Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-08-2017
Executado por Tiago (31-08-2017 23:39:13)
Executando a partir de C:\Users\Tiago\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2014-08-28 07:06:59)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-3399263704-3112878523-1617286210-500 - Administrator - Disabled)
Convidado (S-1-5-21-3399263704-3112878523-1617286210-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3399263704-3112878523-1617286210-1002 - Limited - Enabled)
Tiago (S-1-5-21-3399263704-3112878523-1617286210-1000 - Administrator - Enabled) => C:\Users\Tiago
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avira Antivirus (Disabled - Out of date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Out of date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.33 - NVIDIA Corporation) Hidden
Atualizações da NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.29.32 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{7990b9d3-2da3-4eef-bf20-73a05086fd12}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{E972AE5C-71B3-4D35-8193-BC4CC2F1FA20}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.9.1.24376 - Avira Operations GmbH & Co. KG)
Avira Safe Shopping (HKLM-x32\...\{DF7F23E4-169C-4591-B7EB-3F14587223A8}) (Version: 1.0.27.1161 - Avira Operations Gmbh & Co. KG)
Avira Software Updater (HKLM-x32\...\{7A2E39A1-265C-4BF8-BE49-DE3248B9792A}) (Version: 2.0.3.40092 - Avira Operations GmbH & Co. KG)
BitTorrent (HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Clean Master (HKLM-x32\...\Clean Master) (Version: 1.0 - Cheetah Mobile)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DEMO DO FIFA 16 (HKLM-x32\...\{D09AD1AE-6AAC-45EB-B9F6-C1F223DD8481}) (Version: 1.0.0.0 - Electronic Arts)
DEMO DO FIFA 17 (HKLM-x32\...\{39C00B2C-EA3C-4A6B-AECF-DADA0F09C2AE}) (Version: 1.0.45.26330 - Electronic Arts)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
EA SPORTS™ FIFA 15 Demo (HKLM-x32\...\{108C0C19-6316-4944-A62F-C744488F8639}) (Version: 1.0.0.0 - Electronic Arts)
FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.48.30259 - Electronic Arts)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 3000 J310 series Ajuda (HKLM-x32\...\{654A65DA-7173-4B51-ACEB-F855201EE033}) (Version: 140.0.66.66 - Hewlett Packard)
HP Deskjet 3000 J310 series Estudo de aprimoramento de produtos (HKLM\...\{CA54E2E6-A3FC-41B3-A56A-A80D6B39019A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3000 J310 series Software básico do dispositivo (HKLM\...\{4CFED880-A2A5-4BF1-9C55-35421EC05811}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Support Solutions Framework (HKLM-x32\...\{89A620D5-6D9C-4C31-994D-9FAEE2987E2A}) (Version: 12.7.27.15 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard)
Intel Processor Diagnostic Tool 64Bit (HKLM\...\{FBA3FF07-072C-4F8B-A73C-6881E110BD11}) (Version: 15.0.0 - Intel Corporation)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.2 - Receita Federal do Brasil)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 2014 (HKLM-x32\...\{CFF19D4A-F26D-4C6C-8535-A7C9107C9027}) (Version: 15.0.07100 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1007 - Nero AG)
Nero MediaHome Free (HKLM-x32\...\{C9652153-FBF4-465F-A789-51476FF9BDFB}) (Version: 16.0.02800 - Nero AG)
NVIDIA Driver de áudio HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Driver de gráficos 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.2.49155 - Electronic Arts, Inc.)
Painel de controle da NVIDIA 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.33 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Prerequisite installer (HKLM-x32\...\{5909A89E-C97F-407C-AE2B-47BDED86BF5D}) (Version: 15.0.0005 - Nero AG) Hidden
Prerequisite installer (HKLM-x32\...\{799AFA36-4EA5-4323-8689-74C06645A26B}) (Version: 16.0.0004 - Nero AG) Hidden
Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI)
Pro Evolution Soccer 2014 (HKLM-x32\...\{5EFD3544-2371-4900-8ACA-F157BA80FB0C}) (Version: 1.08.0000 - KONAMI)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.26.902.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Tiago\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Tiago\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers1: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-08-09] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {ef263503-8f0e-3e6a-ae2e-fe0b4b441d52} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {3d52b24d-33bb-3895-99ea-a0156f24a3f9} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-05-18] (NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {cefaf456-bc17-3f4b-b7d9-75070925911b} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers6: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-08-09] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0D933741-9706-4AD6-957F-227AE568CF25} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {105CB285-D6E6-4EA0-9F18-2D9EBB0820E2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {297B534F-39DF-4A28-BFAD-766E15F4B517} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {2BC43F22-5482-47B5-B7A3-D4748E806A15} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {32D86985-32A7-4E80-A7FB-0C7AED9BB8BE} - System32\Tasks\{1FB87E96-4604-4624-840C-3A4C215D61AA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\GBPCEF (1).exe" -d C:\Users\Tiago\Downloads -c admin_service
Task: {33657927-D111-46D7-89A4-80FE08E9F2AC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Tiago-PC-Tiago Tiago-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-07-27] (Microsoft Corporation)
Task: {358838F8-5B71-43C2-B6FA-6F93975F3E8E} - System32\Tasks\{70B39E84-7F53-425C-AC61-CC09ABB5FDD8} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\3DMGAME-Pro.Evolution.Soccer.2017-3DM\Pro Evolution Soccer 2017\PES17.exe" -d "C:\Users\Tiago\Downloads\3DMGAME-Pro.Evolution.Soccer.2017-3DM\Pro Evolution Soccer 2017"
Task: {358C791E-524C-4E31-A29E-9A02B1C28E95} - System32\Tasks\{765192EC-DBC5-46E3-9EA9-AE8EA867CB50} => C:\Windows\system32\pcalua.exe -a C:\Users\Tiago\Downloads\directx-9-29-1974-32-bits.exe -d C:\Users\Tiago\Downloads
Task: {414B0FF7-9227-4D06-97F3-F3CBD6726CA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-29] (Google Inc.)
