Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I think my computer is infected

Started by jsphair , May 31 2017 01:20 PM

  • Please log in to reply

#1
jsphair
Posted 31 May 2017 - 01:20 PM

jsphair

    New Member

  • Member
  • Pip
  • 1 posts

Hello! 

Recently my computer has been running really slow.

My symptom: To load the initial desktop screen won't take much time, but after that... until I can properly use anything, it takes minutes! After those slow minutes it runs properly, not using much time to completely load a page or software. But during those first minutes it loads... loads... loads... for anything! It's really annoying!
I'm not a geek and I don't understand much of computer managing, but I thought this could be due to an infection, and ended up here.
I think I never installed any unknown softwares, but sometimes I confess I access websites for adults and they have some some popups... you know... Not much more than that hehehe.

Any help would be welcome! Sorry for the inconvenience. 

 

Here follows the asked logs (some things are in portuguese, I'm brazilian):
 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 31-05-2017
Executado por kalildesk2 (administrador) em KALILDESK2-PC (31-05-2017 16:04:01)
Executando a partir de C:\Users\kalildesk2\Desktop
Perfis Carregados: kalildesk2 (Perfis Disponíveis: kalildesk2)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processos (Whitelisted) =================
 
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spotify Ltd) C:\Users\kalildesk2\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\kalildesk2\AppData\Roaming\Spotify\Spotify.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\kalildesk2\AppData\Roaming\Spotify\Spotify.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Spotify Ltd) C:\Users\kalildesk2\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\kalildesk2\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BattlEye Innovations) C:\Users\kalildesk2\AppData\Local\Tibia\packages\Tibia\bin\client_launcher.exe
() C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
() C:\Users\kalildesk2\AppData\Local\Tibia\packages\Tibia\bin\client.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
 
==================== Registro (Whitelisted) ====================
 
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
 
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-09] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Run: [Spotify Web Helper] => C:\Users\kalildesk2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-05-26] (Spotify Ltd)
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-04-25] (Valve Corporation)
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Run: [Spotify] => C:\Users\kalildesk2\AppData\Roaming\Spotify\Spotify.exe [7009904 2017-05-26] (Spotify Ltd)
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Run: [uTorrent] => C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-05-20] (BitTorrent Inc.)
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-09] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-09] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
 
ProxyServer: [S-1-5-21-2760971596-4133852796-2706495120-1000] => proxy.ufpr.br:3128
Tcpip\Parameters: [DhcpNameServer] 189.4.0.234 189.4.0.158
Tcpip\..\Interfaces\{321F5E14-41FF-4132-B0A9-9CC6BB7CD285}: [DhcpNameServer] 189.4.0.234 189.4.0.158
 
Internet Explorer:
==================
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2760971596-4133852796-2706495120-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2760971596-4133852796-2706495120-1000 -> {B7BF0813-EB93-4600-9DD3-BD1C7B979B2C} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-09] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2017-03-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-09] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-09] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-09] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-19] (Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: z27nwopj.default
FF ProfilePath: C:\Users\kalildesk2\AppData\Roaming\Mozilla\Firefox\Profiles\z27nwopj.default [2017-05-28]
FF Extension: (Avast SafePrice) - C:\Users\kalildesk2\AppData\Roaming\Mozilla\Firefox\Profiles\z27nwopj.default\Extensions\[email protected] [2017-05-09]
FF Extension: (Avast Online Security) - C:\Users\kalildesk2\AppData\Roaming\Mozilla\Firefox\Profiles\z27nwopj.default\Extensions\[email protected] [2017-05-09]
FF Extension: (Disable TLS Certificate Transparency) - C:\Users\kalildesk2\AppData\Roaming\Mozilla\Firefox\Profiles\z27nwopj.default\features\{822da446-0744-405f-a65f-861a578bfc3c}\[email protected] [2017-04-22]
FF Extension: (Disable Prefetch) - C:\Users\kalildesk2\AppData\Roaming\Mozilla\Firefox\Profiles\z27nwopj.default\features\{822da446-0744-405f-a65f-861a578bfc3c}\[email protected] [2017-04-22]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-12] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-09] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-10-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-30] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-30] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default [2017-05-31]
CHR Extension: (Google Docs) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-17]
CHR Extension: (Google Drive) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Google Search) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Adobe Acrobat) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-30]
CHR Extension: (Avast SafePrice) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-05-31]
CHR Extension: (Documentos Google off-line) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-26]
CHR Extension: (Avast Online Security) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-05-25]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-10]
CHR Extension: (Chrome Media Router) - C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-22]
CHR HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
 
