Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 23-04-2017 01 Executado por jonatas (23-04-2017 22:04:43) Executando a partir de C:\Users\jonatas\Desktop Windows 10 Pro Versão 1607 (X64) (2016-10-06 17:13:23) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1247958408-2218117888-2024361605-500 - Administrator - Disabled) Convidado (S-1-5-21-1247958408-2218117888-2024361605-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1247958408-2218117888-2024361605-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1247958408-2218117888-2024361605-1002 - Limited - Enabled) jonat (S-1-5-21-1247958408-2218117888-2024361605-1003 - Limited - Enabled) jonatas (S-1-5-21-1247958408-2218117888-2024361605-1000 - Administrator - Enabled) => C:\Users\jonatas Jonatas_2 (S-1-5-21-1247958408-2218117888-2024361605-1004 - Administrator - Enabled) => C:\Users\Jonatas_2 ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Reader 9.1 - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\{3CE0C7DC-ED5B-450E-9C5F-49702C263544}) (Version: 12.1.7.157 - Adobe Systems, Inc) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.) Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.0.3 - IObit) Ansel (Version: 381.65 - NVIDIA Corporation) Hidden Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft) Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft) Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft) Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft) Atualizações da NVIDIA 24.0.0.0 (Version: 24.0.0.0 - NVIDIA Corporation) Hidden aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.3.2291 - AVAST Software) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform) Chromium (HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\Chromium) (Version: 51.0.2684.0 - Chromium) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5130 - Z8Games.com) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0193 - Disc Soft Ltd) Driver Booster 4.3 (HKLM-x32\...\Driver Booster_is1) (Version: 4.3.0 - IObit) DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated) GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3517 - Intel Corporation) Intel(R) Processor Identification Utility (HKLM-x32\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.418 - IObit) Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation) Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation) K-Lite Mega Codec Pack 5.9.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 5.9.0 - ) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation) Módulo de Proteção - Banco Santander (Brasil) S.A. (HKLM-x32\...\{83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1) (Version: 3.12.1.2 - ) Mozilla Firefox 53.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 pt-BR)) (Version: 53.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla) NVIDIA Driver de áudio HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation) NVIDIA GeForce Experience 3.5.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.70 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NvNodejs (Version: 3.5.0.70 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden Painel de controle da NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.822 - Nome de sua empresa:) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.) SHIELD Streaming (Version: 7.1.0360 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.5.0.70 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) SlimDrivers (HKLM-x32\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Telepad Desktop 1.0.7 (HKLM-x32\...\1883-5741-4154-2266) (Version: 1.0.7 - Telepad) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) Warsaw 1.11.1.24 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.1.24 - GAS Tecnologia) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Yahoo! Powered (HKLM-x32\...\winsearch) (Version: - ) <==== ATENÇÃO Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\jonatas\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\jonatas\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\jonatas\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\jonatas\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {029D5D97-AE2B-4DFA-BEF3-8339C394907D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe Task: {03DE2A88-A154-4F1D-B36C-1B21EB86C801} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe Task: {07AB54BC-0EC4-410E-8070-97BCC36ACEEE} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe Task: {0E9EE4F6-2E17-437B-8A97-A6E4B6613611} - System32\Tasks\Yahoo! Powered natof => Wscript.exe "C:\ProgramData\{57369255-DD74-1893-5BB2-86D1C1F00D1F}\tade.