Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-06-2016 01 Executado por Alisson (2016-06-25 13:02:20) Executando a partir de D:\Users\Alisson\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2014-04-02 21:37:13) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2090608981-1643253904-83869442-500 - Administrator - Disabled) Alisson (S-1-5-21-2090608981-1643253904-83869442-1001 - Administrator - Enabled) => D:\Users\Alisson Convidado (S-1-5-21-2090608981-1643253904-83869442-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2090608981-1643253904-83869442-1002 - Limited - Enabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2090608981-1643253904-83869442-1001\...\uTorrent) (Version: 3.4.2.36615 - BitTorrent Inc.) 4500_G510af_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden 4500G510af (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden 4500G510af_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Reader XI (11.0.16) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated) Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version: - Ensemble Studios) Age of Mythology: Extended Edition (HKLM\...\Steam App 266840) (Version: - SkyBox Labs) AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Ares 2.2.8 (HKLM-x32\...\Ares) (Version: 2.2.8-Build#3052 - Seekar Ltd) aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7955 - DsNET Corp) aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) AVG (HKLM\...\AvgZen) (Version: 1.61.2.12974 - AVG Technologies) AVG Zen (Version: 1.61.9 - AVG Technologies) Hidden Battle vs. Chess (HKLM-x32\...\Battle vs. Chess_is1) (Version: 1.0 - Zuxxez Entertainment) BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB) BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4746 - CDBurnerXP) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Curse (HKLM-x32\...\{A20BFF62-AE3C-42BD-9C52-841CAB96BC49}) (Version: 6.0.0.0 - Curse) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Dead Space Tradução BR v1.02 (HKLM-x32\...\Dead Space BR) (Version: 1.02 - Tribo dos Renegados Brasil®) Dead Space™ (HKLM-x32\...\{6E6F22D7-8AD6-4A87-9A47-733E6E996F50}) (Version: 1.0.0.222 - Electronic Arts) Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden DiRT 3 (HKLM-x32\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) DiRT 3 (x32 Version: 1.0.0000.130 - Codemasters) Hidden DocMgr (x32 Version: 130.0.000.000 - Nome de sua empresa:) Hidden DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden Estudo de aprimoramento de produto para HP Deskjet 2540 series (HKLM\...\{44FE0FDF-E044-4EA9-AC22-325CDD4C3241}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.42.13482.16 - Electronic Arts) FMW 1 (Version: 1.102.4 - AVG Technologies) Hidden FormatFactory 3.3.4.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.4.0 - Format Factory) Fraps (HKLM-x32\...\Fraps) (Version: - ) Full Tilt Poker (HKLM-x32\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 5.44.1.WIN.FullTilt.COM - ) God of War - Collection v1.0 (HKLM-x32\...\{FFF02674-5DE9-4A78-A6D1-68E5B9ACF012}_is1) (Version: 1.0 - Santa Monica Studio) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google SketchUp 8 (HKLM-x32\...\{6B5F92BB-4272-4A69-B39B-EED000BC6192}) (Version: 3.0.14372 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden Hidden and Dangerous Deluxe (HKLM-x32\...\Hidden and Dangerous Deluxe) (Version: - ) HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Deskjet 2540 series Ajuda (HKLM-x32\...\{70B5D5B2-8014-4C22-9963-361B1F07B81A}) (Version: 30.0.0 - Hewlett Packard) HP Deskjet 2540 series Software básico do dispositivo (HKLM\...\{A4BA74B3-3DCB-47CC-9C80-C2CBAC26C6EB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Officejet 4500 G510a-f (HKLM\...\{C98517B6-DCE9-49B7-B19E-E384178D3986}) (Version: 13.0 - HP) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios) Magicka 2 (HKLM-x32\...\TWFnaWNrYTI=_is1) (Version: 1 - ) Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North) ManyCam 4.1.0 (HKLM-x32\...\ManyCam) (Version: 4.1.0 - Visicom Media Inc.) MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{8FB1B528-E260-451E-9B55-E9152F94B80B}) (Version: 3.2.3.