==================== Serviços (Whitelisted) ====================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-09] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-09] (AVAST Software)
R3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-05-20] ()
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-09] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-09] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-09] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-09] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-20] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-09] (AVAST Software)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R3 BEDaisy; \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 X6va028; \??\C:\Windows\SysWOW64\Drivers\X6va028 [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
 
==================== Um Mês Criados arquivos e pastas ========
 
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
 
2017-05-31 16:04 - 2017-05-31 16:06 - 00018357 _____ C:\Users\kalildesk2\Desktop\FRST.txt
2017-05-31 16:02 - 2017-05-31 16:04 - 00000000 ____D C:\FRST
2017-05-31 15:58 - 2017-05-31 15:58 - 02431488 _____ (Farbar) C:\Users\kalildesk2\Desktop\FRST64.exe
2017-05-31 15:22 - 2017-05-31 15:22 - 00000000 ____D C:\Users\Todos os Usuários\SWCUTemp
2017-05-31 15:22 - 2017-05-31 15:22 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-05-26 23:25 - 2017-05-26 23:26 - 13021193 _____ (DLL System) C:\Users\kalildesk2\Downloads\WebView (1).exe
2017-05-26 22:56 - 2017-05-26 22:57 - 13021193 _____ (DLL System) C:\Users\kalildesk2\Downloads\WebView.exe
2017-05-09 13:52 - 2017-05-09 13:52 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-05-09 13:52 - 2017-05-09 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-05-09 13:51 - 2017-05-09 13:52 - 00000000 ____D C:\Program Files\iTunes
2017-05-09 13:51 - 2017-05-09 13:51 - 00000000 ____D C:\Program Files\iPod
2017-05-09 13:32 - 2017-05-09 13:45 - 00000000 ____D C:\Windows\system32\appmgmt
2017-05-09 13:32 - 2017-05-09 13:32 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-09 13:27 - 2017-05-09 13:31 - 257659208 _____ (Apple Inc.) C:\Users\kalildesk2\Downloads\iTunes64Setup.exe
2017-05-07 20:27 - 2017-05-07 20:27 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2017-05-07 20:27 - 2017-05-07 20:27 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-05-05 05:58 - 2017-05-05 05:58 - 00540856 _____ C:\Users\kalildesk2\Downloads\Amor Liquido - Zygmunt Bauman.mobi
2017-05-05 05:43 - 2017-05-05 05:43 - 00000000 ____D C:\Users\kalildesk2\AppData\Roaming\Google
 
