Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:27-01-2016
Executado por NEWUSU (2016-02-03 18:42:01)
Executando a partir de C:\Users\NEWUSU\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2014-08-16 18:56:06)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-4220064015-3225715080-1381729876-500 - Administrator - Disabled)
Convidado (S-1-5-21-4220064015-3225715080-1381729876-501 - Limited - Enabled) => C:\Users\Convidado.SERVIDOR
NEWUSU (S-1-5-21-4220064015-3225715080-1381729876-1001 - Administrator - Enabled) => C:\Users\NEWUSU

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
µTorrent (HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Assassin's Creed Brotherhood (HKLM-x32\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.00 - Ubisoft)
Assassin's Creed Liberation HD (HKLM-x32\...\{AAB6B857-A0D4-4D45-BCB2-5032D0E1853F}) (Version: 6.0 - Black Box)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
BB Token Admin Tool (HKLM-x32\...\{95A34656-CD4A-45A0-BAB8-AB950EFCBEBF}) (Version: 1.1.1 - Watchdata Technologies Pte., Ltd.)
CALL - Vs5 (HKLM-x32\...\CALL_VS5) (Version: 5 - CCAA)
CALL Vs.5 (x32 Version: 5 - CCAA) Hidden
Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cobian Backup 10 (HKLM-x32\...\CobBackup10) (Version:  - )
CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5126 - Z8Games.com)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
Firebird 2.5.1.26351 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.1.26351 - Firebird Project)
FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version:  - )
hppLaserJetService (x32 Version: 001.003.000145 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (x32 Version: 001.003.00073 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (x32 Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LiveUpdate 3.2 (Symantec Corporation) (HKLM-x32\...\LiveUpdate) (Version: 3.2.0.68 - Symantec Corporation)
Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.0.35659 - Symantec Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{503D2C42-D698-43BC-97FE-3610F4E8CDDC}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 34.0.2036.36 (HKLM-x32\...\Opera 34.0.2036.36) (Version: 34.0.2036.36 - Opera Software)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{6BF729A5-756B-4AA5-8721-E3B3972FEB96}) (Version: 1.00.0198 - REALTEK Semiconductor Corp.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
TightVNC (HKLM\...\{D2372F87-7DA2-47F7-A102-AF2181B8EAA2}) (Version: 2.7.10.0 - GlavSoft LLC.)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\UnityWebPlayer) (Version: 5.3.1f1 - Unity Technologies ApS)
VNC Free Edition 4.1.1 (HKLM-x32\...\RealVNC_is1) (Version: 4.1.1 - RealVNC Ltd.)
Warsaw 1.11.0.42826 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {3A2ABBE0-DFA1-43C7-BE46-A6B808A15090} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.)
Task: {4E99460F-4068-434B-8441-77CE3A843D9A} - System32\Tasks\{D177F85E-92BF-4032-9D06-25950E7DBECA} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{E13AD42C-9660-4975-982B-F573DF9BE9FB}\setup.exe" -c -runfromtemp -l0x0416 -removeonly
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {609D3C28-BC38-4DBF-B4B9-6F8E4868B887} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-02] (AVAST Software)
Task: {61207551-F8D7-44B0-B69B-4AEC3CDAECBA} - System32\Tasks\Opera scheduled Autoupdate 1452009237 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-14] (Opera Software)
Task: {83C6205E-ECA8-4E86-93E9-EF19E0C30AC6} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-01-20] (AVAST Software)
Task: {8E16FF4D-7F30-422E-9745-8DCFD674396A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {92D54C99-1872-46BD-8785-4073F446044A} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
Task: {9666D65E-98A6-4BDE-8180-F69856E00CF8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {C4B3538C-A1D1-4CA9-BA7B-031BD572705B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-03-02 16:42 - 2012-09-29 14:25 - 00409088 _____ () C:\Windows\System32\HPM1210LM.DLL
2014-12-20 11:39 - 2012-09-29 14:25 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2014-12-20 11:38 - 2012-09-29 14:26 - 03120128 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\hpm1210su.dll
2014-12-20 11:38 - 2012-09-29 14:53 - 01038336 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\HPM1210GC.dll
2016-01-23 17:05 - 2016-01-23 17:05 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-20 11:38 - 2012-09-29 14:25 - 00363008 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\hpm1210sd.dll
2016-02-02 14:25 - 2016-02-02 14:25 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-02-02 14:25 - 2016-02-02 14:25 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-02-03 11:18 - 2016-02-03 11:18 - 02819072 _____ () C:\Program Files\AVAST Software\Avast\defs\16020300\algo.dll
