Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:06-06-2016 Executado por Marcela (2016-06-06 16:37:45) Executando a partir de C:\Users\Marcela\Downloads Microsoft Windows 7 Ultimate (X86) (2015-10-22 19:37:52) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1012419761-1782341261-1735649272-500 - Administrator - Disabled) Convidado (S-1-5-21-1012419761-1782341261-1735649272-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1012419761-1782341261-1735649272-1002 - Limited - Enabled) Marcela (S-1-5-21-1012419761-1782341261-1735649272-1000 - Administrator - Enabled) => C:\Users\Marcela ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: ESET NOD32 Antivirus 9.0.318.20 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET NOD32 Antivirus 9.0.375.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.016.20041 - Adobe Systems Incorporated) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Age of Mythology: Extended Edition Tale of the Dragon (HKLM\...\YWdlb2ZteXRob2xvZ3lleHRlbmRlZGVkaXRpb24_is1) (Version: 1 - ) AMD Catalyst Install Manager (HKLM\...\{B448BC74-1CB7-7A57-3313-5E075AFB413E}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.) Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.) Desinstalar impressora EPSON L200 Series (HKLM\...\EPSON L200 Series) (Version: - SEIKO EPSON Corporation) Droid4X (HKLM\...\Droid4X) (Version: 0.10.1 - Haiyu Dongxiang Co.,Ltd.) Epson Event Manager (HKLM\...\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}) (Version: 2.40.0009 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation) ESET NOD32 Antivirus (HKLM\...\{548C9A39-8075-4D23-BAE3-45C91AFEC0A3}) (Version: 9.0.318.20 - ESET, spol. s r.o.) GBBD Caixa Economica Federal (HKLM\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - ) IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM\...\IRPF2015) (Version: 1.3 - Receita Federal do Brasil) IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil) iTunes (HKLM\...\{F16EA575-26A5-4DAD-A800-95267BE02C12}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 91 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 46.0.1 (x86 pt-BR)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla) MPC-HC 1.7.9 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team) MyEpson Portal (HKLM\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) MyEpson Portal (Version: 1.0.0.7 - SEIKO EPSON CORPORATION) Hidden Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{D90E08B8-E7BB-4D29-8249-8670D4CC24BD}) (Version: 4.3.12 - Oracle Corporation) Pacote de Driver do Windows - Ralink (netr28u) Net (08/17/2012 3.02.11.0000) (HKLM\...\E2EB0982F5E35E419AB9179D039D0D3827C51547) (Version: 08/17/2012 3.02.11.0000 - Ralink) Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Platform (Version: 1.34 - VIA Technologies, Inc.) Hidden PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - ) Receitanet (HKLM\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados) SEFIP 8.40 (HKLM\...\SEFIP 8.40) (Version: - ) Sped ECF (HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\Sped ECF) (Version: 1.0.0.0 - SERPRO) SpedContabil (HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\SpedContabil) (Version: 3.3.5.0 - Receita Federal do Brasil) Suporte para Aplicativos Apple (32-bit) (HKLM\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.) VIA Gerenciador de dispositivo de plataforma (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Warsaw 1.12.3.5 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia) WBN312 (HKLM\...\{5D943F60-CCA4-477C-9AF8-4D427AC04ACD}) (Version: 1.00.0000 - Nome de sua empresa:) Win2PDF 3.40.1 (HKLM\...\Win2PDF_is1) (Version: 3.40.1 - Dane Prairie Systems, LLC.) WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - ) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Marcela\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Marcela\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {53DE47A0-30FC-4262-B4CF-0E3F2A3E24C4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-16] (Adobe Systems Incorporated) Task: {6A64C299-9C7D-42F8-9E36-EAE27E2D3404} - System32\Tasks\{6989C55D-68CA-1ECA-8EF6-150366CB80E3} => C:\Users\Marcela\AppData\Roaming\{6989C~1\UPDATE~1.EXE Task: {E39C7D18-2287-4167-BFBB-D64217FC40DD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {E8EB1D96-79BC-4993-9FAA-8E5AF85AB635} - System32\Tasks\MarcelaFactorTrundleV2 => Rundll32.exe MutationWhaling.dll,main 7 1 <==== ATENÇÃO (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\{6989C55D-68CA-1ECA-8EF6-150366CB80E3}.job => C:\Users\Marcela\AppData\Roaming\{6989C~1\UPDATE~1.EXE ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-10-26 14:18 - 2008-07-07 21:07 - 00022832 _____ () C:\Windows\System32\win2pdfm.dll 2015-10-13 05:46 - 2015-10-13 05:46 - 00073512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-10-22 17:25 - 2008-09-16 20:18 - 00132608 _____ () C:\Program Files\WinRAR\rarext.dll 2016-04-28 09:17 - 2016-04-28 09:17 - 00279552 _____ () C:\Program Files\Droid4X\Droid4XService.exe 2015-10-22 18:42 - 2015-10-22 18:42 - 00008192 _____ () C:\Windows\system32\srvany.exe 2015-10-22 18:42 - 2015-10-22 18:42 - 00151552 _____ () C:\Windows\KMService.exe 2013-06-18 15:49 - 2013-06-18 15:49 - 00016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll 2013-04-29 23:08 - 2013-04-29 23:08 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8] AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\Windows\System32:D593FC40_Cef.gbp [2] AlternateDataStreams: C:\Windows\System32:D593FC40_Uni.gbp [2] AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [314] AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\caixa.gov.br -> imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\google.com -> www.google.com IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\google.com.br -> www.google.com.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\itau.b.br -> www.itau.b.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\itau.com.br -> bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 22:04 - 2016-05-12 09:45 - 00000822 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1012419761-1782341261-1735649272-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcela\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 200.189.88.61 - 200.189.88.66 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: EEventManager => "C:\Program Files\Epson Software\Event Manager\EEventManager.exe" MSCONFIG\startupreg: EPSON L200 Series => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGUL.EXE /FU "C:\Windows\TEMP\E_S31.tmp" /EF "HKCU" MSCONFIG\startupreg: HDAudDeck => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: OfficeSyncProcess => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" MSCONFIG\startupreg: ProductUpdater => C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe MSCONFIG\startupreg: RemoteControl => C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe MSCONFIG\startupreg: VIAAUD => C:\Program Files\VIA\VIAudioi\VDeck\VIAAUD.exe ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [TCP Query User{B54D9958-C455-44E2-8B56-56B3D255D4F8}C:\users\marcela\desktop\call of duty - black ops\blackops.exe] => (Allow) C:\users\marcela\desktop\call of duty - black ops\blackops.exe FirewallRules: [UDP Query User{B644B05F-2261-473E-B37D-336B956B6F89}C:\users\marcela\desktop\call of duty - black ops\blackops.exe] => (Allow) C:\users\marcela\desktop\call of duty - black ops\blackops.exe FirewallRules: [{FB66BB52-2BBE-4EBC-A632-394F44F36449}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{10465FDE-C918-4315-B77E-BB88A99030DE}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8DAF176F-8486-417B-A8FB-81E72B8F12F5}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{483DDD3F-85F8-4449-BE7D-F8FE77CA7283}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E8E99EE4-BE50-4507-8960-CC3F080B6A30}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7FCFC284-4AFB-4A8F-A307-D9E3CFFBE2B8}] => (Allow) C:\Users\Marcela\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{D34AD183-62A1-4409-A332-8DDD03A3042D}D:\arquivos de programas\activision\call of duty - black ops\blackopsmp.exe] => (Allow) D:\arquivos de programas\activision\call of duty - black ops\blackopsmp.exe FirewallRules: [UDP Query User{EF152FE3-3849-47C5-A51F-6813092D4203}D:\arquivos de programas\activision\call of duty - black ops\blackopsmp.exe] => (Allow) D:\arquivos de programas\activision\call of duty - black ops\blackopsmp.exe FirewallRules: [TCP Query User{8913663B-25DD-4435-AF01-2057A1E81EBA}C:\program files\epson software\event manager\eeventmanager.exe] => (Block) C:\program files\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{AC733E17-6488-43BA-8C3F-0F478CBD556B}C:\program files\epson software\event manager\eeventmanager.exe] => (Block) C:\program files\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{6796BEC2-EB8C-45CD-979C-91FFB77AE080}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{DC9E7BA9-696E-4747-8E1A-D64ACA51DFF2}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe FirewallRules: [{789687DC-6539-49A9-BE16-710CAA6F8594}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{949FF576-4894-4CA7-AD21-0F0FE55721FD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{9CBC8E4C-4D97-406E-AE36-99E8904ACB67}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{972F2AB5-DA18-4D06-86D1-11E3E5A39644}C:\call of duty - black ops\blackops.exe] => (Allow) C:\call of duty - black ops\blackops.exe FirewallRules: [UDP Query User{B0D6DBCD-6ED3-4D17-A6DC-73388920AB27}C:\call of duty - black ops\blackops.exe] => (Allow) C:\call of duty - black ops\blackops.exe FirewallRules: [TCP Query User{EEF5F258-C934-4676-A598-631C32ED6B4D}C:\users\marcela\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\marcela\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe FirewallRules: [{17310270-5A0D-4A12-B06D-A4BCE00D6CAC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{99D1B668-A561-4414-ACCC-48DDFF56C368}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{0A5F0B3D-4F21-47B6-98B2-CE0AD674B73F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F0297EF1-EA60-4B58-A251-E17F157AEABB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{25D4636C-B6A4-4ED0-9228-1A6211329A5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{269BEBBD-3952-4635-8118-260FF0740650}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{52B8E109-3936-4E04-B946-415B0C2197A7}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [{3E0FE5B4-ECEA-4E65-BA6B-4BEB571966FF}] => (Allow) C:\Users\Marcela\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{2EA7656B-8D84-4ED5-B4A0-F57623ED8C64}] => (Allow) C:\Program Files\Droid4X\Droid4X.exe FirewallRules: [{56003F03-91CE-4082-A4FA-33C011019DA4}] => (Allow) C:\Program Files\Droid4X\download\MiniThunderPlatform.exe FirewallRules: [{0CB7E477-BDF4-4C40-BCC3-F1B86B76F0F0}] => (Allow) C:\Program Files\Droid4X\download\MiniThunderPlatform.exe FirewallRules: [{D1C4201D-D113-46A2-A209-D17232183E5C}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe ==================== Pontos de Restauração ========================= 03-06-2016 09:15:42 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 03-06-2016 09:17:23 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 03-06-2016 09:18:34 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 06-06-2016 16:30:48 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 06-06-2016 16:32:34 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 06-06-2016 16:33:17 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (06/06/2016 03:39:03 PM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (06/06/2016 10:47:32 AM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (06/05/2016 08:02:19 PM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (06/03/2016 11:03:58 AM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver Error: (05/31/2016 08:30:56 PM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (05/31/2016 09:01:25 AM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (05/30/2016 07:33:35 AM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (05/27/2016 11:12:44 AM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (05/25/2016 02:46:12 PM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Error: (05/23/2016 08:58:12 PM) (Source: EventSystem) (EventID: 4621) (User: ) Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver Erros de Sistema: ============= Error: (06/06/2016 04:11:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (06/06/2016 04:11:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: cdrom gbpddreg Error: (06/06/2016 04:11:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: AUTORIDADE NT) Description: Falha na inicialização do Módulo de Extensibilidade de WLAN. Caminho do Módulo: C:\Windows\system32\athExt.dll Código de Erro: 126 Error: (06/06/2016 04:11:09 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT) Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 252. Error: (06/06/2016 02:39:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (06/06/2016 02:39:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: cdrom gbpddreg Error: (06/06/2016 02:39:26 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: AUTORIDADE NT) Description: Falha na inicialização do Módulo de Extensibilidade de WLAN. Caminho do Módulo: C:\Windows\system32\athExt.dll Código de Erro: 126 Error: (06/06/2016 02:39:22 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT) Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 252. Error: (06/06/2016 08:33:06 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT) Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 252. Error: (06/06/2016 08:32:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU 540 @ 3.07GHz Percentagem de memória em uso: 54% RAM física total: 3255.05 MB RAM física disponível: 1466.51 MB Virtual Total: 6506.32 MB Virtual disponível: 4417.04 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:287.14 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C38DC38D) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================