Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:31-12-2015
Executado por bruno (2016-01-03 01:47:43)
Executando a partir de C:\Users\bruno\Desktop
Windows 7 Home Basic (X64) (2015-11-30 14:06:57)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-484417902-3510460646-856079227-500 - Administrator - Disabled)
bruno (S-1-5-21-484417902-3510460646-856079227-1000 - Administrator - Enabled) => C:\Users\bruno
Convidado (S-1-5-21-484417902-3510460646-856079227-501 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Microsoft Security Essentials (Disabled - Out of date) {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66}
AS: Microsoft Security Essentials (Disabled - Out of date) {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.204 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.228 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Angry Birds (HKLM-x32\...\{1E11EE30-C0D4-46BC-9142-27EB4C37BE35}) (Version: 1.6.2 - Rovio)
ArtRage 2 Starter Edition (HKLM-x32\...\{95672D3F-F087-4032-9C12-02B00087CEA8}) (Version: 2.6.0 - Ambient Design)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.25.0 - Ask.com) <==== ATENÇÃO
Ask Toolbar Updater (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.4.35882 - Ask.com) <==== ATENÇÃO
Assistente de Conexão do Windows Live (HKLM-x32\...\{51A9E3DD-37B8-47BB-8E67-5B76B3EFBC48}) (Version: 5.000.818.5 - Microsoft Corporation)
Auslogics BenchTown (HKLM-x32\...\{AA20167A-0503-4DCC-A6BF-FF538C4EF25D}_is1) (Version: version 1.0 - Auslogics Software Pty Ltd)
Baffler Standalone (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\07b798388271274e) (Version: 3.1.4.14 - Baffler)
Balloon Diaspora (HKLM-x32\...\Balloon Diaspora_is1) (Version:  - )
BigFoot 4x4 Challenge (HKLM-x32\...\BigFoot 4x4 Challenge_is1) (Version: 1.0 - MyPlayCity, Inc.)
Billiards Club (HKLM-x32\...\Billiards Club_is1) (Version: 1.0 - MyPlayCity, Inc.)
Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
C-evo (HKLM-x32\...\C-evo) (Version:  - )
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Combined Community Codec Pack 2008-09-21 16:18 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2008.09.21.0 - CCCP Project)
Corpohumano 1.5 (HKLM-x32\...\Corpohumano_is1) (Version:  - 3dsistemas)
CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5145 - Z8Games.com)
Dead Cyborg Episode 1 (HKLM-x32\...\Dead Cyborg Episode 1_is1) (Version:  - )
Discador Digerati (HKLM-x32\...\Discador Digerati) (Version:  - )
Ferramenta de Carregamento do Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Fishdom (HKLM-x32\...\Fishdom_is1) (Version: 1.0 - MyPlayCity, Inc.)
FotoMix version 8.5.4 (HKLM-x32\...\{10A0255E-0B73-4397-AB4E-E3667EDA70E4}_is1) (Version: 8.5.4 - Digital Photo Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Helicopter Game (HKLM-x32\...\Helicopter Game_is1) (Version: 1.0 - MyPlayCity, Inc.)
IcoFX 1.6.4 (HKLM-x32\...\IcoFX_is1) (Version:  - )
Immortal Empire (HKLM-x32\...\Steam App 344190) (Version:  - Tactic Studios Inc.)
Inkscape 0.48.1  (HKLM-x32\...\Inkscape) (Version: 0.48.1 - )
InstantPhotoSketch 1.0 (HKLM-x32\...\{B9F47E93-4F7B-4CB5-A21B-C5214F39E087}_is1) (Version:  - CPSSoftware)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.227 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.227 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office com Clique para Executar 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Português (Brasil) (HKLM-x32\...\{90140011-0066-0416-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Essentials) (Version: 1.0.1961.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\MK LOL) (Version:  - )
Mozilla Firefox 43.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 43.0 (x86 pt-BR)) (Version: 43.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0 - Mozilla)
Naruto The Way of the Ninja 2.0 (HKLM-x32\...\{97291EC1-734A-465E-8246-141D9A665077}) (Version: 2.0 - Phoenix Crew)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pencil 0.4.4b (HKLM-x32\...\Pencil_is1) (Version:  - )
PointBlank (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\PointBlank) (Version: 2.1.0 - Ongame S.A & Zepetto)
Pokki Download Helper (HKU\S-1-5-21-484417902-3510460646-856079227-1000\...\PokkiDownloadHelper) (Version: 1.3.1.289 - Pokki)
Quadro Racing (HKLM-x32\...\Quadro Racing_is1) (Version: 1.0 - Media Contact LLC)
Red Eclipse (HKLM-x32\...\Red Eclipse) (Version:  - )
Shockwave (HKLM-x32\...\Shockwave) (Version:  - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Transformice (HKLM-x32\...\Transformice) (Version: 1.0.0 - UNKNOWN)
Transformice (x32 Version: 1.0.0 - UNKNOWN) Hidden
VMware Workstation (Version: 11.0.0 - VMware, Inc.) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
WinDS PRO 2015.12.16 (HKLM\...\{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}_is1) (Version: 2015.12.16 - WinDS PRO Central)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {1D2437B4-CE5D-4AE7-9E8A-2948129B0B1F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-12] (Google Inc.)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6F487532-CEA6-49A0-9EA1-5BCB22B234E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-12] (Google Inc.)
Task: {B000B615-28C9-412F-B122-D77A8698F376} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {DF71A742-E968-45AD-AB2A-7C2083E9300D} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-04-25] () <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2014-11-20 18:20 - 2014-11-20 18:20 - 12730560 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2015-12-18 10:52 - 2015-12-18 10:52 - 01866752 _____ () C:\Users\bruno\AppData\Local\Temp\Chrome.exe
2015-12-18 12:21 - 2015-12-31 13:45 - 00024064 _____ () C:\Users\bruno\AppData\Local\Temp\explorer.exe
2015-12-17 08:11 - 2015-07-08 05:48 - 00301056 _____ () C:\Users\bruno\AppData\Roaming\install\Microsoft.exe
2014-11-20 18:44 - 2014-11-20 18:44 - 01299136 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2014-11-20 18:20 - 2014-11-20 18:20 - 00191680 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
2014-11-20 18:20 - 2014-11-20 18:20 - 00388288 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
2014-11-20 18:20 - 2014-11-20 18:20 - 00194752 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
2015-12-12 22:13 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\bruno\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2015-12-12 22:13 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\bruno\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2015-12-25 20:03 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\bruno\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-12-18 10:30 - 2015-12-18 10:44 - 00000002 ____A C:\Windows\system32\Drivers\etc\hosts