Task: {4226446E-BF0A-42B4-B8BA-0A3090F16562} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-29] (Google Inc.)
Task: {44BAF78A-26DD-48A8-AF2C-0EC4B1220360} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG)
Task: {4C7A4919-0279-47C3-8830-86C16CBB51E1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {4DD9632A-9BFE-4D3D-B3B8-1C8EF5508E62} - System32\Tasks\{8E20C45A-4585-4C6D-9554-05A67FFA25C8} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.18.0.106&LastError=12007
Task: {53084ABF-2525-43DF-AF82-87D3DB60B9C9} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {540E4E2C-A3CE-4F9D-A132-B3B08AA71420} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {5CF2E3D6-0516-4134-AF0D-FF48FEA4A709} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {6B1AA3B0-C24F-415C-A070-15752DAD415F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {79D6E282-BE22-4D95-9109-92840437EE25} - System32\Tasks\{2F306BCC-CE81-44C5-8753-9E5307C7F5D2} => C:\Windows\system32\pcalua.exe -a "D:\Games\FIFA 14\ModdingWayInstaller.exe" -d "D:\Games\FIFA 14"
Task: {7A61339D-CA7A-4FC1-A6C8-A354F2E3038E} - System32\Tasks\{4AF481D1-6279-477B-9215-63AF0919D7B4} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THE KING OF FIGHTERS XIII\Uninstall.exe"
Task: {7D6ACC66-9191-4730-84A3-E5095100FA22} - System32\Tasks\{412EC36B-12C9-4450-970B-504FC8C3DEC5} => C:\Windows\system32\pcalua.exe -a "C:\Arquivos de Programas RFB\IRPF2015\IRPF2015.exe" -d "C:\Arquivos de Programas RFB\IRPF2015"
Task: {8005D00C-7AD3-4DD5-87E2-2D62B7011769} - System32\Tasks\{97294FD7-F3C9-43C5-BB40-F1A2A885E2B1} => C:\Program Files (x86)\WiFi Protector\unins000.exe
Task: {85FFD5D3-DE7C-4A15-902B-8417C92758BF} - System32\Tasks\{F37ACCCD-C8FF-4E20-8805-CF59503947FC} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\BMPES 9.00\Solução de Erros\Jogo Sem Áudio.exe" -d "C:\Users\Tiago\Downloads\BMPES 9.00\Solução de Erros"
Task: {92BEC9AE-8AA2-45AC-B06C-57D35DB73A9C} - System32\Tasks\WiFiProtLauncher => C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe
Task: {9E73FABB-22EA-40BC-B2A7-27E010F1F5B8} - \YTDownloader -> Nenhum Arquivo <==== ATENÇÃO
Task: {A3D5C68F-9F1E-4E21-9FC2-9BE70CB8078A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {A60D0C47-020B-4BEA-B93A-3B54445FBE7D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {A6E844D6-37C2-49AE-AC9B-99443C94D7CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {AB28674B-84E4-45D5-8792-FDCCFBD2AC6B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {ADB760E9-45CA-4296-960F-C2C00A02DEAB} - System32\Tasks\Avira\System Speedup\SpeedupSysTray => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe [2017-08-17] (Avira Operations GmbH & Co. KG)
Task: {AEB325F8-DD35-4ACE-8541-3E3C7B824E0D} - \060184C3-9766-46a0-B258-F4518A0B2633 -> Nenhum Arquivo <==== ATENÇÃO
Task: {B41902FF-8A3E-48C7-9ED2-A152BF2FD182} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-08] (Adobe Systems Incorporated)
Task: {B655A5DA-8EA7-46FE-B20D-8A05B2B63A14} - System32\Tasks\HPCustParticipation HP Deskjet 3000 J310 series => C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {CA89B161-8E91-4459-B68C-353CA50CA35A} - System32\Tasks\Avira Safe Shopping Updater => C:\Program Files (x86)\Avira\Safe Shopping\\Updater\Updater.exe [2017-08-22] (Avira Operations Gmbh & Co. KG)
Task: {D38691A8-FF96-4DC8-9F19-F54EA1C7302F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {D9AC805C-D2E4-4282-9F2C-10F7B9C788C3} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2017-08-17] (Avira Operations GmbH & Co. KG)
Task: {EBD2A3D0-DD6B-46AC-999A-BA2AEB61E64E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {ECAB3E86-3AB1-4AEB-BC2B-4FCABA8C56A4} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {EFEF4599-9CF5-4D07-82BF-7C5975059E9F} - \YTDownloaderUpd -> Nenhum Arquivo <==== ATENÇÃO
Task: {F859080B-5D00-413C-B917-CA54AFF7100D} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [2017-08-26] (Avira Operations GmbH & Co. KG )
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Tiago\Desktop\King of Fighters XIII.lnk -> C:\Program Files (x86)\THE KING OF FIGHTERS XIII\loader.bat (Nenhum Arquivo)
Shortcut: C:\Users\Tiago\Desktop\ЗАПУСТИТЬ игру!.lnk -> D:\Games\FIFA 14\Game\fifa14-3dm.exe (3DM) <==== Cyrillic
Shortcut: C:\Users\Tiago\Desktop\Конфигурация экрана - НЕ играть!!!.lnk -> D:\Games\FIFA 14\Game\fifasetup\fifaconfig.exe (Electronic Arts Canada) <==== Cyrillic
Shortcut: C:\Users\Tiago\Desktop\НАСТРОЙКА - ModdingWay.lnk -> D:\Games\FIFA 14\FIFA 14 MWM Selector.exe (ARS) <==== Cyrillic
Shortcut: C:\Users\Tiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\THE KING OF FIGHTERS XIII\King of Fighters XIII.lnk -> C:\Program Files (x86)\THE KING OF FIGHTERS XIII\loader.bat (Nenhum Arquivo)
==================== Módulos Carregados (Whitelisted) ==============
2014-08-28 04:18 - 2014-08-28 04:18 - 000277504 _____ () C:\ProgramData\KMSAuto\KMSES.exe
2016-09-13 20:12 - 2017-05-03 17:21 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-24 18:20 - 2016-09-24 18:21 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-08-29 10:05 - 2017-08-23 05:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
2017-08-29 10:05 - 2017-08-23 05:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:8D153196_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2166]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\caixa.gov.br -> imagem.caixa.gov.br
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2016-01-28 16:41 - 000000921 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tiago\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\Services: KMSEmulator => 2
