Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 02-06-2017 Executado por Wistoper (02-06-2017 18:16:03) Executando a partir de C:\Users\Wistoper\Desktop Microsoft Windows 7 Professional (X86) (2017-02-18 20:34:42) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3196338246-499852136-455605792-500 - Administrator - Disabled) ASPNET (S-1-5-21-3196338246-499852136-455605792-1004 - Limited - Enabled) Convidado (S-1-5-21-3196338246-499852136-455605792-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3196338246-499852136-455605792-1002 - Limited - Enabled) Wistoper (S-1-5-21-3196338246-499852136-455605792-1000 - Administrator - Enabled) => C:\Users\Wistoper ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3196338246-499852136-455605792-1000\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.) Action! (HKLM\...\Mirillis Action!) (Version: 2.3.0 - Mirillis) aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Audacity 2.1.2 (HKLM\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) Balabolka (HKLM\...\Balabolka) (Version: 2.05 - Ilya Morozov) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 2.5.97.6358 - BlueStack Systems, Inc.) Fraps (HKLM\...\Fraps) (Version: - ) Google Chrome (HKLM\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden Hasten (HKLM\...\{821DFD5A-53BC-44AD-AD8D-71F55EA94273}) (Version: 1.0.0 - nSpira) Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.1.5 - Intel) Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation) Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation) Java 8 Update 131 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Loquendo TTS 7 Engine Full Distribution (HKLM\...\{16096EE7-3343-4835-B9AF-C63492BD89B3}) (Version: 7.5.0 - Loquendo) Loquendo TTS 7 Felipe Multimedia High Quality (HKLM\...\{A1614B8B-E966-4512-BEA9-13A4779983FF}) (Version: 7.3.0 - Loquendo) Loquendo TTS 7 Fernanda Multimedia High Quality (HKLM\...\{975D7450-C0A7-4AD7-8903-3957B0F92B42}) (Version: 7.3.0 - Loquendo) Loquendo TTS 7 Portuguese (HKLM\...\{C278A74A-707D-49B5-B847-651B4B80EDED}) (Version: 7.4.0 - Loquendo) Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Visual Basic 6.0 Professional Edition (HKLM\...\Visual Basic 6.0 Professional Edition) (Version: - ) Microsoft Visual Basic 6.0 Upgrade Assessment Tool (HKLM\...\{7C9B9127-8F4A-4E41-9072-C5A7A2092769}) (Version: 1.0.0 - Microsoft) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Web Publishing Wizard 1.53 (HKLM\...\WebPost) (Version: - ) Minecraft (HKLM\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Movie Studio Platinum 12.0 (HKLM\...\{D112D601-C0E2-11E1-AAB9-F04DA23A5C58}) (Version: 12.0.333 - Sony) Movie Studio Platinum 13.0 (HKLM\...\{C07796C0-7C69-11E3-8E39-F04DA23A5C58}) (Version: 13.0.878 - Sony) Pacote de Driver do Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\C540EEA22B61B2EF9BCD542EF681132068F487AD) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet) Pacote de Idiomas do Microsoft .NET Framework 4.5 - Português (Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50709 - Microsoft Corporation) Razer Synapse (HKLM\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.116 - Nome de sua empresa:) Riftcat (HKLM\...\{8346dab5-9676-4878-9891-b24811bf4ce4}) (Version: 1.0.0 - Riftcat) Riftcat Client (Version: 1.0.0.3 - Riftcat) Hidden UltraISO Premium V8.62 (HKLM\...\UltraISO_is1) (Version: - ) UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: 12.2.17 - ) WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{074BF14C-2EC4-4850-A201-D7D330E36AEC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{0C571F43-6174-4EDB-864B-8B75215B8E7D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{1380A29E-8E38-4245-BC07-E97E11DD3E66}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{1C4C63CB-5F25-493B-AF71-781CC937728F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{21BAEF14-11AA-4472-BDDB-C8E88C30F2BE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{24CA26A3-95A6-4E79-85F8-2943903332DE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{3163DCFF-3A7F-46F1-8702-CA815A5142FA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{45A45E1F-CAB4-44A1-823D-23DECA719951}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{4817016A-D35A-4FA0-9B0E-DABABD5A65D9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{496B37C7-9DAC-4997-BF73-721DFBB95B95}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