2016-02-02 14:25 - 2016-02-02 14:25 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 00061440 _____ () C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 00964096 _____ () C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2014-12-20 11:37 - 2012-11-08 01:00 - 00082944 _____ () C:\Windows\system32\mvusbews.DLL
2015-05-09 15:53 - 2012-08-28 17:54 - 00114688 _____ () C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-08-16 17:10 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-01-28 15:36 - 2016-01-27 15:39 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libglesv2.dll
2016-01-28 15:36 - 2016-01-27 15:39 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libegl.dll
2016-01-28 15:36 - 2016-01-27 15:39 - 16799048 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\.DEFAULT\...\bancobrasil.com.br -> hxxps://www14.bancobrasil.com.br
IE trusted site: HKU\.DEFAULT\...\bb.com.br -> hxxps://seg.bb.com.br
IE trusted site: HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\bb.com.br -> hxxps://seg.bb.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-02-04 09:53 - 2015-11-17 07:26 - 00000035 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupfolder: C:^Users^servidor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TeamViewer 9.lnk => C:\Windows\pss\TeamViewer 9.lnk.Startup
MSCONFIG\startupreg: Cobian Backup 10 => "C:\Arquivos de programas\Cobian Backup 10\Cobian.exe"
MSCONFIG\startupreg: Steam => "C:\Users\NEWUSU\Desktop\Steam\steam.exe" -silent
MSCONFIG\startupreg: uTorrent => "C:\Users\NEWUSU\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{8828089B-CD53-457E-AA89-BA9EEF8495B8}C:\logtec\ltagentserver\ltagentserver.exe] => (Allow) C:\logtec\ltagentserver\ltagentserver.exe
FirewallRules: [UDP Query User{EDC1FFAE-B14A-4368-961D-002701F2C002}C:\logtec\ltagentserver\ltagentserver.exe] => (Allow) C:\logtec\ltagentserver\ltagentserver.exe
FirewallRules: [TCP Query User{8EE80626-85F6-4980-87E2-23F9C9CE2534}C:\logtec\ltconcserver\ltconcserver.exe] => (Allow) C:\logtec\ltconcserver\ltconcserver.exe
FirewallRules: [UDP Query User{FA55BC9C-E1E1-4367-831B-7A26216B4716}C:\logtec\ltconcserver\ltconcserver.exe] => (Allow) C:\logtec\ltconcserver\ltconcserver.exe
FirewallRules: [{310A3EE7-E04C-4947-A591-64CD34E7FFA4}] => (Allow) C:\Users\NEWUSU\Desktop\Steam\Steam.exe
FirewallRules: [{FB0D02A4-B6F7-4416-B9DB-363F3878AF82}] => (Allow) C:\Users\NEWUSU\Desktop\Steam\Steam.exe
FirewallRules: [{2455112F-FD89-4F26-A78E-FCF8F3C98564}] => (Allow) C:\Users\NEWUSU\Desktop\Steam\bin\steamwebhelper.exe
FirewallRules: [{0B11854D-D274-4C13-AB5F-6C31543BAB60}] => (Allow) C:\Users\NEWUSU\Desktop\Steam\bin\steamwebhelper.exe
FirewallRules: [{95E846EB-BE2D-4DEB-81EC-2EE45DD24FB1}] => (Allow) C:\Users\servidor\Desktop\FormatFactory\FFModules\Package\PFInstOnline.exe
FirewallRules: [{00699359-C049-4BF5-A0DE-3E1CCDE6A9B6}] => (Allow) C:\Users\servidor\Desktop\FormatFactory\FormatFactory.exe
FirewallRules: [{859A20B2-1E4C-42B9-9C14-BBD832941FA2}] => (Allow) C:\Program Files (x86)\PicosmosTools\PFInstOnline.exe
FirewallRules: [{2C379780-EE35-4E3D-9F86-D92FA41C9B81}] => (Allow) C:\Level Up\Combat Arms\NMService.exe
FirewallRules: [{9B984A81-7521-45EA-A099-186B0584DA31}] => (Allow) C:\Level Up\Combat Arms\NMService.exe
FirewallRules: [{E1E1C308-4042-486E-8A71-9356971B39F1}] => (Allow) C:\Users\NEWUSU\AppData\Local\Maelstrom\Application\chrome.native.torrent.exe
FirewallRules: [{D04DC670-C11A-4ADE-A6EB-3FFDFBC10DA4}] => (Allow) C:\Users\NEWUSU\AppData\Local\Maelstrom\Application\chrome.native.torrent.exe
FirewallRules: [{111316AA-9AD5-4975-9213-AEC603FEDAC2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B4C4955B-B37D-4ED6-AA01-A274BA55D9E9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{212518B1-4C35-4D14-8B26-691CDC7EEA82}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B426B043-EC1F-4376-B859-65EA7B25E030}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1AC43F6A-251B-4850-A5C1-C1B4DFDB8469}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{AA72C0D5-EC66-4066-9E85-80CE0A07EE7B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9E34F4F6-F90E-4283-83B8-EC9BCD96902D}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{1593D67D-8D02-4FD3-AA0A-FF4B5D0B7A4D}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{0BEE7FF4-FC3A-4876-8B4D-2F735DD991E7}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{ABC35541-60A4-4C25-90C4-ACA64D306830}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{7D07E917-DF10-4A1D-97B3-EA41DC92C9C8}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{BC78F3DE-8059-42BF-A3AC-88448D643B69}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{62C12D83-A06A-40B2-9217-8EBF80DAF5ED}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{F405AEBC-0ED7-44EF-9269-86FEE8CA94F8}] => (Allow) C:\Users\NEWUSU\Desktop\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{ACA1952B-ED6B-4FA5-8BCA-E1D65360A05D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

