Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 02-06-2017 Executado por Marco (04-06-2017 18:18:25) Executando a partir de C:\Users\Marco\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2017-05-12 00:10:52) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2880528716-258967130-1882197644-500 - Administrator - Disabled) Convidado (S-1-5-21-2880528716-258967130-1882197644-501 - Limited - Disabled) Marco (S-1-5-21-2880528716-258967130-1882197644-1000 - Administrator - Enabled) => C:\Users\Marco ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks) Arduino (HKLM-x32\...\Arduino) (Version: 1.8.2 - Arduino LLC) Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros) Avast License by ZeNiX [2012-03-14] (HKLM-x32\...\Avast_2050_ZeNiX [2012-03-14]_is1) (Version: - ) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BrazosTweaker (HKLM\...\{2CD600E3-55E9-47B3-9611-6FE0ECC04BF9}) (Version: 1.0.7 - Martin Kinkelin and Sven Wittek) Construct 2 r244 (HKLM\...\Construct 2_is1) (Version: 1.0.244.0 - Scirra) DllKit Pro 2017 (HKLM\...\DllKit Pro 2017) (Version: - ) Driver Booster 4.0 (HKLM-x32\...\Driver Booster_is1) (Version: 4.0.3 - IObit) Foxit PhantomPDF (HKLM-x32\...\{7BA87AB0-2055-11E7-8E16-000C2992F709}) (Version: 8.3.0.14878 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden IP-TV Player 0.28.1.8847 (HKLM-x32\...\IP-TV_Player) (Version: 0.28.1.8847 - ADSL Club Co Ltd) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Kodi (HKU\S-1-5-21-2880528716-258967130-1882197644-1000\...\Kodi) (Version: - XBMC-Foundation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) MuseScore 2 (HKLM-x32\...\{DC8A2B29-D9A7-4D67-A049-BC0A659A2B57}) (Version: 2.1.0 - Werner Schweer and Others) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2880528716-258967130-1882197644-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {14A4AADB-EC73-479E-A289-D08FE9652BDD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-12] (Adobe Systems Incorporated) Task: {2954F28C-3328-43C0-BC05-22811D9C11B2} - System32\Tasks\Yahoo! Powered maril => Wscript.exe "C:\ProgramData\{4F888AEB-C5CA-002D-430C-9E6FD94E15A1}\cafa.txt" "68747470733a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b34463838384145422d433543412d303032442d343330432d3945364644393445313541317d5c6c656c696669" "433a5c50726f6772616d446174615c7b34463838384145422d433543412d303032442d3433 (a entrada de dados tem 80 mais caracteres). Task: {3DD65792-C7AA-44DC-A6E1-655FAE1E0535} - System32\Tasks\DllKitPRO => C:\Program Files (x86)\DllKitPRO\dllkitpro.exe [2017-02-11] () Task: {541591CB-C7A2-42A2-9BA0-71B1AA76CFBC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-12] (Adobe Systems Incorporated) Task: {A909D670-5E6D-4C16-BAB9-278F52D009A6} - System32\Tasks\Driver Booster SkipUAC (Marco) => C:\Program Files (x86)\IObit\Driver Booster\4.0.3\DriverBooster.exe [2016-09-30] (IObit) Task: {DA6FF97F-0F17-42FF-84A7-ED5600538CA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-11] (Google Inc.) Task: {EB9FB255-B54C-482A-B04C-6B3F262E3E16} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.0.3\Scheduler.exe [2016-09-20] (IObit) Task: {F7E93C6B-C7ED-44A9-A67D-222C56152BE7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-11] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Marco\Desktop\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp ShortcutWithArgument: C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp ==================== Módulos Carregados (Whitelisted) ============== 2017-05-11 21:51 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll 2017-05-11 21:51 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll 2017-02-11 18:29 - 2017-02-11 18:29 - 02174960 _____ () C:\Program Files (x86)\DllKitPRO\dllkitpro.exe ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2017-05-12 19:06 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2880528716-258967130-1882197644-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: AMD FUEL Service => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: TrueKey => 2 MSCONFIG\Services: TrueKeyScheduler => 2 MSCONFIG\Services: TrueKeyServiceHelper => 2 MSCONFIG\startupreg: AppEx Accelerator UI => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h MSCONFIG\startupreg: Chromium => c:\users\marco\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{B110EC8D-8F07-4BE5-9F37-B07F1DED67F3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\DriverBooster.exe FirewallRules: [{901BA7C1-07DB-4CD4-967B-DB659FB9FCFD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\DriverBooster.exe FirewallRules: [{45F7979F-035C-4573-8D06-37692158872B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\DBDownloader.exe FirewallRules: [{7DF3428B-6111-4C76-B039-36DAD0DE1224}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\DBDownloader.exe FirewallRules: [{BB971E74-3579-4477-AB74-A9C2B684D4FA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\AutoUpdate.exe FirewallRules: [{B37C6B8A-16F0-4A52-9080-22B397F373AB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.0.3\AutoUpdate.exe FirewallRules: [{DCCE0CF3-B93D-407B-9A83-C18EB5DC9008}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{671CB586-F55D-44ED-89D5-A3018319174F}C:\users\marco\appdata\local\temp\rar$exa0.065\utmp\u.exe] => (Allow) C:\users\marco\appdata\local\temp\rar$exa0.065\utmp\u.exe FirewallRules: [UDP Query User{D3F5D216-3711-457F-90B5-DC151463CABF}C:\users\marco\appdata\local\temp\rar$exa0.065\utmp\u.exe] => (Allow) C:\users\marco\appdata\local\temp\rar$exa0.065\utmp\u.exe FirewallRules: [{E7618323-205B-4538-BDEE-BDD2B70A8B4E}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{038A184D-ED63-4D7F-A8FD-DE979B19F6CB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{15B9C1E8-8970-4405-86F1-822A4D757FCF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{C413C507-BAF1-4951-89BC-9FEC3B77F358}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{171898BB-AE25-4FDD-8FE2-F986AB752150}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{D7CB32D1-9552-4804-A673-E736817183D4}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [TCP Query User{11EDD884-E9F9-4353-8DAC-DBE9A9B2CE6E}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{55CFFB33-764E-4716-91A5-CE73254C75BF}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{124FA2E5-6E40-4303-A9AF-87C71FCBAB7B}H:\games\cs 1.6\counter-strike\hl.exe] => (Allow) H:\games\cs 1.6\counter-strike\hl.exe FirewallRules: [UDP Query User{01F03ACF-687C-4648-8004-5B951969EBFD}H:\games\cs 1.6\counter-strike\hl.exe] => (Allow) H:\games\cs 1.6\counter-strike\hl.exe FirewallRules: [TCP Query User{76B98796-9C06-4464-BFB0-A4411E544770}H:\utorrentportable\app\utorrent\utorrent.exe] => (Allow) H:\utorrentportable\app\utorrent\utorrent.exe FirewallRules: [UDP Query User{C298137E-5C35-4D00-BF8E-B342D4DC8A63}H:\utorrentportable\app\utorrent\utorrent.exe] => (Allow) H:\utorrentportable\app\utorrent\utorrent.exe FirewallRules: [{337ECEEF-0BF4-4332-ACBF-72D67B18A23F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3EB0A723-2849-4F8F-92A5-4908E2742528}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DBC08BA5-BD53-4995-B35D-C73C37A55001}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{7A924E02-7659-4E50-A470-587D9FB5836A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{93757F28-8F92-47BB-A6D4-B3B10737F97C}] => (Allow) C:\Program Files (x86)\IP-TV Player\IpTvPlayer.exe FirewallRules: [{8E3B8298-150D-4DFB-BC59-7434853133C9}] => (Allow) C:\Program Files (x86)\IP-TV Player\IpTvPlayer.exe FirewallRules: [{9907F937-170D-4B64-88DF-BF24D7BE4174}] => (Allow) H:\Steam\Steam.exe FirewallRules: [{7701CF08-BAC0-4FEE-A922-9B7EBCB494BE}] => (Allow) H:\Steam\Steam.exe FirewallRules: [{6D94438C-EBF8-4342-9938-D205BAB79F44}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{90697EF3-5C35-425D-B311-8C5F10ED5351}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{BD488771-B09B-4EE0-A2FC-FA2EBC0B6A78}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{94FB7F8F-1102-44F9-A6FE-C3E25D8930DD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{09330998-A451-4C09-B467-88318ECFD493}C:\users\marco\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\marco\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe FirewallRules: [{9DE67724-F522-4BA8-9E82-B7E489A9E016}] => (Allow) C:\Program Files (x86)\Droid4X\Droid4X.exe FirewallRules: [{6798D6C2-8231-443E-9F92-8CCCC2FF31D7}] => (Allow) C:\Program Files (x86)\Droid4X\download\MiniThunderPlatform.exe FirewallRules: [{640D3682-09F8-479C-A34B-A17B1640774D}] => (Allow) C:\Program Files (x86)\Droid4X\download\MiniThunderPlatform.exe FirewallRules: [{E8080500-1C80-4067-AD9C-56F6D4C1A0D2}] => (Allow) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5E58CD94-C917-4912-A9B2-FA1012CBD0CF}] => (Allow) H:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{3A52F820-C146-4C09-8DA5-1EC651087F25}G:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) G:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [UDP Query User{F7AA0E88-DDD4-48ED-8E5F-0D7C39ABC8E1}G:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) G:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [TCP Query User{2A77A717-C3D8-4942-B431-FC0D1F79C2A1}C:\users\marco\downloads\gcinstall.exe] => (Allow) C:\users\marco\downloads\gcinstall.exe FirewallRules: [UDP Query User{15592688-E3D8-4483-B1CB-6334DD944422}C:\users\marco\downloads\gcinstall.exe] => (Allow) C:\users\marco\downloads\gcinstall.exe FirewallRules: [{2B6750EF-B1B5-45EB-9A24-8B083C60F935}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{59EF5281-0070-4B5E-8F2D-BA42B027FB9C}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{80F2155A-F951-4BE2-8C6F-EA758DE9F243}] => (Allow) G:\Steam\Steam.exe FirewallRules: [{E28EAAF6-836A-47E0-A4F5-2E541966451D}] => (Allow) G:\Steam\Steam.exe FirewallRules: [{856C64CD-A44A-433E-9317-BF51102BB6CF}] => (Allow) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E841CEDE-AEE7-446A-83F6-6069B79688B7}] => (Allow) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{34F19E45-1851-4C5C-A2C1-F463BB9959FB}C:\program files (x86)\datronicsoft\spacedeskwindowsviewer\spacedeskwindowsviewer.exe] => (Allow) C:\program files (x86)\datronicsoft\spacedeskwindowsviewer\spacedeskwindowsviewer.exe FirewallRules: [UDP Query User{155FEF5D-D647-43BF-B719-089C69BB0C0E}C:\program files (x86)\datronicsoft\spacedeskwindowsviewer\spacedeskwindowsviewer.exe] => (Allow) C:\program files (x86)\datronicsoft\spacedeskwindowsviewer\spacedeskwindowsviewer.exe FirewallRules: [{94974FED-7EB7-4E3D-B9CC-5B8A20BC19C5}] => (Allow) F:\SteamLibrary\steamapps\common\Jedi Knight Mysteries of the Sith\JKM.EXE FirewallRules: [{3B0C1033-FE5F-4DE7-B838-22C195201BA0}] => (Allow) F:\SteamLibrary\steamapps\common\Jedi Knight Mysteries of the Sith\JKM.EXE FirewallRules: [TCP Query User{A535DD7A-37D9-4624-AEFD-981D9C42DE2D}C:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) C:\program files (x86)\youwave android\vb\vboxsdl.exe FirewallRules: [UDP Query User{FD05EBE0-0D18-4891-96CC-CC57587BA3AC}C:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) C:\program files (x86)\youwave android\vb\vboxsdl.exe FirewallRules: [{8B92434B-0F39-4431-838D-1B36D53CFA56}] => (Allow) D:\BlackShot\System\blackshot.exe FirewallRules: [{4F0CA5DD-C3E0-4651-8A53-AD7D72BE4BD3}] => (Allow) D:\BlackShot\System\blackshot.exe FirewallRules: [TCP Query User{BB41A294-DFBF-4104-A4F2-1C4BFA407A84}C:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) C:\program files (x86)\youwave android\vb\vboxsdl.exe FirewallRules: [UDP Query User{2EB8B0D3-22F8-47CB-939E-8296795C2CBD}C:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) C:\program files (x86)\youwave android\vb\vboxsdl.exe ==================== Pontos de Restauração ========================= 01-06-2017 13:34:59 Removed BlueStacks App Player 02-06-2017 09:05:29 Driver Booster : Atheros AR9285 Wireless Network Adapter 02-06-2017 09:10:21 Windows Update 04-06-2017 17:56:09 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (06/02/2017 07:47:02 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll". Assembly dependente Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Error: (06/01/2017 01:04:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: IpTvPlayer.exe, versão: 0.28.1.8847, carimbo de hora: 0x2a425e19 Nome do módulo de falhas: libavcodec_plugin.dll, versão: 0.0.0.0, carimbo de hora: 0x4e1edf39 Código de exceção: 0xc0000005 Deslocamento com falha: 0x0001c6d0 Identificação do processo com falha: 0xaa8 Hora de início do aplicativo com falha: 0x01d2daf0acbe4679 Caminho do aplicativo com falha: C:\Program Files (x86)\IP-TV Player\IpTvPlayer.exe FCaminho do módulo de falhas: C:\Program Files (x86)\IP-TV Player\plugins\libavcodec_plugin.dll Identificação do Relatório: f44b49c3-46e3-11e7-a286-50b7c33af032 Error: (06/01/2017 12:54:58 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/01/2017 07:50:10 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/01/2017 04:03:39 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (05/31/2017 06:56:09 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (05/31/2017 04:41:57 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (05/31/2017 04:17:28 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (05/31/2017 01:59:53 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (05/31/2017 01:52:25 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Serviço não pode ser iniciado. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. em BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) em System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Erros de Sistema: ============= Error: (06/04/2017 05:58:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/04/2017 01:16:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/04/2017 09:40:42 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/04/2017 05:29:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/03/2017 06:19:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/03/2017 02:41:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/03/2017 08:07:42 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/02/2017 07:30:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: VBoxNetAdp Error: (06/02/2017 01:34:25 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR3. Error: (06/02/2017 01:34:25 PM) (Source: Disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR3. ==================== Informações da Memória =========================== Processador: AMD E-300 APU with Radeon(tm) HD Graphics Percentagem de memória em uso: 50% RAM física total: 3580.07 MB RAM física disponível: 1785.41 MB Virtual Total: 7158.33 MB Virtual disponível: 5092.94 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.56 GB) (Free:68.47 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] Drive d: () (Fixed) (Total:165.13 GB) (Free:13.32 GB) NTFS Drive f: (Disco Local) (Fixed) (Total:20.86 GB) (Free:20.75 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: F90FDD3D) Partition 1: (Active) - (Size=111.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=451 MB) - (Type=27) Partition 3: (Not Active) - (Size=165.1 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=20.9 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================