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{7F4F9B3E-23A0-4036-B4FC-A4A3E0DC2174}] => (Allow) LPort=1688
FirewallRules: [{6DABF907-5398-48CE-8855-86E96A9FE37F}] => (Allow) C:\Users\Tiago\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A235F09A-FF8E-4D34-BCF3-B48B8B5E6443}] => (Allow) C:\Users\Tiago\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{18A66DC9-C55B-4AE5-A7A9-700196CF6CA9}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{377C3E5E-8F85-4AFC-AB23-6EA092CBB2B9}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{E41B5B35-055F-49E7-9CBF-E9BE5CF656FB}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{1495040D-AC0A-412C-8D83-C11C362A5ACF}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{ABAE616C-8CCF-4464-9712-BF4B2FA69080}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{5B35B6A1-AF9E-433D-B865-9521A2D234AC}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{EFE41162-46EC-4A71-AB75-E823D38889C5}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\DeviceSetup.exe
FirewallRules: [{01C3FDD4-3A6C-4DC8-B9FA-C8E579397FBA}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{23EAE66B-BC1F-4CB1-88B4-89B15B1EF7B2}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{A5B848BC-B3EF-4B73-872B-7664C5FC4695}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{E24BE920-8251-4102-AA84-8BCC9BD873C9}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BC467536-F0A3-491E-B5EF-CE134D684E3C}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{D64112D5-B695-4624-B121-AE4DCAD76AC8}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe
FirewallRules: [{1A90A5D2-5BFA-4659-B9AB-1CDF77AFB8ED}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{7AE4F448-905B-483A-A97A-629CF91FC608}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [TCP Query User{B1CCA9C2-14B6-46E4-834A-38280D2AFD60}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [UDP Query User{FDAAC944-00DC-4EA9-BC84-CE85D9C64713}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [{F236DE47-0835-4270-8E72-B8454750EFBB}] => (Allow) C:\Program Files (x86)\FIFA 15 Ultimate Team Edition\FIFA 15 Ultimate Team Edition\fifasetup\fifaconfig.exe
FirewallRules: [{1E2E5097-7577-4717-9911-1E45BCBEC47F}] => (Allow) C:\Program Files (x86)\FIFA 15 Ultimate Team Edition\FIFA 15 Ultimate Team Edition\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{EFF87172-272A-488B-9659-99FD069EC4F8}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{67323DB9-9EEA-45EC-9982-DBD6659D2830}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{CA8C06F5-F720-4B7C-A5BF-FF3CC0ECC46C}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe
FirewallRules: [UDP Query User{587B0012-CFC5-47D4-954A-767128C780DC}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe
FirewallRules: [TCP Query User{159DA3EB-FD1B-4932-AA07-C76F3AA33BB4}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [UDP Query User{8AC3930C-9EF3-4874-89FE-7FBB44992E9A}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [TCP Query User{34C5BBC4-6D32-4242-8678-B669628AD322}D:\games\fifa 14\game\fifa14.exe] => (Allow) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{0DE46B6B-F9E6-4F47-8216-AEA1BE83151F}D:\games\fifa 14\game\fifa14.exe] => (Allow) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{79ADCE44-8A75-4D88-9221-54BF459530BD}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{49D2DFAE-86E0-46FC-A2B2-6DEFDB91F86B}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [TCP Query User{971BDCB2-743D-4263-94A8-BC56A6C7F9F7}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{C84861B2-A70D-42D3-9DB4-6F1FDC0AAC35}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{C38776CE-A301-4D21-A64B-3C705AA0D4BB}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{7995157F-E53C-48E5-B5AF-8F0A644ED469}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{A2C24C1A-F89B-4463-8D5B-2A419DD270C3}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{C7B24EFB-0C3F-41BB-A63B-CCFB8D7359E5}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [{ABF04E91-06E5-4896-8FD7-E0F203DD9C17}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{3DA67EE3-E00C-4BFC-B15B-F6527DC6EB8A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{872CB4A6-C32E-49E2-9FF7-3A270A874DB8}C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{417D0AE6-8408-4B85-AB5A-502C7E9F3B70}C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe
FirewallRules: [{E5F4569F-4831-4CAC-BF46-1875ADDBC514}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3D9F0A4C-AE97-4AE7-9853-3DE632F68C02}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4268D5A-72A9-4EE4-A0C2-4A5CDC349B6F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0F91625F-4531-4D87-80DB-820966C84564}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2270A10D-F345-477F-930A-5880A2D18C9D}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{1D33BED2-E01B-4329-9137-7170AD3AD2EF}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{D9093C85-BD97-45DE-A198-7F1345B86873}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{85DC8914-E40E-41A6-B435-C1BAE4F9002E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C11EAF6E-D6A0-4F97-A6C1-C592FC5EC7ED}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{DC2ED212-C572-49F0-97CC-FEAA3BAC153C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BBBF8226-B2D9-4BA3-A5DE-B4CBB9CBF2FB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{9BA52307-6738-4FEE-B4A8-8176A00034B1}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{9B066F6D-5630-4F5D-AEC9-CD50358C2B58}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{DD895678-AB53-40A5-B3DD-BE719335B68F}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{8D246F6F-06D8-49C2-A91E-D5FA592FCEDF}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{4CD72421-1F47-4365-826E-3EE7B98A64D4}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{F76B94BB-A6A4-4738-8011-F044052C5A14}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [TCP