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b35373336393235352d444437342d313839332d354242322d3836443143314630304431467d5c6665736f7265" "433a5c50726f6772616d446174615c7b35373336393235352d444437342d313839332d354242 (a entrada de dados tem 78 mais caracteres). Task: {10617353-0245-46D0-AF5A-9B6CDF82B582} - System32\Tasks\{D8BF649E-D54D-44A1-B038-89E063EAC7B2} => pcalua.exe -a "C:\Games\South Park The Stick of Truth\Uninstal.exe" -d "C:\Games\South Park The Stick of Truth" Task: {11BB9BC9-0AA6-4DBE-B6CD-A1D1AA0EA619} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO Task: {192CF69A-C618-4C9E-802F-1383D7C6B77E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software) Task: {2782FD11-CDC7-4EFF-92E9-323FF1EAF8EC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-03-28] (NVIDIA Corporation) Task: {284E081E-69A5-4696-B6E0-F8672C32BEBF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-03-28] (NVIDIA Corporation) Task: {2C47DB9C-104B-4FA7-ADDB-C497CAB43F21} - System32\Tasks\ASC10_SkipUac_jonatas => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-11-11] (IObit) Task: {39E05F39-2523-4284-AF42-CBE8ED74BBEA} - System32\Tasks\ASC10_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-11-10] (IObit) Task: {3C15ABFF-7458-499C-B979-E6A779DD0977} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-13] (Adobe Systems Incorporated) Task: {5061BA1D-C546-4DE7-BB43-7EFE5EDEF3BB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe Task: {522CC284-93AF-4513-AB3F-64D74B5E8061} - System32\Tasks\{AD2D4557-18F6-46D0-871C-33D17398FB7B} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] () Task: {5283979D-3652-4170-BD1D-57162A10FC5A} - System32\Tasks\{2BA562AF-DF9C-4745-B3AE-F4A9649FC8F3} => pcalua.exe -a "C:\Program Files (x86)\Ahead\nero\uninstall\UNNERO.exe" -c /UNINSTALL Task: {5D243E35-0C53-4B73-9465-AF2EE12F8030} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28] (NVIDIA Corporation) Task: {67F63B75-082F-40FB-9AD6-D19A2C392E04} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-03-28] (NVIDIA Corporation) Task: {6F83A84E-55C9-4011-AA08-5F7C870C52B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-08] (Google Inc.) Task: {7085E7CA-2BFB-4269-86BA-59DDED293AC5} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe Task: {71C2771E-017B-49E9-AFEB-19E179B5F04C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe Task: {71EA701A-8108-4430-8147-EA7D4F2EF5EC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [2017-04-13] (Adobe Systems Incorporated) Task: {7BB30E29-AAAB-41EF-8116-ACBF3DC7C5D8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-03-28] (NVIDIA Corporation) Task: {7BFC907B-A7F6-4CA2-82BA-1E8FCC9C559D} - System32\Tasks\Driver Booster Beta SkipUAC (jonatas) => C:\Program Files (x86)\IObit\Driver Booster Beta\DriverBooster.exe Task: {81D28E32-4D6F-4D3F-8EF8-58E411BBB38C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe Task: {847AC657-EB73-455B-B06D-C76141FDE667} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] () <==== ATENÇÃO Task: {871794D7-9489-486F-AC48-A5E18D6365F7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe Task: {8DD055D0-7842-47B8-B148-15495C49703D} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Duplicaterecord.js" Task: {8F25FA7F-7231-4659-BB81-1173066785FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-08] (Google Inc.) Task: {908653A4-06D9-4FFB-8FC3-EF55BC6BFA7F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {9CE46C7B-C0FF-4D73-A08F-6266ED7BA0BF} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe Task: {9D064ECE-90B3-46F7-A1EF-31994340F498} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {9F4AA6F1-4C77-4125-9CAC-059C13354F34} - System32\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935} => C:\Users\jonatas\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exe [2015-05-15] () <==== ATENÇÃO Task: {A0237166-F93C-4906-BBFC-BD0F8D564C05} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-03-28] (NVIDIA Corporation) Task: {A4A8BEA2-87C0-494F-93F0-E0077820E141} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {A57868E1-0125-4A4F-BCFA-36BB9EB167A0} - System32\Tasks\{90E1B5E1-8109-4982-B78C-F0E14D7757D8} => pcalua.exe -a "C:\Users\jonatas\Desktop\dxwebsetup (3).exe" -d C:\Users\jonatas\Desktop Task: {A5BB5834-F680-425C-A0FC-4DBC093946E1} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-03-28] (NVIDIA Corporation) Task: {A9ABFBD8-DD04-4C84-A706-13213F48AA73} - System32\Tasks\{ED04E13C-BAA7-44EA-A4B3-7260BF5BE50E} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.80.102/pt/abandoninstall?page=tsProgressBar Task: {AA51B477-B0A8-43C7-A555-166D7CA7BD51} - System32\Tasks\{FF4DE095-5A50-484E-8C4D-A43B7C899393} => pcalua.exe -a "C:\Users\jonatas\Desktop\South Park The Stick of Truth - Tradução.exe" -d C:\Users\jonatas\Desktop Task: {AAA5AA98-EFB3-4F02-A543-717DB2F72645} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {B02EAE76-B35F-4A89-B158-5F58AA6EB14E} - System32\Tasks\{6068EE6A-8592-410A-BFEC-F0EF361C0D1A} => pcalua.exe -a C:\Users\jonatas\Downloads\gbpluginabnsetup(1).exe -d C:\Users\jonatas\Downloads Task: {B85EEAC4-9624-488E-85AF-94BA7F7A9FBE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-10] (Piriform Ltd) Task: {B9CFB3C9-D6AC-4865-A289-A565C4586C96} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe Task: {BA0A409D-1022-47C4-B22F-7FF3427220C4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe Task: {BC2860B6-DF19-4FD0-A346-EEFE4DE67044} - System32\Tasks\{87FF9968-37FB-45C0-83A8-3D53F7EA5AFF} => pcalua.exe -a C:\Users\jonatas\AppData\Local\{3E740828-1ADC-6490-7744-4178532CBDE0}\uninst.exe -c -FN="C:\Users\jonatas\AppData\Local\{3E290892-1B7B-65E4-704D-4236AC9FBF08}\SyncVersion.exe"-P=/Uninstall /s /noun /DelSelfDir Task: {BC403040-7BC0-4280-B16C-57434E52602F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-04-05] (AVAST Software) Task: {C1D66E38-5F64-414D-AF4F-BD4572E74DF9} - System32\Tasks\{C7B98A15-8A9B-4D3D-86D5-5DF005BE627C} => pcalua.exe -a C:\Users\jonatas\AppData\Roaming\luckysearches\UninstallManager.exe -c -ptid=cmi Task: {C5080780-66D1-4AA6-93F7-9DD6EA307C49} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2015-08-19] (SlimWare Utilities, Inc.) Task: {C6B71D0D-8529-4F55-B5B2-52A570DF155C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {C93289C7-3FB3-423B-8CB0-D6E5EE58BA59} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe Task: {C93C24E3-9009-4CF7-88D5-EDDD8DBE29AF} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe Task: {CAF074C0-F314-4303-97AA-50B01CBD88E6} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2015-09-05] (Beepa P/L) Task: {CB2F2A84-C4B7-430C-AC71-B9A555349098} - System32\Tasks\Uninstaller_SkipUac_jonatas => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-11-04] (IObit) Task: {CC9FEAB6-7FD1-4F31-922B-10B9D9BF9A42} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe Task: {D01DF5D9-7F27-424C-8AAB-0B98CCB1FA2F} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe Task: {D3C84F1D-15BB-420D-A82B-92A4C9B376B8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe Task: {E203926E-2257-469C-B4E9-9947A77963A6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {E532C0C3-14DF-4DC6-B029-637126B9AE5F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe Task: {E8F25BEE-03E7-48DA-BBB5-6E4AB2083081} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec.exe Task: {EAEA4C82-3FA2-450C-90B8-6270154160C1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO Task: {EF386686-C0B4-481D-97C3-CB9AA48879EA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe Task: {EF5759A0-2F65-4515-A864-E59B0970EAC5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe Task: {F3F850E9-F2CA-4E0B-9804-FE46D472F8ED} - System32\Tasks\Driver Booster SkipUAC (jonatas) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2017-03-16] (IObit) Task: {FEBDA964-C3D5-41D7-9175-5F32755C699A} - System32\Tasks\{4A73C218-084A-4565-A23C-0888DF346448} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.80.102/pt/abandoninstall?page=tsProgressBar (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_jonatas.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: C:\WINDOWS\Tasks\Yahoo! Powered natof.job => Wscript.exe C:\ProgramData\{57369255-DD74-1893-5BB2-86D1C1F00D1F}\tade.txt <==== ATENÇÃO Task: C:\WINDOWS\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935}.job => C:\Users\jonatas\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exeš-RunCheckUpdate C:\Users\jonatas\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\CheckUpdate.exe <==== ATENÇÃO ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\jonatas\AppData\Local\Google\Chrome\User Data\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ==================== Módulos Carregados (Whitelisted) ============== 2016-07-19 21:10 - 2016-07-19 21:11 - 00187824 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2017-04-22 17:36 - 2017-03-28 00:33 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-07-16 08:42 - 2016-07-16 08:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-03-15 13:50 - 2017-03-04 04:19 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-10-06 13:48 - 2017-03-31 23:10 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-03-15 13:50 - 2017-03-04 04:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00522512 _____ () C:\Program Files\AVAST Software\Avast\x64\gaming_spy.dll 2017-03-15 13:50 - 2017-03-04 04:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-06 14:20 - 2016-10-06 14:20 - 00959168 _____ () C:\Users\jonatas\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2016-10-06 13:39 - 2016-10-06 13:39 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-15 13:53 - 2017-03-04 03:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-15 13:53 - 2017-03-04 03:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll 2017-03-15 13:50 - 2017-03-04 03:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-15 13:50 - 2017-03-04 03:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-15 13:50 - 2017-03-04 03:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-03-15 13:50 - 2017-03-04 03:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-03-15 13:50 - 2017-03-04 03:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-03-15 13:50 - 2017-03-04 03:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-03-31 18:48 - 2017-03-31 18:49 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-03-31 18:48 - 2017-03-31 18:49 - 22723584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-03-31 18:48 - 2017-03-31 18:49 - 00448512 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 2017-03-31 18:48 - 2017-03-31 18:49 - 05427200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2016-06-03 13:13 - 2016-06-03 13:13 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll 2017-03-31 18:48 - 2017-03-31 18:49 - 00435712 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2017-03-31 18:48 - 2017-03-31 18:49 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll 2016-03-04 08:43 - 2016-03-04 08:43 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313.10010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 03358336 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\LeagueClient.exe 2017-04-19 13:36 - 2017-04-19 13:36 - 01727104 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\LeagueClientUx.exe 2017-04-19 13:36 - 2017-04-19 13:36 - 01727104 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\LeagueClientUxRender.exe 