cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 23-07-2016 02
Executado por Paulo (2016-07-23 17:26:00)
Executando a partir de C:\Users\Paulo\Downloads
Windows 7 Professional (X64) (2015-08-23 18:59:42)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1851996391-1849897294-2707022934-500 - Administrator - Disabled)
Convidado (S-1-5-21-1851996391-1849897294-2707022934-501 - Limited - Enabled)
Paulo (S-1-5-21-1851996391-1849897294-2707022934-1000 - Administrator - Enabled) => C:\Users\Paulo

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Microsoft Security Essentials (Disabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Disabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.4.4 - Atheros Communications Inc.)
Atualizações da NVIDIA 2.9.1.22 (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Curse (HKLM-x32\...\{A20BFF62-AE3C-42BD-9C52-841CAB96BC49}) (Version: 6.0.0.0 - Curse)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DraftSight 2016 SP0 x64 (HKLM\...\{78F7D38E-85AE-42B8-B3A2-F935AF8B64D1}) (Version: 16.0.4061 - Dassault Systemes)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.82 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
K-Lite Codec Pack 9.8.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - )
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
NVIDIA Driver de áudio HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Driver de controle do 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Driver de gráficos 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Painel de controle da NVIDIA 355.60 (Version: 355.60 - NVIDIA Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-1851996391-1849897294-2707022934-1000\...\PhotoFiltre 7) (Version: - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Portal Knights (HKLM-x32\...\Steam App 374040) (Version: - Keen Games)
Punch club Portugues versão 1.5 (HKLM-x32\...\{245B4C26-9428-4CA9-97A2-77091CF78AF4}_is1) (Version: 1.5 - TECDOWNS)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
RMVB Player 1.0.4 (HKLM-x32\...\RMVB Player_is1) (Version: - )
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
USB2.0 HD UVC Camera (HKLM-x32\...\{04717129-E11A-444D-B81B-5A58FB5801FF}) (Version: 1.0.0.0 - )
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 4.14 - NCH Software)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1851996391-1849897294-2707022934-1000_Classes\CLSID\{034DF736-A378-4292-ACAE-A561088999F5}\InprocServer32 -> C:\Users\Paulo\AppData\Local\PPTAssist\pptassist64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-1851996391-1849897294-2707022934-1000_Classes\CLSID\{1077138E-896C-445E-BD31-CFCFFA4636C4}\InprocServer32 -> C:\Users\Paulo\AppData\Local\PPTAssist\pptassist64.dll => Nenhum Arquivo