Query User{2E072B8D-B3F7-4775-8FC1-0B7C81B7AC6B}D:\games\fifa 14\game\fifa14.exe] => (Block) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{F7ACEEF5-0B41-4CCB-B54B-BF74E33ABADC}D:\games\fifa 14\game\fifa14.exe] => (Block) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [{CC74684A-4FD4-4867-8EE7-305685A919B2}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{D9B59F24-09E1-489C-B50C-E3AF3B49A606}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{EAC1884F-4663-408C-9F65-1747AAB1C171}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{F9847329-1B4D-4C9F-8AB1-B56C3C8BCBD1}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [TCP Query User{EFA228CE-227E-4A50-9C7B-1C2DB2224A38}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{D16366EE-86C1-4ADD-A5E6-B81EB11786AE}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{FCBB8AEF-1855-4DA9-B3F7-26C2657B64FF}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{9C739E06-CA20-48AC-8386-0E4C7AB5027A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [TCP Query User{FC3E6157-6036-4D09-BCA8-21790E7F7ED3}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{B3CE1FEE-E0DF-4BE1-A710-BA1254917F5B}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [TCP Query User{B3352C86-0114-467A-8581-A5111D32336A}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{E74C8B1E-9161-4B04-9284-54CF487E08F7}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{C798E924-C9CF-40DE-BFE1-A4AB48FCDFEB}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{5BF95E27-406B-46E8-96EC-CA712271DAEE}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [{72072F57-B8E8-49C3-B084-345CA81FD451}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A61D1A9F-37C2-4C0A-A389-2F2F6F8F87B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C3B8CD59-F069-49B0-B4A2-A7F1B55656DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{876F3683-18E1-4D62-B2B7-CEC86C8A3CAA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{668F3D3F-14B4-4509-B03E-9C986C8DE2D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{67E1A24B-CCF7-4005-BC10-7E071B36E782}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{8835D8E6-530B-4338-87D1-56414E67D075}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{EAC5BEB2-5D08-4505-9207-067EAB4B5A83}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe
FirewallRules: [{AA90542C-8FF4-42B8-9460-5F5176EFA0DA}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{9C3F9DD1-8D69-41AD-964B-51909115143E}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{9506CD73-0F57-424D-A7A0-38FEA7BE38B0}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [{0FD6F53C-1408-410B-B951-AB5A9BD54437}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [TCP Query User{5FE4D8FD-D6B0-46EB-B630-DD842CCC4E53}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{5D9DF9CC-0920-4067-8FAC-FF7BCA7FF8C7}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{9F580055-3184-4FFE-B62F-B7564969E533}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{0C746FB5-D55E-45BB-8878-463A26C35C3A}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [{EB3EF101-3F1C-4269-9560-79D94D2EFE71}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1B260A5B-295C-491B-A5F3-B770C845FB2A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{B5654017-5A2F-4334-8BBD-FF8ED9475754}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
==================== Pontos de Restauração =========================
30-08-2017 11:59:48 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
30-08-2017 18:16:17 Operação de restauração
31-08-2017 21:41:53 Windows Update
31-08-2017 22:50:03 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212
31-08-2017 22:51:46 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
31-08-2017 23:09:11 Operação de restauração
31-08-2017 23:31:04 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
31-08-2017 23:31:36 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Adaptador de Túnel Teredo da Microsoft
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (08/31/2017 11:29:07 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:07Z. Error Code: 0x80041321.
Error: (08/31/2017 11:18:59 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:19:59Z. Error Code: 0x80041321.
Error: (08/31/2017 11:13:31 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Error: (08/31/2017 11:05:14 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:14Z. Error Code: 0x80041321.
Error: (08/31/2017 10:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: msi.dll, versão: 5.0.7601.17514, carimbo de hora: 0x4ce7c800
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000000001ebca2
Identificação do processo com falha: 0x590
Hora de início do aplicativo com falha: 0x01d322b9a09d189a
Caminho do aplicativo com falha: C:\Windows\Explorer.EXE
FCaminho do módulo de falhas: C:\Windows\system32\msi.dll
Identificação do Relatório: 74a180a3-8eb7-11e7-b14b-00e066039419
Error: (08/31/2017 10:47:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Explorer.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 000007FEF88BBCA2
Error: (08/31/2017 09:47:00 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:00Z. Error Code: 0x80041321.
Error: (08/31/2017 09:37:29 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:29Z. Error Code: 0x80041321.