2017-04-23 00:44 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2017-04-23 00:44 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2017-04-23 00:44 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2017-04-22 17:36 - 2017-03-28 00:33 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00454424 _____ () C:\Program Files\AVAST Software\Avast\gaming_spy.dll 2017-04-23 00:43 - 2016-08-18 18:43 - 00442144 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl 2017-04-23 00:43 - 2016-08-18 18:43 - 00210720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl 2017-04-23 00:43 - 2016-08-18 18:43 - 00059680 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl 2017-04-23 00:43 - 2016-11-01 10:11 - 00078624 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\GetProcessDLL.dll 2017-04-23 00:43 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll 2017-04-23 00:43 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-02-13 18:48 - 2017-02-13 18:48 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00176480 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00293936 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-04-05 13:20 - 2017-04-05 13:20 - 00653520 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-04-22 17:36 - 2017-03-21 01:27 - 02442176 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2017-04-22 17:36 - 2017-03-21 01:27 - 00363576 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2017-04-22 17:36 - 2017-03-21 01:27 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2017-04-22 17:36 - 2017-03-21 01:27 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2017-04-22 17:36 - 2017-03-21 01:27 - 00469048 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2017-04-22 17:36 - 2017-03-21 01:27 - 00571840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2017-04-23 00:44 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll 2017-04-23 00:44 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll 2017-04-19 13:38 - 2017-04-19 13:38 - 00108672 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\zlib.dll 2017-04-19 13:38 - 2017-04-19 13:38 - 00128640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\yaml.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00099456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\libnghttp2.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 01387648 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00653816 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 01043448 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00513016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00677504 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00571384 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00494072 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00691840 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00623232 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00572032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00801920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00566912 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00552440 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00537728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00538104 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00491136 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 01032832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00488952 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00922240 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00585208 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 01126016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00781440 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00585856 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00509944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll 2017-04-19 13:36 - 2017-04-19 13:37 - 02459776 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00180352 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\libexpat.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00489464 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00512640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00872064 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00465400 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00481920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00706688 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00473080 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll 2017-02-28 21:46 - 2017-04-07 19:56 - 00483832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00527864 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll 2017-04-19 13:36 - 2017-04-19 13:37 - 00729728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll 2017-02-28 21:46 - 2017-04-07 19:56 - 00516600 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00542200 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-kudos\rcp-be-lol-kudos.