Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 10-07-2016 01 Executado por pc-ns (2016-07-12 15:02:46) Executando a partir de C:\Users\pc-ns\Downloads Microsoft Windows 7 Ultimate (X86) (2016-05-20 13:16:50) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1373747656-2105606618-3957852365-500 - Administrator - Disabled) Convidado (S-1-5-21-1373747656-2105606618-3957852365-501 - Limited - Disabled) pc-ns (S-1-5-21-1373747656-2105606618-3957852365-1000 - Administrator - Enabled) => C:\Users\pc-ns ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Microsoft Security Essentials (Disabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95} AS: Microsoft Security Essentials (Disabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1373747656-2105606618-3957852365-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) Adobe Photoshop CS6 (HKLM\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony) Adobe Premiere Pro CS6 (HKLM\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated) ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.12 - Michael Tippach) Atualizações da NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Counter-Strike Global Offensive No-Steam (HKLM\...\Counter-Strike Global Offensive_is1) (Version: 1.35.2.2 - Valve Software) Euro Truck Simulator 2 (HKLM\...\Euro Truck Simulator 2_is1) (Version: 1.20.0.2s - Релиз от R.G. Steamgames) FL Studio 12 (HKLM\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM\...\FL Studio ASIO) (Version: - Image-Line) FormatFactory 3.8.0.0 (HKLM\...\FormatFactory) (Version: 3.8.0.0 - Free Time) Google Chrome (HKLM\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden Intel® Driver Update Utility (HKLM\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel) League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (Version: 3.0.1 - Riot Games) Hidden LG United Mobile Drivers (HKLM\...\{5DB849D6-9392-4FB7-9ABB-87ED433152E5}) (Version: 3.8.1 - LG Electronics) Lineage II (HKLM\...\{076A6FD8-EE45-4A83-B3C9-C7C34E7CAFDD}) (Version: 40.0.0 - NCSoft) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.4053 False (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False (HKLM\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.57103 False (HKLM\...\{d8fea624-4f2c-432d-9a54-6eee9cd1a77e}) (Version: 8.0.57103 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.58299 False (HKLM\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False (HKLM\...\{DCB46B42-723F-350E-B18A-449BC6C21636}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False (HKLM\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False (HKLM\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.0 False (HKLM\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 False (HKLM\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148.0 False (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False (HKLM\...\{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a}) (Version: 11.0.50727.1 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False Eng (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 False (HKLM\...\{615bc16d-60f5-482e-91b3-b51d8130963b}) (Version: 11.0.51106.1 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 False Eng (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 False (HKLM\...\{01db25f3-1b76-4d97-88c8-1c90634d88fb}) (Version: 11.0.60610.1 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 False Eng (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 False Eng (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 False Eng (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Movie Studio Platinum 12.0 (HKLM\...\{D112D601-C0E2-11E1-AAB9-F04DA23A5C58}) (Version: 12.0.333 - Sony) NVIDIA Driver de gráficos 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation) Pacote de Idiomas do Microsoft .NET Framework 4.5 - Português (Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50709 - Microsoft Corporation) Painel de controle da NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden PCSX2 - Playstation 2 Emulator (HKLM\...\pcsx2) (Version: - ) RaidCall (HKLM\...\RaidCall) (Version: 8.1.8-1.0.3132.149 - raidcall.com.ru) rebox.NET 2.9.9.3 (HKLM\...\{02846029-D5BA-4504-96B2-2BD844FE3AAF}_is1) (Version: 2.9.9.3 - clone.AD) Sony Noise Reduction Plug-In 2.0e (HKLM\...\{D533C9D4-ED96-4191-B9C3-279C0DD6BABA}) (Version: 2.0.444 - Sony) Sony Sound Forge 9.0 (HKLM\...\{6842DCCB-2840-4E46-8AF3-BEA9CFF3455B}) (Version: 9.0.297 - Sony) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) The Desktop Weather 2.0 (HKLM\...