Error: (08/31/2017 09:36:56 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Error: (08/31/2017 09:32:12 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Erros de Sistema:
=============
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:15:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:14:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac
gbpddreg
Error: (08/31/2017 11:14:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Tcp Listener Adapter depende do seguinte serviço: was. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Pipe Listener Adapter depende do seguinte serviço: was. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Msmq Listener Adapter depende do seguinte serviço: msmq. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:02:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
CodeIntegrity:
===================================
Date: 2017-08-27 22:42:11.338
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:42:11.338
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:13.082
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:13.081
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:06.261
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:06.126
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-26 14:21:46.709
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-26 14:21:46.631
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-25 21:28:54.712
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-25 21:28:53.262
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-2310 CPU @ 2.90GHz
Percentagem de memória em uso: 86%
RAM física total: 4078.65 MB
RAM física disponível: 548.95 MB
Virtual Total: 8155.5 MB
Virtual disponível: 4386.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:540.79 GB) (Free:181.92 GB) NTFS
Drive d: (Backup) (Fixed) (Total:390.62 GB) (Free:143.18 GB) NTFS
Drive f: (PES2017) (CDROM) (Total:10.79 GB) (Free:0 GB) CDFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7E3C8D74)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=540.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Tiago (31-08-2017 23:39:13)
Executando a partir de C:\Users\Tiago\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2014-08-28 07:06:59)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-3399263704-3112878523-1617286210-500 - Administrator - Disabled)
Convidado (S-1-5-21-3399263704-3112878523-1617286210-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3399263704-3112878523-1617286210-1002 - Limited - Enabled)
Tiago (S-1-5-21-3399263704-3112878523-1617286210-1000 - Administrator - Enabled) => C:\Users\Tiago
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avira Antivirus (Disabled - Out of date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Out of date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.33 - NVIDIA Corporation) Hidden
Atualizações da NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.29.32 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{7990b9d3-2da3-4eef-bf20-73a05086fd12}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{E972AE5C-71B3-4D35-8193-BC4CC2F1FA20}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.9.1.24376 - Avira Operations GmbH & Co. KG)
Avira Safe Shopping (HKLM-x32\...\{DF7F23E4-169C-4591-B7EB-3F14587223A8}) (Version: 1.0.27.1161 - Avira Operations Gmbh & Co. KG)
Avira Software Updater (HKLM-x32\...\{7A2E39A1-265C-4BF8-BE49-DE3248B9792A}) (Version: 2.0.3.40092 - Avira Operations GmbH & Co. KG)
BitTorrent (HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Clean Master (HKLM-x32\...\Clean Master) (Version: 1.0 - Cheetah Mobile)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DEMO DO FIFA 16 (HKLM-x32\...\{D09AD1AE-6AAC-45EB-B9F6-C1F223DD8481}) (Version: 1.0.0.0 - Electronic Arts)
DEMO DO FIFA 17 (HKLM-x32\...\{39C00B2C-EA3C-4A6B-AECF-DADA0F09C2AE}) (Version: 1.0.45.26330 - Electronic Arts)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
EA SPORTS™ FIFA 15 Demo (HKLM-x32\...\{108C0C19-6316-4944-A62F-C744488F8639}) (Version: 1.0.0.0 - Electronic Arts)
FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.48.30259 - Electronic Arts)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 3000 J310 series Ajuda (HKLM-x32\...\{654A65DA-7173-4B51-ACEB-F855201EE033}) (Version: 140.0.66.66 - Hewlett Packard)
HP Deskjet 3000 J310 series Estudo de aprimoramento de produtos (HKLM\...\{CA54E2E6-A3FC-41B3-A56A-A80D6B39019A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3000 J310 series Software básico do dispositivo (HKLM\...\{4CFED880-A2A5-4BF1-9C55-35421EC05811}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Support Solutions Framework (HKLM-x32\...\{89A620D5-6D9C-4C31-994D-9FAEE2987E2A}) (Version: 12.7.27.15 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard)
Intel Processor Diagnostic Tool 64Bit (HKLM\...\{FBA3FF07-072C-4F8B-A73C-6881E110BD11}) (Version: 15.0.0 - Intel Corporation)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.2 - Receita Federal do Brasil)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 2014 (HKLM-x32\...\{CFF19D4A-F26D-4C6C-8535-A7C9107C9027}) (Version: 15.0.07100 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1007 - Nero AG)
Nero MediaHome Free (HKLM-x32\...\{C9652153-FBF4-465F-A789-51476FF9BDFB}) (Version: 16.0.02800 - Nero AG)
NVIDIA Driver de áudio HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Driver de gráficos 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.2.49155 - Electronic Arts, Inc.)
Painel de controle da NVIDIA 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.33 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Prerequisite installer (HKLM-x32\...\{5909A89E-C97F-407C-AE2B-47BDED86BF5D}) (Version: 15.0.0005 - Nero AG) Hidden
Prerequisite installer (HKLM-x32\...\{799AFA36-4EA5-4323-8689-74C06645A26B}) (Version: 16.0.0004 - Nero AG) Hidden
Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI)
Pro Evolution Soccer 2014 (HKLM-x32\...\{5EFD3544-2371-4900-8ACA-F157BA80FB0C}) (Version: 1.08.0000 - KONAMI)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.26.902.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Tiago\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Tiago\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers1: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-08-09] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {ef263503-8f0e-3e6a-ae2e-fe0b4b441d52} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {3d52b24d-33bb-3895-99ea-a0156f24a3f9} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-05-18] (NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {cefaf456-bc17-3f4b-b7d9-75070925911b} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ContextMenuHandlers6: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll -> Nenhum Arquivo
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-08-09] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0D933741-9706-4AD6-957F-227AE568CF25} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {105CB285-D6E6-4EA0-9F18-2D9EBB0820E2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {297B534F-39DF-4A28-BFAD-766E15F4B517} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {2BC43F22-5482-47B5-B7A3-D4748E806A15} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {32D86985-32A7-4E80-A7FB-0C7AED9BB8BE} - System32\Tasks\{1FB87E96-4604-4624-840C-3A4C215D61AA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\GBPCEF (1).exe" -d C:\Users\Tiago\Downloads -c admin_service
Task: {33657927-D111-46D7-89A4-80FE08E9F2AC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Tiago-PC-Tiago Tiago-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-07-27] (Microsoft Corporation)
Task: {358838F8-5B71-43C2-B6FA-6F93975F3E8E} - System32\Tasks\{70B39E84-7F53-425C-AC61-CC09ABB5FDD8} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\3DMGAME-Pro.Evolution.Soccer.2017-3DM\Pro Evolution Soccer 2017\PES17.exe" -d "C:\Users\Tiago\Downloads\3DMGAME-Pro.Evolution.Soccer.2017-3DM\Pro Evolution Soccer 2017"
Task: {358C791E-524C-4E31-A29E-9A02B1C28E95} - System32\Tasks\{765192EC-DBC5-46E3-9EA9-AE8EA867CB50} => C:\Windows\system32\pcalua.exe -a C:\Users\Tiago\Downloads\directx-9-29-1974-32-bits.exe -d C:\Users\Tiago\Downloads
Task: {414B0FF7-9227-4D06-97F3-F3CBD6726CA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-29] (Google Inc.)
Task: {4226446E-BF0A-42B4-B8BA-0A3090F16562} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-29] (Google Inc.)