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{070C55FA-FB9D-46DD-B30B-4B520A83A66A}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mortal Kombat Komplete Edition (HKLM-x32\...\Steam App 237110) (Version: - NetherRealm Studios) Mozilla Firefox 47.0 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-GB)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Naruto Shippuden Ultimate Ninja Storm Revolution (HKLM-x32\...\Naruto Shippuden Ultimate Ninja Storm Revolution_is1) (Version: - ) Need for Speed Most Wanted Black Edition (HKLM-x32\...\Need for Speed Most Wanted Black Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, Panky) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.) Outland (HKLM-x32\...\Outland_is1) (Version: 1.0 - PLAZA) Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf) Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) PhotoFiltre 7 (HKU\S-1-5-21-2090608981-1643253904-83869442-1001\...\PhotoFiltre 7) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars) PowerISO (HKLM-x32\...\PowerISO) (Version: 5.6 - Power Software Ltd) Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI) PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.3.0 - Electronic Arts) RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.4-1.0.12889.86 - raidcall.com) Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound) Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom) Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP) SketchUp 2015 (HKLM\...\{07729FE6-5F86-467E-A5AA-D68A766F2643}) (Version: 15.3.331 - Trimble Navigation Limited) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden Southpark Stick of Truth (HKLM-x32\...\U291dGhwYXJrU3RpY2tvZlRydXRo_is1) (Version: 1 - ) Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Super Mario World (HKLM-x32\...\Super Mario World_is1) (Version: - GameFabrique) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer) The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl) The Binding of Isaac Rebirth 1.0 (HKLM-x32\...\The Binding of Isaac Rebirth 1.0) (Version: 1.0 - Games on Cat-A-Cat.Net) The Bridge (HKLM-x32\...\Steam App 204240) (Version: - Ty Taylor and Mario Castañeda) Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden Ultra Street Fighter IV (HKLM-x32\...\VWx0cmFTdHJlZXRGaWdodGVySVY=_is1) (Version: 1 - ) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Warcraft III (HKLM-x32\...\Warcraft III) (Version: - ) Warcraft III: All Products (HKU\S-1-5-21-2090608981-1643253904-83869442-1001\...\Warcraft III) (Version: - ) WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Worms Reloaded (HKLM-x32\...\Steam App 22600) (Version: - Team17 Software Ltd.) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {127AB137-8983-452B-8943-97687B421608} - System32\Tasks\{8A626EEF-0BE6-45D5-9F09-AD503807D3A6} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.0.105/pt/abandoninstall?page=tsProgressBar Task: {1C59791E-5478-4B04-BCBB-55BF975C5713} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => D:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.) Task: {25F2AB60-579D-40B9-B5A1-0D812CADE3F7} - System32\Tasks\{016BE707-F9CB-4D67-AEC2-8E7580ECA170} => pcalua.exe -a D:\Users\Alisson\Downloads\JavaSetup8u60.exe -d D:\Users\Alisson\Downloads Task: {3FCE64DB-CB0E-4BFB-A067-9EA67C6A3B2E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2090608981-1643253904-83869442-1001UA => D:\Users\Alisson\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-02] (Facebook Inc.) Task: {50D6CD68-D987-4BAC-A0BC-95F74D3746F3} - System32\Tasks\{775B94ED-46B7-472C-B420-FC3F6B382992} => pcalua.exe -a D:\ProgramData\StormAlert\uninstall.exe -c /kb=y /ic=1 Task: {59F0A3CC-ED9F-48DC-A497-A130C862CA52} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {5E1D1D1E-7E0F-4672-831B-E3D96472D6E5} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2090608981-1643253904-83869442-1001 Task: {7852B770-2331-44E7-9431-374185EBF540} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2090608981-1643253904-83869442-1001Core => D:\Users\Alisson\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-02] (Facebook Inc.) Task: {96DBA088-8A60-4F03-84AD-2B2E42CAF841} - System32\Tasks\MSIAfterburner => D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe Task: {CC61D4D3-0211-47C7-A1C5-5CB3364986BF} - System32\Tasks\{DDD13811-AABF-4FC0-B7C7-DD8CC6C4F239} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.0.105/pt/abandoninstall?page=tsProgressBar Task: {E9F6ADA3-28F6-4950-9B5A-25B66761B084} - System32\Tasks\Adobe Acrobat Update Task => D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {F1301B31-9DDE-4EC5-A322-67C84B179819} - System32\Tasks\Adobe Flash Player Updater => D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-18] (Adobe Systems Incorporated) Task: {F2DD4EFC-D8D5-4DE4-AA29-D04B7481ABA7} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {F7220FFD-6382-4F83-987C-2F4039CD1802} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: D:\Windows\Tasks\Adobe Flash Player Updater.job => D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: D:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2090608981-1643253904-83869442-1001Core.job => D:\Users\Alisson\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: D:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2090608981-1643253904-83869442-1001UA.job => D:\Users\Alisson\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: D:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: D:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: D:\Users\Alisson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> D:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.delta-homes.com/?type=sc&ts=1430137242&from=ient04230&uid=SAMSUNGXHD502HJ_S20BJ9AB305334 ShortcutWithArgument: D:\Users\Alisson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> D:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.delta-homes.com/?type=sc&ts=1430137242&from=ient04230&uid=SAMSUNGXHD502HJ_S20BJ9AB305334 ShortcutWithArgument: D:\Users\Alisson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> D:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.delta-homes.com/?type=sc&ts=1430137242&from=ient04230&uid=SAMSUNGXHD502HJ_S20BJ9AB305334 ShortcutWithArgument: D:\Users\Alisson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> D:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.delta-homes.com/?type=sc&ts=1430137242&from=ient04230&uid=SAMSUNGXHD502HJ_S20BJ9AB305334 ShortcutWithArgument: D:\Users\Alisson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> D:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.delta-homes.com/?type=sc&ts=1430137242&from=ient04230&uid=SAMSUNGXHD502HJ_S20BJ9AB305334 ==================== Módulos Carregados (Whitelisted) ============== 2014-04-02 23:49 - 2014-06-30 11:36 - 00076152 _____ () D:\Windows\SysWOW64\PnkBstrA.exe 2010-01-09 20:17 - 2010-01-09 20:17 - 04254560 _____ () D:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 01:40 - 2010-01-21 01:40 - 08794464 _____ () D:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2009-07-13 21:18 - 2009-07-13 22:41 - 00144384 _____ () D:\Windows\system32\msvfw32.dll 2016-06-10 18:16 - 2016-06-10 11:03 - 01016832 _____ () D:\Program Files (x86)\Origin\platforms\qwindows.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00028160 _____ () D:\Program Files (x86)\Origin\imageformats\qgif.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00029696 _____ () D:\Program Files (x86)\Origin\imageformats\qico.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00256000 _____ () D:\Program Files (x86)\Origin\imageformats\qjpeg.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00266240 _____ () D:\Program Files (x86)\Origin\imageformats\qmng.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00023552 _____ () D:\Program Files (x86)\Origin\imageformats\qtga.