09 - 000781088 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2017-12-31 16:50 - 2016-08-31 23:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2017-12-31 16:50 - 2017-12-15 17:59 - 002558752 _____ () C:\Program Files (x86)\Steam\video.dll 2017-12-31 16:50 - 2016-08-31 23:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2017-12-31 16:50 - 2016-08-31 23:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2017-12-31 16:50 - 2017-11-03 23:54 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2017-12-31 16:50 - 2017-11-03 23:54 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2017-12-31 16:50 - 2017-11-03 23:54 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2017-12-31 16:50 - 2017-11-03 23:54 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2017-12-31 16:50 - 2017-11-03 23:54 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2017-12-31 16:50 - 2017-12-15 17:59 - 000904992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2017-12-31 16:51 - 2017-09-07 00:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-12-31 16:51 - 2017-10-31 02:44 - 071471904 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-12-31 16:50 - 2015-09-24 21:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2017-09-29 11:46 - 2017-09-29 11:44 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1292664160-793961451-1825548134-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gusta\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\11_marco_müller_-_hainstadt_js.jpg HKU\S-1-5-21-1292664160-793961451-1825548134-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\willm\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{F6E8E578-C46D-4A20-8425-7AAF2DDDE350}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{92E03654-7D74-4837-BC48-CEA369BB02C4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{72236A05-B20E-42D0-B635-608211EAC1F8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{D1C7A95F-A95E-4B98-8A12-B73CFEC73A28}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{9E55458A-A94D-4A1A-B169-FEEA4DDF9041}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{4D631571-6DC7-4E16-A976-019CAB339FEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{10FE36C5-E8A9-4383-B32C-C160803FC335}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe FirewallRules: [{BE50F0D2-9AF3-437B-BC17-B6C88B587EC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe FirewallRules: [TCP Query User{AA180223-B144-4F4A-BFFE-9A84CD58F6A5}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{44DCF9A8-151C-47BE-9FFC-7F9B629305FD}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{345B88A6-6C7D-4B03-A90F-CC3C943557C3}] => (Block) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{7A927CEC-0710-47B4-9D70-24FED1577C28}] => (Block) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{9AD74636-9C2F-4C28-AA55-A40C24306235}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PRO EVOLUTION SOCCER 2018\PES2018.exe FirewallRules: [{5842BA12-8FDC-49C7-B16C-772C3DE8B807}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PRO EVOLUTION SOCCER 2018\PES2018.exe FirewallRules: [{C18697B6-8AE9-4DBA-A73C-AC72D7D0D694}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{BAA525CC-9ED8-492C-93D9-C53C14EC46AC}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{7C80B82D-F064-4637-AC5F-0711E4DBD95B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{CBAE5004-A568-4AC1-8C75-3DC59CD62F41}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{3A82E96F-3710-49E0-8400-EBB0AFEC4168}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{7C9C6193-CD50-443B-966A-CB4801B90DC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{028E266B-912F-4E0A-8850-BC4702C2DEF0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{AD2C664C-3C12-48E8-A0FC-EFACE62E8361}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{E49DA37D-7333-481F-BA2B-30F77DA0CCA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{F4C3952B-1AD0-46D6-8E4E-FE9F0237CE5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{05D7F840-E0B9-4EDC-9EF6-9F488EE20531}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{C887896E-8199-44DC-8AAE-E808382EE8A2}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{0FA5C723-94DF-412C-AB05-1EAEE6CD56EA}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{37CB90ED-2430-4D30-A144-9068D2A01404}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{AF0B1B31-D209-4B19-8726-427BAD8FDB57}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{6AAB58E7-8D0F-4CEF-B629-CB3276A36E74}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{A1A3D0BA-17AD-48DD-B5C9-E538D90AC905}] => (Allow) C:\Users\gusta\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{761986F4-3F8C-4142-BE09-63C32C1E3BE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe FirewallRules: [{FCD0913C-96F9-4A6F-A1C6-A39BAEF10E53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{CBD4D139-34C7-4F2D-8F4E-0F731631A3BF}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{4F96E245-7B84-43D0-ADF7-F40FDF762F74}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe ==================== Pontos de Restauração ========================= 21-01-2018 11:57:59 Removed System Information ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (02/01/2018 11:49:07 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:12:07Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:48:37 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:11:37Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:48:07 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:12:07Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:47:37 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:11:37Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:47:07 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:12:07Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:46:37 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:11:37Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:46:07 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:12:07Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:45:37 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:11:37Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:45:07 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:12:07Z. Código de Erro: 0x80070002. Error: (02/01/2018 11:44:37 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Falha ao agendar o reinício do serviço Proteção de Software 2018-02-06T15:11:37Z. Código de Erro: 0x80070002. Erros de Sistema: ============= Error: (02/01/2018 11:31:52 PM) (Source: DCOM) (EventID: 10016) (User: CASA-PC) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} e APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} ao usuário CASA-PC\gusta SID (S-1-5-21-1292664160-793961451-1825548134-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (01/31/2018 01:34:41 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: O servidor {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:41 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: O servidor {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:40 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:40 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:39 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:39 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:39 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:39 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. Error: (01/31/2018 01:34:39 PM) (Source: DCOM) (EventID: 10010) (User: CASA-PC) Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou no DCOM dentro do tempo limite necessário. CodeIntegrity: =================================== Date: 2018-02-01 23:44:08.179 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-01 23:44:04.876 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-01 23:43:33.483 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-01 23:43:29.024 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-30 10:01:41.490 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-30 10:01:00.062 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-30 10:00:09.661 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-29 11:05:52.011 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-29 09:39:02.868 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-29 09:37:34.560 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Percentagem de memória em uso: 75% RAM física total: 4036.47 MB RAM física disponível: 974.58 MB Virtual Total: 9924.47 MB Virtual disponível: 5910.86 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.91 GB) (Free:281.81 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 683279B4) Partition: GPT. ==================== Fim de Addition.txt ============================