Task: {44BAF78A-26DD-48A8-AF2C-0EC4B1220360} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG)
Task: {4C7A4919-0279-47C3-8830-86C16CBB51E1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {4DD9632A-9BFE-4D3D-B3B8-1C8EF5508E62} - System32\Tasks\{8E20C45A-4585-4C6D-9554-05A67FFA25C8} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.18.0.106&LastError=12007
Task: {53084ABF-2525-43DF-AF82-87D3DB60B9C9} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {540E4E2C-A3CE-4F9D-A132-B3B08AA71420} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {5CF2E3D6-0516-4134-AF0D-FF48FEA4A709} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {6B1AA3B0-C24F-415C-A070-15752DAD415F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {79D6E282-BE22-4D95-9109-92840437EE25} - System32\Tasks\{2F306BCC-CE81-44C5-8753-9E5307C7F5D2} => C:\Windows\system32\pcalua.exe -a "D:\Games\FIFA 14\ModdingWayInstaller.exe" -d "D:\Games\FIFA 14"
Task: {7A61339D-CA7A-4FC1-A6C8-A354F2E3038E} - System32\Tasks\{4AF481D1-6279-477B-9215-63AF0919D7B4} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THE KING OF FIGHTERS XIII\Uninstall.exe"
Task: {7D6ACC66-9191-4730-84A3-E5095100FA22} - System32\Tasks\{412EC36B-12C9-4450-970B-504FC8C3DEC5} => C:\Windows\system32\pcalua.exe -a "C:\Arquivos de Programas RFB\IRPF2015\IRPF2015.exe" -d "C:\Arquivos de Programas RFB\IRPF2015"
Task: {8005D00C-7AD3-4DD5-87E2-2D62B7011769} - System32\Tasks\{97294FD7-F3C9-43C5-BB40-F1A2A885E2B1} => C:\Program Files (x86)\WiFi Protector\unins000.exe
Task: {85FFD5D3-DE7C-4A15-902B-8417C92758BF} - System32\Tasks\{F37ACCCD-C8FF-4E20-8805-CF59503947FC} => C:\Windows\system32\pcalua.exe -a "C:\Users\Tiago\Downloads\BMPES 9.00\Solução de Erros\Jogo Sem Áudio.exe" -d "C:\Users\Tiago\Downloads\BMPES 9.00\Solução de Erros"
Task: {92BEC9AE-8AA2-45AC-B06C-57D35DB73A9C} - System32\Tasks\WiFiProtLauncher => C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe
Task: {9E73FABB-22EA-40BC-B2A7-27E010F1F5B8} - \YTDownloader -> Nenhum Arquivo <==== ATENÇÃO
Task: {A3D5C68F-9F1E-4E21-9FC2-9BE70CB8078A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {A60D0C47-020B-4BEA-B93A-3B54445FBE7D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {A6E844D6-37C2-49AE-AC9B-99443C94D7CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {AB28674B-84E4-45D5-8792-FDCCFBD2AC6B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {ADB760E9-45CA-4296-960F-C2C00A02DEAB} - System32\Tasks\Avira\System Speedup\SpeedupSysTray => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe [2017-08-17] (Avira Operations GmbH & Co. KG)
Task: {AEB325F8-DD35-4ACE-8541-3E3C7B824E0D} - \060184C3-9766-46a0-B258-F4518A0B2633 -> Nenhum Arquivo <==== ATENÇÃO
Task: {B41902FF-8A3E-48C7-9ED2-A152BF2FD182} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-08] (Adobe Systems Incorporated)
Task: {B655A5DA-8EA7-46FE-B20D-8A05B2B63A14} - System32\Tasks\HPCustParticipation HP Deskjet 3000 J310 series => C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {CA89B161-8E91-4459-B68C-353CA50CA35A} - System32\Tasks\Avira Safe Shopping Updater => C:\Program Files (x86)\Avira\Safe Shopping\\Updater\Updater.exe [2017-08-22] (Avira Operations Gmbh & Co. KG)
Task: {D38691A8-FF96-4DC8-9F19-F54EA1C7302F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {D9AC805C-D2E4-4282-9F2C-10F7B9C788C3} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2017-08-17] (Avira Operations GmbH & Co. KG)
Task: {EBD2A3D0-DD6B-46AC-999A-BA2AEB61E64E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {ECAB3E86-3AB1-4AEB-BC2B-4FCABA8C56A4} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {EFEF4599-9CF5-4D07-82BF-7C5975059E9F} - \YTDownloaderUpd -> Nenhum Arquivo <==== ATENÇÃO
Task: {F859080B-5D00-413C-B917-CA54AFF7100D} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [2017-08-26] (Avira Operations GmbH & Co. KG )
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\Tiago\Desktop\King of Fighters XIII.lnk -> C:\Program Files (x86)\THE KING OF FIGHTERS XIII\loader.bat (Nenhum Arquivo)
Shortcut: C:\Users\Tiago\Desktop\ЗАПУСТИТЬ игру!.lnk -> D:\Games\FIFA 14\Game\fifa14-3dm.exe (3DM) <==== Cyrillic
Shortcut: C:\Users\Tiago\Desktop\Конфигурация экрана - НЕ играть!!!.lnk -> D:\Games\FIFA 14\Game\fifasetup\fifaconfig.exe (Electronic Arts Canada) <==== Cyrillic
Shortcut: C:\Users\Tiago\Desktop\НАСТРОЙКА - ModdingWay.lnk -> D:\Games\FIFA 14\FIFA 14 MWM Selector.exe (ARS) <==== Cyrillic
Shortcut: C:\Users\Tiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\THE KING OF FIGHTERS XIII\King of Fighters XIII.lnk -> C:\Program Files (x86)\THE KING OF FIGHTERS XIII\loader.bat (Nenhum Arquivo)
==================== Módulos Carregados (Whitelisted) ==============
2014-08-28 04:18 - 2014-08-28 04:18 - 000277504 _____ () C:\ProgramData\KMSAuto\KMSES.exe
2016-09-13 20:12 - 2017-05-03 17:21 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-24 18:20 - 2016-09-24 18:21 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-08-29 10:05 - 2017-08-23 05:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
2017-08-29 10:05 - 2017-08-23 05:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:8D153196_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2166]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\...\caixa.gov.br -> imagem.caixa.gov.br
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2016-01-28 16:41 - 000000921 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3399263704-3112878523-1617286210-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tiago\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\Services: KMSEmulator => 2
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{7F4F9B3E-23A0-4036-B4FC-A4A3E0DC2174}] => (Allow) LPort=1688
FirewallRules: [{6DABF907-5398-48CE-8855-86E96A9FE37F}] => (Allow) C:\Users\Tiago\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A235F09A-FF8E-4D34-BCF3-B48B8B5E6443}] => (Allow) C:\Users\Tiago\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{18A66DC9-C55B-4AE5-A7A9-700196CF6CA9}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{377C3E5E-8F85-4AFC-AB23-6EA092CBB2B9}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{E41B5B35-055F-49E7-9CBF-E9BE5CF656FB}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{1495040D-AC0A-412C-8D83-C11C362A5ACF}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{ABAE616C-8CCF-4464-9712-BF4B2FA69080}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{5B35B6A1-AF9E-433D-B865-9521A2D234AC}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{EFE41162-46EC-4A71-AB75-E823D38889C5}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\DeviceSetup.exe
