Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 15-08-2016 01
Executado por NOTEBOOK (16-08-2016 14:14:12)
Executando a partir de C:\Users\NOTEBOOK\Downloads
Windows 7 Ultimate (X64) (2016-05-28 18:34:46)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-838572670-3215019531-375033504-500 - Administrator - Disabled)
Convidado (S-1-5-21-838572670-3215019531-375033504-501 - Limited - Disabled)
NOTEBOOK (S-1-5-21-838572670-3215019531-375033504-1000 - Administrator - Enabled) => C:\Users\NOTEBOOK
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-838572670-3215019531-375033504-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.100.235.19 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{8616305F-122C-4341-9C37-47A9CD322AB2}) (Version: 17.1.0.572 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 17.1.572 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 17.1.572 - Corel Corporation) Hidden
Corel Shell Extension - 64Bit (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x32 Version: 17.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (HKLM-x32\...\_{C5D9CECB-A66F-473F-B406-5C8C2DCA4DF0}) (Version: 17.1.0.572 - Corel Corporation)
CorelDRAW Graphics Suite X7 (x32 Version: 17.1 - Corel Corporation) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
EAC eSports (HKLM\...\Steam App 282660) (Version: - EasyAntiCheat Ltd)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hotkey 2.34.48 (HKLM-x32\...\{2F385B5D-5F23-4513-B3CE-9F5E4F4B882A}) (Version: 2.34.48 - )
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.19 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Jogos Level Up (HKU\S-1-5-21-838572670-3215019531-375033504-1000\...\bda992e0694a5bbb) (Version: 0.9.4.4 - Level Up)
League of Legends (HKLM-x32\...\League of Legends 4.1.1) (Version: 4.1.1 - Riot Games)
League of Legends (x32 Version: 4.1.1 - Riot Games) Hidden
Life Is Strange™ (HKLM\...\Steam App 319630) (Version: - DONTNOD Entertainment)
Lightshot-5.4.0.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.493 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.493 - LogMeIn, Inc.) Hidden
LonelyScreen 1.2 (HKLM-x32\...\LonelyScreen AirPlay Receiver_is1) (Version: 1.2 - IMTIGER Technologies Inc.)
LonelyScreen 1.2.14 (HKLM-x32\...\LonelyScreen_is1) (Version: 1.2.14 - IMTIGER Technologies Inc.)
Maurus Gaming Mouse (HKLM-x32\...\{E5297CC6-DD4E-40F3-BD0A-FB1D085F6751}}_is1) (Version: - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
MuAwaY (HKLM-x32\...\{FFAFA9A9-371C-4878-BD99-2B0C7AEEA285}) (Version: 2.10.1 - MuAwaY)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.1.0 - Duodian Technology Co. Ltd.)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.96.218.0 - Overwolf Ltd.)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Platform (x32 Version: 1.42 - VIA Technologies, Inc.) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.816.818.050914 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.29069 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.243 - REALTEK Semiconductor Corp.)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-838572670-3215019531-375033504-1000\...\Spotify) (Version: 1.0.33.106.g60b5d1f0 - Spotify AB)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.02.0047 - ST Microelectronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.5.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tradução de Life is Strange Todos Episódios versão 3.0 (HKLM-x32\...\{18B28450-8422-48EE-B97C-3D12A966040E}_is1) (Version: 3.0 - Casal Bits)
Uplay (HKLM-x32\...\Uplay) (Version: 21.1 - Ubisoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Warface (HKU\S-1-5-21-838572670-3215019531-375033504-1000\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.1.407.94 - Level Up! Games)
WebCam Installer (HKLM-x32\...\InstallShield_{2A14D7BC-1876-4B38-830B-18856C27F550}) (Version: 4.041 - WebCam)
WebCam Installer (x32 Version: 4.041 - WebCam) Hidden
Windows Driver Package - BigNox Corporation (VBoxUSB) USB (09/16/2015 4.3.12) (HKLM\...\76B144D15273552931249392EDB13C0BBD52C84E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation VBoxUSBMon System (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-838572670-3215019531-375033504-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {2EE600C8-3BF7-4737-8549-F3D251CD123A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {41666241-AB84-4DCD-B06A-5EBA22E46012} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.)
Task: {68B0AC82-C42A-4C87-9FA5-F7DA63589AAE} - System32\Tasks\{43485F47-5D6E-4311-8C00-7F8714DBE674} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.24.0.104&LastError=12002
Task: {75DC9BE3-CE57-449E-9200-2245046BD50D} - System32\Tasks\update-S-1-5-21-838572670-3215019531-375033504-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {79D116CC-9D8F-40FD-9BD2-6C9AA5972396} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {8A2B4BD2-76F8-4389-BE71-B1295002AE0E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {B6EFF152-FDEB-49C6-98CE-1F6C3D8A8D54} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-07-17] (Overwolf LTD)
Task: {C633D0D3-AF96-4856-B08D-77CAF45C4F32} - System32\Tasks\{544B68F1-4170-4B21-90CB-5CF8BA59679F} => pcalua.exe -a C:\Users\NOTEBOOK\Downloads\LeagueofLegends_BR_Installer_2016_05_13.exe -d C:\Windows\SysWOW64 -c /groupsextract:100;102; /out:"C:\Users\NOTEBOOK\AppData\Roaming\Riot Games\League of Legends\prerequisites" /callbackid:2940
Task: {DE2596F6-D574-4599-97D9-A844C0F47838} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.)
Task: {DEBAB511-725D-4CB5-94F9-EA7F076A2934} - System32\Tasks\{A79887DE-7E1A-443D-9A91-2ABC13EEAA04} => Chrome.exe hxxp://ui.skype.com/ui/0/7.25.0.106/pt/abandoninstall?page=tsProgressBar
Task: {EB03CD75-82BD-4B76-A245-D523761D2DC6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {F3398FE8-122E-44A4-897F-3B64D6734470} - System32\Tasks\{75EE9C13-D48B-411A-8E9A-AE1020F5E9E1} => pcalua.exe -a C:\Users\NOTEBOOK\Downloads\11108831_OUTROS_WIN7_X64_00\11108831_OUTROS_WIN7_X64_00\Fingerprint\setup.exe -d C:\Users\NOTEBOOK\Downloads\11108831_OUTROS_WIN7_X64_00\11108831_OUTROS_WIN7_X64_00\Fingerprint
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-838572670-3215019531-375033504-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-05-28 20:21 - 2014-05-06 14:41 - 00094208 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-05-28 20:43 - 2013-06-09 09:22 - 00243200 _____ () C:\Program Files (x86)\ST Microelectronics\ST_ACCEL\FFP_DT.dll
2016-05-28 20:21 - 2014-02-10 09:43 - 00269824 _____ () C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
2016-05-30 20:35 - 2016-03-04 20:16 - 23333888 _____ () C:\Program Files (x86)\LonelyScreen\LonelyScreen.exe
2016-06-03 19:18 - 2013-03-04 20:06 - 00300544 _____ () C:\Program Files (x86)\Genius\Maurus\mousehid.exe
2016-08-08 20:37 - 2016-08-02 20:41 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-08 20:37 - 2016-08-02 20:40 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-06-03 19:18 - 2011-10-25 15:07 - 00222720 _____ () C:\Program Files (x86)\Genius\Maurus\trayicon.exe
2014-10-11 13:06 - 2014-10-11 13:06 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-05-28 22:03 - 2016-08-02 19:08 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-05-28 22:03 - 2016-08-02 19:10 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-05-28 22:03 - 2016-08-02 19:09 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-05-28 22:03 - 2016-08-02 19:09 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-05-28 22:03 - 2016-08-02 21:00 - 02320160 _____ () C:\Program Files (x86)\Steam\video.dll
2016-05-28 22:02 - 2016-02-08 20:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-05-28 22:02 - 2016-02-08 20:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-05-28 22:02 - 2016-02-08 20:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-05-28 22:02 - 2016-02-08 20:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-05-28 22:02 - 2016-02-08 20:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-05-28 22:03 - 2016-08-02 20:59 - 00831776 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-05-28 22:02 - 2016-07-06 19:00 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-07-17 11:35 - 2016-07-17 11:35 - 45069312 _____ () C:\Program Files (x86)\Overwolf\0.96.218.0\libcef.DLL
2016-06-03 19:18 - 2013-01-15 18:06 - 00061952 _____ () C:\Program Files (x86)\Genius\Maurus\HidDevice.dll
2016-05-28 22:02 - 2016-06-14 16:14 - 49826080 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-05-28 22:02 - 2015-09-24 20:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-04-25 10:12 - 2016-06-24 23:42 - 00149272 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2016-04-25 10:12 - 2016-06-24 23:42 - 00089880 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2016-04-25 10:12 - 2016-06-24 23:42 - 00103192 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2016-04-25 10:13 - 2016-06-24 23:42 - 00259352 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2016-04-25 10:13 - 2016-06-24 23:42 - 00373016 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-07-17 11:35 - 2016-07-17 11:35 - 01565128 _____ () C:\Program Files (x86)\Overwolf\0.96.218.0\teamspeak_control_win32.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-838572670-3215019531-375033504-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\NOTEBOOK\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [TCP Query User{3E562896-998B-4FAF-8F0A-A049DFC2A024}C:\users\notebook\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\notebook\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{E18F6740-AB78-4974-8945-301DD14E1DD0}C:\users\notebook\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\notebook\appdata\roaming\spotify\spotify.exe
FirewallRules: [{F2A0DC23-982F-4E58-B925-3B6F4A2DDF12}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{665452BB-F032-42F8-A072-9206057F130A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C545C7D8-664D-408F-9FDF-C4DB99D9825A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{32D82497-C5FB-4BE8-807A-E0117223BE57}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5069E8EC-41DE-486B-9ECF-C96D3BCFF0D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{3B10FD78-7D91-463C-82DB-8430E5AC0FBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{D574EEC0-A7B5-4531-A68A-B5C4D33FD7AE}C:\program files (x86)\lonelyscreen\lonelyscreen.exe] => (Allow) C:\program files (x86)\lonelyscreen\lonelyscreen.exe
FirewallRules: [UDP Query User{C0A0180B-0A4A-4A7F-A7CB-35777C894969}C:\program files (x86)\lonelyscreen\lonelyscreen.exe] => (Allow) C:\program files (x86)\lonelyscreen\lonelyscreen.exe
FirewallRules: [{177B60FB-54E6-48B2-BF0B-388E699FB587}] => (Block) c:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDrw.exe
FirewallRules: [{D18E909F-EC56-4243-A06A-175F875449A7}] => (Block) c:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X7\Programs\CorelPP.exe
FirewallRules: [{9EEB203E-4BAB-4AA1-A346-C63D12D885FF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D240A623-BAB6-4331-B2DE-528F8F991059}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{04B77022-C04F-4354-9E77-E159C9605A13}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A8652FAB-A376-42E7-87CB-DA3074C8075A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{8283B680-64F7-4461-B8C7-D38B4AF89292}C:\users\notebook\appdata\local\apps\2.0\8vmk9qqc.61c\bwoxavy6.pgm\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\notebook\appdata\local\apps\2.0\8vmk9qqc.61c\bwoxavy6.pgm\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [UDP Query User{110C8C7F-3F9C-44BE-8C2B-4D0B512B040D}C:\users\notebook\appdata\local\apps\2.0\8vmk9qqc.61c\bwoxavy6.pgm\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\notebook\appdata\local\apps\2.0\8vmk9qqc.61c\bwoxavy6.pgm\leve..tion_3af41edd49c109a3_0000.0009_68082bad8b8cd4e1\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [{93EA1B36-EF64-4BBD-8700-F7F6FA94A384}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{44497F29-DE95-466B-95F3-247047647C7E}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{502EC2AF-E645-41FF-B3C7-E761F0B264D0}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F8DEF34F-4A1E-4699-BA97-DFC77606BE52}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FBBC4D21-E4E1-47CF-9EFB-E32C7109B44C}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3BB45D5F-19E7-42FB-9378-367F6BD36E79}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9AA5C5A-1F97-40B9-9D60-5E633E83B685}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FBABBE27-FF75-4175-B443-9DC6788542DB}] => (Allow) C:\Pointblank\PointBlank.exe
FirewallRules: [{4E7486D8-8E77-4EC2-88A0-44CBBC72BA09}] => (Allow) C:\Pointblank\PointBlank.exe
FirewallRules: [TCP Query User{A5280D9B-9822-44DA-9B93-0F01058C22EF}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{E9796E12-F1FB-4BCC-8687-CCC9EA4626A0}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{582D36F5-B47D-45CE-A0CC-E0B6A65566A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{3E514733-AB7E-49CF-849B-8AD79D976737}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{BCB94FAF-BC92-4539-BEA9-5ED22322CDAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{EC6D6D4E-C2B9-4B24-AEA8-B73D1CB1D3E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{D6F3F71D-EDD0-47D2-8D45-C1D3AEEE8DFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{BFE08F86-0486-4A0D-B1F7-EFA70D3247F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{3117D808-4581-429F-A460-D6AC796560AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B0D00951-ADD3-48F3-9D89-C1A5872501E0}] => (Allow) C:\Users\NOTEBOOK\AppData\Roaming\Nox\bin\Nox.exe
FirewallRules: [{75156BE5-A5E8-4ED6-BEF8-7A8C4DB5350D}] => (Allow) C:\Program Files\Bignox\BigNoxVM\RTNoxVMHandle.exe
==================== Pontos de Restauração =========================
11-08-2016 01:36:46 Instalação de Pacote de Driver de Dispositivo: BigNox Corporation Controladores USB (barramento serial universal)
11-08-2016 19:30:45 Installed Pokemon Uranium 1.0
16-08-2016 09:24:01 Operação de restauração
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Controlador de comunicação PCI simples
Description: Controlador de comunicação PCI simples
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: EgisTec_ES603
Description: EgisTec_ES603
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (08/16/2016 02:07:20 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 02:07:20 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:48:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:48:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:48:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:48:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:18:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:18:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:18:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (08/16/2016 01:18:21 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (964) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Erros de Sistema:
=============
Error: (08/16/2016 09:39:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Windows Search foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.
Error: (08/16/2016 09:39:05 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: O serviço Windows Search terminou com o erro específico de serviço %%-1073473535.
Error: (08/16/2016 09:38:42 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 09:36:31 às 16/08/2016 não era esperado.
Error: (08/16/2016 09:37:27 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:36:57 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:36:27 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:35:27 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:34:56 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
Error: (08/16/2016 09:34:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço eventlog.
CodeIntegrity:
===================================
Date: 2016-08-16 09:43:37.156
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:43:37.140
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:43:37.140
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:43:37.140
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:38:23.544
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:38:23.544
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:38:23.544
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-08-16 09:38:23.544
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-07-28 07:38:36.053
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-07-28 07:38:36.037
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-4000M CPU @ 2.40GHz
Percentagem de memória em uso: 58%
RAM física total: 3955.18 MB
RAM física disponível: 1647.13 MB
Virtual Total: 7908.51 MB
Virtual disponível: 4320.76 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:330.9 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 91C59B14)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================