==================== Um Mês Modificados arquivos e pastas ========
 
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
 
2017-05-31 16:02 - 2009-07-14 01:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-31 16:02 - 2009-07-14 01:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-31 15:44 - 2017-04-13 06:49 - 00003908 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1481284812
2017-05-31 15:41 - 2015-09-14 15:50 - 00000000 ____D C:\Users\kalildesk2\AppData\Roaming\Spotify
2017-05-31 15:40 - 2016-10-29 15:48 - 00000000 ____D C:\Users\kalildesk2\AppData\Roaming\uTorrent
2017-05-31 15:40 - 2015-05-10 15:32 - 00000000 ____D C:\Users\kalildesk2\AppData\Roaming\Skype
2017-05-31 15:23 - 2015-10-21 15:04 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-31 15:23 - 2015-09-14 15:51 - 00000000 ____D C:\Users\kalildesk2\AppData\Local\Spotify
2017-05-31 15:18 - 2016-10-11 19:43 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-05-31 15:18 - 2016-10-11 19:43 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-31 15:18 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-28 13:54 - 2017-03-18 11:00 - 00004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-05-28 10:39 - 2016-12-19 10:44 - 00000000 ____D C:\Users\kalildesk2\AppData\LocalLow\Mozilla
2017-05-26 22:41 - 2016-12-17 00:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-26 22:41 - 2015-09-16 10:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-21 11:01 - 2015-10-21 16:34 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2017-05-21 11:01 - 2015-10-21 16:34 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-21 10:59 - 2015-10-21 16:24 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-05-20 15:45 - 2016-10-15 12:43 - 00000000 ____D C:\Users\kalildesk2\AppData\Local\Tibia
2017-05-20 15:16 - 2014-12-30 12:39 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-20 15:16 - 2014-12-30 12:39 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-20 15:15 - 2016-12-09 08:57 - 00158880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2017-05-12 09:18 - 2015-10-15 11:34 - 00000000 ____D C:\Users\kalildesk2\AppData\Local\ElevatedDiagnostics
2017-05-12 09:03 - 2017-03-15 17:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-12 09:03 - 2015-05-10 15:31 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-05-12 09:03 - 2015-05-10 15:31 - 00000000 ____D C:\ProgramData\Skype
2017-05-12 08:41 - 2015-10-27 08:07 - 00004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-12 08:41 - 2015-10-26 22:11 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-05-12 08:41 - 2015-10-26 22:11 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-12 08:41 - 2015-10-26 22:11 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-12 08:41 - 2015-10-26 22:11 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-09 13:32 - 2016-12-09 08:57 - 00569192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-05-09 13:32 - 2016-12-09 08:57 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-05-09 13:32 - 2016-12-09 08:57 - 00128648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-05-09 13:32 - 2016-12-09 08:57 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-05-09 13:32 - 2016-12-09 08:57 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-05-09 13:32 - 2016-12-09 08:57 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-05-09 13:31 - 2017-03-18 11:00 - 00334576 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-05-09 13:31 - 2017-03-18 11:00 - 00311808 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-05-09 13:31 - 2017-03-18 11:00 - 00190256 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-05-09 13:31 - 2017-03-18 11:00 - 00049016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-05-09 13:31 - 2016-12-09 08:59 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-05-09 13:31 - 2016-12-09 08:57 - 01007160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-05-07 20:29 - 2015-09-10 13:34 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-07 20:27 - 2015-09-10 13:35 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-05-05 05:52 - 2015-09-15 10:41 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-05 05:41 - 2015-11-01 12:33 - 00000000 ____D C:\Program Files (x86)\TeamViewer
 
Alguns arquivos em TEMP:
====================
2015-10-20 19:30 - 2015-08-15 03:50 - 3677128 _____ () C:\Users\kalildesk2\AppData\Local\Temp\Ableton Swapper.exe
2015-11-19 09:24 - 2015-11-19 09:24 - 0585824 _____ (Oracle Corporation) C:\Users\kalildesk2\AppData\Local\Temp\jre-8u66-windows-au.exe
2016-02-11 12:40 - 2016-02-11 12:40 - 0736352 _____ (Oracle Corporation) C:\Users\kalildesk2\AppData\Local\Temp\jre-8u73-windows-au.exe
2016-05-27 14:33 - 2016-05-27 14:33 - 0739904 _____ (Oracle Corporation) C:\Users\kalildesk2\AppData\Local\Temp\jre-8u91-windows-au.exe
2017-03-15 17:50 - 2017-03-15 17:50 - 14456872 _____ (Microsoft Corporation) C:\Users\kalildesk2\AppData\Local\Temp\vc_redist.x86.exe
 
==================== Bamital & volsnap ======================
 
(Não há correção automática para arquivos que não passaram na verificação.)
 
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
 
LastRegBack: 2017-05-25 20:14
 
==================== END of FRST.txt ============================

 

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 31-05-2017
Executado por kalildesk2 (31-05-2017 16:06:26)
Executando a partir de C:\Users\kalildesk2\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2014-12-29 13:27:50)
Modo da Inicialização: Normal
==========================================================
 
 
==================== Contas: =============================
 
Administrador (S-1-5-21-2760971596-4133852796-2706495120-500 - Administrator - Disabled)
Convidado (S-1-5-21-2760971596-4133852796-2706495120-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2760971596-4133852796-2706495120-1002 - Limited - Enabled)
kalildesk2 (S-1-5-21-2760971596-4133852796-2706495120-1000 - Administrator - Enabled) => C:\Users\kalildesk2
 
==================== Central de Segurança ========================
 
(Se uma entrada for incluída na fixlist, será removida.)
 