==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-484417902-3510460646-856079227-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 201.76.64.55 - 201.76.64.63
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{A03921C6-6BDD-4F0D-9900-6C8CACE9A963}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{E2970D35-5487-46F9-BCD5-0E7CFF21795E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{2DD321FA-CA79-44CD-AAA1-B13C2785621D}] => (Allow) svchost.exe
FirewallRules: [TCP Query User{1C2557A1-6D30-429B-9E46-CDF56369B3B9}C:\program files (x86)\red eclipse\bin\reclient.exe] => (Allow) C:\program files (x86)\red eclipse\bin\reclient.exe
FirewallRules: [UDP Query User{3653E135-6562-4363-AB68-C1B2DC066153}C:\program files (x86)\red eclipse\bin\reclient.exe] => (Allow) C:\program files (x86)\red eclipse\bin\reclient.exe
FirewallRules: [TCP Query User{A25F1F4E-6846-4781-83EA-4F2E391AD92F}C:\bestgamesesp07\jogos\kkndxtreme\kknd.exe] => (Block) C:\bestgamesesp07\jogos\kkndxtreme\kknd.exe
FirewallRules: [UDP Query User{68F0D8D8-6E6D-4F7A-A321-DEFD3A499640}C:\bestgamesesp07\jogos\kkndxtreme\kknd.exe] => (Block) C:\bestgamesesp07\jogos\kkndxtreme\kknd.exe
FirewallRules: [{6868D3AF-6FBD-4F3F-AF57-D4BF6B1F8284}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F9944FD3-2823-49B7-A20C-0A873A4FC5E9}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BEF04F6E-50BF-45C0-B6BE-6C4B8DB05A74}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5076E64E-7F62-42F7-AEDF-D9AA804D837E}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3A0A8FC7-94DC-4CD4-88E8-76A244608EE6}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C1F361F0-71A0-43E9-9E10-92328442664C}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4B8E1D27-F26F-4D09-9F19-5E7F2304CCA1}] => (Allow) C:\Users\bruno\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CAF5A407-F344-424B-9E99-CF0A3FC22E6A}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{402AF376-2CCA-4A38-BC74-3A9CAE8344B8}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{41015915-B1E5-4B88-A266-757D6F38383E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{ED4EF29D-2752-4465-91C1-F97657FD1D3E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{41A914E8-7143-4ABF-B840-8DAD75E9F168}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C5FAF2B7-223E-4EE0-A224-26066B9ECF02}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0ED67F3B-BCCC-4060-9811-5DED2A416808}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8D9DB8C1-B4BA-48A7-8593-84349E16D868}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D669D7AF-D358-4CC6-809B-DCBA959E91A0}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{A9148B94-D66E-4A8A-B213-46CE47C6DC51}C:\games\unturned v2.0.4\unturned.exe] => (Allow) C:\games\unturned v2.0.4\unturned.exe
FirewallRules: [UDP Query User{CD9EB7BB-D342-4DDC-92AC-5E83EE6961E8}C:\games\unturned v2.0.4\unturned.exe] => (Allow) C:\games\unturned v2.0.4\unturned.exe
FirewallRules: [{85519CF9-C61F-4926-9382-817D5E239A54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Immortal Empire\Immortal Empire.exe
FirewallRules: [{D5B3AE0A-BDB4-4EA9-A4C5-1C727B38C429}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Immortal Empire\Immortal Empire.exe
FirewallRules: [TCP Query User{407A16AF-F3CA-48FF-8192-21895E025EB5}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{58AEED29-4ADE-4699-827A-B7AEE131E864}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{255B64D5-94E6-4149-91F3-AC79420AB618}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{F0AAC3A2-722B-4B68-850E-20CC43F2515F}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{510D54DB-C8CA-4717-BD46-B5C341F320B2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{5A6475FB-1487-455A-A24C-1BA50FF4AF04}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe

==================== Pontos de Restauração =========================

21-12-2015 11:00:00 Windows Update
22-12-2015 10:13:47 Windows Update
23-12-2015 10:45:27 Windows Update
24-12-2015 03:00:15 Windows Update
25-12-2015 11:12:29 Windows Update
26-12-2015 12:07:04 Windows Update
27-12-2015 21:41:48 Windows Update
28-12-2015 03:00:38 Windows Update
29-12-2015 03:00:20 Windows Update
30-12-2015 13:47:07 Windows Update
31-12-2015 13:35:23 Windows Update
01-01-2016 10:36:16 Windows Update
02-01-2016 14:17:00 Windows Update
03-01-2016 01:24:42 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
03-01-2016 01:26:31 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
03-01-2016 01:34:46 DirectX instalado

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (01/03/2016 12:04:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: LolClient.exe, versão: 0.0.0.0, carimbo de hora: 0x515663e0
Nome do módulo de falhas: WebKit.dll, versão: 6531.9.0.0, carimbo de hora: 0x557fbe14
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000a4d8d
Identificação do processo com falha: 0x510
Hora de início do aplicativo com falha: 0xLolClient.exe0
Caminho do aplicativo com falha: LolClient.exe1
FCaminho do módulo de falhas: LolClient.exe2
Identificação do Relatório: LolClient.exe3

Error: (12/30/2015 10:09:01 PM) (Source: Application Virtualization Client) (EventID: 2005) (User: )
Description: O Application Virtualization Core Service não pôde contatar o Distribuidor de Controle de Serviço.

Error: (12/28/2015 03:53:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Skype.exe, versão: 7.16.0.102, carimbo de hora: 0x56672539
Nome do módulo de falhas: Skype.exe, versão: 7.16.0.102, carimbo de hora: 0x56672539
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00b5cd51
Identificação do processo com falha: 0x730
Hora de início do aplicativo com falha: 0xSkype.exe0
Caminho do aplicativo com falha: Skype.exe1
FCaminho do módulo de falhas: Skype.exe2
Identificação do Relatório: Skype.exe3

Error: (12/27/2015 09:39:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Skype.exe, versão: 7.16.0.102, carimbo de hora: 0x56672539
Nome do módulo de falhas: Skype.exe, versão: 7.16.0.102, carimbo de hora: 0x56672539
Código de exceção: 0x40000015
Deslocamento com falha: 0x00fb45e5
Identificação do processo com falha: 0x7c0
Hora de início do aplicativo com falha: 0xSkype.exe0
Caminho do aplicativo com falha: Skype.exe1
FCaminho do módulo de falhas: Skype.exe2
Identificação do Relatório: Skype.exe3

Error: (12/27/2015 09:39:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: Skype.exe, versão: 7.16.0.102, carimbo de hora: 0x56672539
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xe0fafafa
Deslocamento com falha: 0x00000000
Identificação do processo com falha: 0x7c0
Hora de início do aplicativo com falha: 0xSkype.exe0
Caminho do aplicativo com falha: Skype.exe1
FCaminho do módulo de falhas: Skype.exe2
Identificação do Relatório: Skype.exe3

Error: (12/27/2015 12:12:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa vnetlib64.exe versão 11.0.0.54843 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 2b0

Hora de Início: 01d1404be19ebdbe

Hora de Término: 52

Caminho do Aplicativo: C:\Program Files (x86)\VMware\VMware Workstation\vnetlib64.exe

Id do Relatório: 26fd8512-ac3f-11e5-8fe5-002511ea4795

Error: (12/27/2015 12:09:13 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa VMware-workstation-full-11.0.0-2305329.exe versão 1.1.2.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: cac

