Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2015 Ran by asus at 2015-04-14 19:03:13 Running from C:\Users\asus\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Trend Micro Titanium Internet Security 2012 (Disabled - Out of date) {B7599298-8445-728A-A5C7-A26A082C8BDA} AS: Trend Micro Titanium Internet Security 2012 (Disabled - Out of date) {0C38737C-A27F-7D04-9F77-991873ABC167} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-4249470998-23894073-617930920-1000\...\Akamai) (Version: - Akamai Technologies, Inc) ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.23 - ASUS) ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0013 - ASUS) ASUS K45_K75_K95_Screensaver (HKLM-x32\...\ASUS K45_K75_K95_Screensaver) (Version: 1.0.0001 - ASUS) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.29 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0040 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.8 - ASUS) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS) ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.9 - ASUS) ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.) ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3622.52 - CyberLink Corp.) ASUSDVD (x32 Version: 10.0.3622.52 - CyberLink Corp.) Hidden AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0015 - ASUS) Bastion (HKLM-x32\...\Steam App 107100) (Version: - Supergiant Games) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB) Bubbletown (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115065740}) (Version: - Oberon Media) CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform) Conquest of Champions (HKLM-x32\...\Steam App 266450) (Version: - Kihon Inc.) Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation) Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Counter-Strike 1.6 (HKLM-x32\...\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}) (Version: 1.6 - ) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.) CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.) CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1126 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Deadtime Stories (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118716773}) (Version: - Oberon Media) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) DKLegend (HKLM-x32\...\{DBBBA561-CBC3-4B95-9B45-C6E19510EDBC}_is1) (Version: DKLegend V6.65 - DKLegend) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts) Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media) Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version: - Oberon Media) Dungeons and Dragons Online (HKU\S-1-5-21-4249470998-23894073-617930920-1000\...\DDO_midres_en) (Version: - ) ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Farm Frenzy 3 - Madagascar (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-119205603}) (Version: - Oberon Media) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS) FluidSIM-Pneumática (HKLM-x32\...\FluidSIM-Pneumática) (Version: - ) Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media) Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.) Gerenciador de Downloads (HKU\S-1-5-21-4249470998-23894073-617930920-1000\...\a54e16f5d00985b6) (Version: 0.9.3.115 - Level Up! Gerenciador) Go Go Gourmet Chef of the Year (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}) (Version: - Oberon Media) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.) Happy Cloud Client (HKU\S-1-5-21-4249470998-23894073-617930920-1000\...\HappyCloud) (Version: 4.28 - Happy Cloud, Inc.) Hero Siege (HKLM-x32\...\Steam App 269210) (Version: - Elias Viglione) HI-TECH C51-lite V9.60PL0 (HKLM-x32\...\HC51 9.60PL0) (Version: 9.60 - HI-TECH Software) HI-TECH PICC lite V9.60PL0 (HKLM-x32\...\PICC 9.60PL0) (Version: 9.60 - HI-TECH Software) InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.2.0 - ASUS) Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.5 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.5.1.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Left 4 Dead 2 Authoring Tools (HKLM-x32\...\Steam App 563) (Version: - Valve) Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North) Mahjong Memoirs (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117948443}) (Version: - Oberon Media) Malwarebytes Anti-Malware versão 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Office Language Pack 2013 - Portuguese/Português (Brasil) (HKLM\...\Office15.OMUI.pt-br) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) ModelSim-Altera Starter Edition 13.0.0.156 (HKLM-x32\...