30-01-2016 12:27:27 Ponto de Verificação Agendado
02-02-2016 08:41:22 Windows Update
03-02-2016 09:50:58 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (02/03/2016 06:01:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: opera.exe, versão: 34.0.2036.36, carimbo de hora: 0x566ae4a9
Nome do módulo de falhas: webplayer_win.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x557572cf
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0594bab8
Identificação do processo com falha: 0x62c
Hora de início do aplicativo com falha: 0xopera.exe0
Caminho do aplicativo com falha: opera.exe1
FCaminho do módulo de falhas: opera.exe2
Identificação do Relatório: opera.exe3

Error: (02/03/2016 05:29:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: opera.exe, versão: 34.0.2036.36, carimbo de hora: 0x566ae4a9
Nome do módulo de falhas: webplayer_win.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x557572cf
Código de exceção: 0xc0000005
Deslocamento com falha: 0x05c2bab8
Identificação do processo com falha: 0x864
Hora de início do aplicativo com falha: 0xopera.exe0
Caminho do aplicativo com falha: opera.exe1
FCaminho do módulo de falhas: opera.exe2
Identificação do Relatório: opera.exe3

Error: (02/03/2016 04:52:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: opera.exe, versão: 34.0.2036.36, carimbo de hora: 0x566ae4a9
Nome do módulo de falhas: webplayer_win.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x557572cf
Código de exceção: 0xc0000005
Deslocamento com falha: 0x05b8bab8
Identificação do processo com falha: 0x119c
Hora de início do aplicativo com falha: 0xopera.exe0
Caminho do aplicativo com falha: opera.exe1
FCaminho do módulo de falhas: opera.exe2
Identificação do Relatório: opera.exe3

Error: (02/03/2016 09:55:49 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: PresentationFramework, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020