\WeatherTool) (Version: 2.0.1.11076 - ShenZhen Enode Techology co,.Ltd) <==== ATENÇÃO Warsaw 1.12.3.5 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia) WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {6E349E51-6BC2-4159-88D1-D8AA394879B9} - System32\Tasks\{7A48267F-39EC-4AB2-AABA-197C2B55AFE0} => pcalua.exe -a C:\Users\pc-ns\Downloads\iGBPCEFwr.exe -d C:\Users\pc-ns\Downloads -c admin_service Task: {905BFC4E-7A7B-4B06-878C-25C62D76750B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-21] (Google Inc.) Task: {DD1577F0-6880-4CBA-BA66-058D9457095C} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs" Task: {E1B9C405-0849-4BA3-8E3E-5726A1E8214A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-21] (Google Inc.) Task: {F002BF21-AA93-45AF-BE3E-07262E882FA9} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) Task: {FE595A9A-DCE2-43A7-8893-4EC45EC7C506} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-06-03 19:03 - 2015-02-03 23:05 - 00106640 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2016-03-09 20:43 - 2016-03-09 20:43 - 00118424 _____ () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe 2015-11-25 01:16 - 2015-11-25 01:16 - 01021384 _____ () C:\Program Files\WeatherTool\2.0.1.11076\WeatherEntryDll.dll 2015-11-25 01:16 - 2015-11-25 01:16 - 00152008 _____ () C:\Program Files\WeatherTool\2.0.1.11076\WeatherService.exe 2016-05-30 19:09 - 2016-03-09 20:43 - 00444568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe 2016-05-30 19:09 - 2016-03-09 20:43 - 00660632 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll 2016-05-30 19:09 - 2016-03-09 20:43 - 00184472 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll 2016-05-30 19:09 - 2016-03-09 20:43 - 00396952 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe 2016-06-17 19:40 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libglesv2.dll 2016-06-17 19:40 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8] AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\Windows\System32:F3EAF234_Cef.gbp [2] AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [212] AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1373747656-2105606618-3957852365-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:04 - 2016-06-02 21:40 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1373747656-2105606618-3957852365-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pc-ns\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{9DA88556-3478-45A2-A861-B6103E5E90B1}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AD38AE0F-7605-415A-94C6-259917B4C3A5}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A211F013-6456-4AC8-9BA5-ED56C4CA229D}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3AAAD014-4B9A-48EF-ADE6-95E2E8C8BAC5}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{26629B04-4AA1-47B6-A8AD-3224FE2D5514}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{380A8753-F41C-4E2D-A3F2-AD6F10E04A33}] => (Allow) C:\Users\pc-ns\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{673E3251-BAEA-4241-A92E-2D1FC6D6AAB4}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{AE0F5191-E9FD-44A1-AA7C-102F0EE62B4B}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{6D9BE697-C4D6-4B4D-A755-2669CB7C5991}] => (Allow) C:\Program Files\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [{E17C3393-3CE9-4CF5-A9C9-F621D83C4AAC}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe FirewallRules: [TCP Query User{DE2CF467-DAE9-4898-8ECF-4B30F61CAB78}C:\program files\formatfactory\ffmodules\package\ptinstonline.exe] => (Allow) C:\program files\formatfactory\ffmodules\package\ptinstonline.exe FirewallRules: [UDP Query User{E879CAA1-0CD2-4A78-BD62-A3F09087B0BA}C:\program files\formatfactory\ffmodules\package\ptinstonline.exe] => (Allow) C:\program files\formatfactory\ffmodules\package\ptinstonline.exe FirewallRules: [{E41EECDC-2137-4B41-9609-9981B27D0DA7}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe FirewallRules: [{6413D5BF-9740-467C-B616-E7942387F9AD}] => (Allow) C:\Program Files\FormatFactory\FFModules\Package\PTInstOnline.exe FirewallRules: [{01FB6CE4-6741-4F25-9EC3-47CB215788BF}] => (Allow) C:\Program Files\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [{CC940905-D0AF-4F31-9DF1-54E8C5E3BE4E}] => (Allow) C:\Program Files\PicosmosTools\PTInstOnline.exe FirewallRules: [{D2E17B62-DB53-43A8-9E25-A522CDAD5799}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{120A0C4F-BE8C-4DEB-936F-57CFD6AE7A27}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\Run_CSGO.exe FirewallRules: [{90E1BE0D-325C-44C3-934B-00A4F9F600AD}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\revLoader.exe FirewallRules: [{6751EFE2-6D1C-4FCC-8401-74DFE825F7CF}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E766F18F-5700-4DCB-B1EA-0DC962F72011}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\Run_CSGO.exe FirewallRules: [{7F07350D-9C0C-43C6-A5EE-621C39A03DB5}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\revLoader.exe FirewallRules: [{E7BBB229-D6A5-49EC-9928-654CFA64D4EA}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{03C41A43-0E75-407F-BFB0-AAF591DE5829}C:\games\farming simulator 15 gold edition\dedicatedserver.exe] => (Allow) C:\games\farming simulator 15 gold edition\dedicatedserver.exe FirewallRules: [UDP Query User{8E5092D3-4ED1-4199-84D0-BC69F5B07A75}C:\games\farming simulator 15 gold edition\dedicatedserver.exe] => (Allow) C:\games\farming simulator 15 gold edition\dedicatedserver.exe