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00588792 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00796800 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00584832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00620160 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00598520 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00523904 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00550392 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00655488 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00700408 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll 2017-02-28 21:46 - 2017-04-07 19:56 - 00776320 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll 2017-02-28 21:46 - 2017-04-07 19:56 - 00517112 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00581248 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00719488 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00637056 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00499192 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00477176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00558720 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00538104 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00465536 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00529536 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll 2017-04-19 13:37 - 2017-04-19 13:37 - 00559232 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-lol-highlights\rcp-be-lol-highlights.dll 2017-02-28 21:46 - 2017-04-07 20:00 - 00482808 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 55775872 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\libcef.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 01801344 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\libglesv2.dll 2017-04-19 13:36 - 2017-04-19 13:36 - 00022144 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.65\deploy\libegl.dll 2017-04-06 13:58 - 2017-03-28 23:04 - 02187096 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll 2017-04-06 13:58 - 2017-03-28 23:04 - 00086360 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1434] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\bancoreal.com.br -> hxxp://www.bancoreal.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\bancosantander.com.br -> hxxp://www.bancosantander.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\bancosantander.com.br -> hxxps://www.bancosantander.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\caixa.gov.br -> imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\realsecureweb.com.br -> hxxps://www.realsecureweb.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santander.com.br -> www.santander.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santander.com.br -> hxxp://www.santander.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santanderempresarial.com.br -> www.santanderempresarial.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santanderempresarial.com.br -> hxxp://www.santanderempresarial.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santandernet.com.br -> www.santandernet.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santandernet.com.br -> hxxps://www.santandernet.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santandernetibe.com.br -> www.santandernetibe.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\santandernetibe.com.br -> hxxps://www.santandernetibe.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\secureweb.com.br -> hxxps://www.secureweb.com.br IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\sony.com -> sony.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\100sexlinks.com -> 100sexlinks.com Existem ainda 4788 sites a mais. ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2017-02-18 08:02 - 00002111 ____N C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 bandicam.com 127.0.0.1 ssl.bandisoft.com0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com Existem ainda 5 mais linhas. ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\jonatas\Desktop\Microsoft-Windows-10-Full-HD-Wallpapers.jpg DNS Servers: 192.168.25.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\Services: !SASCORE => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: Droid4XService => 2 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: LiveUpdateSvc => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: nvsvc => 2 MSCONFIG\Services: Razer Game Scanner Service => 2 MSCONFIG\Services: RzSurroundVADStreamingService => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 MSCONFIG\Services: UNS => 2 MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: Go_Palikan => MSCONFIG\startupreg: mbot_br_014010160 => MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify => "C:\Users\jonatas\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\jonatas\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\jonatas\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED MSCONFIG\startupreg: win => C:\Program Files (x86)\Tencent\win.exe http://down.baidu2016.com/qq/test.txt /start HKLM\...\StartupApproved\StartupFolder: => "telepad.lnk" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "Diebold - Warsaw" HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "SUPERAntiSpyware" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1247958408-2218117888-2024361605-1000\...