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
 
==================== Programas Instalados ======================
 
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
 
µTorrent (HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
Ableton Live 9 Trial (HKLM\...\{E009B1E2-E9E2-434F-A267-2CF0E3DF8268}) (Version: 9.0.0.0 - Ableton)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Amazon Kindle (HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Amazon Kindle) (Version: 1.17.1.44183 - Amazon)
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Atualizações da NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre (HKLM-x32\...\{008734AD-9806-4D76-B6E1-842FE1AB4BD3}) (Version: 2.75.0 - Kovid Goyal)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 365 ProPlus - pt-br (HKLM\...\O365ProPlusRetail - pt-br) (Version: 15.0.4927.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 53.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 pt-BR)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.2.6333 - Mozilla)
Native Instruments Audio 2 DJ Driver (HKLM-x32\...\Native Instruments Audio 2 DJ Driver) (Version:  - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version:  - Native Instruments)
Native Instruments Audio 8 DJ Driver (HKLM-x32\...\Native Instruments Audio 8 DJ Driver) (Version:  - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.9.2.330 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.10.0.13 - Native Instruments)
Native Instruments Traktor Audio 10 Driver (HKLM-x32\...\Native Instruments Traktor Audio 10 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Audio 2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Audio 2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Audio 6 Driver (HKLM-x32\...\Native Instruments Traktor Audio 6 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol D2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol D2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol F1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol F1 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S4 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S4 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S5 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S5 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S8 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S8 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol X1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol X1 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol Z1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z1 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol Z2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z2 Driver) (Version:  - Native Instruments)
NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Driver de gráficos 341.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.96 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 341.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.96 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.0.7.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.7.34 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NvNodejs (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4927.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4927.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4927.1002 - Microsoft Corporation) Hidden
Painel de controle da NVIDIA 341.96 (Version: 341.96 - NVIDIA Corporation) Hidden
SafeZone Stable 3.55.2393.607 (x32 Version: 3.55.2393.607 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0320 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Spotify) (Version: 1.0.55.487.g256699aa - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.77 - CipSoft GmbH)
Tibia (HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\...\Tibia) (Version:  - CipSoft GmbH)
Tree of Savior (English Ver.) (HKLM-x32\...\Steam App 372000) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
 
==================== Exame Personalizado CLSID (Whitelisted): ==========================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
 
==================== Tarefas Agendadas (Whitelisted) =============
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
Task: {027CB40F-797C-441B-AF74-4DE6774CFBCB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {13C4A6F4-1828-49EE-A6A9-5D4004B05F84} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {2CAC9DB7-38AD-4770-8E56-8C0FA62742AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {355B9EEF-A0A9-4CBA-92E1-39AE19BFF448} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {41EA194A-9554-4AA1-AE79-FC10728C5709} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-09] (AVAST Software)
Task: {61F1ADCF-A5CD-42D7-BC27-A9BFB92B1C7B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-12] (Adobe Systems Incorporated)
Task: {7005B8C7-EC9C-40D1-A8FC-BF7545964AA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {7614FE92-57FD-4D7D-A133-94DDFBCDB723} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-14] (AVAST Software)
Task: {9D463E7F-005C-439D-8C23-1C0E7BB903A1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {AF56238F-CC9E-4A81-ABFB-BEBFCA80712B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2017-03-14] (Microsoft Corporation)
Task: {BF3B9B51-CAAD-4D0E-82D0-77EA857245E4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-30] (NVIDIA Corporation)
Task: {D2744FCF-0B98-4C46-911E-FAA6CB18BFA0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {D4C1AA58-B1CD-4823-81EF-4E300187E107} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-30] (NVIDIA Corporation)
Task: {D68E905C-14F9-4C92-B01E-22CB62795FFF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {E581479B-053B-4FDF-8D54-2972F5AB65F7} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {E66AE5F6-3CA2-4591-9EA3-F6716128878D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {E70B7D2E-ECBA-485C-AC0B-4C1ED9644BC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {E9FCE64D-6E02-4413-AEFC-A8CE9BDE1D07} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {FF93B0C8-B885-4DEE-A75F-A9C3A7891CC0} - System32\Tasks\SafeZone scheduled Autoupdate 1481284812 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-05-17] (Avast Software)
 
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
 
 
==================== Atalhos =============================
 
(As entradas podem ser listadas para serem restauradas ou removidas.)
 