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {07FA1165-59EC-498D-8784-200CB73ECE55} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23] (Google Inc.)
Task: {19E15A6F-5EBE-4111-B1CC-C977BB14843D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated)
Task: {2208B894-DAF5-4330-AE63-5D4556912DD0} - System32\Tasks\Driver Booster SkipUAC (Paulo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {379F6AB8-F498-4F1B-BD0B-9DA509BF3E1D} - System32\Tasks\BJkeUzN0YJwgreJbaTqu8rGur => C:\Users\Paulo\AppData\Roaming\BJkeUzN0YJwgreJbaTqu8rGur.exe <==== ATENÇÃO
Task: {405A5E0C-8ED1-41BF-A59E-30ACD1EDE983} - System32\Tasks\{9F195BA7-D589-4B80-9F59-A822413BC39C} => pcalua.exe -a C:\Users\Paulo\Downloads\aom_titans_taducao[www.gamevicio.com.br].exe -d C:\Users\Paulo\Downloads
Task: {405EB957-8F2E-4B1E-A181-0A24752070CE} - System32\Tasks\{C04676D9-5B96-4DD5-8DD5-49235E3C3B68} => C:\Users\Paulo\Downloads\Nova pasta\minecraft_server.1.8.8.exe
Task: {46C0D716-0C15-42A4-B1F2-0DD112726D89} - System32\Tasks\Uninstaller_SkipUac_Paulo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {50F19EC0-B90F-4280-ADF5-4BD7DBE6D1F7} - System32\Tasks\PPTAssistantUpdateTask_Paulo => C:\Users\Paulo\AppData\Local\PPTAssist\assistupdate.exe <==== ATENÇÃO
Task: {5492CA91-774F-45C8-9788-5A0527E1AD50} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {6039AF48-04AF-4137-BDA8-96E2072BF66B} - System32\Tasks\{6C604AC7-9D0B-4845-A29B-9F47BA79750D} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.8.0.102&LastError=12002
Task: {6C352692-E0B1-4C1E-9043-098F1E6E9816} - System32\Tasks\{8766B1C3-1B91-4335-83E1-F18C7F716C0B} => C:\Users\Paulo\Downloads\Nova pasta\minecraft_server.1.8.8.exe
Task: {775ACEBB-07A3-4BD9-B01C-E08287C57CB0} - System32\Tasks\{76E44E6B-58ED-4168-B416-BE0A32B25F23} => pcalua.exe -a I:\setup.exe -d I:\
Task: {7B8B5A9F-7600-4CB6-8CE4-06ADC8CC1B90} - System32\Tasks\{BDCFED57-91D0-4992-BA5D-50AD5E713236} => C:\Users\Paulo\Downloads\Nova pasta\minecraft_server.1.8.8.exe
Task: {7BB8A206-5E02-443B-8771-8B9F89C89027} - System32\Tasks\Ariqockatidge Agent => Rundll32.exe "C:\Program Files (x86)\Ariqockatidge\AriqockatidgeAgn.dll",w <==== ATENÇÃO
Task: {93225091-DC8F-4604-AEA3-95FEE4366281} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23] (Google Inc.)
Task: {AF1EC61D-E5D9-491B-A957-A3BF134D66DB} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {EEE4B3E9-5C4F-4258-A79E-734581F413D2} - System32\Tasks\PPTAssistantNotifyTask_Paulo => C:\Users\Paulo\AppData\Local\PPTAssist\notify.exe <==== ATENÇÃO
Task: {F61A44B0-0AF1-421B-B435-9ABD1D05A7BC} - System32\Tasks\Clcegh Manager => C:\Program Files (x86)\Clcegh\clcmanagertsk.exe <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\BJkeUzN0YJwgreJbaTqu8rGur.job => C:\Users\Paulo\AppData\Roaming\BJkeUzN0YJwgreJbaTqu8rGur.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PPTAssistantNotifyTask_Paulo.job => C:\Users\Paulo\AppData\Local\PPTAssist\notify.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\PPTAssistantUpdateTask_Paulo.job => C:\Users\Paulo\AppData\Local\PPTAssist\assistupdate.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

WMI_ActiveScriptEventConsumer_ASEC: <===== ATENÇÃO

Shortcut: C:\Users\Paulo\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.html

ShortcutWithArgument: C:\Users\Paulo\Desktop\chrome - Atalho.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://yeabests.cc
ShortcutWithArgument: C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://yeabests.cc
ShortcutWithArgument: C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://yeabests.cc
ShortcutWithArgument: C:\Users\Paulo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\chrome - Atalho.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://yeabests.cc

==================== Módulos Carregados (Whitelisted) ==============

2015-08-23 16:50 - 2015-08-07 01:34 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-21 22:44 - 2016-01-12 01:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-08-23 16:51 - 2016-01-12 01:43 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-07-20 17:35 - 2016-07-18 23:26 - 01771336 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libglesv2.dll
2016-07-20 17:35 - 2016-07-18 23:25 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libegl.dll
2016-07-20 17:35 - 2016-07-18 22:58 - 17602240 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2016-04-19 12:46 - 00001006 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1851996391-1849897294-2707022934-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Paulo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: msiql => C:\ProgramData\msiql.exe /RUNNING
MSCONFIG\startupreg: PCFIXTRAYZBDBM => c:\pcfiXtrayqxdsw.lnk
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: taskhost => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C854C346-13C8-4B15-BAA4-2A0927C8C9EF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{85B24E4E-B4E2-4AAD-9843-0BD5DABEC9E4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{87B8CF2B-F9D7-461E-B7F1-251F129ED446}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C9E12CD6-BC4E-48BA-AB52-6B6AAA4563A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E8130CBC-1119-459A-A9BD-2C9232EBE810}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8556302F-A5CE-4565-918D-A78ABD880F9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E5D940D5-B339-439F-9043-EAA8EDF6393C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{93F23B0A-5F93-45DE-83BF-11B5BCAF6FA9}C:\program files (x86)\exitlag\exitlag.exe] => (Allow) C:\program files (x86)\exitlag\exitlag.exe
FirewallRules: [UDP Query User{CC19FD9E-3E45-4470-8667-7F5457EDC934}C:\program files (x86)\exitlag\exitlag.exe] => (Allow) C:\program files (x86)\exitlag\exitlag.exe
FirewallRules: [TCP Query User{9568D1DC-C581-4895-B4AE-E71AAAFFCCC8}E:\valve\hl.exe] => (Allow) E:\valve\hl.exe
FirewallRules: [UDP Query User{5A20A7E1-01E3-428E-BDDB-5C49A6D5AA7D}E:\valve\hl.exe] => (Allow) E:\valve\hl.exe
FirewallRules: [{AD7CF6AB-2C49-40F5-98B8-314BB2F2ABF9}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{A1F88F04-03F1-4974-A2EE-D521294B0DD5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{0ED9CAD2-1DFC-40DA-90C3-BDB9C2F1523A}] => (Allow) C:\Program Files (x86)\RaidCall\raidcall.exe
FirewallRules: [{374998EB-0146-4F62-BBC6-6EDE014E0F8D}] => (Allow) C:\Program Files (x86)\RaidCall\raidcall.exe
FirewallRules: [{047412D5-9FF4-4AB4-99FC-157268A6976B}] => (Allow) C:\Program Files (x86)\RaidCall.BR\raidcall.exe
FirewallRules: [{91E7E1CD-F415-4596-8CB4-4FE2FC7DD675}] => (Allow) C:\Program Files (x86)\RaidCall.BR\raidcall.exe
FirewallRules: [TCP Query User{0A5B40E8-155C-4078-8586-240A7BEB8B3C}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{87058F5A-AC6C-4E4A-B25F-F48238EC291D}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{7F60BFD1-F775-4D3B-814E-1107F4D144F0}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{3259DD0A-3F37-4E21-A246-00E8B18E475C}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{7E3361E1-9F46-4933-8994-5B345A764AB9}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{0027C044-8DBE-4583-850B-2EEFFCB8C66C}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{BDD7659A-8BC6-4776-98BA-D1D4B9A2D095}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{A4A366B0-9966-4F36-A847-E4182EEB67A9}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{4987A81B-4442-4150-8AA5-56B947340F56}] => (Allow) LPort=8317
FirewallRules: [{AE34297B-D7A4-41F2-8F08-48ED800B7FDF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5556393C-5DBA-4029-B77E-F229994949C1}] => (Allow) C:\Program Files (x86)\PlaysTV\playstv.exe
FirewallRules: [{8C929388-6E40-457C-A814-3B0C40A2041E}] => (Allow) C:\Program Files (x86)\PlaysTV\playstv.exe
FirewallRules: [{48795157-F180-4425-B112-22A9E439B4A2}] => (Allow) C:\League of Legends\lol.launcher.admin.exe
FirewallRules: [{7D4338A1-1701-4ED0-8A84-EB5FEA663497}] => (Allow) C:\League of Legends\lol.launcher.admin.exe
FirewallRules: [{B0DFFC63-A7D1-4F38-81F3-E8ADEE7BEEF0}] => (Allow) C:\League of Legends\lol.launcher.admin.exe
FirewallRules: [{4BE1A1F1-FC33-4616-AD15-27FACB200AC5}] => (Allow) C:\League of Legends\lol.launcher.admin.exe
FirewallRules: [{59851702-46E0-4BE2-A3D8-63269F67F2FA}] => (Allow) C:\League of Legends\lol.launcher.exe
FirewallRules: [{4A11B143-9844-426B-951A-C696543224BD}] => (Allow) C:\League of Legends\lol.launcher.exe
FirewallRules: [{4F300D4D-ECAB-4F29-B4C3-53E4FDED1FED}] => (Allow) C:\League of Legends\lol.launcher.exe
FirewallRules: [{779151C1-20E8-470A-9F12-8B724E0C917A}] => (Allow) C:\League of Legends\lol.launcher.exe
FirewallRules: [{DFED5C14-A5EE-4F18-863D-BC80A3CEFAE8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0E5CE234-4B7F-4C43-AEC4-071D7BCE6137}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{40895BF4-6730-45B3-B51C-B6137D22FE98}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EAED7D8D-FDBB-45F9-BD59-45A1560D12C7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9C196DD7-BD40-4CAC-9310-878416ED7091}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{3E1451A2-CD92-4BD0-BC9E-C1163E3BA193}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{789CD3BE-17D4-4D76-88B2-84901C0D9110}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{59CB4277-8A5E-4BF7-B2C0-ABB9F60006A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9871DAA2-E5E8-418E-9AF2-87BDD306B91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe
FirewallRules: [{14A96325-E118-4BE4-A577-05E4C3F231EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe
FirewallRules: [{F3632174-995A-43AE-8802-105D2BEE74AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BC58C643-37C5-43C5-B0E6-62A57AB42F21}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{38F78245-B320-4CA9-8E98-CC7EDC45B66E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F1311425-4A4C-4D02-BA97-3128404D15DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{DF64A12C-1561-4981-B3F1-D0EC6950B1AD}] => (Allow) C:\Users\Paulo\AppData\Local\Temp\26537\download\MiniThunderPlatform.exe
FirewallRules: [{18579862-1CA0-4DB9-ADC6-BFF7267F90A3}] => (Allow) C:\Users\Paulo\AppData\Local\Temp\26537\download\MiniThunderPlatform.exe
FirewallRules: [{502DABF1-0DBE-476F-BF0F-2C8D43A7C4C4}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{18DDA781-8A57-4B04-BBA6-B2CDDC0E1B31}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{F47862AA-5689-4AFB-84D5-6B9200EF944B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