FirewallRules: [{01C3FDD4-3A6C-4DC8-B9FA-C8E579397FBA}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{23EAE66B-BC1F-4CB1-88B4-89B15B1EF7B2}] => (Allow) C:\Program Files\HP\HP Deskjet 3000 J310 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{A5B848BC-B3EF-4B73-872B-7664C5FC4695}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{E24BE920-8251-4102-AA84-8BCC9BD873C9}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BC467536-F0A3-491E-B5EF-CE134D684E3C}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{D64112D5-B695-4624-B121-AE4DCAD76AC8}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe
FirewallRules: [{1A90A5D2-5BFA-4659-B9AB-1CDF77AFB8ED}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [{7AE4F448-905B-483A-A97A-629CF91FC608}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2013\pes2013.exe
FirewallRules: [TCP Query User{B1CCA9C2-14B6-46E4-834A-38280D2AFD60}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [UDP Query User{FDAAC944-00DC-4EA9-BC84-CE85D9C64713}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [{F236DE47-0835-4270-8E72-B8454750EFBB}] => (Allow) C:\Program Files (x86)\FIFA 15 Ultimate Team Edition\FIFA 15 Ultimate Team Edition\fifasetup\fifaconfig.exe
FirewallRules: [{1E2E5097-7577-4717-9911-1E45BCBEC47F}] => (Allow) C:\Program Files (x86)\FIFA 15 Ultimate Team Edition\FIFA 15 Ultimate Team Edition\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{EFF87172-272A-488B-9659-99FD069EC4F8}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{67323DB9-9EEA-45EC-9982-DBD6659D2830}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{CA8C06F5-F720-4B7C-A5BF-FF3CC0ECC46C}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe
FirewallRules: [UDP Query User{587B0012-CFC5-47D4-954A-767128C780DC}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2015.exe
FirewallRules: [TCP Query User{159DA3EB-FD1B-4932-AA07-C76F3AA33BB4}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [UDP Query User{8AC3930C-9EF3-4874-89FE-7FBB44992E9A}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [TCP Query User{34C5BBC4-6D32-4242-8678-B669628AD322}D:\games\fifa 14\game\fifa14.exe] => (Allow) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{0DE46B6B-F9E6-4F47-8216-AEA1BE83151F}D:\games\fifa 14\game\fifa14.exe] => (Allow) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{79ADCE44-8A75-4D88-9221-54BF459530BD}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{49D2DFAE-86E0-46FC-A2B2-6DEFDB91F86B}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [TCP Query User{971BDCB2-743D-4263-94A8-BC56A6C7F9F7}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{C84861B2-A70D-42D3-9DB4-6F1FDC0AAC35}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{C38776CE-A301-4D21-A64B-3C705AA0D4BB}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{7995157F-E53C-48E5-B5AF-8F0A644ED469}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{A2C24C1A-F89B-4463-8D5B-2A419DD270C3}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{C7B24EFB-0C3F-41BB-A63B-CCFB8D7359E5}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [{ABF04E91-06E5-4896-8FD7-E0F203DD9C17}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{3DA67EE3-E00C-4BFC-B15B-F6527DC6EB8A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{872CB4A6-C32E-49E2-9FF7-3A270A874DB8}C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{417D0AE6-8408-4B85-AB5A-502C7E9F3B70}C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\users\tiago\downloads\pro.evolution.soccer.2016.pt-br.sg-lapumia\pro evolution soccer 2016\pes2016.exe
FirewallRules: [{E5F4569F-4831-4CAC-BF46-1875ADDBC514}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3D9F0A4C-AE97-4AE7-9853-3DE632F68C02}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4268D5A-72A9-4EE4-A0C2-4A5CDC349B6F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0F91625F-4531-4D87-80DB-820966C84564}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2270A10D-F345-477F-930A-5880A2D18C9D}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{1D33BED2-E01B-4329-9137-7170AD3AD2EF}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{D9093C85-BD97-45DE-A198-7F1345B86873}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{85DC8914-E40E-41A6-B435-C1BAE4F9002E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C11EAF6E-D6A0-4F97-A6C1-C592FC5EC7ED}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{DC2ED212-C572-49F0-97CC-FEAA3BAC153C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BBBF8226-B2D9-4BA3-A5DE-B4CBB9CBF2FB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{9BA52307-6738-4FEE-B4A8-8176A00034B1}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{9B066F6D-5630-4F5D-AEC9-CD50358C2B58}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{DD895678-AB53-40A5-B3DD-BE719335B68F}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{8D246F6F-06D8-49C2-A91E-D5FA592FCEDF}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{4CD72421-1F47-4365-826E-3EE7B98A64D4}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{F76B94BB-A6A4-4738-8011-F044052C5A14}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [TCP Query User{2E072B8D-B3F7-4775-8FC1-0B7C81B7AC6B}D:\games\fifa 14\game\fifa14.exe] => (Block) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{F7ACEEF5-0B41-4CCB-B54B-BF74E33ABADC}D:\games\fifa 14\game\fifa14.exe] => (Block) D:\games\fifa 14\game\fifa14.exe
FirewallRules: [{CC74684A-4FD4-4867-8EE7-305685A919B2}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{D9B59F24-09E1-489C-B50C-E3AF3B49A606}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{EAC1884F-4663-408C-9F65-1747AAB1C171}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{F9847329-1B4D-4C9F-8AB1-B56C3C8BCBD1}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [TCP Query User{EFA228CE-227E-4A50-9C7B-1C2DB2224A38}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{D16366EE-86C1-4ADD-A5E6-B81EB11786AE}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{FCBB8AEF-1855-4DA9-B3F7-26C2657B64FF}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{9C739E06-CA20-48AC-8386-0E4C7AB5027A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [TCP Query User{FC3E6157-6036-4D09-BCA8-21790E7F7ED3}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{B3CE1FEE-E0DF-4BE1-A710-BA1254917F5B}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [TCP Query