==================== Módulos Carregados (Whitelisted) ==============
 
2016-10-11 20:00 - 2016-05-30 14:36 - 00133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-16 16:08 - 2017-03-16 16:08 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 17:17 - 2016-10-05 17:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-21 16:24 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-10-13 19:19 - 2016-09-30 01:25 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-13 19:19 - 2016-09-30 01:25 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-13 19:19 - 2016-09-30 01:25 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 01354040 _____ () C:\Program Files\iTunes\libxml2.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 00092472 _____ () C:\Program Files\iTunes\zlib1.dll
2017-05-09 13:31 - 2017-05-09 13:31 - 00162024 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00825960 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00275776 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2017-05-20 15:16 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-20 15:16 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-09 13:31 - 2017-05-01 12:59 - 31118328 _____ () C:\Users\kalildesk2\AppData\Local\Google\Chrome\User Data\PepperFlash\25.0.0.171\pepflashplayer.dll
2017-05-20 15:46 - 2017-05-20 15:46 - 01522184 _____ () C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
2017-05-09 13:32 - 2017-05-09 13:32 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-30 17:19 - 2017-05-30 17:19 - 05991936 _____ () C:\Program Files\AVAST Software\Avast\defs\17053004\algo.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00230632 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-05-31 15:26 - 2017-05-31 15:26 - 06097640 _____ () C:\Program Files\AVAST Software\Avast\defs\17053102\algo.dll
2016-10-13 19:19 - 2016-09-29 14:20 - 00500792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-13 19:19 - 2016-09-29 14:20 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-13 19:19 - 2016-09-29 14:20 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-13 19:19 - 2016-09-29 14:20 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-13 19:19 - 2016-09-29 14:20 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-13 19:19 - 2016-09-29 14:20 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-13 19:19 - 2016-09-29 14:20 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2015-09-14 15:51 - 2017-05-26 22:42 - 67117168 _____ () C:\Users\kalildesk2\AppData\Roaming\Spotify\libcef.dll
2016-10-13 19:19 - 2016-09-30 01:25 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-09 13:32 - 2017-05-09 13:32 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-09 13:31 - 2017-05-09 13:31 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2015-09-14 15:51 - 2017-05-26 22:42 - 02253424 _____ () C:\Users\kalildesk2\AppData\Roaming\Spotify\libglesv2.dll
2015-09-14 15:51 - 2017-05-26 22:42 - 00086640 _____ () C:\Users\kalildesk2\AppData\Roaming\Spotify\libegl.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
 
 
==================== Modo de Segurança (Whitelisted) ===================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
 
 
==================== Associação (Whitelisted) ===============
 
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
 
 
==================== Internet Explorer confiável/restrito ===============
 
(Se uma entrada for incluída na fixlist, será removida do Registro.)
 
 
==================== Hosts Conteúdo: ===============================
 
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
 
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Outras Áreas ============================
 
(Atualmente não há nenhuma correção automática para esta seção.)
 
HKU\S-1-5-21-2760971596-4133852796-2706495120-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\kalildesk2\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 189.4.0.234 - 189.4.0.158
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
 