FirewallRules: [TCP Query User{B311CAB0-AE94-4A6E-B916-2A9CDADC76AF}C:\program files\farming simulator 15\dedicatedserver.exe] => (Allow) C:\program files\farming simulator 15\dedicatedserver.exe FirewallRules: [UDP Query User{095592EF-0C27-4EA4-B9A0-EF520AE48D75}C:\program files\farming simulator 15\dedicatedserver.exe] => (Allow) C:\program files\farming simulator 15\dedicatedserver.exe FirewallRules: [{DAE45FCB-ADE5-40D2-AA5C-C26E4BB976F8}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{E35F1B14-21DC-497D-8304-77F321F8904A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 07-07-2016 11:25:22 Ponto de Verificação Agendado 07-07-2016 21:53:54 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 07-07-2016 21:57:25 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 07-07-2016 22:03:15 Windows Update 07-07-2016 22:21:20 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 07-07-2016 22:22:04 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 11-07-2016 19:04:38 Windows Update 12-07-2016 14:58:48 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Unknown Device Description: Unknown Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/12/2016 12:27:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0x1fd0 Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Error: (07/11/2016 07:03:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0xca8 Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Error: (07/09/2016 11:00:32 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0x1124 Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Error: (07/08/2016 01:31:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: esrv_svc.exe, versão: 1.2.1.1313, carimbo de hora: 0x56d8114e Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000 Código de exceção: 0xc0000005 Deslocamento com falha: 0x00000000 Identificação do processo com falha: 0x2bc Hora de início do aplicativo com falha: 0xesrv_svc.exe0 Caminho do aplicativo com falha: esrv_svc.exe1 FCaminho do módulo de falhas: esrv_svc.exe2 Identificação do Relatório: esrv_svc.exe3 Error: (07/08/2016 12:39:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0xbb4 Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Error: (07/08/2016 12:35:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: esrv_svc.exe, versão: 1.2.1.1313, carimbo de hora: 0x56d8114e Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000 Código de exceção: 0xc0000005 Deslocamento com falha: 0x00000000 Identificação do processo com falha: 0x574 Hora de início do aplicativo com falha: 0xesrv_svc.exe0 Caminho do aplicativo com falha: esrv_svc.exe1 FCaminho do módulo de falhas: esrv_svc.exe2 Identificação do Relatório: esrv_svc.exe3 Error: (07/07/2016 11:18:40 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (07/07/2016 10:03:41 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0x920 Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Error: (07/06/2016 11:47:07 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (07/06/2016 08:34:00 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Nome do módulo de falhas: lrio.exe, versão: 2.1.28.29072, carimbo de hora: 0x56eb1932 Código de exceção: 0x40000015 Deslocamento com falha: 0x0008a494 Identificação do processo com falha: 0xf9c Hora de início do aplicativo com falha: 0xlrio.exe0 Caminho do aplicativo com falha: lrio.exe1 FCaminho do módulo de falhas: lrio.exe2 Identificação do Relatório: lrio.exe3 Erros de Sistema: ============= Error: (07/12/2016 03:00:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 03:00:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:57:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:56:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:53:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:53:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:50:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:50:05 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:46:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 Error: (07/12/2016 02:46:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Energy Server Service WILLAMETTE terminou com o erro: %%268439557 ==================== Informações da Memória =========================== Processador: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz Percentagem de memória em uso: 40% RAM física total: 3068.93 MB RAM física disponível: 1814.44 MB Virtual Total: 6136.15 MB Virtual disponível: 4284 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:97.66 GB) (Free:40.18 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] Drive d: () (Fixed) (Total:200.33 GB) (Free:163.85 GB) NTFS Drive e: (MULTIBOOT) (Removable) (Total:3.7 GB) (Free:3.7 GB) FAT32 ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: ED11ED11) Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=200.3 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 3.7 GB) (Disk ID: 753A5568) Partition 1: (Active) - (Size=3.7 GB) - (Type=0B) ==================== Fim de Addition.txt ============================