\StartupApproved\Run: => "Chromium" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{49D69994-61F1-4263-9859-050307FFB196}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe FirewallRules: [{92CBBDCE-8849-469C-A6B4-F1886E5A94D3}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe FirewallRules: [{882355B4-D269-4813-A987-1E6B18B7C6C2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FC22766C-8D81-4D39-853B-E4D89E8E00F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{05608669-1BAD-45F8-AF65-4F75D382B918}] => (Allow) C:\Games\Rise of the Tomb Raider\Steam\Steam.exe FirewallRules: [{2C4012E6-5355-47F2-A44D-9833345692C2}] => (Allow) C:\Games\Rise of the Tomb Raider\Steam\Steam.exe FirewallRules: [{374724B5-0B15-45E9-BAFB-FF3EFA7B812D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SteamVR\tools\bin\win32\vrmonitor.exe FirewallRules: [{50694869-1E31-402B-9224-A9B0EAD22170}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SteamVR\tools\bin\win32\vrmonitor.exe FirewallRules: [UDP Query User{D4AFE7C7-BFE0-499D-9DC9-AFA860D5E550}C:\users\jonatas\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jonatas\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{D5C9FAAB-57F8-4337-98CA-FCCF94E1E723}C:\users\jonatas\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jonatas\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{B29735CD-0998-4FB7-82E4-99EE054B9B25}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{F4F6BEB2-7925-4A38-A215-8F8E55817C46}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{03E919BD-F342-4EF8-B822-D48FAA48E61E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{CECB64A9-5926-4D57-A59F-91DB4C5AC59D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{3814C219-3827-47C8-BD46-A212894D9A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0CD4049B-9434-4E23-97FF-4C0E0A088384}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [UDP Query User{A3780254-7881-46BE-8877-196419AD85A3}C:\program files\java\jre1.8.0_73\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_73\bin\javaw.exe FirewallRules: [TCP Query User{567ED0A3-676B-4EFD-9F42-3D35A346AD75}C:\program files\java\jre1.8.0_73\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_73\bin\javaw.exe FirewallRules: [UDP Query User{15F4BF9E-AE49-4767-BEC3-B0B77A145BCE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{369D49A7-ED6C-4DD8-AA38-DEC0574A2FC8}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{87AD4C36-7723-4200-823B-73C576EF8FC2}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{8920A0FE-1BAA-4A82-A13B-24253A32491A}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{C2CDDBD0-C01E-443A-8EDE-3D533578F414}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{C2779BEF-56E0-46EA-9081-B68AE052A991}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe FirewallRules: [{8AB6CE0E-CAD6-4B6D-805C-86805FA259FC}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{E4B8E3D5-BE13-49E6-B353-9B9A7B034A58}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{8065425B-E527-4A2E-BDAC-43014F9F7D12}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{07552F65-CAAA-4636-807D-6A408D7D6E96}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [TCP Query User{6E0ED6E9-0D76-4B0B-976A-3BB93163FD4B}C:\program files (x86)\telepad\telepad.exe] => (Allow) C:\program files (x86)\telepad\telepad.exe FirewallRules: [UDP Query User{FF3ADBF1-1597-4E00-9CA5-E946BF0CAD7A}C:\program files (x86)\telepad\telepad.exe] => (Allow) C:\program files (x86)\telepad\telepad.exe FirewallRules: [{07FE9A5F-BA5A-4432-AFC7-E72C39580E29}] => (Allow) C:\Users\jonatas\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{B4F3CC27-B9E7-4C3A-9D37-CC3056CE7CA5}C:\program files (x86)\telepad\telepad.exe] => (Block) C:\program files (x86)\telepad\telepad.exe FirewallRules: [UDP Query User{DA762BE1-066F-4D3C-830B-9F885C93EA8C}C:\program files (x86)\telepad\telepad.exe] => (Block) C:\program files (x86)\telepad\telepad.exe FirewallRules: [{63E7017C-8CF2-4F3A-BC38-C1A8E2C4C39A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{55D8185A-1BD9-4FDC-BE96-B99525C5D727}C:\program files (x86)\arxgaming\crossfire\updater.exe] => (Allow) C:\program files (x86)\arxgaming\crossfire\updater.exe FirewallRules: [UDP Query User{FAFBBD50-527A-4D91-A7EB-50C11867EB58}C:\program files (x86)\arxgaming\crossfire\updater.exe] => (Allow) C:\program files (x86)\arxgaming\crossfire\updater.exe FirewallRules: [{72E6E1BE-2EAD-4A2F-80B4-1673B2F78CD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{205C6EDF-F4FF-4265-9B06-415050F01CAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{4947ABF3-0694-47D7-B03D-DF7C0101247C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{8D6B91C2-4451-4C3C-962A-C2975E67A439}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9AD56E57-E645-45AC-9BAF-E9EF3F0C57CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6B093A4A-97EF-4833-908F-7E4ECD1625CD}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe FirewallRules: [{DDFF4C80-F440-42FC-B13C-A51582EB3390}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe FirewallRules: [{BD32E313-C3AE-439E-9656-A567CD848350}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{842F763E-3424-4278-979B-FBAEB504BF29}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{D454369D-4CDE-43C3-ABCD-2E4F0C7A3A09}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{59B1B125-9130-4C45-B840-E333C6CEEAE7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{EA1673B6-00F6-4844-B51B-B5EDDFB97415}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{836E4BA3-FBE6-4CB4-A47C-AF4D76CBE6A1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{076A9F5A-36C4-4D51-A699-C9708751E2CF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{96BCDAD4-C40D-401B-80F1-C5586BBB3581}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe ==================== Pontos de Restauração ========================= 23-04-2017 00:39:40 Installed DriverSetupUtility 23-04-2017 01:01:12 Instalador de Módulos do Windows ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (04/23/2017 01:01:37 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema.. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP. System Error: Acesso negado. . Error: (04/23/2017 12:53:50 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW. hr = 0x80070006, Identificador inválido. . Operação: Executando Operação Assíncrona Contexto: Estado Atual: DoSnapshotSet Error: (04/23/2017 12:52:04 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema.. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP. System Error: Acesso negado. . Error: (04/23/2017 12:46:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: jonatas-PC) Description: O pacote Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe+App foi terminado porque levou muito tempo para ser suspenso. Error: (04/23/2017 12:45:18 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: jonatas-PC) Description: Falha na ativação do aplicativo Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App com o erro: -2144927142. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (04/23/2017 12:39:41 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema.. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP. System Error: Acesso negado. . Error: (04/23/2017 12:39:28 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW. hr = 0x80070006, Identificador inválido. . Operação: Executando Operação Assíncrona Contexto: Estado Atual: DoSnapshotSet Error: (04/23/2017 12:38:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema.. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP. System Error: Acesso negado. . Error: (04/23/2017 12:34:16 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW. hr = 0x80070006, Identificador inválido. . Operação: Executando Operação Assíncrona Contexto: Estado Atual: DoSnapshotSet Error: (04/23/2017 12:33:24 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema.. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP. System Error: Acesso negado. . Erros de Sistema: ============= Error: (04/23/2017 09:57:31 PM) (Source: WPDClassInstaller) (EventID: 25088) (User: ) Description: Não foi possível instalar os drivers do dispositivo USB\VID_04E8&PID_6866&REV_0400&MI_00. Código do erro 0xe0000217. Error: (04/23/2017 09:55:25 PM) (Source: WPDClassInstaller) (EventID: 25088) (User: ) Description: Não foi possível instalar os drivers do dispositivo USB\VID_04E8&PID_6860&REV_0400&MI_00. Código do erro 0xe0000217. Error: (04/23/2017 08:22:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Steam Client Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (04/23/2017 08:22:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Steam Client Service. Error: (04/23/2017 11:45:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} e APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (04/23/2017 01:07:56 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} e APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (04/23/2017 01:05:45 AM) (Source: DCOM) (EventID: 10010) (User: jonatas-PC) Description: O servidor {3EEF301F-B596-4C0B-BD92-013BEAFCE793} não se registrou no DCOM dentro do tempo limite necessário. Error: (04/23/2017 01:05:45 AM) (Source: DCOM) (EventID: 10010) (User: jonatas-PC) Description: O servidor {3EEF301F-B596-4C0B-BD92-013BEAFCE793} não se registrou no DCOM dentro do tempo limite necessário. Error: (04/23/2017 01:05:45 AM) (Source: DCOM) (EventID: 10010) (User: jonatas-PC) Description: O servidor {3EEF301F-B596-4C0B-BD92-013BEAFCE793} não se registrou no DCOM dentro do tempo limite necessário. Error: (04/23/2017 01:05:45 AM) (Source: DCOM) (EventID: 10010) (User: jonatas-PC) Description: O servidor {3EEF301F-B596-4C0B-BD92-013BEAFCE793} não se registrou no DCOM dentro do tempo limite necessário. CodeIntegrity: =================================== Date: 2017-04-22 18:25:24.644 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-03-25 18:37:07.490 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:07.469 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:07.439 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:07.270 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:07.154 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:07.080 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:05.208 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:37:04.670 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-03-25 18:27:16.070 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. ==================== Informaes da Memria =========================== Processador: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz Percentagem de memria em uso: 68% RAM fsica total: 4078.18 MB RAM fsica disponvel: 1277.6 MB Virtual Total: 6696.14 MB Virtual disponvel: 2406.06 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.97 GB) (Free:757.22 GB) NTFS ==================== MBR & Tabela de Parties ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 89869CC6) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Fim de Addition.txt ============================