\ModelSim-Altera Starter Edition 13.0.0.156) (Version: 13.0 - Altera Corporation) MPC-HC 1.7.1 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.1.0 - MPC-HC Team) National Instruments Software (HKLM-x32\...\NI Uninstaller) (Version: - ) Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.3.0.0 - Electronic Arts) NI Circuit Design Suite 10 Core (x32 Version: 10.0.144 - Electronics Workbench) Hidden NI Circuit Design Suite 10 Pro (x32 Version: 10.0.144 - National Instruments) Hidden NI Circuit Design Suite Support and Upgrade Utility (x32 Version: 10.0.144 - Your Company Name) Hidden NI EULA Depot (x32 Version: 2.30.166 - National Instruments) Hidden NI LabVIEW Run-Time Engine 8.0.1 (x32 Version: 8.0.812.0 - National Instruments) Hidden NI LabVIEW Run-Time Engine 8.2 (x32 Version: 8.2.159.0 - National Instruments) Hidden NI LabWindows/CVI 8.0.1 Run-Time Engine (x32 Version: 8.0.1356 - National Instruments) Hidden NI License Manager (x32 Version: 3.2.64 - National Instruments) Hidden NI Logos 4.7 (x32 Version: 4.7.144.0 - National Instruments) Hidden NI Math Kernel Libraries (x32 Version: 1.0.861.0 - National Instruments) Hidden NI MDF Support (x32 Version: 2.30.166 - National Instruments) Hidden NI Service Locator (x32 Version: 8.2.126.0 - National Instruments) Hidden NI TDMS (x32 Version: 1.0.135.0 - National Instruments) Hidden NI Uninstaller (x32 Version: 2.30.166 - National Instruments) Hidden NI USI 1.3.0 (x32 Version: 1.3.02695 - National Instruments) Hidden NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Penny Arcade's On the Rain-Slick Precipice of Darkness 3 (HKLM-x32\...\Steam App 213030) (Version: - Zeboyd Games) Penny Arcade's On the Rain-Slick Precipice of Darkness 4 (HKLM-x32\...\Steam App 237570) (Version: - Zeboyd Games) Phoenix Force (HKLM-x32\...\Steam App 332480) (Version: - Awoker Games) Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media) Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.) Pokémon World Online version 1.82 (HKLM-x32\...\{6B67E1A1-1D62-4BDC-8C60-07FDF25CA975}_is1) (Version: 1.82 - CodeCore Entertainment & the PWO Team) Pox Nora (HKLM-x32\...\Steam App 201210) (Version: - Desert Owl Games LLC) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Quartus II Web Edition (Free) 14.0.0.200 (64-bit) (HKLM-x32\...\Quartus II Web Edition (Free) 14.0.0.200 (64-bit)) (Version: 14.0 - Altera Corporation) RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.1.31.0 - Razer Inc.) Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.30130 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Risen 3 - Titan Lords (HKLM-x32\...\Risen 3 - Titan Lords_is1) (Version: - Deep Silver) SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0100-0416-1000-0000000FF1CE}_Office15.OMUI.pt-br_{8ECA38FB-BA64-4DF3-A770-936F18495B2C}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) System Requirements Lab Detection (HKLM-x32\...\{4FCD76AF-6988-419E-9535-609592C918D0}) (Version: 2.2.3.0 - Husdawg, LLC) Tales of Pirates II (HKLM-x32\...\Tales of Pirates II_is1) (Version: 1.0.70 - IGG,Inc.) The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED) Trend Micro Titanium (Version: 5.00 - Trend Micro Inc.) Hidden Trend Micro Titanium Internet Security 2012 (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 5.4 - Trend Micro Inc.) Trine 2 (HKLM-x32\...\Steam App 35720) (Version: - Frozenbyte) Turbo Fiesta (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115320460}) (Version: - Oberon Media) UsbFix (HKLM-x32\...\Usbfix) (Version: 7.161 - El Desaparecido - www.usbfix.net - www.sosvirus.net) Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation) Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes) Warsaw 1.3.1 (HKLM-x32\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.3.1 - GAS Tecnologia) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS) WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS) World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version: - Oberon Media) ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman) عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation) معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ตัวควบคุม ActiveX ใน Windows Live Mesh สำหรับการเชื่อมต่อระยะไกล (ไทย) (HKLM-x32\...