{50EEBA17-7BC1-49B7-86E6-8193FA03C880}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{523D7AEF-29F8-4B69-998E-25C356693191}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{5490CC40-9430-488C-9717-FEFC16F923EA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{68E221CC-BD51-4A4C-B4FD-40360EA9427B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{6FEC8122-0CFA-4B90-B7E3-2BDD977ED23F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{73C2E5D7-E288-4C7D-89EA-A9C526FFDCDC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{74CB8804-E9E6-4C24-80EB-FBC4C1849E03}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{7B454020-949D-4EE7-A836-8543907B2D86}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{7CC7BDFE-34E1-4F57-802E-A22D90892E59}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{7F16EA86-E2B4-441E-8620-A5F8C0EA851C}\InprocServer32 -> C:\Program Files\Microsoft Visual Basic 6.0 Upgrade Assessment Tool\Microsoft.Practices.VBUpgrade.VB6.ASTVisitor.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{815D68E8-D5A3-42E5-B9C7-FB3D59F96072}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{89266F83-C7FD-4B7B-800B-E69CF7048C68}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{89830058-E1ED-4525-BB3E-9A8F8DCB7742}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{941F1566-0352-4D4F-811D-2F92B779DC0D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{94391B9F-6EAF-44E5-850A-BE9FA75531FA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{99AD8AA0-9174-4386-A9CA-D183B9254E8B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{AAD97587-4FF4-43DE-B52B-EDD2725CC217}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{B1A2A2DF-9139-4E4C-9214-549E9C386748}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{B214753B-5262-44E4-9702-0A2D39BE1124}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{BB5C55A9-44FF-403A-836F-AD46C22FAC57}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{CAF48AC2-8EA1-47F4-A751-2A0FF068FA17}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{DFD739B7-ABD9-43B2-B65B-1C4038F8398E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{E927F161-C9B0-41C4-A742-76E3A8B8CD2A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{F2C13F9D-0D8F-437D-9760-919FF59E1803}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3196338246-499852136-455605792-1000_Classes\CLSID\{F8294F9C-0B57-4EF6-B18B-3DE9F0213B38}\InprocServer32 -> C:\Program Files\Microsoft Visual Basic 6.0 Upgrade Assessment Tool\Microsoft.Practices.VBUpgrade.VB6.RubyParser.dll => Nenhum Arquivo ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0825C758-84C1-4DFF-A321-AEC2DA79FBE7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-02-18] (Google Inc.) Task: {182C6AFB-9659-4B63-83D8-E9BBB9F17F59} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-02-18] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2017-01-16 08:40 - 2017-01-16 08:40 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2016-09-24 19:20 - 2016-09-24 19:21 - 00189264 _____ () C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe 2017-01-09 03:06 - 2017-01-09 03:06 - 00298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe 2017-03-03 20:16 - 2016-10-08 04:13 - 50656768 _____ () C:\Users\Wistoper\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll 2017-03-03 20:16 - 2016-10-08 04:13 - 01874944 _____ () C:\Users\Wistoper\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll 2017-03-03 20:16 - 2016-10-08 04:13 - 00075264 _____ () C:\Users\Wistoper\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll 2017-05-11 18:37 - 2017-05-09 05:12 - 02864984 _____ () C:\Program Files\Google\Chrome\Application\58.0.3029.110\libglesv2.dll 2017-05-11 18:37 - 2017-05-09 05:12 - 00087384 _____ () C:\Program Files\Google\Chrome\Application\58.0.3029.110\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:04 - 2009-06-10 18:39 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3196338246-499852136-455605792-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 159.69.57.22 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [TCP Query User{57641D07-C869-4F75-AE68-369F2B59BA4F}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{5CF35A26-143D-45DD-9A56-5AE9BCB943F4}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe FirewallRules: [{83418ED0-CA16-4212-B073-D45956A49265}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{9373B6EF-6B2A-45B6-B5D4-00B8DED9FA98}C:\users\wistoper\desktop\nova pasta (2)\necrobot2.exe] => (Block) C:\users\wistoper\desktop\nova pasta (2)\necrobot2.exe FirewallRules: [UDP Query User{EF959DF6-976F-4963-9EB2-935A55386538}C:\users\wistoper\desktop\nova pasta (2)\necrobot2.exe] => (Block) C:\users\wistoper\desktop\nova pasta (2)\necrobot2.exe FirewallRules: [TCP Query User{B6CD4C55-7115-40BF-872A-11F10405CBA7}C:\users\wistoper\downloads\pokesniperbyhlindica\pokelocation\pogolocationfeeder.v0.1.8\pogolocationfeeder.v0.1.8\pogolocationfeeder.exe] => (Block) C:\users\wistoper\downloads\pokesniperbyhlindica\pokelocation\pogolocationfeeder.v0.1.8\pogolocationfeeder.v0.1.8\pogolocationfeeder.exe FirewallRules: [UDP Query User{0210A6C4-0FDB-4E25-AB58-418AE7CF787A}C:\users\wistoper\downloads\pokesniperbyhlindica\pokelocation\pogolocationfeeder.v0.1.8\pogolocationfeeder.v0.1.8\pogolocationfeeder.exe] => (Block) C:\users\wistoper\downloads\pokesniperbyhlindica\pokelocation\pogolocationfeeder.v0.1.8\pogolocationfeeder.v0.1.8\pogolocationfeeder.exe FirewallRules: [TCP Query User{27525F9C-3EF7-4B3E-BE51-626047D055CE}C:\users\wistoper\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\wistoper\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{36F5BC15-9D59-4BAF-A4D2-81B678A26D3D}C:\users\wistoper\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\wistoper\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{829FFC55-3EB2-48E6-AAE8-709C1A01BADB}C:\users\wistoper\pictures\necro bot\necrobot2.exe] => (Allow) C:\users\wistoper\pictures\necro bot\necrobot2.exe FirewallRules: [UDP Query User{05A2416E-F69B-489D-80B4-4A00C57685F2}C:\users\wistoper\pictures\necro bot\necrobot2.exe] => (Allow) C:\users\wistoper\pictures\necro bot\necrobot2.exe FirewallRules: [TCP Query User{FF5C7434-2326-4A1C-BC28-99178EFB9C4D}C:\users\wistoper\pictures\necro bot\necrobot2.win.exe] => (Block) C:\users\wistoper\pictures\necro bot\necrobot2.win.exe FirewallRules: [UDP Query User{E59481F8-EAA1-413E-8604-8E31C22BDF43}C:\users\wistoper\pictures\necro bot\necrobot2.win.exe] => (Block) C:\users\wistoper\pictures\necro bot\necrobot2.win.exe FirewallRules: [TCP Query User{E2707077-502E-4ED8-85B9-B95E3D57A0F7}C:\users\wistoper\pictures\necro\necrobot2.exe] => (Block) C:\users\wistoper\pictures\necro\necrobot2.exe FirewallRules: [UDP Query User{524CADA9-95C9-409B-A1AD-7B0E94BA87FB}C:\users\wistoper\pictures\necro\necrobot2.exe] => (Block) C:\users\wistoper\pictures\necro\necrobot2.exe FirewallRules: [TCP Query User{194BD4EB-3456-4809-8320-1D62B5D62639}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe FirewallRules: [UDP Query User{BD901832-D4DD-40F0-8F9F-98E6776C39C2}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe FirewallRules: [TCP Query User{B93A00F7-CA0E-4B39-9873-9AF557547381}C:\users\wistoper\downloads\rocketbot\rocketbot2\rocketbot2.exe] => (Allow) C:\users\wistoper\downloads\rocketbot\rocketbot2\rocketbot2.exe FirewallRules: [UDP Query User{3777F80A-5198-4F26-9308-EA171D420003}C:\users\wistoper\downloads\rocketbot\rocketbot2\rocketbot2.exe] => (Allow) C:\users\wistoper\downloads\rocketbot\rocketbot2\rocketbot2.exe FirewallRules: [{AD9B7B0B-9E82-4305-814D-974C4FFD64CE}] => (Allow) C:\Program Files\Riftcat\Riftcat.exe FirewallRules: [{9BD8A450-F752-4C55-8E3A-7188CBD0C008}] => (Allow) C:\Program Files\Riftcat\Riftcat.exe FirewallRules: [{A6227805-AA28-456F-8B16-B1C6A25B8114}] => (Allow) C:\Program Files\Riftcat\VRidge.exe FirewallRules: [{66F9E476-C653-43B0-8076-A5C89DDDD080}] => (Allow) C:\Program Files\Riftcat\VRidge.exe FirewallRules: [{FE53BC9E-9718-49B5-90A4-6D4340F8FCE4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{FFB8C036-E86A-484F-9A9A-20DAB67B457F}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [UDP Query User{A003EFBA-940C-4712-8DDF-291D737E7A8C}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe ==================== Pontos de Restauração ========================= 27-05-2017 21:21:28 Ponto de Verificação Agendado 31-05-2017 20:22:19 Instalado O2Micro Flash Memory Card Windows Driver ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Controlador de armazenamento em massa Description: Controlador de armazenamento em massa Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (05/31/2017 08:22:18 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado. . Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante. Operação: Obtendo Dados do Gravador Contexto: Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220} Nome do Gravador: System Writer ID de Instância de Gravador: {46117338-427e-4249-8da3-93334a68550d} Error: (05/27/2017 10:59:29 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa CINEMA 4D.exe versão 13.0.6.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: d5c Hora de Início: 01d2d75602e2e8e7 Hora de Término: 41 Caminho do Aplicativo: D:\Bernardo\Download 2\Cinema 4D R13 Portable\CINEMA 4D R13 Portable by CawTutors\CINEMA 4D.exe Id do Relatório: 46ee0221-4349-11e7-9f17-0024e8baca20 Error: (05/27/2017 10:19:08 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa CINEMA 4D.exe versão 13.0.6.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: b10 Hora de Início: 01d2d7505fab5575 Hora de Término: 10 Caminho do Aplicativo: D:\Bernardo\Download 2\Cinema 4D R13 Portable\CINEMA 4D R13 Portable by CawTutors\CINEMA 4D.exe Id do Relatório: a429084c-4343-11e7-9f17-0024e8baca20 Error: (05/27/2017 09:15:45 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\Users\Wistoper\downloads\FORCEOP\cports.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="Win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 09:15:09 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\pentabletdriver\driver\tabletdriver\amd64\dpinst.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 09:15:05 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\program files\Razer\razer_common_driver\Win8Win7\DPInst_amd64.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 09:15:04 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\program files\Razer\razer_common_driver\Win10\DPInst_amd64.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 09:15:04 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\program files\Razer\razer_common_driver\Vista_XP\DPInst_amd64.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 09:15:03 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "c:\program files\Razer\razer_common_driver\Drivers\DPInst_amd64.exe". Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (05/27/2017 04:31:11 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa CINEMA 4D.exe versão 13.0.6.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: a8 Hora de Início: 01d2d71f7f242250 Hora de Término: 8 Caminho do Aplicativo: D:\Bernardo\Download 2\Cinema 4D R13 Portable\CINEMA 4D R13 Portable by CawTutors\CINEMA 4D.exe Id do Relatório: 0902b4a7-4313-11e7-9f17-0024e8baca20 Erros de Sistema: ============= Error: (05/31/2017 09:38:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Informações sobre Aplicativos devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (05/31/2017 09:38:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço Appinfo. Error: (05/31/2017 09:37:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Update devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (05/31/2017 09:37:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço wuauserv. Error: (05/31/2017 09:35:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Serviço de transferência inteligente de plano de fundo devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (05/31/2017 09:35:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço BITS. Error: (05/31/2017 09:35:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço ShellHWDetection. Error: (05/31/2017 09:35:26 PM) (Source: O2SDGRDR) (EventID: 117) (User: ) Description: Event-ID 117 Error: (05/31/2017 09:34:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço LanmanServer. Error: (05/31/2017 08:28:39 PM) (Source: O2SDGRDR) (EventID: 117) (User: ) Description: Event-ID 117 ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM)2 Duo CPU T6570 @ 2.10GHz Percentagem de memória em uso: 45% RAM física total: 3032.89 MB RAM física disponível: 1658.11 MB Virtual Total: 6064.06 MB Virtual disponível: 4529.95 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:62.46 GB) (Free:19.84 GB) NTFS Drive d: (BACKUP) (Fixed) (Total:235.5 GB) (Free:88.81 GB) FAT32 ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 00070039) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=62.5 GB) - (Type=OF Extended) Partition 3: (Not Active) - (Size=235.5 GB) - (Type=0C) ==================== Fim de Addition.txt ============================