Hora de Início: 01d1404b3e44de03

Hora de Término: 7

Caminho do Aplicativo: C:\Users\bruno\Downloads\VMware Workstation 11.0.0 Build 2305329 Final Incl. Serial [ATOM]\VMware Workstation 11.0.0 Build 2305329 Final Incl. Serial [ATOM]\VMware-workstation-full-11.0.0-2305329.exe

Id do Relatório:

Error: (12/23/2015 08:04:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: LolClient.exe, versão: 0.0.0.0, carimbo de hora: 0x515663e0
Nome do módulo de falhas: WebKit.dll, versão: 6531.9.0.0, carimbo de hora: 0x557fbe14
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000a4d8d
Identificação do processo com falha: 0xc64
Hora de início do aplicativo com falha: 0xLolClient.exe0
Caminho do aplicativo com falha: LolClient.exe1
FCaminho do módulo de falhas: LolClient.exe2
Identificação do Relatório: LolClient.exe3

Error: (12/19/2015 07:36:59 PM) (Source: MsiInstaller) (EventID: 10005) (User: veigar)
Description: Product: LogMeIn Hamachi -- Uma versão mais recente (2.2.0.410) do Hamachi foi encontrada no sistema. Para uma versão desatualizada, faça a desinstalação antes de prosseguir.

Error: (12/19/2015 11:03:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Unturned.exe versão 4.5.0.18735 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: ac4

Hora de Início: 01d13a5b88c8a145

Hora de Término: 153

Caminho do Aplicativo: C:\Games\Unturned v2.0.4\Unturned.exe

Id do Relatório: db39e206-a650-11e5-b0cd-002511ea4795


Erros de Sistema:
=============
Error: (01/02/2016 02:20:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Windows 7 Service Pack 1 para sistemas com base em x64 (KB976932).

Error: (01/02/2016 02:19:45 PM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 8) (User: AUTORIDADE NT)
Description: Falha na instalação do Service Pack com o código de erro 0x800f0a09.

Error: (01/02/2016 02:19:44 PM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 2) (User: AUTORIDADE NT)
Description: Um driver instalado tem problemas de compatibilidade conhecidos. Tente atualizá-lo para uma versão mais recente.

   Nome:   Microsoft Security Essentials

   Motivo: sua versão deste programa pode impedir a instalação bem-sucedida deste service pack.

   GUID:   {EE990683-6675-41CC-BEE9-6A679A01237A}

Error: (01/02/2016 02:12:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Microsoft Antimalware Service terminou com o erro: 
%%-2147017840

Error: (01/02/2016 02:12:05 PM) (Source: Microsoft Antimalware) (EventID: 5101) (User: )
Description: O período de cortesia de %%861 expirou. A proteção contra vírus, spywares e outros softwares potencialmente indesejados está desabilitada.

	Motivo da Expiração: %%873

	Data da Expiração (UTC): ‎01/‎01/‎1601 00:00:00

	Código do Erro: 0x80092003

	Descrição do Erro: Erro ao ler ou gravar no arquivo.

Error: (01/02/2016 02:12:05 PM) (Source: Microsoft Antimalware) (EventID: 3002) (User: )
Description: O recurso de Proteção em Tempo Real %%861 encontrou um erro e falhou.

	Recurso: %%835

	Código do Erro: 0x80004005

	Descrição do erro: Erro não especificado 

	Motivo: %%842

Error: (01/02/2016 02:12:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 11:28:53 às ‎01/‎01/‎2016 não era esperado.

Error: (01/01/2016 10:39:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Windows 7 Service Pack 1 para sistemas com base em x64 (KB976932).

Error: (01/01/2016 10:38:56 AM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 8) (User: AUTORIDADE NT)
Description: Falha na instalação do Service Pack com o código de erro 0x800f0a09.

Error: (01/01/2016 10:38:54 AM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 2) (User: AUTORIDADE NT)
Description: Um driver instalado tem problemas de compatibilidade conhecidos. Tente atualizá-lo para uma versão mais recente.

   Nome:   Microsoft Security Essentials

   Motivo: sua versão deste programa pode impedir a instalação bem-sucedida deste service pack.

   GUID:   {EE990683-6675-41CC-BEE9-6A679A01237A}


CodeIntegrity:
===================================
  Date: 2015-12-19 19:34:07.259
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 19:34:07.214
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 19:10:28.744
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 19:10:28.694
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 19:10:28.621
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 19:10:28.579
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 18:21:40.630
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-12-19 18:21:40.578
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória =========================== 

Processador: Intel(R) Celeron(R) CPU 450 @ 2.20GHz
Percentagem de memória em uso: 44%
RAM física total: 3062.24 MB
RAM física disponível: 1705.38 MB
Virtual Total: 6122.63 MB
Virtual disponível: 4577.49 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:149.05 GB) (Free:81.26 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: EC33FE17)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================