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
 
 
==================== Regras do Firewall (Whitelisted) ===============
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
FirewallRules: [{F5362AD9-D058-4011-8CF0-C36E312AF9AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{C4A5C139-1897-466A-BC17-BD877AE1E50F}C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{513282DD-60C6-4737-B536-68A39C2790A3}C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe
FirewallRules: [{8F889A3A-C976-4A80-815E-559775487FD9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E95F69C5-F699-4748-B4E3-16C1287ED1BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{361468E8-4A16-447B-8B12-8DABAFD851A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{44F7BF85-3984-436C-9A1C-46571D0944C5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B1745013-22A5-4554-9EC6-F5088FF03D7B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8E126E25-5E3C-4666-9CF6-DCB314E2D933}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C99A8533-043D-4AB2-B5C0-AF206597E6BC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D9D1573B-7F63-4AAC-B98E-F52DDA6BDA62}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FA32F38C-DC9A-490C-BAF9-0A7935F5F7A8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EFB91F71-E07C-47C0-8C15-98DDD6AEDB5C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{886BDF82-943D-4CB1-A9F0-5A3297DAA5A9}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{E707A6A4-015C-4499-9AAF-741EFC3FCD9A}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{1AC4A2ED-2B59-4B48-A22B-4848FE16350D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{4E5664CE-B77F-4335-B73C-69323437FA95}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{25B7A422-6CF5-4205-80AF-1DC38863A6F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{44E8E8D5-1B83-494E-990B-1A256AE604C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{2929A89A-1BE9-4F2D-97C2-A340AD864605}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5539E080-7D84-4538-915C-98D858EA9E5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4A353BF0-841D-44E3-A515-D98308CDA428}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3E11C873-6757-43BB-BA55-654CFD151551}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{5BAC24CE-21F0-41A9-9954-1BB677D16AAB}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [TCP Query User{5B7DD9D8-B2CD-4CE8-91B8-44B525F93D49}C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{CAB4A23E-EB50-40DD-A118-E55862D5A6A1}C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kalildesk2\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BD042F60-5D88-4856-9A2B-B6C36219CFE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{338A731E-7E5E-4C22-833C-C8BB7D5D655F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BAA988EE-FC3B-4781-AF57-7109AC8B438A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6B32AABA-69E2-4008-A100-119C369E184B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C95726A3-3753-4E91-BA79-FE9294DEB2A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C04AE268-2CC5-4EBC-91F3-937E8D75B150}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D2F0710B-8693-49BA-95D5-4A1194788421}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{28657977-019E-4F5A-AE0C-21F36014AAAF}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F63B5218-5A3D-467C-8B5B-BDB3013CB50B}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E4D8ACDA-9308-4445-BFD0-A24A1A622569}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{190BC174-9551-41B9-A5E5-DCF11012A0C8}] => (Allow) C:\Users\kalildesk2\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4D75EBD8-D36D-4AE9-943B-F843BD0B3B4D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2B722912-CA6B-4B69-B46A-2E32B9036664}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{093D07B7-419A-4288-9FA3-9F1988A8C9AF}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
FirewallRules: [{022E78E5-4002-4830-8638-5A2384CAA9C1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{B09B68FB-DF54-4A56-B62B-77CBEFE5E6E8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{5D240CD8-8A1B-463B-8C5D-E967836BD514}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe
 
==================== Pontos de Restauração =========================
 
21-05-2017 13:42:20 Ponto de Verificação Agendado
28-05-2017 14:21:37 Ponto de Verificação Agendado
 
==================== Dispositivos Apresentando Falhas No Gerenciador =============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Erros no Log de eventos: =========================
 
Erros em Aplicativos:
==================
Error: (05/31/2017 03:19:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (05/30/2017 05:13:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (05/29/2017 10:21:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (05/28/2017 08:26:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13042
 
Error: (05/28/2017 08:26:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13042
 
Error: (05/28/2017 08:26:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/28/2017 08:26:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12044
 
Error: (05/28/2017 08:26:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12044
 
Error: (05/28/2017 08:26:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/28/2017 08:26:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11045
 
 
Erros de Sistema:
=============
Error: (05/31/2017 04:05:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:38 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:35 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:29 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:26 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:24 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:21 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:18 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:16 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
Error: (05/31/2017 04:05:13 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.
 
 
==================== Informações da Memória =========================== 
 
Processador: AMD Athlon™ II X4 620 Processor
Percentagem de memória em uso: 45%
RAM física total: 8191.11 MB
RAM física disponível: 4450.27 MB
Virtual Total: 16380.42 MB
Virtual disponível: 12341.44 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.66 GB) (Free:341.2 GB) NTFS
 
==================== MBR & Tabela de Partições ==================
 
==================== Fim de Addition.txt ============================

  • 0

Advertisements

#2
RKinner
Posted 31 May 2017 - 05:41 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Error: (05/31/2017 04:05:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso.

 

 

1. Double-click  Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, but don't restart yet.
 
Right click on Computer and select Manage  Then the Event Viewer. Next select Windows Logs.  Right click on System and Clear Log, Clear. Repeat for Application.
 
Reboot. The disk check will run and will probably take an hour or more to finish.
 
 
Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).
 
sfc /scannow
 
(SPACE after sfc.  This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:
 
Copy the next two lines:
 
findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \windows\logs\cbs\junk.txt 
notepad \windows\logs\cbs\junk.txt 
 
Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.  
 
 
1. Please download the Event Viewer Tool by Vino Rosso
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:
 
* System
4. Under 'Select type to list', select:
* Error
* Warning
 
 
Then use the 'Number of events' as follows:
 
 
1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
 
 
Please post the Output log in your next reply then repeat but select Application. (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP