Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-05-2017
Executado por Lucas (21-05-2017 13:08:15)
Executando a partir de C:\Users\Lucas\Downloads
Windows 7 Ultimate (X64) (2017-05-20 17:41:42)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2243577943-2908188660-3037301784-500 - Administrator - Disabled)
Convidado (S-1-5-21-2243577943-2908188660-3037301784-501 - Limited - Disabled)
Lucas (S-1-5-21-2243577943-2908188660-3037301784-1000 - Administrator - Enabled) => C:\Users\Lucas
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 53.0.3 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 pt-BR)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3 - Mozilla)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.2.0 - Duodian Technology Co. Ltd.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.105.123.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-2243577943-2908188660-3037301784-1000\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {4100B387-96D5-4B9A-AC35-4BD49714A586} - System32\Tasks\Driver Booster SkipUAC (Lucas) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
Task: {53275C39-A420-4C1E-9C69-A0C8BC79F1B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-20] (Google Inc.)
Task: {A267939B-2A43-4756-9496-1B72F23F6F63} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-20] (Google Inc.)
Task: {EAFD11E1-32A5-499E-9EED-9E600E4C306E} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {FCD8A8EF-7E14-47E1-83CD-03281789A462} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-20] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2017-05-20 17:58 - 2017-05-20 17:58 - 00029696 _____ () C:\Users\Lucas\AppData\Local\Temp\svchost.exe
2017-05-20 15:41 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-20 15:41 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00367104 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDDU.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 03585536 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxRT.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00169392 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
2017-05-20 19:54 - 2017-05-20 19:54 - 02460160 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxVMM.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00662016 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxREM.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00021504 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedClipboard.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00038400 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDragAndDropSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00039936 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestPropSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00037376 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestControlSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 01480192 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00192512 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD2.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00031232 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NOXa.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00032256 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedFolders.DLL
2017-05-20 19:53 - 2017-05-20 19:53 - 00828672 _____ () C:\Program Files (x86)\Nox\bin\nox_adb.exe
2017-05-20 19:53 - 2017-05-20 19:53 - 00117262 _____ () C:\Program Files (x86)\Nox\bin\libgcc_s_dw2-1.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 01026574 _____ () C:\Program Files (x86)\Nox\bin\libstdc++-6.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03758827 _____ () C:\Program Files (x86)\Nox\bin\icuin53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 02093901 _____ () C:\Program Files (x86)\Nox\bin\icuuc53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03327416 _____ () C:\Program Files (x86)\Nox\bin\icudt53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00007168 _____ () C:\Program Files (x86)\Nox\bin\firewall_mgr.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00169984 _____ () C:\Program Files (x86)\Nox\bin\glut32.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00204800 _____ () C:\Program Files (x86)\Nox\bin\NoxCommon.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00311296 _____ () C:\Program Files (x86)\Nox\bin\VBoxApi.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00498688 _____ () C:\Program Files (x86)\Nox\bin\hlog4qt1.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00019456 _____ () C:\Program Files (x86)\Nox\bin\QtQuick.2\qtquick2plugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00900608 _____ () C:\Program Files (x86)\Nox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00039424 _____ () C:\Program Files (x86)\Nox\bin\QtWebKit\qmlwebkitplugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00133632 _____ () C:\Program Files (x86)\Nox\bin\libEGL.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03943424 _____ () C:\Program Files (x86)\Nox\bin\libGLESv2.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2243577943-2908188660-3037301784-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{2386D2D7-1954-4B63-B841-A870FE13B6DB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{850CE86A-4F11-4DAE-A6F3-CDB7A867F30A}] => (Block) LPort=445
FirewallRules: [{9C5F00A9-8251-463C-B369-29D1844F6883}] => (Block) LPort=445
FirewallRules: [{2011CED5-DFAD-4AE4-B2D4-434FDFDE14AF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B64FFA18-289B-4419-994A-B1AA19C47C65}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8E2F588D-6DB7-4112-A0C4-793547C0C068}] => (Allow) C:\Users\Lucas\AppData\Local\Temp\svchost.exe
FirewallRules: [{A71C3217-09D7-4A8A-8D85-4EDA0F297B0F}] => (Allow) C:\Users\Lucas\AppData\Local\Temp\svchost.exe
FirewallRules: [{BD04C9DF-634B-4953-A171-AEDF66BE205F}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [{C668742F-5D8D-433C-A529-DFBAD3757E78}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
==================== Pontos de Restauração =========================
20-05-2017 15:36:53 Instalado Realtek Ethernet Controller Driver
20-05-2017 15:45:29 Windows Update
20-05-2017 15:50:20 Windows Update
20-05-2017 16:28:30 Driver Booster : Controlador de barramento SM
20-05-2017 20:07:58 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:10:09 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:30:03 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:36:07 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:47:33 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:49:18 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:49:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:50:34 Windows Update
20-05-2017 20:51:02 Windows Update
20-05-2017 20:57:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:59:26 Windows Update
21-05-2017 01:41:20 Windows Update
21-05-2017 12:43:00 Windows Update
21-05-2017 12:43:39 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
21-05-2017 12:44:45 Windows Update
21-05-2017 12:45:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/21/2017 12:45:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:44:45 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:44:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:43:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:43:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:42:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 01:41:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 01:41:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/20/2017 08:59:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/20/2017 08:59:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Erros de Sistema:
=============
Error: (05/21/2017 12:45:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80073712: Microsoft .NET Framework 4 Client Profile para Windows 7 sistemas com base em x64 (KB982670).
Error: (05/21/2017 12:43:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80073712: Microsoft .NET Framework 4 Client Profile para Windows 7 sistemas com base em x64 (KB982670).
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 11) (User: AUTORIDADE NT)
Description: Event-ID 11
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 11) (User: AUTORIDADE NT)
Description: Event-ID 11
Error: (05/21/2017 12:41:30 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:30 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
==================== Informações da Memória ===========================
Processador: AMD A10-7850K Radeon R7, 12 Compute Cores 4C+8G
Percentagem de memória em uso: 63%
RAM física total: 7125.64 MB
RAM física disponível: 2566.13 MB
Virtual Total: 14249.42 MB
Virtual disponível: 8572.66 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.17 GB) (Free:893.36 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C8636D69)
Partition 1: (Not Active) - (Size=350 MB) - (Type=06)
Partition 2: (Active) - (Size=931.2 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Lucas (21-05-2017 13:08:15)
Executando a partir de C:\Users\Lucas\Downloads
Windows 7 Ultimate (X64) (2017-05-20 17:41:42)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2243577943-2908188660-3037301784-500 - Administrator - Disabled)
Convidado (S-1-5-21-2243577943-2908188660-3037301784-501 - Limited - Disabled)
Lucas (S-1-5-21-2243577943-2908188660-3037301784-1000 - Administrator - Enabled) => C:\Users\Lucas
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 53.0.3 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 pt-BR)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3 - Mozilla)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.2.0 - Duodian Technology Co. Ltd.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.105.123.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-2243577943-2908188660-3037301784-1000\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2243577943-2908188660-3037301784-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {4100B387-96D5-4B9A-AC35-4BD49714A586} - System32\Tasks\Driver Booster SkipUAC (Lucas) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
Task: {53275C39-A420-4C1E-9C69-A0C8BC79F1B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-20] (Google Inc.)
Task: {A267939B-2A43-4756-9496-1B72F23F6F63} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-20] (Google Inc.)
Task: {EAFD11E1-32A5-499E-9EED-9E600E4C306E} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {FCD8A8EF-7E14-47E1-83CD-03281789A462} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-20] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2017-05-20 17:58 - 2017-05-20 17:58 - 00029696 _____ () C:\Users\Lucas\AppData\Local\Temp\svchost.exe
2017-05-20 15:41 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-20 15:41 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00367104 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDDU.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 03585536 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxRT.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00169392 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
2017-05-20 19:54 - 2017-05-20 19:54 - 02460160 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxVMM.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00662016 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxREM.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00021504 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedClipboard.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00038400 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDragAndDropSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00039936 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestPropSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00037376 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestControlSvc.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 01480192 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD.DLL
2017-05-20 19:54 - 2017-05-20 19:54 - 00192512 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD2.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00031232 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NOXa.dll
2017-05-20 19:54 - 2017-05-20 19:54 - 00032256 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedFolders.DLL
2017-05-20 19:53 - 2017-05-20 19:53 - 00828672 _____ () C:\Program Files (x86)\Nox\bin\nox_adb.exe