User{B3352C86-0114-467A-8581-A5111D32336A}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{E74C8B1E-9161-4B04-9284-54CF487E08F7}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{C798E924-C9CF-40DE-BFE1-A4AB48FCDFEB}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{5BF95E27-406B-46E8-96EC-CA712271DAEE}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [{72072F57-B8E8-49C3-B084-345CA81FD451}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A61D1A9F-37C2-4C0A-A389-2F2F6F8F87B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C3B8CD59-F069-49B0-B4A2-A7F1B55656DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{876F3683-18E1-4D62-B2B7-CEC86C8A3CAA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{668F3D3F-14B4-4509-B03E-9C986C8DE2D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{67E1A24B-CCF7-4005-BC10-7E071B36E782}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{8835D8E6-530B-4338-87D1-56414E67D075}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{EAC5BEB2-5D08-4505-9207-067EAB4B5A83}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe
FirewallRules: [{AA90542C-8FF4-42B8-9460-5F5176EFA0DA}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{9C3F9DD1-8D69-41AD-964B-51909115143E}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{9506CD73-0F57-424D-A7A0-38FEA7BE38B0}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [{0FD6F53C-1408-410B-B951-AB5A9BD54437}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [TCP Query User{5FE4D8FD-D6B0-46EB-B630-DD842CCC4E53}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{5D9DF9CC-0920-4067-8FAC-FF7BCA7FF8C7}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{9F580055-3184-4FFE-B62F-B7564969E533}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{0C746FB5-D55E-45BB-8878-463A26C35C3A}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [{EB3EF101-3F1C-4269-9560-79D94D2EFE71}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1B260A5B-295C-491B-A5F3-B770C845FB2A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{B5654017-5A2F-4334-8BBD-FF8ED9475754}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
==================== Pontos de Restauração =========================
30-08-2017 11:59:48 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
30-08-2017 18:16:17 Operação de restauração
31-08-2017 21:41:53 Windows Update
31-08-2017 22:50:03 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212
31-08-2017 22:51:46 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
31-08-2017 23:09:11 Operação de restauração
31-08-2017 23:31:04 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
31-08-2017 23:31:36 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Adaptador de Túnel Teredo da Microsoft
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (08/31/2017 11:29:07 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:07Z. Error Code: 0x80041321.
Error: (08/31/2017 11:18:59 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:19:59Z. Error Code: 0x80041321.
Error: (08/31/2017 11:13:31 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Error: (08/31/2017 11:05:14 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:14Z. Error Code: 0x80041321.
Error: (08/31/2017 10:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Explorer.EXE, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7a144
Nome do módulo de falhas: msi.dll, versão: 5.0.7601.17514, carimbo de hora: 0x4ce7c800
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00000000001ebca2
Identificação do processo com falha: 0x590
Hora de início do aplicativo com falha: 0x01d322b9a09d189a
Caminho do aplicativo com falha: C:\Windows\Explorer.EXE
FCaminho do módulo de falhas: C:\Windows\system32\msi.dll
Identificação do Relatório: 74a180a3-8eb7-11e7-b14b-00e066039419
Error: (08/31/2017 10:47:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Explorer.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 000007FEF88BBCA2
Error: (08/31/2017 09:47:00 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:00Z. Error Code: 0x80041321.
Error: (08/31/2017 09:37:29 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-09-02T19:20:29Z. Error Code: 0x80041321.
Error: (08/31/2017 09:36:56 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Error: (08/31/2017 09:32:12 PM) (Source: Avira Antivirus) (EventID: 4117) (User: AUTORIDADE NT)
Description: O arquivo chave não contém uma licença válida. O serviço será interrompido!
Erros de Sistema:
=============
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:16:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:15:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:14:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac
gbpddreg
Error: (08/31/2017 11:14:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Tcp Listener Adapter depende do seguinte serviço: was. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Pipe Listener Adapter depende do seguinte serviço: was. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:13:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Net.Msmq Listener Adapter depende do seguinte serviço: msmq. Esse serviço pode não ter sido instalado.
Error: (08/31/2017 11:02:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
CodeIntegrity:
===================================
Date: 2017-08-27 22:42:11.338
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:42:11.338
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:13.082
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:13.081
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:06.261
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-27 22:39:06.126
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-26 14:21:46.709
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-26 14:21:46.631
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-25 21:28:54.712
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-25 21:28:53.262
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\imdisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-2310 CPU @ 2.90GHz
Percentagem de memória em uso: 86%
RAM física total: 4078.65 MB
RAM física disponível: 548.95 MB
Virtual Total: 8155.5 MB
Virtual disponível: 4386.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:540.79 GB) (Free:181.92 GB) NTFS
Drive d: (Backup) (Fixed) (Total:390.62 GB) (Free:143.18 GB) NTFS
Drive f: (PES2017) (CDROM) (Total:10.79 GB) (Free:0 GB) CDFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7E3C8D74)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=540.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================