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00346112 _____ () D:\Program Files (x86)\Origin\imageformats\qtiff.dll 2016-05-29 20:45 - 2016-06-10 11:03 - 00023552 _____ () D:\Program Files (x86)\Origin\imageformats\qwbmp.dll 2013-12-13 08:12 - 2015-11-12 12:58 - 00393608 _____ () D:\Users\Alisson\AppData\Roaming\Curse Client\Bin\opus.dll 2015-11-12 12:58 - 2016-06-24 19:11 - 00525192 _____ () D:\Users\Alisson\AppData\Roaming\Curse Client\Bin\Curse.Presto.Interface.dll 2016-03-19 13:05 - 2016-05-02 21:50 - 01690504 _____ () D:\Users\Alisson\AppData\Roaming\Curse Client\Bin\Electron\libglesv2.dll 2016-03-19 13:05 - 2016-05-02 21:49 - 00018312 _____ () D:\Users\Alisson\AppData\Roaming\Curse Client\Bin\Electron\libegl.dll 2014-04-03 14:35 - 2016-04-29 17:10 - 00785920 _____ () D:\Program Files (x86)\Steam\SDL2.dll 2015-01-21 20:43 - 2015-07-03 13:12 - 04962816 _____ () D:\Program Files (x86)\Steam\v8.dll 2015-01-21 20:43 - 2015-07-03 13:12 - 01556992 _____ () D:\Program Files (x86)\Steam\icui18n.dll 2015-01-21 20:43 - 2015-07-03 13:12 - 01187840 _____ () D:\Program Files (x86)\Steam\icuuc.dll 2014-05-22 20:06 - 2016-06-14 21:47 - 02387024 _____ () D:\Program Files (x86)\Steam\video.dll 2014-09-18 16:51 - 2016-02-08 20:14 - 02549760 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll 2014-09-18 16:51 - 2016-02-08 20:14 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll 2014-09-18 16:51 - 2016-02-08 20:14 - 00491008 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll 2014-09-18 16:51 - 2016-02-08 20:14 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll 2014-09-18 16:51 - 2016-02-08 20:14 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll 2014-04-03 14:35 - 2016-06-14 21:47 - 00829008 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-03-10 16:37 - 2016-02-17 19:25 - 00281088 _____ () D:\Program Files (x86)\Steam\openvr_api.dll 2014-04-03 14:35 - 2016-06-14 16:14 - 49826080 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll 2015-01-21 20:43 - 2015-09-24 20:56 - 00119208 _____ () D:\Program Files (x86)\Steam\winh264.dll 2014-04-04 10:35 - 2010-11-20 10:26 - 00257024 _____ () D:\Windows\system32\MFReadWrite.dll 2010-01-09 20:18 - 2010-01-09 20:18 - 04254560 _____ () D:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 01:34 - 2010-01-21 01:34 - 08793952 _____ () D:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2016-06-17 20:28 - 2016-06-15 06:15 - 01745560 _____ () D:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll 2016-06-17 20:28 - 2016-06-15 06:15 - 00091288 _____ () D:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll 2016-06-17 20:28 - 2016-06-15 06:15 - 17599640 _____ () D:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: D:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] AlternateDataStreams: D:\Users\Todos os Usuários\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2014-04-08 16:35 - 00000921 ____A D:\Windows\system32\Drivers\etc\hosts 127.0.0.1 genuine.microsoft.com 127.0.0.1 mpa.one.microsoft.com 127.0.0.1 sls.microsoft.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2090608981-1643253904-83869442-1001\Control Panel\Desktop\\Wallpaper -> D:\Users\Alisson\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 10.1.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{3FB3C40E-5A22-4A19-80C3-81BABACFAC0B}] => (Allow) D:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{9D997360-0C0C-4FF5-80BC-6668E87A8E2B}] => (Allow) D:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{C5BE23C7-450B-470D-AC61-4DC86E812E89}] => (Allow) D:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{B33286E8-ABC0-4B66-8DC0-159B85916E73}] => (Allow) D:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{904A787B-4B26-4FD0-84A3-02B5E0DBAE25}D:\program files (x86)\ares\ares.exe] => (Allow) D:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{3934F641-5F42-477B-8479-76D935D87E14}D:\program files (x86)\ares\ares.exe] => (Allow) D:\program files (x86)\ares\ares.exe FirewallRules: [{88AC559B-475B-4039-A619-9CE8AE41B174}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{87F8905B-6E5B-4633-BF2A-51AC6F5D21CC}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{A12ED7E3-DE0E-470D-84BA-AA14868FD8B6}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe FirewallRules: [{8819FE53-6947-4F7A-A33A-DC2CCEC5CD73}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe FirewallRules: [{71F9BF1D-276F-469C-A859-C164711A5926}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe FirewallRules: [{CF21743B-CCE2-4076-AD77-059411ECCFF8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe FirewallRules: [{2C7A8FA3-EF03-4A31-A0C3-40F43C16D963}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe FirewallRules: [{51B04BF0-3B7C-4A20-8E94-B47AD0D44E73}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe FirewallRules: [TCP Query User{EBF222AD-845E-40AD-A3EE-B8795A677973}D:\program files (x86)\ares\ares.exe] => (Block) D:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{4D003847-C395-4802-B941-1EF9C744FBD0}D:\program files (x86)\ares\ares.exe] => (Block) D:\program files (x86)\ares\ares.exe FirewallRules: [{4BFC3D09-09E8-4B2A-B0BA-A1DE4802E465}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{21848E45-0593-44A2-96F3-D60F1D7845FD}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{F1AD9174-9C5F-4E77-BF30-E5AECFE65072}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{B69C658B-7404-496D-BA5C-9BDD1021B077}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{4D0A6537-CA76-4184-B922-C7B4E4225114}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{06B27B1E-BB36-45EB-99A0-DD9A590427BA}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{488EA2ED-BF4A-4ED8-B182-875394D6D024}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{C9843A0D-9E4B-4ED4-81B7-574F4E98BEDB}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{E863C833-C5FD-43F2-81C6-B7948554434B}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{252AEF9E-48EF-49A3-B1B4-E72ADDCF74EB}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{61F9DECF-5FF7-4F2F-B5BB-692D9396B1FE}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{20E8CBAF-7519-48AF-9A27-79B7556A5C13}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{2E5DA104-688E-4D56-9355-8DB839ED3B7D}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{BF9B2C16-6468-4B9E-99CF-692E3A866149}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{C46926CE-BD0F-4611-9715-48383EFB5CD9}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{57D6B5AE-4D6D-4E12-9EC1-05E4747D8044}] => (Allow) D:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{9DB6D003-B945-4C01-8897-15F8C03B7B8A}] => (Allow) D:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{043AF251-5A21-4B15-9976-53186DFE241A}] => (Allow) D:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{3F13CF97-C666-4B63-9FAA-061E0A001156}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{18B9086F-6763-4F21-A669-E5D20007E2BF}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{42A98BE2-9204-4223-BEAD-33447E3493A0}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{5C29108B-F5C7-46D0-8BD9-4C7EBC002BAA}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{158138EA-F7DF-466F-961F-BA016F6419E9}] => (Allow) D:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{467CA00E-A018-45B7-84BD-51364C698039}D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [UDP Query User{14EFBE94-AE18-411C-8280-BDFEB1409196}D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [{3EB8A8EB-69BB-43D8-B8FB-88E4D2D0C16E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{356981DE-97B3-4A75-ACB5-CDFB7538C86B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{E74D8717-5FDE-4CF4-9CBA-E8193A7146D3}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe FirewallRules: [{724368B3-BC84-48E2-80D1-E93D47237ACD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe FirewallRules: [{25BCF349-E63D-4783-9995-C813E7900727}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe FirewallRules: [{68943343-C77A-4A27-98C1-E8DF3309569D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe FirewallRules: [{3C47FA05-0FE3-44E2-A1F7-70801D62859B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Worms Reloaded\WormsReloaded.exe FirewallRules: [{4638E365-BE4E-4FB5-ACCC-18D3F22C1463}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Worms Reloaded\WormsReloaded.exe FirewallRules: [TCP Query