Error: (02/02/2016 03:03:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: opera.exe, versão: 34.0.2036.36, carimbo de hora: 0x566ae4a9
Nome do módulo de falhas: webplayer_win.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x557572cf
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0702bab8
Identificação do processo com falha: 0x21d8
Hora de início do aplicativo com falha: 0xopera.exe0
Caminho do aplicativo com falha: opera.exe1
FCaminho do módulo de falhas: opera.exe2
Identificação do Relatório: opera.exe3

Error: (02/02/2016 01:09:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: IEXPLORE.EXE, versão: 11.0.9600.17801, carimbo de hora: 0x5536642c
Nome do módulo de falhas: d3d9.dll, versão: 6.1.7601.17514, carimbo de hora: 0x4ce7b7b3
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00006b07
Identificação do processo com falha: 0x1f38
Hora de início do aplicativo com falha: 0xIEXPLORE.EXE0
Caminho do aplicativo com falha: IEXPLORE.EXE1
FCaminho do módulo de falhas: IEXPLORE.EXE2
Identificação do Relatório: IEXPLORE.EXE3

Error: (02/02/2016 08:01:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e
Nome do módulo de falhas: gbieh.dll, versão: 4.15.0.15, carimbo de hora: 0x5601b694
Código de exceção: 0xc0000417
Deslocamento com falha: 0x00157968
Identificação do processo com falha: 0x8a8
Hora de início do aplicativo com falha: 0xGbpSv.exe0
Caminho do aplicativo com falha: GbpSv.exe1
FCaminho do módulo de falhas: GbpSv.exe2
Identificação do Relatório: GbpSv.exe3

Error: (02/01/2016 08:27:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: chrome.exe, versão: 48.0.2564.97, carimbo de hora: 0x56a8798c
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x90900010
Identificação do processo com falha: 0xa4c
Hora de início do aplicativo com falha: 0xchrome.exe0
Caminho do aplicativo com falha: chrome.exe1
FCaminho do módulo de falhas: chrome.exe2
Identificação do Relatório: chrome.exe3

Error: (02/01/2016 06:11:35 PM) (Source: MsiInstaller) (EventID: 11706) (User: SERVIDOR)
Description: Product: Camtasia Studio 8 -- Error 1706. No valid source could be found for product Camtasia Studio 8.  Windows Installer cannot continue.

Error: (02/01/2016 12:24:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: GbpSv.exe, versão: 3.9.1.2, carimbo de hora: 0x55df083e
Nome do módulo de falhas: gbieh.dll, versão: 4.15.0.15, carimbo de hora: 0x5601b694
Código de exceção: 0xc0000417
Deslocamento com falha: 0x00157968
Identificação do processo com falha: 0xf70
Hora de início do aplicativo com falha: 0xGbpSv.exe0
Caminho do aplicativo com falha: GbpSv.exe1
FCaminho do módulo de falhas: GbpSv.exe2
Identificação do Relatório: GbpSv.exe3


Erros de Sistema:
=============
Error: (02/03/2016 03:09:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 03:09:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 03:09:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 03:08:38 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: O serviço 'WMPNetworkSvc' não foi iniciado corretamente porque CoCreateInstance(CLSID_UPnPDeviceFinder) encontrou o erro '0x80004005'. Verifique se o serviço UPnPHost está sendo executado e se o componente UPnPHost do Windows foi instalado adequadamente.

Error: (02/03/2016 03:07:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 03:07:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 03:06:56 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: 
gbpddfac
gbpddreg

Error: (02/03/2016 03:05:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 11:22:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: 
%%2

Error: (02/03/2016 11:22:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2


CodeIntegrity:
===================================
  Date: 2015-08-26 09:58:52.315
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:52.268
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:52.222
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:52.175
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:50.849
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:50.802
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:50.755
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:50.708
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:49.258
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-26 09:58:49.211
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWUSU\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória =========================== 

Processador: Intel(R) Pentium(R) CPU G2030 @ 3.00GHz
Percentagem de memória em uso: 48%
RAM física total: 3989.46 MB
RAM física disponível: 2051.35 MB
Virtual Total: 7977.13 MB
Virtual disponível: 5606.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:369.75 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F0146396)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================