\{A2EDAEEB-C981-46D5-8163-CF8F5F640EEE}) (Version: 15.4.5722.2 - Microsoft Corporation) 用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation) 適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-4249470998-23894073-617930920-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0013}\InprocServer32 -> C:\Users\asus\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-4249470998-23894073-617930920-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0013}\InprocServer32 -> C:\Users\asus\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-4249470998-23894073-617930920-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation) ==================== Restore Points ========================= 07-04-2015 21:13:16 Ponto de Verificação Agendado 12-04-2015 16:57:18 ??????????? Counter-Strike 1.6 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2015-04-09 15:48 - 00000027 ____N C:\windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0AE8FF2D-6C37-475C-AA5E-F880D0B1CBB7} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22] (ASUSTek Computer Inc.) Task: {17B44223-08DE-40D6-BBCA-8BE20B8A0985} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {1A4727EE-C5BE-4217-BDA8-8755A8D4CBC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.) Task: {1A70A862-0A8E-44A9-B009-808F9D1AC6E0} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {21A2B7C9-7941-452B-85C3-AF722BC221C3} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-15] (ASUS) Task: {27B393F8-F643-4A2A-9750-1C5EAB8B25C2} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2011-12-21] (ASUSTeK Computer Inc.) Task: {374DE580-A9E5-4EBD-BE64-D8B7EC7115BF} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated) Task: {45F7BC45-466C-4F83-B79C-C5F5E8D8E984} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js" <==== ATTENTION Task: {46C1147D-DFF3-4C4B-9C56-091885493011} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2011-12-21] (ASUSTeK Computer Inc.) Task: {4DA8BEE7-6807-4EF9-AD49-B1A3BD713B79} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {6149AA0F-4E3C-48BE-AF3F-6CFBCD0ED84F} - System32\Tasks\{F7F1299E-21DC-4289-999E-12448A96D13B} => pcalua.exe -a "C:\Users\asus\Documents\Arq Uteis\EWB10_multisim\Ni Electronics Workbench Circuit Design Suite v10.0 Keygen\setup.exe" -d "C:\Users\asus\Documents\Arq Uteis\EWB10_multisim\Ni Electronics Workbench Circuit Design Suite v10.0 Keygen" Task: {8EFF89C5-2D4D-45A7-90B1-5041D5C8603E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd) Task: {9512B197-DBEE-404A-BFF9-DD90E84D1136} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {99DFD239-0A5B-4486-AE63-7E8A50E91ACF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-01-30] (ASUSTek Computer Inc.) Task: {9A830004-01BD-486F-BBF5-6E52BC31172A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated) Task: {9E6B67EE-8824-4B73-97E3-7ECB6BB96A91} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.) Task: {A2032DF5-EA4F-4248-939A-485C6321912F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {A2A60D6B-F212-4A8F-9180-250ADA0806B8} - System32\Tasks\{57AA8046-A87F-480F-97EC-217E8E9CCF3D} => pcalua.exe -a C:\Users\asus\Downloads\HijackThis.exe -d C:\Users\asus\Downloads Task: {A8C5F948-5C6E-441E-A99F-C4DBD775DF3B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {B00B09DF-140F-41B8-9CC6-E39CA1C74F74} - System32\Tasks\{7A7870E2-C285-4064-A433-1D8567677CC8} => pcalua.exe -a C:\windows\system32\pcwrun.exe -c "C:\Program Files (x86)\FluidSIM-Pneumática\bin\fl_sim_p.exe" Task: {BE2A2319-3F4E-4CFC-B1B7-608BF5F7DB54} - System32\Tasks\{1C467EFF-2B0D-460D-9ADF-B3867AB89FCE} => pcalua.exe -a "C:\Users\asus\Documents\Arq Uteis\FluidSIM 3.6\FluidSim.English.Pack.by.CHEOPE.exe" -d "C:\Users\asus\Documents\Arq Uteis\FluidSIM 3.6" Task: {CEEE2C73-8220-4F1C-93E2-D59D62A6A3E8} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2011-10-03] (ASUS) Task: {DA8C24A0-2276-4FA8-BAB5-261CAD202B00} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe Task: {DD38DE00-3A81-4B34-BFE9-3E122CD00F1D} - System32\Tasks\{AD612C69-15F5-4B58-BEAD-0035B17015B2} => pcalua.exe -a "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2" -c /register Task: {E0B70792-8F85-4E1E-8336-B8BF8EB9320B} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe [2014-02-06] () Task: {E35AD50D-F3C1-45E2-9B00-F5BC1FEA85A8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation) Task: {E7970495-6FA3-4A28-86E5-C139DBB7FA6E} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {E7B00970-58E0-4158-B4F1-EB84AA3E040C} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {ED9639C0-62F6-4A3B-B945-4F76CA8313CD} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe ==================== Loaded Modules (whitelisted) ============== 2012-03-09 16:52 - 2011-08-02 17:45 - 00047104 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll 2012-03-09 16:52 - 2011-08-02 17:45 - 00042496 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll 2012-03-09 16:52 - 2011-08-02 17:45 - 00731136 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll 2012-03-09 16:52 - 2011-08-02 17:45 - 01719808 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll 2012-03-09 16:52 - 2011-08-02 17:45 - 00016384 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_36.dll 2012-01-05 06:40 - 2011-08-02 17:33 - 00289056 _____ () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll 2010-10-20 12:10 - 2012-02-07 23:03 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2014-10-16 01:25 - 2014-06-18 01:04 - 00302592 _____ () C:\altera\14.0\quartus\bin64\jtagserver.exe 2014-10-16 01:27 - 2014-06-18 01:01 - 00040448 _____ () C:\altera\14.0\quartus\bin64\ccl_ver.dll 2014-10-16 01:26 - 2014-06-17 23:24 - 00841216 _____ () C:\altera\14.0\quartus\bin64\dinkum_alt.dll 2014-10-16 01:25 - 2014-06-18 07:09 - 00064000 _____ () C:\altera\14.0\quartus\bin64\pgm_pgmdrv_apu_usb.dll 2014-10-16 01:25 - 2014-06-18 01:01 - 00538112 _____ () C:\altera\14.0\quartus\bin64\CCL_GEN.dll 2014-10-16 01:25 - 2014-06-18 07:35 - 00131072 _____ () C:\altera\14.0\quartus\bin64\ccl_mem.dll 2014-10-16 01:27 - 2014-06-18 01:01 - 00009216 _____ () C:\altera\14.0\quartus\bin64\ccl_mem_native.dll 2014-10-16 01:27 - 2014-06-18 01:01 - 00045056 _____ () C:\altera\14.0\quartus\bin64\CCL_ERR.dll 2014-10-16 01:27 - 2014-06-18 01:01 - 00045056 _____ () C:\altera\14.0\quartus\bin64\ccl_thr.dll 2014-10-16 01:25 - 2014-06-18 01:01 - 00164352 _____ () C:\altera\14.0\quartus\bin64\CCL_FIO.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00825344 _____ () C:\altera\14.0\quartus\bin64\CCL_MSG.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00330240 _____ () C:\altera\14.0\quartus\bin64\ccl_atcl.dll 2014-10-16 01:25 - 2014-06-18 07:35 - 00368128 _____ () C:\altera\14.0\quartus\bin64\ccl_qtl.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00073728 _____ () C:\altera\14.0\quartus\bin64\ccl_zlib.dll 2014-10-16 01:25 - 2014-06-18 01:01 - 00145920 _____ () C:\altera\14.0\quartus\bin64\ccl_cfg_ini.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00088576 _____ () C:\altera\14.0\quartus\bin64\CCL_FSTR.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00100864 _____ () C:\altera\14.0\quartus\bin64\CCL_BIG.dll 2014-10-16 01:25 - 2014-06-18 07:33 - 00146432 _____ () C:\altera\14.0\quartus\bin64\DB_PDB.dll 2014-10-16 01:27 - 2014-06-18 01:02 - 00014336 _____ () C:\altera\14.0\quartus\bin64\CCL_CLW.dll 2014-10-16 01:27 - 2014-06-18 01:02 - 00048128 _____ () C:\altera\14.0\quartus\bin64\ccl_tst.dll 2014-10-16 01:27 - 2014-06-18 01:02 - 00027648 _____ () C:\altera\14.0\quartus\bin64\ccl_put.dll 2014-10-16 01:25 - 2014-06-18 01:02 - 00787968 _____ () C:\altera\14.0\quartus\bin64\ccl_sqlite3.dll 2014-10-16 01:27 - 2014-06-18 01:02 - 00045056 _____ () C:\altera\14.0\quartus\bin64\ccl_xml.dll 2014-10-16 01:27 - 2014-06-17 23:26 - 00002048 _____ () C:\altera\14.0\quartus\bin64\icudt34.dll 2014-04-24 09:19 - 2014-04-25 00:55 - 00076888 _____ () C:\windows\SysWOW64\PnkBstrA.exe 2014-10-16 15:56 - 2014-10-16 15:56 - 00183488 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2010-07-14 20:11 - 2010-07-14 20:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2010-10-20 12:10 - 2012-02-07 22:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2012-02-06 23:32 - 2012-02-06 23:32 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2010-08-20 13:57 - 2010-08-20 13:57 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2010-08-20 13:57 - 2010-08-20 13:57 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2012-01-31 13:25 - 2012-01-31 13:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll 2013-10-24 08:45 - 2015-03-10 03:37 - 00775680 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2014-12-02 21:30 - 2014-12-01 21:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll 2014-12-02 21:30 - 2014-12-01 21:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2014-12-02 21:30 - 2014-12-01 21:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2014-05-21 15:11 - 2015-04-13 20:44 - 02371776 _____ () C:\Program Files (x86)\Steam\video.dll 2014-08-29 17:25 - 2014-12-01 18:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2014-08-29 17:25 - 2014-12-01 18:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2014-08-29 17:25 - 2014-12-01 18:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2014-08-29 17:25 - 2014-12-01 18:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2014-08-29 17:25 - 2014-12-01 18:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2013-10-30 10:25 - 2015-04-13 20:44 - 00702656 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2013-10-23 11:07 - 2015-02-24 22:58 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2014-08-15 01:55 - 2015-02-24 22:58 - 01709960 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\windows\System32:9284DAE4_Uni.gbp AlternateDataStreams: C:\ProgramData\Temp:77846FFE AlternateDataStreams: C:\ProgramData\Temp:FEF919E6 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4249470998-23894073-617930920-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\asus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NI Error Reporting.lnk => C:\windows\pss\NI Error Reporting.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^asus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Intel(R) Turbo Boost Technology Monitor 2.5.lnk => C:\windows\pss\Intel(R) Turbo Boost Technology Monitor 2.5.lnk.Startup MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\windows\AsScrPro.exe MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: NI Update Service => "C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe" -startupTask MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s ==================== Accounts: ============================= Administrador (S-1-5-21-4249470998-23894073-617930920-500 - Administrator - Disabled) ASPNET (S-1-5-21-4249470998-23894073-617930920-1002 - Limited - Enabled) asus (S-1-5-21-4249470998-23894073-617930920-1000 - Administrator - Enabled) => C:\Users\asus Convidado (S-1-5-21-4249470998-23894073-617930920-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (04/13/2015 07:57:44 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: mpc-hc.exe, versão: 1.7.1.0, carimbo de hora: 0x52886f75 Nome do módulo de falhas: mpc-hc.exe, versão: 1.7.1.0, carimbo de hora: 0x52886f75 Código de exceção: 0xc0000005 Deslocamento com falha: 0x0026c848 Identificação do processo com falha: 0xc58 Hora de início do aplicativo com falha: 0xmpc-hc.exe0 Caminho do aplicativo com falha: mpc-hc.exe1 FCaminho do módulo de falhas: mpc-hc.exe2 Identificação do Relatório: mpc-hc.exe3 System errors: ============= Error: (04/14/2015 05:06:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Steam Client Service devido ao seguinte erro: %%1053 Error: (04/14/2015 05:06:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Steam Client Service. Error: (04/14/2015 05:05:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: %%1053 Error: (04/14/2015 05:05:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (04/14/2015 05:05:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: %%1053 Error: (04/14/2015 05:05:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Error: (04/14/2015 05:01:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço cvintdrv devido ao seguinte erro: %%1275 Error: (04/14/2015 05:01:04 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\Drivers\cvintdrv.SYS foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver. Error: (04/13/2015 06:49:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: %%1053 Error: (04/13/2015 06:49:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Presentation Foundation Font Cache 3.0.0.0. Microsoft Office Sessions: ========================= Error: (04/13/2015 07:57:44 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: mpc-hc.exe1.7.1.052886f75mpc-hc.exe1.7.1.052886f75c00000050026c848c5801d0763cf4bea7c8C:\Program Files (x86)\MPC-HC\mpc-hc.exeC:\Program Files (x86)\MPC-HC\mpc-hc.exe7ea5779d-e230-11e4-bd0a-74d02b615044 CodeIntegrity Errors: =================================== Date: 2015-04-09 15:47:48.000 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-04-09 15:47:47.960 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz Percentage of memory in use: 31% Total physical RAM: 6023.3 MB Available physical RAM: 4135.87 MB Total Pagefile: 12044.8 MB Available Pagefile: 10018.93 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:300 GB) (Free:53.35 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (DATA) (Fixed) (Total:373.54 GB) (Free:222.81 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 10C90B13) Partition 1: (Not Active) - (Size=25 GB) - (Type=1C) Partition 2: (Active) - (Size=100 MB) - (Type=27) Partition 3: (Not Active) - (Size=300 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=373.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================