User{70F12904-B4D7-4D93-B3F8-BC275AC497BE}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{0DF4BDE2-AF65-4B0C-A53B-89ED462F1AA4}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [{19D2F25E-52A7-4655-A63E-8E1DAAA9D901}] => (Allow) D:\Program Files (x86)\Codemasters\DiRT 3\dirt3_game.exe FirewallRules: [{25281073-8AA9-42A9-8CB1-21596499031D}] => (Allow) D:\Program Files (x86)\Codemasters\DiRT 3\dirt3_game.exe FirewallRules: [{2EC71F09-FA41-408E-A305-0F922109095F}] => (Allow) D:\Users\Alisson\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{45920AC4-7FD2-4491-B70E-FAC46D25C9E8}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{6392966B-7498-4E86-8D99-0400227E8DE0}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{858B9307-A749-4232-A115-E4D63AC01AD2}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{A5C34B9A-244D-47F6-8149-1942DF1169D8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{21E21D73-3889-4EE3-89A2-111226E471DA}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{4583313E-116B-40F6-9873-34D8D4175852}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{DC35A055-9B13-4349-B88E-7D4EC5B71525}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{EDE8B0F1-5FF8-4D04-A937-89233E3C842D}] => (Allow) D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{F727D8A4-5878-489D-94D4-01A612DB693C}] => (Allow) D:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe FirewallRules: [{F1F5ACE8-5D27-4DCB-A536-18AE8787AC0C}] => (Allow) LPort=5357 FirewallRules: [{C52E49F3-8C84-4576-BE7A-5C76C8D56693}] => (Allow) D:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{4519844C-61AD-4CD2-B653-3F24950CC99B}] => (Allow) D:\Program Files (x86)\RaidCall\rcplugin.exe FirewallRules: [{8847D5DF-D085-4283-9384-EFCF28E3615E}] => (Allow) D:\Program Files (x86)\RaidCall\rcplugin.exe FirewallRules: [TCP Query User{2694350D-7982-44D4-8994-1D9B541C402E}G:\computador\jogos\rollercoaster tycoon\no-cd crack\rct.exe] => (Allow) G:\computador\jogos\rollercoaster tycoon\no-cd crack\rct.exe FirewallRules: [UDP Query User{A237065D-797E-446D-8709-EF5D5E4A4538}G:\computador\jogos\rollercoaster tycoon\no-cd crack\rct.exe] => (Allow) G:\computador\jogos\rollercoaster tycoon\no-cd crack\rct.exe FirewallRules: [TCP Query User{3419A2A3-89B0-422A-AEE3-0F06A3DE6C3D}D:\program files (x86)\outland\outland.exe] => (Allow) D:\program files (x86)\outland\outland.exe FirewallRules: [UDP Query User{1C8698E8-23C6-4512-A893-78F0F169DB65}D:\program files (x86)\outland\outland.exe] => (Allow) D:\program files (x86)\outland\outland.exe FirewallRules: [TCP Query User{553F24D4-DAC3-4979-AB60-BA3F41F967CB}D:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe FirewallRules: [UDP Query User{93BDB785-7AA5-42CC-B562-4F9D5DE68F24}D:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe FirewallRules: [TCP Query User{5E2D3693-122A-4EC4-AD2B-E29BE7A8B476}D:\program files (x86)\codemasters\dirt 3\dirt3_game.exe] => (Allow) D:\program files (x86)\codemasters\dirt 3\dirt3_game.exe FirewallRules: [UDP Query User{0DBB5D85-3C71-4AF4-B5A6-0605E8BEAC80}D:\program files (x86)\codemasters\dirt 3\dirt3_game.exe] => (Allow) D:\program files (x86)\codemasters\dirt 3\dirt3_game.exe FirewallRules: [TCP Query User{D58C4D6A-5FA0-48ED-90DA-0831FE2C7DB6}D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [UDP Query User{860CB13C-2488-4318-9C00-B11F31673FC1}D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [{7A10BBD7-7E5E-4FD2-B033-B8ECB414B9D2}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\TheBridge\The Bridge.exe FirewallRules: [{C27555A0-E82D-4541-A2D4-96DBA742FCFF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\TheBridge\The Bridge.exe FirewallRules: [{46A2E6E4-DD7B-45F0-803B-9E2355585F1C}] => (Allow) D:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{AEAA43EA-AE57-49AF-A7FA-6F23FB098B3E}] => (Allow) D:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{357A805F-BEAD-436F-B23C-9A98858C15E9}] => (Allow) D:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{8A65F431-4FAA-4D6E-90A0-4B526AE5BC0E}] => (Allow) D:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{677081CB-04AB-4071-ABCA-CE231CFC22B5}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Resident Evil 6\BH6.exe FirewallRules: [UDP Query User{539518C8-E160-477A-AB7E-4526A82202EF}D:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) D:\program files (x86)\origin games\fifa 16\fifa16.exe FirewallRules: [TCP Query User{FF8D6C4B-49C5-4841-8778-46A434279D03}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [UDP Query User{3C4B7D88-953B-4DD1-A651-71E89601D068}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [{9986C385-D0CE-4EE0-9475-4853AE5018D9}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe FirewallRules: [{AEFDE990-7CCD-4BE4-A770-851D891FC4CA}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe FirewallRules: [{3C9F199B-B90B-459E-A2E4-1CAD1E5C98A1}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{ABD86F14-9CD6-4CC7-B712-0EA2F8661534}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{F960600F-D2AD-4255-AF57-3AF4A7950E0F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{CB64ECD1-D1E9-4510-B9E9-02C8EC98C0C5}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{371BDF14-5566-4339-A007-22A28287FF63}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{D90F163D-3505-4322-9CEA-1C3F7BCF363B}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{02E8186D-2629-4643-B4A8-2184FD11A68E}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{6D05E52B-5F97-49A8-BFD6-F3B8300EB731}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{A4E97D3F-8E2D-4445-B642-2E0C7DAFB8D4}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{5B9E2568-A258-4221-9501-449BCDA05719}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{D6CAE89C-7426-467D-9204-80B3A224D395}] => (Allow) D:\Users\Alisson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{88633CC7-234D-4DFB-9E8E-C9505D7CD800}] => (Allow) D:\Users\Alisson\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{65F17DA0-25B6-499B-837C-762382BD87AE}D:\users\alisson\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Allow) D:\users\alisson\appdata\roaming\utorrent\updates\3.4.7_42330.exe FirewallRules: [UDP Query User{E79C24CF-18B2-42CA-9071-8443A41C2375}D:\users\alisson\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Allow) D:\users\alisson\appdata\roaming\utorrent\updates\3.4.7_42330.exe FirewallRules: [TCP Query User{4F8BFD55-EC61-40E7-9989-85CCDFD22141}D:\program files (x86)\zuxxez\battle vs. chess\battlevschess.exe] => (Block) D:\program files (x86)\zuxxez\battle vs. chess\battlevschess.exe FirewallRules: [UDP Query User{B2C8B371-86A3-4D17-8BDE-D135FD4DADBA}D:\program files (x86)\zuxxez\battle vs. chess\battlevschess.exe] => (Block) D:\program files (x86)\zuxxez\battle vs. chess\battlevschess.exe FirewallRules: [{D20BCC8F-AC02-4743-BB86-A53DA6ADDA07}] => (Allow) D:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{B25BCADA-1D29-4260-B41B-3CD81B1764E2}] => (Allow) D:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{AD9AAA25-9EC5-4CC6-B19D-EBD4B9FE1E70}] => (Allow) D:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{51074EDC-1F5B-45AF-8522-F7482503A4C2}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age of Mythology\Launcher.exe FirewallRules: [{B2B0C292-0C27-45F4-A58C-E1050B25EFFF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age of Mythology\Launcher.exe ==================== Pontos de Restauração ========================= 19-06-2016 19:16:08 Windows Update 20-06-2016 10:20:30 Windows Update 20-06-2016 15:21:28 Windows Update 20-06-2016 20:22:51 Windows Update 21-06-2016 09:26:40 Windows Update 21-06-2016 15:01:46 Windows Update 22-06-2016 12:35:11 Windows Update 23-06-2016 08:43:22 Windows Update 23-06-2016 13:45:02 Windows Update 23-06-2016 18:56:22 Windows Update 24-06-2016 09:35:36 Windows Update 24-06-2016 14:36:37 Windows Update 24-06-2016 19:38:32 Windows Update 25-06-2016 10:40:18 Windows Update 25-06-2016 12:50:46 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 25-06-2016 12:51:50 Windows Update 25-06-2016 12:52:15 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 25-06-2016 12:52:53 Windows Update 25-06-2016 12:54:10 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 25-06-2016 12:54:33 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 25-06-2016 12:54:57 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 25-06-2016 12:55:20 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 25-06-2016 12:57:01 Windows Update 25-06-2016 12:58:04 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Bnbase Description: Bnbase Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Bnbase Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Baidu NetDefense Description: Baidu NetDefense Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Bndef Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Baidu Protect Description: Baidu Protect Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Bprotect Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Error: (06/25/2016 01:02:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011. Erros de Sistema: ============= Error: (06/25/2016 12:53:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT) Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8000ffff: Atualização para o Windows (KB2999226). Error: (06/25/2016 12:52:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT) Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8000ffff: Atualização para o Windows (KB2999226). Error: (06/25/2016 10:39:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Windows Defender terminou com o erro: %%-2147024882 = Espaço insuficiente de armazenamento para concluir a operação. Error: (06/25/2016 10:36:58 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: Bnbase Bndef Bprotect Error: (06/24/2016 09:34:31 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Windows Defender terminou com o erro: %%-2147024882 = Espaço insuficiente de armazenamento para concluir a operação. Error: (06/24/2016 09:32:07 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: Bnbase Bndef Bprotect Error: (06/23/2016 06:55:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Windows Defender terminou com o erro: %%-2147024882 = Espaço insuficiente de armazenamento para concluir a operação. Error: (06/23/2016 06:53:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: Bnbase Bndef Bprotect Error: (06/23/2016 08:49:28 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORIDADE NT) Description: 0x8000002a171\??\Volume{4527f8ab-baab-11e3-9613-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{24BDB9AB-1D5F-42AE-B079-0BC6484058BE} Error: (06/23/2016 08:49:01 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORIDADE NT) Description: 0x8000002a171\??\Volume{4527f8ab-baab-11e3-9613-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{DD2B0878-DEB6-44BD-B03D-8CC1D57E76FE} CodeIntegrity: =================================== Date: 2016-06-25 12:47:35.207 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-25 10:46:01.786 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-25 10:36:43.347 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-24 16:25:28.786 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-24 15:53:02.321 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-24 10:55:51.792 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-24 09:42:27.154 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-24 09:31:47.347 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-23 20:10:55.138 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-23 18:52:50.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz Percentagem de memória em uso: 59% RAM física total: 4087.12 MB RAM física disponível: 1638.96 MB Virtual Total: 8172.41 MB Virtual disponível: 5332.4 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:78.03 GB) (Free:58.75 GB) NTFS Drive d: (BANCO) (Fixed) (Total:387.64 GB) (Free:38.97 GB) NTFS Drive f: (Outlast Whistleb) (CDROM) (Total:5.13 GB) (Free:0 GB) CDFS Drive h: (Reservado pelo Sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)] Drive i: (BvsC) (CDROM) (Total:0.99 GB) (Free:0 GB) CDFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 0E126B8E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=78 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=387.6 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================