2017-05-20 19:53 - 2017-05-20 19:53 - 00117262 _____ () C:\Program Files (x86)\Nox\bin\libgcc_s_dw2-1.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 01026574 _____ () C:\Program Files (x86)\Nox\bin\libstdc++-6.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03758827 _____ () C:\Program Files (x86)\Nox\bin\icuin53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 02093901 _____ () C:\Program Files (x86)\Nox\bin\icuuc53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03327416 _____ () C:\Program Files (x86)\Nox\bin\icudt53.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00007168 _____ () C:\Program Files (x86)\Nox\bin\firewall_mgr.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00169984 _____ () C:\Program Files (x86)\Nox\bin\glut32.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00204800 _____ () C:\Program Files (x86)\Nox\bin\NoxCommon.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00311296 _____ () C:\Program Files (x86)\Nox\bin\VBoxApi.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00498688 _____ () C:\Program Files (x86)\Nox\bin\hlog4qt1.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00019456 _____ () C:\Program Files (x86)\Nox\bin\QtQuick.2\qtquick2plugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00900608 _____ () C:\Program Files (x86)\Nox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00039424 _____ () C:\Program Files (x86)\Nox\bin\QtWebKit\qmlwebkitplugin.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 00133632 _____ () C:\Program Files (x86)\Nox\bin\libEGL.dll
2017-05-20 19:53 - 2017-05-20 19:53 - 03943424 _____ () C:\Program Files (x86)\Nox\bin\libGLESv2.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2243577943-2908188660-3037301784-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{2386D2D7-1954-4B63-B841-A870FE13B6DB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{850CE86A-4F11-4DAE-A6F3-CDB7A867F30A}] => (Block) LPort=445
FirewallRules: [{9C5F00A9-8251-463C-B369-29D1844F6883}] => (Block) LPort=445
FirewallRules: [{2011CED5-DFAD-4AE4-B2D4-434FDFDE14AF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B64FFA18-289B-4419-994A-B1AA19C47C65}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8E2F588D-6DB7-4112-A0C4-793547C0C068}] => (Allow) C:\Users\Lucas\AppData\Local\Temp\svchost.exe
FirewallRules: [{A71C3217-09D7-4A8A-8D85-4EDA0F297B0F}] => (Allow) C:\Users\Lucas\AppData\Local\Temp\svchost.exe
FirewallRules: [{BD04C9DF-634B-4953-A171-AEDF66BE205F}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [{C668742F-5D8D-433C-A529-DFBAD3757E78}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
==================== Pontos de Restauração =========================
20-05-2017 15:36:53 Instalado Realtek Ethernet Controller Driver
20-05-2017 15:45:29 Windows Update
20-05-2017 15:50:20 Windows Update
20-05-2017 16:28:30 Driver Booster : Controlador de barramento SM
20-05-2017 20:07:58 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:10:09 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:30:03 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:36:07 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:47:33 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:49:18 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:49:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
20-05-2017 20:50:34 Windows Update
20-05-2017 20:51:02 Windows Update
20-05-2017 20:57:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
20-05-2017 20:59:26 Windows Update
21-05-2017 01:41:20 Windows Update
21-05-2017 12:43:00 Windows Update
21-05-2017 12:43:39 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
21-05-2017 12:44:45 Windows Update
21-05-2017 12:45:44 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/21/2017 12:45:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:44:45 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:44:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:43:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:43:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 12:42:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 01:41:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/21/2017 01:41:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/20/2017 08:59:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Error: (05/20/2017 08:59:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parâmetro incorreto.
.
Erros de Sistema:
=============
Error: (05/21/2017 12:45:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80073712: Microsoft .NET Framework 4 Client Profile para Windows 7 sistemas com base em x64 (KB982670).
Error: (05/21/2017 12:43:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80073712: Microsoft .NET Framework 4 Client Profile para Windows 7 sistemas com base em x64 (KB982670).
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 11) (User: AUTORIDADE NT)
Description: Event-ID 11
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:31 PM) (Source: WudfUsbccidDriver) (EventID: 11) (User: AUTORIDADE NT)
Description: Event-ID 11
Error: (05/21/2017 12:41:30 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
Error: (05/21/2017 12:41:30 PM) (Source: WudfUsbccidDriver) (EventID: 1) (User: AUTORIDADE NT)
Description: Event-ID 1
==================== Informações da Memória ===========================
Processador: AMD A10-7850K Radeon R7, 12 Compute Cores 4C+8G
Percentagem de memória em uso: 63%
RAM física total: 7125.64 MB
RAM física disponível: 2566.13 MB
Virtual Total: 14249.42 MB
Virtual disponível: 8572.66 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.17 GB) (Free:893.36 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C8636D69)
Partition 1: (Not Active) - (Size=350 MB) - (Type=06)
Partition 2: (Active) - (Size=931.2 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================