21-07-2016 22:44:38 DirectX instalado
21-07-2016 23:13:36 Windows Update
21-07-2016 23:21:08 Windows Update
22-07-2016 03:00:16 Windows Update
22-07-2016 06:23:50 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
22-07-2016 06:25:10 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
22-07-2016 06:38:30 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
23-07-2016 09:12:00 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (07/23/2016 09:08:12 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: AUTORIDADE NT)
Description: Falha ao descarregar as cadeias de caracteres do contador de desempenho do serviço WmiApRpl (WmiApRpl). O primeiro DWORD da seção de dados contém o código de erro.

Error: (07/23/2016 09:08:12 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/23/2016 09:08:11 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/22/2016 05:05:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: AUTORIDADE NT)
Description: Falha ao descarregar as cadeias de caracteres do contador de desempenho do serviço WmiApRpl (WmiApRpl). O primeiro DWORD da seção de dados contém o código de erro.

Error: (07/22/2016 05:05:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/22/2016 05:05:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/22/2016 06:37:59 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: AUTORIDADE NT)
Description: Falha ao descarregar as cadeias de caracteres do contador de desempenho do serviço WmiApRpl (WmiApRpl). O primeiro DWORD da seção de dados contém o código de erro.

Error: (07/22/2016 06:37:59 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/22/2016 06:37:59 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.

Error: (07/22/2016 03:27:55 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: AUTORIDADE NT)
Description: Falha ao descarregar as cadeias de caracteres do contador de desempenho do serviço WmiApRpl (WmiApRpl). O primeiro DWORD da seção de dados contém o código de erro.


Erros de Sistema:
=============
Error: (07/23/2016 09:04:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Clcegh Manager devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/23/2016 09:02:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço LiveUpdate devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/22/2016 10:53:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}

Error: (07/22/2016 05:01:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Clcegh Manager devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/22/2016 04:59:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço LiveUpdate devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (07/22/2016 06:54:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Host de dispositivo UPnP devido ao seguinte erro:
%%1069 = Não foi possível iniciar o serviço devido a uma falha de logon.


Error: (07/22/2016 06:54:18 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: O serviço upnphost não pôde fazer logon como NT AUTHORITY\LocalService com a senha configurada atualmente devido ao seguinte erro:
%%1352 = O servidor de autoridade de segurança local (LSA) ou de gerente de contas de segurança (SAM) estava em condições inadequadas para executar a operação de segurança.


Para verificar se o serviço está configurado corretamente, use o snap-in de Serviços do Console de Gerenciamento Microsoft.

Error: (07/22/2016 06:54:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Host de dispositivo UPnP devido ao seguinte erro:
%%1069 = Não foi possível iniciar o serviço devido a uma falha de logon.


Error: (07/22/2016 06:54:18 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: O serviço upnphost não pôde fazer logon como NT AUTHORITY\LocalService com a senha configurada atualmente devido ao seguinte erro:
%%1352 = O servidor de autoridade de segurança local (LSA) ou de gerente de contas de segurança (SAM) estava em condições inadequadas para executar a operação de segurança.


Para verificar se o serviço está configurado corretamente, use o snap-in de Serviços do Console de Gerenciamento Microsoft.

Error: (07/22/2016 06:54:18 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}


CodeIntegrity:
===================================
Date: 2015-11-02 06:41:02.665
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:41:02.655
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:41:02.655
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:41:02.655
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:34:06.577
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:34:06.571
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:34:06.566
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:34:06.559
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:33:53.603
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-02 06:33:53.598
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentagem de memória em uso: 39%
RAM física total: 4060.7 MB
RAM física disponível: 2469.92 MB
Virtual Total: 8119.54 MB
Virtual disponível: 6284.23 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:137.28 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D9262C08)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité