Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.

Implementa recursos de segurança e limpeza ao computador!

Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14810 usuários registrados
O último membro registrado é Josevinil

Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Últimos assuntos
» Problema no disco rígido do Windows 11
por joram Seg 01 Abr 2024, 06:35

Quem está conectado?
19 usuários online :: 0 registrados, 0 invisíveis e 19 visitantes :: 1 motor de busca

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 

Rechercher Pesquisa avançada

Top dos mais postadores
Power Max
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
joram
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Wings [In Memoriam]
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
caedurodrigues
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Amigo Brasileiro
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
luizvilarinho
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Danii
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Admin
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Danilo Marsaro
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 
Andreata
Computador travando constantemente. - Página 2 Vote_lcapComputador travando constantemente. - Página 2 Voting_barComputador travando constantemente. - Página 2 Vote_rcap 

abril 2024
SegTerQuaQuiSexSábDom
1234567
891011121314
15161718192021
22232425262728
2930     

Calendário Calendário

Palavras-chaves

PARA  excluir  SOFTWARE  SISPNCD  remoção  áudio  popup  deletar  instalação  vídeos  video  placa  flash  adobe  game  2015  player  pessoas  desinstalar  windows  notebook  virus  teclado  mcafee  2025  impressora  


Computador travando constantemente.

2 participantes

Fórum PC Brasil :: Segurança da Informação :: Casos Resolvidos

Página 2 de 2 Anterior  1, 2

Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Ter 13 maio 2014, 20:22

Desative temporariamente seu antivirus para evitar conflitos.

Baixe: < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > ( de g3n-h@ckm@n )
|- Ao acessar o link acima, role a página e clique em Télécharger para fazer o download: [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Execute-o da forma indicada nesta postagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Assim que a limpeza for concluída, poste o log (relatório) que estará em C:\Pre_Scan\Pre_Scan_07_05_2014_17_05_22.txt (estes números em vermelho irão variar pois eles mostram a data e hora em que o escaneamento foi realizado).
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Ter 13 maio 2014, 21:01

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | g3n-h@ckm@n | 4.05.06.1 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 20:29:41

Updated 06/05/2014 | 10.55 by g3n-h@ckm@n
Contact : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Pre_Script Infos : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Pre_scan Feedbacks : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

[Usuário (Administrator)] - [PC-CHIPS-A45G-]
SID = S-1-5-21-3127348328-4204076854-1704267095-1000

Starting up : Normal
System : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
ProcessorNameString : AMD Athlon(tm) II X2 250 Processor
Identifier : AMD64 Family 16 Model 6 Stepping 3


Memory RAM = Total (MB) : 3931 | Free (MB) : 2778
Pagefile = Total (MB) : 7861 | Free (MB) : 6559
Virtual = Total (MB) : 4194 | Free (MB) : 4050

¤¤¤¤¤¤¤¤¤¤ | Components of starting up


¤¤¤¤¤¤¤¤¤¤¤ | Drives

C:\-> [Fixed] | [] | Total : 476580 Mo | Free : 275630 Mo -> NTFS

¤¤¤¤¤¤¤¤¤¤ | Windows updates

No detected update !!!


¤¤¤¤¤¤¤¤¤¤ | Sessions

C:\Windows\system32\config\systemprofile
C:\Windows\ServiceProfiles\LocalService
C:\Windows\ServiceProfiles\NetworkService
C:\Users\Usuário

Registry saved , to restore : C:\Pre_Scan\Save\Scan\ERDNT
stand-by mode deleted !


¤¤¤¤¤¤¤¤¤¤ | Browsers

IE : 11.0.9600.17041 (© Microsoft Corporation. Todos os direitos reservados.)
FF : 29.0.1.5239 (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 34.0.1847.137 (Copyright 2012 Google Inc.)

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

FlashPlayer ActiveX : 12.0.0.77
FlashPlayer Plugin : 13.0.0.182

¤¤¤¤¤¤¤¤¤¤ | Security

AV : AVG AntiVirus Free Edition 2014 Disabled
AS : AVG AntiVirus Free Edition 2014 Disabled
FW : WINDOWS Firewall
WU: Windows Update Service [Auto(2)] = Running
AS: Windows Defender [Manual(3)] = stopped
FW: Windows FireWall Service [Auto(2)] = Running

¤¤¤¤¤¤¤¤¤¤ | Stopped processes

1396 | [Owner : |Parent : 728] - (.Microsoft Corporation - Aplicativo de subsistema de spooler.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv
1524 | [Owner : SISTEMA |Parent : 728] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) - (1.0.0.0) = C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service
1632 | [Owner : SISTEMA |Parent : 728] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - (14.0.0.4563) = C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
1740 | [Owner : Usuário |Parent : 1652] - (.Microsoft Corporation - Windows Explorer.) - (6.1.7601.17567) = C:\Windows\explorer
1344 | [Owner : Usuário |Parent : 728] - (.Microsoft Corporation - Processo de Host para Tarefas do Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost
1256 | [Owner : Usuário |Parent : 1924] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) - (14.0.0.4567) = C:\Program Files (x86)\AVG\AVG2014\avgui.exe
2132 | [Owner : Usuário |Parent : 1256] - (.Microsoft Corporation - Carregador CTF.) - (6.1.7600.16385) = C:\Windows\SysWOW64\ctfmon
2840 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC
2928 | [Owner : SISTEMA |Parent : 2840] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) - (7.250.4232.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM
1276 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Indexador do Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer
3396 | [Owner : SERVIÇO DE REDE |Parent : 728] - (.Microsoft Corporation - Serviço de Compartilhamento de Rede do Windows Media Player.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk
2228 | [Owner : Usuário |Parent : 1740] - (.Mozilla Corporation - Firefox.) - (29.0.1.5239) = C:\Program Files (x86)\Mozilla Firefox\firefox
3836 | [Owner : Usuário |Parent : 2228] - (.Mozilla Corporation - Plugin Container for Firefox.) - (29.0.1.5239) = C:\Program Files (x86)\Mozilla Firefox\plugin-container
1208 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Windows® installer.) - (5.0.7601.17514) = C:\Windows\System32\msiexec
408 | [Owner : Usuário |Parent : 3236] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.182) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182
424 | [Owner : Usuário |Parent : 408] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.182) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182
5084 | [Owner : Usuário |Parent : 1040] - (.Microsoft Corporation - Mecanismo do Agendador de Tarefas.) - (6.1.7601.17514) = C:\Windows\System32\taskeng

¤¤¤¤¤¤¤¤¤¤ | Running processes

280 | [Owner : SISTEMA |Parent : 4] - (.Microsoft Corporation - Gerenciador de Sessão do Windows.) - (6.1.7601.18229) = C:\Windows\System32\smss
608 | [Owner : SISTEMA |Parent : 600] - (.Microsoft Corporation - Processo do tempo de Execução do Servidor do Cliente.) - (6.1.7600.16385) = C:\Windows\System32\csrss
668 | [Owner : SISTEMA |Parent : 600] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) - (6.1.7600.16385) = C:\Windows\System32\wininit
692 | [Owner : SISTEMA |Parent : 680] - (.Microsoft Corporation - Processo do tempo de Execução do Servidor do Cliente.) - (6.1.7600.16385) = C:\Windows\System32\csrss
728 | [Owner : SISTEMA |Parent : 668] - (.Microsoft Corporation - Aplicativo de serviços e controle.) - (6.1.7600.16385) = C:\Windows\System32\services
752 | [Owner : SISTEMA |Parent : 668] - (.Microsoft Corporation - Local Security Authority Process.) - (6.1.7601.18270) = C:\Windows\System32\lsass
760 | [Owner : SISTEMA |Parent : 668] - (.Microsoft Corporation - Serviço do Gerenciador de Sessão Local.) - (6.1.7601.17514) = C:\Windows\System32\lsm
808 | [Owner : SISTEMA |Parent : 680] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) - (6.1.7601.17514) = C:\Windows\System32\winlogon
908 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
988 | [Owner : SERVIÇO DE REDE |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
404 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
684 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1040 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1120 | [Owner : SERVIÇO LOCAL |Parent : 404] - (.Microsoft Corporation - Isolamento de Gráfico de Dispositivo de Áudio do Windows .) - (6.1.7601.17514) = C:\Windows\System32\audiodg
1148 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1180 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1280 | [Owner : SERVIÇO DE REDE |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1428 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
1684 | [Owner : Usuário |Parent : 684] - (.Microsoft Corporation - Gerenciador de Janelas da Área de Trabalho.) - (6.1.7600.16385) = C:\Windows\System32\dwm
2796 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
2868 | [Owner : SERVIÇO DE REDE |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
3292 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
3620 | [Owner : SERVIÇO LOCAL |Parent : 728] - (.Microsoft Corporation - Processo de Host para Serviços do Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost
2640 | [Owner : Usuário |Parent : 1740] - (. - .) - (0.0.0.0) = C:\Users\Usuário\Desktop\Pre_Scan
4532 | [Owner : SISTEMA |Parent : 728] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - (14.0.0.4563) = C:\Program Files (x86)\AVG\AVG2014\avgwdsvc
3156 | [Owner : SISTEMA |Parent : 4532] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) - (14.0.0.4563) = C:\Program Files (x86)\AVG\AVG2014\avgnsa
1712 | [Owner : SISTEMA |Parent : 4532] - (.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) - (14.0.0.4563) = C:\Program Files (x86)\AVG\AVG2014\avgemca
1332 | [Owner : SISTEMA |Parent : 4532] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) - (14.0.0.4563) = C:\PROGRA~2\AVG\AVG2014\avgrsa
1492 | [Owner : SISTEMA |Parent : 1332] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) - (14.0.0.4563) = C:\Program Files (x86)\AVG\AVG2014\avgcsrva
4200 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC
4184 | [Owner : SISTEMA |Parent : 4200] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) - (7.250.4232.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM
4472 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Indexador do Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer
4180 | [Owner : SERVIÇO DE REDE |Parent : 728] - (.Microsoft Corporation - Serviço de Compartilhamento de Rede do Windows Media Player.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk
2324 | [Owner : SISTEMA |Parent : 4472] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.7601.17610) = C:\Windows\System32\SearchProtocolHost
4640 | [Owner : SISTEMA |Parent : 4472] - (.Microsoft Corporation - Microsoft Windows Search Filter Host.) - (7.0.7601.17610) = C:\Windows\System32\SearchFilterHost
456 | [Owner : SISTEMA |Parent : 908] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7601.17514) = C:\Windows\System32\wbem\WmiPrvSE
2712 | [Owner : SISTEMA |Parent : 728] - (.Microsoft Corporation - Aplicativo de subsistema de spooler.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv


¤¤¤¤¤¤¤¤¤¤ | Winlogon user : OK !


¤¤¤¤¤¤¤¤¤¤ | Winlogon machine

Modified : [64][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[AutoRestartShell] : 1 -> 0
Modified : [32][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[AutoRestartShell] : 1 -> 0
Repaired : [64][HKLM | Winlogon]|[userinit] : userinit, -> C:\Windows\SysWOW64\userinit,

¤¤¤¤¤¤¤¤¤¤ | Associations

Repaired : [64][HKLM\Software\Classes\Folder\shell\open\command] : %SystemRoot%\Explorer.exe -> C:\Windows\Explorer


¤

Repaired : [64][HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\open\command] : "C:\Program Files\Mozilla Firefox\Firefox.exe" -> "C:\Program Files (x86)\Mozilla Firefox\Firefox.exe"
Repaired : [64][HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\safemode\command] : "C:\Program Files\Mozilla Firefox\Firefox.exe" -safe-mode -> "C:\Program Files (x86)\Mozilla Firefox\Firefox.exe" -safe-mode
Repaired : [64][HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : "C:\Program Files\Internet Explorer\iexplore.exe" -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
Repaired : [64][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [32][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

¤¤¤¤¤¤¤¤¤¤ | Registry

Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{9343812e-1c37-4a49-a12e-4b2d810d956b}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{9343812e-1c37-4a49-a12e-4b2d810d956b}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{20D04FE0-3AEA-1069-A2D8-08002B30309D}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{20D04FE0-3AEA-1069-A2D8-08002B30309D}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{59031a47-3f72-44a7-89c5-5595fe6b30ee}] : 1 -> 0
Repaired : [32][HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{59031a47-3f72-44a7-89c5-5595fe6b30ee}] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\policies\Explorer]|[NoDriveTypeAutoRun] : 189 -> 145
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Policies\Explorer]|[NoActiveDesktop] : 1 -> 0
Repaired : [64][HKLM\software\Microsoft\Windows\CurrentVersion\Policies\Explorer]|[NoActiveDesktopChanges] : 1 -> 0
Repaired : [HKU\S-1-5-21-3127348328-4204076854-1704267095-1000\software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]|[Hidden] : 2 -> 0
Repaired : [HKU\S-1-5-21-3127348328-4204076854-1704267095-1000\software\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel]|[AllItemsIconView] : 0 -> 1
Repaired : [HKU\S-1-5-21-3127348328-4204076854-1704267095-1000\software\Microsoft\Windows\CurrentVersion\Policies\Explorer]|[NoDriveTypeAutoRun] : 189 -> 145

¤¤¤¤¤¤¤¤¤¤ | Access to the registry and to the administrator of the tasks



¤¤¤¤¤¤¤¤¤¤ | SafeBoot

Safeboot Keys are O.K

Alternate shell is OK !

¤

Safeboot Minimal Subkeys : O.K !

¤

Safeboot Network Subkeys : O.K !

¤¤¤¤¤¤¤¤¤¤ | IFEO


¤¤¤¤¤¤¤¤¤¤ | Mountpoints2



¤¤¤¤¤¤¤¤¤¤ | Windows

[64][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]|[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[32][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]|[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[32][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini]|[winlogon] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon

Winsrv : OK !


[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[AppInit_DLLS] :

[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[AppInit_DLLS] :
[64][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[32][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1

¤¤¤¤¤¤¤¤¤¤ | Security center

Repaired : [64][HKLM\Software\Microsoft\Security Center]|[AutoUpdateDisableNotify] : 1 -> 0






Repaired : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]|[EnableFirewall] : 1 -> 0

Repaired : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]|[EnableFirewall] : 1 -> 0

Repaired : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]|[EnableFirewall] : 1 -> 0

¤¤¤¤¤¤¤¤¤¤ | Correction of the services


Repaired : [Compbatt] : 3 -> 0
Repaired : [Iphlpsvc] : 4 -> 2
Repaired : [agp440] : 3 -> 2
Repaired : [EapHost] : 3 -> 2
Repaired : [Wlansvc] : 3 -> 2
Repaired : [SharedAccess] : 4 -> 2
Repaired : [windefend] : 3 -> 2
Repaired : [wudfsvc] : 3 -> 2
Repaired : [WerSvc] : 3 -> 2

¤¤¤¤¤¤¤¤¤¤ | Internet Explorer


Users browser settings : OK

Repaired : [64][HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [32][HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [64][HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [32][HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [64][HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [32][HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [64][HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Repaired : [32][HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

¤


Hijack.Internet : OK

¤¤¤¤¤¤¤¤¤¤ | Hosts

C:\Windows\System32\Drivers\etc\hosts : Cleaned

¤¤¤¤¤¤¤¤¤¤ | reparsepoint



¤¤¤¤¤¤¤¤¤¤ | Detection of offsets


¤¤¤¤¤¤¤¤¤¤ | Files | Folders | Registry


Deleted : C:\$Recycle.bin\S-1-5-21-3127348328-4204076854-1704267095-1000
Deleted : HKU\S-1-5-21-3127348328-4204076854-1704267095-1000\Software\AVS4YOU
Deleted : [64]HKLM\Software\AVS4YOU
Deleted : [32]HKLM\Software\AVS4YOU


Moved to quarantine successfully : C:\Users\Usuário\AppData\Roaming\unins000.dat
Moved to quarantine successfully : C:\Users\Usuário\AppData\Roaming\unins001.dat
Moved to quarantine successfully : C:\Users\Usuário\AppData\Roaming\AVS4YOU
Moved to quarantine successfully : C:\ö7CSXGuard.dll
Moved to quarantine successfully : C:\Users\Usuário\AppData\Local\microsoft\windows\WebCacheLock.dat
Moved to quarantine successfully : C:\Users\Usuário\AppData\Roaming\PokeBRO
Moved to quarantine successfully : C:\Users\Usuário\AppData\Roaming\POST
Moved to quarantine successfully : C:\Users\Usuário\AppData\LocalLow\Sun\Java\Deployment\cache\6.0
Moved to quarantine successfully : C:\Users\Usuário\AppData\LocalLow\Sun\Java\Deployment\cache\security

Prefetch -> cleaned




¤¤¤¤¤¤¤¤¤¤ | Hidden files

~ [Drive C:] : Hidden : 3 | Restored : 3
~ [Program Files] : Hidden : 27 | Restored : 27
~ [Users] : Hidden : 5 | Restored : 5
~ [Documents] : Hidden : 8 | Restored : 8
~ [Searches] : Hidden : 2 | Restored : 2
~ [Windows] : Hidden : 41 | Restored : 41
~ [Start Menu | Programs | Startup] : Hidden : 1 | Restored : 1
~ [Libraries] : Hidden : 38 | Restored : 38


¤¤¤¤¤¤¤¤¤¤ | Control of the partitions

Disk: 0 Size=477G
Pos MBRndx Type/Name Size Active Hide Start Sector Sectors
--- ------ ---------- ---- ------ ---- ------------ ------------
0 0 07-NTFS 355M Yes No 2,048 729,088
1 1 07-NTFS 477G No No 731,136 976,039,984

¤¤¤¤¤¤¤¤¤¤

[HKLM | Winlogon] | AutoRestartShell : 0 -> 1
[HKLM64 | Winlogon] | AutoRestartShell : 0 -> 1

End : 20:42:43


Standby-mode restored
¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤ - 324
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Ter 13 maio 2014, 21:05

Como está o PC?
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Qua 14 maio 2014, 10:28

realmente deu uma melhorada mas mesmo assim vou ver se compro mais uma memoria e talvez comprar um processador nao gostei da amd mas ja que vai sair bem mais caro trocar tudo vo ve se consigo melhorar esse aki Computador travando constantemente. - Página 2 648673379 
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Qua 14 maio 2014, 10:35

 Computador travando constantemente. - Página 2 648673379  Realmente é bom aumentar a memória Ram para 8 Gb, além da questão do processador e placa de vídeo que também são muito importantes.
_______________________________________________________________________________________

Se você quiser fazer mais uma análise para vermos se ainda há algo de problemático no PC faça o seguinte:

Computador travando constantemente. - Página 2 772309 Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e salve-o no Desktop (Área de Trabalho)

Obs: Ao acessar o link acima, clique no botão Download Now 64-Bit Version

Execute o Farbar seguindo as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*Serão criados dois relatórios no Desktop: FRST.txt e Addition.txt

Poste estes dois relatórios em sua próxima resposta. (Obs: se não couber em uma só resposta, pode dividi-la em mais postagens).
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Qua 14 maio 2014, 11:13

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-05-2014
Ran by Usuário (administrator) on PC-CHIPS-A45G- on 14-05-2014 11:04:48
Running from C:\Users\Usuário\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link for 64-Bit Version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5180432 2014-04-06] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3127348328-4204076854-1704267095-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD310CC3B3ACBCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-BR
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Auxiliar de Conexão do Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

FireFox:
========
FF ProfilePath: C:\Users\Usuário\AppData\Roaming\Mozilla\Firefox\Profiles\gycv5ie5.default
FF NewTab: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Keyword.URL: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: gastecnologia.com.br/sf/cef - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
FF Plugin HKCU: gastecnologia.com.br/sf/uni - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll (GAS Tecnologia)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-br.xml
FF Extension: NewTabURL - C:\Users\Usuário\AppData\Roaming\Mozilla\Firefox\Profiles\gycv5ie5.default\Extensions\newtaburl_local.xpi [2011-08-30]
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\cef\xpi
FF Extension: GBBD Caixa Economica Federal - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2014-02-22]
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E8873}] - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\uni\xpi
FF Extension: Guardião - Itaú 30 horas - C:\Users\Usuário\AppData\Local\GAS Tecnologia\GBBD\uni\xpi [2014-04-16]

Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR StartupUrls: "https://www.google.com.br/"
CHR DefaultSearchKeyword: google.com.br
CHR Extension: (Google Docs) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-10]
CHR Extension: (Google Drive) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-10]
CHR Extension: (YouTube) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-10]
CHR Extension: (Pesquisa do Google) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-10]
CHR Extension: (Google Wallet) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-10]

==================== Services (Whitelisted) =================

S4 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3645456 2014-04-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [291912 2014-03-27] (AVG Technologies CZ, s.r.o.)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2153792 2014-04-05] (IObit)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S4 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4565936 2013-01-03] (INCA Internet Co., Ltd.)
S4 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.)
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2014-03-26] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11832 2010-03-29] (Advanced Micro Devices Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2013-10-28] (The OpenVPN Project)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-03-27] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [237336 2014-04-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192792 2014-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [236824 2014-03-27] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [324376 2014-03-27] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130840 2014-03-31] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [32536 2014-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [274200 2014-03-31] (AVG Technologies CZ, s.r.o.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-02-28] (Duplex Secure Ltd.)
S0 BootDefragDriver; System32\drivers\BootDefragDriver.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 npkcrypt; \??\C:\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys [X]
S3 npkycryp; \??\C:\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkycryp.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 X6va020; \??\C:\Windows\SysWOW64\Drivers\X6va020 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-14 11:04 - 2014-05-14 11:05 - 00013531 _____ () C:\Users\Usuário\Desktop\FRST.txt
2014-05-14 11:04 - 2014-05-14 11:04 - 00000000 ____D () C:\FRST
2014-05-14 11:01 - 2014-05-14 11:01 - 02066944 _____ (Farbar) C:\Users\Usuário\Desktop\FRST64.exe
2014-05-14 06:39 - 2014-05-06 01:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 06:39 - 2014-05-06 01:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 06:39 - 2014-05-06 00:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 06:39 - 2014-05-06 00:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 06:39 - 2014-05-06 00:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 06:39 - 2014-05-05 23:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 06:35 - 2014-05-14 06:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-14 06:27 - 2014-05-09 03:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 06:27 - 2014-05-09 03:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 06:27 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 06:27 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 06:26 - 2014-04-11 23:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 06:26 - 2014-04-11 23:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 06:26 - 2014-04-11 23:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 06:26 - 2014-04-11 23:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 06:26 - 2014-04-11 23:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 06:26 - 2014-04-11 23:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 06:26 - 2014-04-11 23:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 06:26 - 2014-04-11 23:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 06:26 - 2014-04-11 23:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 06:26 - 2014-03-04 06:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 06:26 - 2014-03-04 06:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 06:26 - 2014-03-04 06:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 06:26 - 2014-03-04 06:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 06:26 - 2014-03-04 06:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 06:26 - 2014-03-04 06:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 06:26 - 2014-03-04 06:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 06:26 - 2014-03-04 06:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 06:26 - 2014-03-04 06:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 06:26 - 2014-03-04 06:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-13 20:47 - 2014-05-13 20:47 - 00000020 _____ () C:\Users\Usuário\defogger_reenable
2014-05-13 20:42 - 2014-05-13 20:42 - 00021161 ____R () C:\Pre_Scan_13_05_2014_20_42_45.txt
2014-05-13 20:28 - 2014-05-13 20:42 - 00000000 ____D () C:\Pre_Scan
2014-05-13 20:21 - 2014-05-13 20:21 - 00841032 _____ (Google Inc.) C:\Users\Usuário\Downloads\chrome.exe
2014-05-13 19:33 - 2014-05-13 20:07 - 00049446 _____ () C:\Shortcut_Module_13_05_2014_20_07_57.txt
2014-05-13 19:33 - 2014-05-13 20:07 - 00000000 ____D () C:\Shortcut_Module
2014-05-13 19:27 - 2014-05-13 19:28 - 02560000 _____ () C:\Users\Usuário\Downloads\Shortcut_Module.exe
2014-05-13 19:10 - 2014-05-13 19:10 - 00000000 ____D () C:\Users\Todos os Usuários\ProductData
2014-05-13 19:10 - 2014-05-13 19:10 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-12 13:39 - 2014-05-13 13:29 - 00000000 ____D () C:\Users\Usuário\Documents\fotos
2014-05-12 10:36 - 2014-05-12 10:37 - 00000000 ____D () C:\Users\Usuário\Downloads\VIDEOS Q JA TEM - JHOW
2014-05-10 20:35 - 2014-05-10 20:35 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Skinux
2014-05-10 20:35 - 2014-05-10 20:35 - 00000000 ____D () C:\Users\Usuário\AppData\Local\KodakGallery
2014-05-10 18:21 - 2014-05-10 19:12 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-05-10 18:21 - 2014-05-10 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-05-10 17:51 - 2014-05-10 17:38 - 00012353 _____ () C:\zoek-results2014-05-10-203808.log
2014-05-10 17:30 - 2014-05-10 17:24 - 00010362 _____ () C:\zoek-results2014-05-10-202436.log
2014-05-10 17:21 - 2014-05-10 12:11 - 00036344 _____ () C:\zoek-results2014-05-10-151158.log
2014-05-10 14:22 - 2014-05-10 14:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 11:48 - 2014-05-10 17:52 - 00002312 _____ () C:\zoek-results.log
2014-05-10 11:47 - 2014-05-10 17:24 - 00000000 ____D () C:\zoek_backup
2014-05-10 11:24 - 2014-05-10 11:25 - 00000000 ____D () C:\AdwCleaner
2014-05-10 11:24 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-08 17:39 - 2014-05-08 17:39 - 00000000 ____D () C:\Windows\Sun
2014-05-08 17:02 - 2014-05-08 17:02 - 00884680 _____ (Google Inc.) C:\Users\Usuário\Downloads\ChromeSetup.exe
2014-05-08 15:19 - 2014-05-08 16:06 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Media Player Classic
2014-05-08 14:20 - 2014-05-08 14:36 - 00003072 ____H () C:\Users\Usuário\Desktop\photothumb.db
2014-05-08 13:44 - 2014-05-08 13:52 - 00000000 ____D () C:\FFOutput
2014-05-08 13:16 - 2014-05-08 13:16 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Ahead
2014-05-08 12:54 - 2014-05-13 20:00 - 00000000 ____D () C:\Users\Todos os Usuários\Avg_Update_0414b
2014-05-08 12:54 - 2014-05-13 20:00 - 00000000 ____D () C:\ProgramData\Avg_Update_0414b
2014-05-07 16:59 - 2014-05-14 10:00 - 01170977 ____N () C:\Windows\WindowsUpdate.log
2014-05-07 16:07 - 2014-05-07 16:07 - 00001290 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\MV AntiSpy 4.0.lnk
2014-05-07 16:07 - 2014-05-07 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security
2014-05-07 16:07 - 2014-05-07 16:07 - 00000000 ____D () C:\Program Files (x86)\Marcos Velasco Security
2014-05-07 15:23 - 2014-05-07 15:23 - 00000000 ____D () C:\Users\Usuário\Documents\NeroVision
2014-05-06 12:27 - 2014-05-14 09:16 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-06 12:21 - 2014-05-06 12:21 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-06 12:21 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-06 12:21 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-06 12:21 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-06 08:43 - 2014-05-06 08:43 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\TuneUp Software
2014-05-06 08:38 - 2014-05-06 08:38 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Macromedia
2014-05-06 08:26 - 2014-05-06 08:26 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\Users\Usuário\AppData\Local\AMD
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\Users\Todos os Usuários\ATI
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\ProgramData\ATI
2014-05-06 08:18 - 2014-05-06 08:18 - 00060777 _____ () C:\Windows\SysWOW64\CCCInstall_201405060818328092.log
2014-05-06 08:18 - 2014-05-06 08:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-06 08:17 - 2014-05-06 08:17 - 00000000 ____D () C:\Users\Todos os Usuários\AMD
2014-05-06 08:17 - 2014-05-06 08:17 - 00000000 ____D () C:\ProgramData\AMD
2014-05-06 08:16 - 2014-05-06 08:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-06 08:15 - 2014-05-06 08:15 - 00016741 _____ () C:\Windows\SysWOW64\CCCInstall_201405060815220676.log
2014-05-06 08:13 - 2014-05-06 08:13 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\ATI
2014-05-06 08:07 - 2014-05-06 08:07 - 00000000 ____D () C:\AMD
2014-05-05 11:07 - 2014-05-05 11:07 - 00028598 _____ () C:\teste.html
2014-05-05 10:16 - 2014-05-05 10:16 - 00015809 _____ () C:\Windows\system32\energy-report.html
2014-05-04 16:20 - 2014-05-04 16:21 - 02775448 _____ () C:\Users\Usuário\Downloads\SuperTela-ptBR.exe
2014-05-04 15:39 - 2014-05-04 15:39 - 00003544 _____ () C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2014-05-04 15:38 - 2014-05-04 15:38 - 00001917 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Super Tela.lnk
2014-05-04 15:38 - 2014-05-04 15:38 - 00000000 ____D () C:\Program Files (x86)\Super Tela
2014-05-03 20:45 - 2014-05-03 20:46 - 12485568 _____ () C:\Users\Usuário\Downloads\Glary_Utilities_v4.10.0.100.exe
2014-05-02 10:47 - 2014-05-02 10:47 - 00000089 _____ () C:\Users\Usuário\Documents\Configurando a bosta do AVG.txt
2014-05-01 16:53 - 2014-05-01 16:53 - 00001374 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2014-05-01 16:53 - 2014-05-01 16:53 - 00001305 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2014-05-01 16:52 - 2014-05-01 16:53 - 00000020 _____ () C:\Windows\ôõ1
2014-05-01 16:52 - 2014-05-01 16:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-01 16:51 - 2014-05-14 06:33 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-01 16:51 - 2014-05-01 16:52 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-01 16:44 - 2014-05-01 16:44 - 01289576 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\wlsetup-web.exe
2014-05-01 15:33 - 2014-05-13 18:14 - 00000000 ____D () C:\Users\Usuário\Downloads\Videos JONATHAN
2014-04-29 12:08 - 2014-04-29 12:08 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\AVG2014
2014-04-29 12:07 - 2014-05-06 07:45 - 00000000 ____D () C:\Users\Todos os Usuários\AVG2014
2014-04-29 12:07 - 2014-05-06 07:45 - 00000000 ____D () C:\ProgramData\AVG2014
2014-04-29 12:07 - 2014-05-06 07:44 - 00000000 ____D () C:\$AVG
2014-04-29 12:07 - 2014-04-29 12:07 - 00000983 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-04-29 12:07 - 2014-04-29 12:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-04-29 12:06 - 2014-04-29 12:06 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-04-29 12:01 - 2014-05-13 12:32 - 00000000 ____D () C:\Users\Todos os Usuários\MFAData
2014-04-29 12:01 - 2014-05-13 12:32 - 00000000 ____D () C:\ProgramData\MFAData
2014-04-29 12:01 - 2014-05-08 07:51 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Avg2014
2014-04-29 12:01 - 2014-04-29 12:01 - 00000000 ____D () C:\Users\Usuário\AppData\Local\MFAData
2014-04-29 11:22 - 2014-04-29 11:22 - 00000000 _____ () C:\asc_rdflag
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\Users\Todos os Usuários\SystemRequirementsLab
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-04-29 09:55 - 2014-04-29 09:55 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-29 09:55 - 2014-04-29 09:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-29 09:55 - 2014-04-29 09:55 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-29 09:51 - 2014-04-29 09:52 - 00921512 _____ (Oracle Corporation) C:\Users\Usuário\Downloads\jxpiinstall.exe
2014-04-27 16:52 - 2014-04-27 16:52 - 04745984 _____ (Piriform Ltd) C:\Users\Usuário\Downloads\ccsetup413.exe
2014-04-25 11:08 - 2014-04-25 11:08 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-04-25 11:08 - 2014-04-25 11:08 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-04-25 11:07 - 2014-04-25 11:08 - 55003752 _____ (Free Time) C:\Users\Usuário\Downloads\FFSetup3.3.4.0.exe
2014-04-25 10:38 - 2014-04-25 10:38 - 00669064 _____ ( ) C:\Users\Usuário\Downloads\Danny Phantom - Urban Jungle (U).exe
2014-04-23 16:15 - 2014-05-14 09:04 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 15:14 - 2014-04-23 15:14 - 00000571 _____ () C:\Users\Usuário\Documents\LASANHA DE PÃO DE FORMA - JONATHAN.txt
2014-04-21 16:12 - 2014-04-21 16:12 - 00066176 _____ () C:\Users\Usuário\Downloads\Auxiliar_Administrativo_CESGRANRIO_2005.zip
2014-04-21 16:12 - 2014-04-21 16:12 - 00066176 _____ () C:\Users\Usuário\Downloads\Auxiliar_Administrativo_CESGRANRIO_2005(1).zip
2014-04-20 15:18 - 2014-04-25 08:58 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\PhotoScape
2014-04-20 15:18 - 2014-04-20 15:18 - 00001035 _____ () C:\Users\Usuário\Desktop\PhotoScape.lnk
2014-04-20 15:18 - 2014-04-20 15:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2014-04-20 15:18 - 2014-04-20 15:18 - 00000000 ____D () C:\Program Files (x86)\PhotoScape
2014-04-20 11:13 - 2014-04-20 11:13 - 00000839 _____ () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-04-18 15:01 - 2014-04-18 15:01 - 00237336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2014-04-18 12:04 - 2014-04-18 12:04 - 00023943 _____ () C:\Users\Usuário\Downloads\3A893EE6DED732000772638DEF15BAF86B0270CF.torrent

==================== One Month Modified Files and Folders =======

2014-05-14 11:05 - 2014-05-14 11:04 - 00013531 _____ () C:\Users\Usuário\Desktop\FRST.txt
2014-05-14 11:04 - 2014-05-14 11:04 - 00000000 ____D () C:\FRST
2014-05-14 11:01 - 2014-05-14 11:01 - 02066944 _____ (Farbar) C:\Users\Usuário\Desktop\FRST64.exe
2014-05-14 11:01 - 2014-03-12 11:53 - 00003974 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5CD48F4D-25C4-423C-9E4C-907C7397856C}
2014-05-14 10:45 - 2012-07-09 10:42 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-14 10:19 - 2012-07-09 15:51 - 00001070 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-14 10:00 - 2014-05-07 16:59 - 01170977 ____N () C:\Windows\WindowsUpdate.log
2014-05-14 09:19 - 2009-07-14 01:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-14 09:19 - 2009-07-14 01:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-14 09:16 - 2014-05-06 12:27 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-14 09:09 - 2014-03-17 17:25 - 00000334 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-05-14 09:09 - 2014-03-07 11:17 - 00000468 __RSH () C:\Users\Usuário\ntuser.pol
2014-05-14 09:09 - 2012-07-09 15:51 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-14 09:09 - 2012-07-07 17:22 - 00000000 ___RD () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 09:09 - 2012-07-07 17:22 - 00000000 ___RD () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 09:09 - 2012-07-07 17:21 - 00000000 ____D () C:\Users\Usuário
2014-05-14 09:07 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-14 09:04 - 2014-04-23 16:15 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 09:04 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-14 09:03 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-14 09:03 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-05-14 09:03 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-05-14 06:39 - 2012-07-09 12:02 - 00000000 ____D () C:\Users\Todos os Usuários\Microsoft Help
2014-05-14 06:39 - 2012-07-09 12:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 06:37 - 2014-05-14 06:35 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 06:35 - 2012-07-09 16:18 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-14 06:33 - 2014-05-14 06:33 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-14 06:33 - 2014-05-01 16:51 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-13 20:47 - 2014-05-13 20:47 - 00000020 _____ () C:\Users\Usuário\defogger_reenable
2014-05-13 20:42 - 2014-05-13 20:42 - 00021161 ____R () C:\Pre_Scan_13_05_2014_20_42_45.txt
2014-05-13 20:42 - 2014-05-13 20:28 - 00000000 ____D () C:\Pre_Scan
2014-05-13 20:21 - 2014-05-13 20:21 - 00841032 _____ (Google Inc.) C:\Users\Usuário\Downloads\chrome.exe
2014-05-13 20:14 - 2012-07-09 15:51 - 00004066 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-13 20:13 - 2014-03-26 11:55 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\IObit
2014-05-13 20:13 - 2014-03-15 19:02 - 00000000 ____D () C:\Users\Todos os Usuários\IObit
2014-05-13 20:13 - 2014-03-15 19:02 - 00000000 ____D () C:\ProgramData\IObit
2014-05-13 20:13 - 2012-07-09 15:51 - 00003814 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-13 20:07 - 2014-05-13 19:33 - 00049446 _____ () C:\Shortcut_Module_13_05_2014_20_07_57.txt
2014-05-13 20:07 - 2014-05-13 19:33 - 00000000 ____D () C:\Shortcut_Module
2014-05-13 20:05 - 2013-12-19 19:07 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Unity
2014-05-13 20:00 - 2014-05-08 12:54 - 00000000 ____D () C:\Users\Todos os Usuários\Avg_Update_0414b
2014-05-13 20:00 - 2014-05-08 12:54 - 00000000 ____D () C:\ProgramData\Avg_Update_0414b
2014-05-13 19:58 - 2014-03-17 17:25 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 4
2014-05-13 19:28 - 2014-05-13 19:27 - 02560000 _____ () C:\Users\Usuário\Downloads\Shortcut_Module.exe
2014-05-13 19:18 - 2012-12-17 08:26 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\OTP
2014-05-13 19:17 - 2012-11-24 15:20 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Orbit
2014-05-13 19:14 - 2013-09-13 11:41 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Dofus
2014-05-13 19:13 - 2012-12-10 15:02 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\DBOBR
2014-05-13 19:10 - 2014-05-13 19:10 - 00000000 ____D () C:\Users\Todos os Usuários\ProductData
2014-05-13 19:10 - 2014-05-13 19:10 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-13 18:14 - 2014-05-01 15:33 - 00000000 ____D () C:\Users\Usuário\Downloads\Videos JONATHAN
2014-05-13 18:14 - 2014-01-06 20:42 - 00000000 ____D () C:\Users\Usuário\Downloads\Musicas - Jhow
2014-05-13 17:10 - 2013-11-05 14:15 - 00000000 ____D () C:\Users\Usuário\Documents\Cross Fire
2014-05-13 13:29 - 2014-05-12 13:39 - 00000000 ____D () C:\Users\Usuário\Documents\fotos
2014-05-13 12:32 - 2014-04-29 12:01 - 00000000 ____D () C:\Users\Todos os Usuários\MFAData
2014-05-13 12:32 - 2014-04-29 12:01 - 00000000 ____D () C:\ProgramData\MFAData
2014-05-13 12:00 - 2014-02-22 10:18 - 00000000 ____D () C:\Users\Todos os Usuários\GAS Tecnologia
2014-05-13 12:00 - 2014-02-22 10:18 - 00000000 ____D () C:\ProgramData\GAS Tecnologia
2014-05-12 11:09 - 2013-08-17 18:35 - 00000069 _____ () C:\Windows\NeroDigital.ini
2014-05-12 10:37 - 2014-05-12 10:36 - 00000000 ____D () C:\Users\Usuário\Downloads\VIDEOS Q JA TEM - JHOW
2014-05-10 20:35 - 2014-05-10 20:35 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Skinux
2014-05-10 20:35 - 2014-05-10 20:35 - 00000000 ____D () C:\Users\Usuário\AppData\Local\KodakGallery
2014-05-10 19:12 - 2014-05-10 18:21 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-05-10 18:21 - 2014-05-10 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-05-10 17:52 - 2014-05-10 11:48 - 00002312 _____ () C:\zoek-results.log
2014-05-10 17:38 - 2014-05-10 17:51 - 00012353 _____ () C:\zoek-results2014-05-10-203808.log
2014-05-10 17:24 - 2014-05-10 17:30 - 00010362 _____ () C:\zoek-results2014-05-10-202436.log
2014-05-10 17:24 - 2014-05-10 11:47 - 00000000 ____D () C:\zoek_backup
2014-05-10 14:35 - 2014-05-10 14:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:11 - 2014-05-10 17:21 - 00036344 _____ () C:\zoek-results2014-05-10-151158.log
2014-05-10 11:25 - 2014-05-10 11:24 - 00000000 ____D () C:\AdwCleaner
2014-05-10 11:25 - 2014-03-23 13:15 - 00001065 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-10 11:25 - 2012-07-09 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-10 11:25 - 2012-07-07 17:22 - 00000969 _____ () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-09 15:35 - 2014-03-11 14:35 - 00411374 _____ () C:\Windows\system32\perfh011.dat
2014-05-09 15:35 - 2014-03-11 14:35 - 00122700 _____ () C:\Windows\system32\perfc011.dat
2014-05-09 15:35 - 2014-03-11 14:02 - 00504010 _____ () C:\Windows\system32\perfh006.dat
2014-05-09 15:35 - 2014-03-11 14:02 - 00099258 _____ () C:\Windows\system32\perfc006.dat
2014-05-09 15:35 - 2014-03-11 12:56 - 00392938 _____ () C:\Windows\system32\prfh0404.dat
2014-05-09 15:35 - 2014-03-11 12:56 - 00115690 _____ () C:\Windows\system32\prfc0404.dat
2014-05-09 15:35 - 2014-03-11 12:17 - 00723614 _____ () C:\Windows\system32\prfh0816.dat
2014-05-09 15:35 - 2014-03-11 12:17 - 00153506 _____ () C:\Windows\system32\prfc0816.dat
2014-05-09 15:35 - 2014-03-11 11:53 - 00734954 _____ () C:\Windows\system32\perfh015.dat
2014-05-09 15:35 - 2014-03-11 11:53 - 00156472 _____ () C:\Windows\system32\perfc015.dat
2014-05-09 15:35 - 2014-03-11 11:27 - 00651278 _____ () C:\Windows\system32\perfh01F.dat
2014-05-09 15:35 - 2014-03-11 11:27 - 00140600 _____ () C:\Windows\system32\perfc01F.dat
2014-05-09 15:35 - 2014-03-11 10:44 - 00375766 _____ () C:\Windows\system32\prfh0804.dat
2014-05-09 15:35 - 2014-03-11 10:44 - 00120192 _____ () C:\Windows\system32\prfc0804.dat
2014-05-09 15:35 - 2014-03-11 09:23 - 00719196 _____ () C:\Windows\system32\perfh019.dat
2014-05-09 15:35 - 2014-03-11 09:23 - 00151442 _____ () C:\Windows\system32\perfc019.dat
2014-05-09 15:35 - 2014-03-11 09:02 - 00489110 _____ () C:\Windows\system32\perfh014.dat
2014-05-09 15:35 - 2014-03-11 09:02 - 00096004 _____ () C:\Windows\system32\perfc014.dat
2014-05-09 15:35 - 2014-03-11 08:36 - 00601584 _____ () C:\Windows\system32\perfh008.dat
2014-05-09 15:35 - 2014-03-11 08:36 - 00111728 _____ () C:\Windows\system32\perfc008.dat
2014-05-09 15:35 - 2014-03-10 18:59 - 00658316 _____ () C:\Windows\system32\perfh01D.dat
2014-05-09 15:35 - 2014-03-10 18:59 - 00143074 _____ () C:\Windows\system32\perfc01D.dat
2014-05-09 15:35 - 2014-03-10 18:41 - 00423020 _____ () C:\Windows\system32\perfh012.dat
2014-05-09 15:35 - 2014-03-10 18:41 - 00120984 _____ () C:\Windows\system32\perfc012.dat
2014-05-09 15:35 - 2014-03-10 18:21 - 00663436 _____ () C:\Windows\system32\perfh005.dat
2014-05-09 15:35 - 2014-03-10 18:21 - 00142026 _____ () C:\Windows\system32\perfc005.dat
2014-05-09 15:35 - 2014-03-10 17:37 - 00738094 _____ () C:\Windows\system32\perfh013.dat
2014-05-09 15:35 - 2014-03-10 17:37 - 00153702 _____ () C:\Windows\system32\perfc013.dat
2014-05-09 15:35 - 2014-03-10 17:06 - 00476098 _____ () C:\Windows\system32\perfh00B.dat
2014-05-09 15:35 - 2014-03-10 17:06 - 00102120 _____ () C:\Windows\system32\perfc00B.dat
2014-05-09 15:35 - 2014-03-10 16:53 - 00678350 _____ () C:\Windows\system32\perfh00E.dat
2014-05-09 15:35 - 2014-03-10 16:53 - 00171874 _____ () C:\Windows\system32\perfc00E.dat
2014-05-09 15:35 - 2014-03-10 16:31 - 00740052 _____ () C:\Windows\system32\perfh00A.dat
2014-05-09 15:35 - 2014-03-10 16:31 - 00159074 _____ () C:\Windows\system32\perfc00A.dat
2014-05-09 15:35 - 2014-03-10 16:19 - 00386940 _____ () C:\Windows\system32\perfh00D.dat
2014-05-09 15:35 - 2014-03-10 16:19 - 00085358 _____ () C:\Windows\system32\perfc00D.dat
2014-05-09 15:35 - 2014-03-10 15:50 - 00734642 _____ () C:\Windows\system32\perfh010.dat
2014-05-09 15:35 - 2014-03-10 15:50 - 00147446 _____ () C:\Windows\system32\perfc010.dat
2014-05-09 15:35 - 2014-03-10 15:41 - 00740312 _____ () C:\Windows\system32\perfh00C.dat
2014-05-09 15:35 - 2014-03-10 15:41 - 00473610 _____ () C:\Windows\system32\perfh001.dat
2014-05-09 15:35 - 2014-03-10 15:41 - 00150180 _____ () C:\Windows\system32\perfc00C.dat
2014-05-09 15:35 - 2014-03-10 15:41 - 00095372 _____ () C:\Windows\system32\perfc001.dat
2014-05-09 15:35 - 2014-03-10 15:22 - 00691804 _____ () C:\Windows\system32\perfh007.dat
2014-05-09 15:35 - 2014-03-10 15:22 - 00149716 _____ () C:\Windows\system32\perfc007.dat
2014-05-09 15:35 - 2009-07-14 14:55 - 00708476 _____ () C:\Windows\system32\prfh0416.dat
2014-05-09 15:35 - 2009-07-14 14:55 - 00148256 _____ () C:\Windows\system32\prfc0416.dat
2014-05-09 15:35 - 2009-07-14 02:13 - 17525952 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-09 14:38 - 2012-10-29 11:26 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-05-09 14:38 - 2012-07-09 09:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-09 03:14 - 2014-05-14 06:27 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 03:11 - 2014-05-14 06:27 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 17:39 - 2014-05-08 17:39 - 00000000 ____D () C:\Windows\Sun
2014-05-08 17:02 - 2014-05-08 17:02 - 00884680 _____ (Google Inc.) C:\Users\Usuário\Downloads\ChromeSetup.exe
2014-05-08 16:06 - 2014-05-08 15:19 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Media Player Classic
2014-05-08 15:32 - 2013-05-22 12:23 - 00000122 _____ () C:\Users\Usuário\AppData\Roaming\default.pls
2014-05-08 14:36 - 2014-05-08 14:20 - 00003072 ____H () C:\Users\Usuário\Desktop\photothumb.db
2014-05-08 13:52 - 2014-05-08 13:44 - 00000000 ____D () C:\FFOutput
2014-05-08 13:46 - 2013-09-27 12:23 - 00000000 ____D () C:\Users\Usuário\.dvdcss
2014-05-08 13:17 - 2013-05-22 12:14 - 00001024 _____ () C:\Users\Usuário\.rnd
2014-05-08 13:16 - 2014-05-08 13:16 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Ahead
2014-05-08 07:51 - 2014-04-29 12:01 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Avg2014
2014-05-07 16:07 - 2014-05-07 16:07 - 00001290 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\MV AntiSpy 4.0.lnk
2014-05-07 16:07 - 2014-05-07 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security
2014-05-07 16:07 - 2014-05-07 16:07 - 00000000 ____D () C:\Program Files (x86)\Marcos Velasco Security
2014-05-07 15:23 - 2014-05-07 15:23 - 00000000 ____D () C:\Users\Usuário\Documents\NeroVision
2014-05-07 14:59 - 2014-04-11 12:03 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Adobe
2014-05-07 14:59 - 2012-07-09 10:42 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Adobe
2014-05-07 14:07 - 2012-07-09 11:39 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Windows Live
2014-05-07 12:17 - 2013-07-25 13:47 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\uTorrent
2014-05-07 10:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-06 16:58 - 2013-12-21 19:20 - 00000000 ____D () C:\Windows\ERUNT
2014-05-06 16:08 - 2012-07-09 11:57 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Mozilla
2014-05-06 12:21 - 2014-05-06 12:21 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-06 12:21 - 2013-12-22 13:58 - 00000000 ____D () C:\Users\Todos os Usuários\Malwarebytes
2014-05-06 12:21 - 2013-12-22 13:58 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-06 08:43 - 2014-05-06 08:43 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\TuneUp Software
2014-05-06 08:38 - 2014-05-06 08:38 - 00000000 ____D () C:\Users\Usuário\AppData\Local\Macromedia
2014-05-06 08:33 - 2013-12-30 17:42 - 00000000 ____D () C:\Users\Usuário\Documents\Dolphin Emulator
2014-05-06 08:26 - 2014-05-06 08:26 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-05-06 08:25 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\spool
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\Users\Usuário\AppData\Local\AMD
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\Users\Todos os Usuários\ATI
2014-05-06 08:19 - 2014-05-06 08:19 - 00000000 ____D () C:\ProgramData\ATI
2014-05-06 08:19 - 2012-07-09 11:57 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Mozilla
2014-05-06 08:18 - 2014-05-06 08:18 - 00060777 _____ () C:\Windows\SysWOW64\CCCInstall_201405060818328092.log
2014-05-06 08:18 - 2014-05-06 08:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-06 08:18 - 2012-07-09 15:51 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-06 08:17 - 2014-05-06 08:17 - 00000000 ____D () C:\Users\Todos os Usuários\AMD
2014-05-06 08:17 - 2014-05-06 08:17 - 00000000 ____D () C:\ProgramData\AMD
2014-05-06 08:17 - 2012-07-09 09:55 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-06 08:16 - 2014-05-06 08:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-06 08:15 - 2014-05-06 08:15 - 00016741 _____ () C:\Windows\SysWOW64\CCCInstall_201405060815220676.log
2014-05-06 08:13 - 2014-05-06 08:13 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\ATI
2014-05-06 08:07 - 2014-05-06 08:07 - 00000000 ____D () C:\AMD
2014-05-06 07:45 - 2014-04-29 12:07 - 00000000 ____D () C:\Users\Todos os Usuários\AVG2014
2014-05-06 07:45 - 2014-04-29 12:07 - 00000000 ____D () C:\ProgramData\AVG2014
2014-05-06 07:44 - 2014-04-29 12:07 - 00000000 ____D () C:\$AVG
2014-05-06 07:44 - 2009-07-14 02:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-05-06 01:40 - 2014-05-14 06:39 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 01:17 - 2014-05-14 06:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 00:25 - 2014-05-14 06:39 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 00:07 - 2014-05-14 06:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 00:00 - 2014-05-14 06:39 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-05 23:10 - 2014-05-14 06:39 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-05 14:10 - 2012-10-31 16:30 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-05 11:07 - 2014-05-05 11:07 - 00028598 _____ () C:\teste.html
2014-05-05 10:16 - 2014-05-05 10:16 - 00015809 _____ () C:\Windows\system32\energy-report.html
2014-05-04 16:21 - 2014-05-04 16:20 - 02775448 _____ () C:\Users\Usuário\Downloads\SuperTela-ptBR.exe
2014-05-04 15:39 - 2014-05-04 15:39 - 00003544 _____ () C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2014-05-04 15:39 - 2013-04-01 13:14 - 00000029 _____ () C:\Windows\SysWOW64\config.ini
2014-05-04 15:38 - 2014-05-04 15:38 - 00001917 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Super Tela.lnk
2014-05-04 15:38 - 2014-05-04 15:38 - 00000000 ____D () C:\Program Files (x86)\Super Tela
2014-05-03 20:47 - 2014-03-23 12:17 - 00001096 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 4.lnk
2014-05-03 20:47 - 2014-03-17 17:25 - 00002646 _____ () C:\Windows\System32\Tasks\GlaryInitialize 4
2014-05-03 20:46 - 2014-05-03 20:45 - 12485568 _____ () C:\Users\Usuário\Downloads\Glary_Utilities_v4.10.0.100.exe
2014-05-03 20:35 - 2014-03-15 19:02 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-05-02 10:47 - 2014-05-02 10:47 - 00000089 _____ () C:\Users\Usuário\Documents\Configurando a bosta do AVG.txt
2014-05-01 16:53 - 2014-05-01 16:53 - 00001374 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2014-05-01 16:53 - 2014-05-01 16:53 - 00001305 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2014-05-01 16:53 - 2014-05-01 16:52 - 00000020 _____ () C:\Windows\ôõ1
2014-05-01 16:52 - 2014-05-01 16:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-01 16:52 - 2014-05-01 16:51 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-01 16:51 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-01 16:44 - 2014-05-01 16:44 - 01289576 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\wlsetup-web.exe
2014-04-30 16:07 - 2013-10-12 11:48 - 03334144 ____R () C:\Users\Public\Documents\ESBK.mbb
2014-04-30 16:07 - 2013-10-12 11:48 - 01492992 ____R () C:\Users\Public\Documents\ESBK.mb
2014-04-29 12:14 - 2012-10-29 11:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-29 12:08 - 2014-04-29 12:08 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\AVG2014
2014-04-29 12:07 - 2014-04-29 12:07 - 00000983 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-04-29 12:07 - 2014-04-29 12:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-04-29 12:06 - 2014-04-29 12:06 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-04-29 12:01 - 2014-04-29 12:01 - 00000000 ____D () C:\Users\Usuário\AppData\Local\MFAData
2014-04-29 11:23 - 2014-04-11 13:22 - 142770176 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-04-29 11:22 - 2014-04-29 11:22 - 00000000 _____ () C:\asc_rdflag
2014-04-29 11:22 - 2014-04-11 13:22 - 00319488 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-04-29 11:22 - 2014-04-11 13:22 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-04-29 11:22 - 2014-04-11 13:22 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-04-29 11:04 - 2012-07-09 15:51 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\Users\Todos os Usuários\SystemRequirementsLab
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-04-29 10:01 - 2014-04-29 10:01 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-04-29 09:55 - 2014-04-29 09:55 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-29 09:55 - 2014-04-29 09:55 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-29 09:55 - 2014-04-29 09:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-29 09:55 - 2014-04-29 09:55 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-29 09:52 - 2014-04-29 09:51 - 00921512 _____ (Oracle Corporation) C:\Users\Usuário\Downloads\jxpiinstall.exe
2014-04-27 16:52 - 2014-04-27 16:52 - 04745984 _____ (Piriform Ltd) C:\Users\Usuário\Downloads\ccsetup413.exe
2014-04-27 16:52 - 2012-10-31 16:30 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-26 07:10 - 2012-07-09 15:51 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-25 21:08 - 2013-03-05 14:17 - 00000000 ____D () C:\Users\Usuário\AppData\Local\LogMeIn Hamachi
2014-04-25 11:08 - 2014-04-25 11:08 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-04-25 11:08 - 2014-04-25 11:08 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-04-25 11:08 - 2014-04-25 11:07 - 55003752 _____ (Free Time) C:\Users\Usuário\Downloads\FFSetup3.3.4.0.exe
2014-04-25 10:38 - 2014-04-25 10:38 - 00669064 _____ ( ) C:\Users\Usuário\Downloads\Danny Phantom - Urban Jungle (U).exe
2014-04-25 09:48 - 2013-04-03 17:32 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Samsung
2014-04-25 09:01 - 2012-11-01 09:11 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-04-25 08:58 - 2014-04-20 15:18 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\PhotoScape
2014-04-25 08:58 - 2012-10-29 11:27 - 00000000 ____D () C:\Users\Usuário\AppData\Roaming\Arcsoft
2014-04-23 15:14 - 2014-04-23 15:14 - 00000571 _____ () C:\Users\Usuário\Documents\LASANHA DE PÃO DE FORMA - JONATHAN.txt
2014-04-23 06:36 - 2009-07-14 02:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-21 16:12 - 2014-04-21 16:12 - 00066176 _____ () C:\Users\Usuário\Downloads\Auxiliar_Administrativo_CESGRANRIO_2005.zip
2014-04-21 16:12 - 2014-04-21 16:12 - 00066176 _____ () C:\Users\Usuário\Downloads\Auxiliar_Administrativo_CESGRANRIO_2005(1).zip
2014-04-20 15:18 - 2014-04-20 15:18 - 00001035 _____ () C:\Users\Usuário\Desktop\PhotoScape.lnk
2014-04-20 15:18 - 2014-04-20 15:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2014-04-20 15:18 - 2014-04-20 15:18 - 00000000 ____D () C:\Program Files (x86)\PhotoScape
2014-04-20 11:13 - 2014-04-20 11:13 - 00000839 _____ () C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-04-19 14:33 - 2013-12-02 10:21 - 00004608 _____ () C:\Users\Usuário\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-18 15:01 - 2014-04-18 15:01 - 00237336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2014-04-18 12:04 - 2014-04-18 12:04 - 00023943 _____ () C:\Users\Usuário\Downloads\3A893EE6DED732000772638DEF15BAF86B0270CF.torrent
2014-04-16 13:11 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-16 13:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-04-16 13:10 - 2009-07-14 15:11 - 00000000 ____D () C:\Windows\ShellNew
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\th-TH
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\et-EE
2014-04-16 13:10 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\bg-BG

Files to move or delete:
====================
C:\Users\Usuário\jagex_cl_runescape_LIVE.dat
C:\Users\Usuário\random.dat


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2014-05-14 06:26] - [2014-03-04 06:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-05 10:57

==================== End Of Log ============================
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Qua 14 maio 2014, 11:14

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-05-2014
Ran by Usuário at 2014-05-14 11:06:13
Running from C:\Users\Usuário\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30888 - BitTorrent Inc.)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1430 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.8.0.1430 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.1.0 - IObit)
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Nome de sua empresa:) Hidden
AMD Catalyst Install Manager (HKLM\...\{3C378793-5288-0165-FCA4-D319D5E4A490}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.1206.1603.28764 - Nome de sua empresa:) Hidden
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4577 - AVG Technologies)
AVG 2014 (Version: 14.0.3950 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4577 - AVG Technologies) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
CCScore (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
Cross Fire AL (HKLM-x32\...\Cross Fire AL_is1) (Version: - Z8Games.com)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desinstalar impressora EPSON TX115 Series (HKLM\...\EPSON TX115 Series) (Version: - SEIKO EPSON Corporation)
Dolphin (HKLM-x32\...\Dolphin) (Version: 4.0.2 - Dolphin Development Team)
Epson Event Manager (HKLM-x32\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.20.00 - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
ESSBrwr (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
ESSCDBK (x32 Version: 8.03.0000.0001 - EASTMAN KODAK Company) Hidden
ESScore (x32 Version: 8.03.0000.0001 - Nome de sua empresa:) Hidden
ESSgui (x32 Version: 8.03.0000.0001 - EASTMAN KODAK Company) Hidden
ESSini (x32 Version: 8.02.0000.0001 - Nome de sua empresa:) Hidden
ESSPCD (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
ESSPDock (x32 Version: 6.03.0001.0004 - Nome de sua empresa:) Hidden
ESSTOOLS (x32 Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden
essvatgt (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
fflink (x32 Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
FormatFactory 3.3.4.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.4.0 - Format Factory)
FpS Addons 4Fun V1.1 Com Bot (HKCU\...\FpS Addons 4Fun V1.1 Com Bot) (Version: - )
Glary Utilities 4.10 (HKLM-x32\...\Glary Utilities 4) (Version: 4.10.0.100 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.137 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.2.9.10 - IObit)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware versão 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (ARA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (CHS) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DAN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (dansk) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (ELL) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (ESN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (FIN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (FRA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HEB) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HUN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (ITA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (JPN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (KOR) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (NLD) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (NOR) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (PTB) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (PTG) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (RUS) (Version: 4.5.50938 - Корпорация Майкрософт) Hidden
Microsoft .NET Framework 4.5.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (SVE) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.5.50938 - Корпорация Майкрософт)
Microsoft .NET Framework 4.5.1 (עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (العربية) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1025) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (简体中文) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2052) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1(한국어) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1042) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1, norsk språkpakke (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1044) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.5.1 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office Access MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Portuguese (Brazil)) 2007 (x32 Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Portuguese (Brazil)) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 pt-BR)) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MV AntiSpy 4.0 (HKLM-x32\...\MV AntiSpy 4.0_is1) (Version: - )
Naruto Shippuden Gekitou Ninja Taisen SP NarutoPlanet.ru NarutoPlanet.ru (HKLM-x32\...\Naruto Shippuden Gekitou Ninja Taisen SP NarutoPlanet.ru NarutoPlanet.ru) (Version: - )
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst_is1) (Version: - Namco Bandai Games)
Nero 8 (HKLM-x32\...\{D6C9AF27-9414-46C8-B9D8-D878BA041046}) (Version: 8.3.326 - Nero AG)
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
netbrdg (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
OfotoXMI (x32 Version: 8.03.0000.0001 - EASTMAN KODAK Company) Hidden
Oi Velox (HKLM-x32\...\programmeroi_is1) (Version: 5.0.0.0 - LightComm Tecnologia)
Pacote de Driver do Windows - Realtek (RTL8167) Net (06/10/2011 7.046.0610.2011) (HKLM\...\94C2CBCEB09487955736DC003D83210FA0D9F021) (Version: 06/10/2011 7.046.0610.2011 - Realtek)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.8 - Pando Networks Inc.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Platform (x32 Version: 1.36 - VIA Technologies, Inc.) Hidden
Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI)
QuickTime (HKLM-x32\...\{08CA9554-B5FE-4313-938F-D4A417B81175}) (Version: 7.50.61.0 - Apple Inc.)
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
SFR (x32 Version: 8.01.0000.0001 - Eastman Kodak Company) Hidden
SHASTA (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
skin0001 (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
SKINXSDK (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.1 - IObit)
Software Kodak EasyShare (HKLM-x32\...\{D32470A1-B10C-4059-BA53-CF0486F68EBC}) (Version: - Eastman Kodak Company)
staticcr (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
Super Tela (HKLM-x32\...\Super Tela) (Version: - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{52F3455A-9ADB-41A6-BCE7-8D99F3770590}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2720451F-5D04-43EC-AB1F-26D948FD971B}) (Version: - Microsoft)
VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VPRINTOL (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR 4.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
WIRELESS (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
XP Codec Pack (HKLM-x32\...\XP Codec Pack) (Version: - )
ZHPDiag 2014 (HKLM-x32\...\ZHPDiag_is1) (Version: 2014 - Nicolas Coolman)

==================== Restore Points =========================

10-05-2014 20:21:51 zoek.exe restore point
10-05-2014 20:30:51 zoek.exe restore point
10-05-2014 20:51:12 zoek.exe restore point
10-05-2014 22:01:19 ZHPFix Restore System Point
14-05-2014 09:31:43 Windows Update

==================== Hosts content: ==========================

2014-03-03 13:43 - 2010-12-23 15:08 - 00000780 _RASH C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02F79D44-EF26-4B16-B462-A63608DB0C16} - \DealPlyLiveUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {0BB6033F-E189-472F-9822-EFC4253C7D96} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-03-10] (IObit)
Task: {0FD0E73F-7798-49C6-BFD8-46346D33C22A} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-04-04] (IObit)
Task: {3A6F909F-6DAB-4D12-A62F-B52EF306ADB6} - System32\Tasks\Driver Booster SkipUAC (Usuário) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-14] (IObit)
Task: {48BED5A0-7397-4934-9B96-8731D82B986E} - \DealPlyLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {4DF9A9A5-F9B1-41A5-B471-F971E71BCE7F} - \Baidu Antivirus Update No Task File <==== ATTENTION
Task: {663352A8-8794-4DE6-85ED-6EA181269F15} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3127348328-4204076854-1704267095-1000
Task: {6A71F88B-8872-4FC4-960D-11B30772B1C3} - \RunAsStdUser No Task File <==== ATTENTION
Task: {815D449D-E770-4871-A9BE-C5F3BD560B18} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {8C297BD5-5626-40DE-A409-F40F2DE1284F} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {8E060EB2-5F58-423B-806E-95DD3021F5B9} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js"
Task: {917AD88F-74E4-4351-AD67-9E3BA08D10ED} - \Driver Booster Update No Task File <==== ATTENTION
Task: {C201B398-E2CF-42F8-AE9E-52658AE6CA6E} - System32\Tasks\GlaryInitialize 4 => C:\Program Files (x86)\Glary Utilities 4\Initialize.exe [2014-04-14] (Glarysoft Ltd)
Task: {C2987C1A-C9F4-4B46-9F1A-A47B7559E991} - \Funmoods No Task File <==== ATTENTION
Task: {C75E8B79-7797-4C39-8D58-F054337D5B78} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {DB60E5FB-052E-4F76-AC2B-01F46E7F77CF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11] (Adobe Systems Incorporated)
Task: {E52D35FE-9631-4C7C-AB23-2DB543BCCC81} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-09] (Google Inc.)
Task: {E62F0DD5-251F-4D6E-8363-2D2A3A460BAA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {E68A8F4A-741F-4439-AAA0-F39BE14856AF} - System32\Tasks\ASC7_SkipUac_Usuário => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-03-10] (IObit)
Task: {EA435F3D-FA25-4D7C-9B26-639AFE0ECFD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-09] (Google Inc.)
Task: {F9A7E0C1-2538-4754-896D-121CC8CD57AE} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-12] (IObit)
Task: {FE496867-DF38-4412-BB8A-F7C5C20FBD48} - \DealPlyUpdate No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files (x86)\Glary Utilities 4\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-07-09 12:07 - 2011-05-28 22:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:373E1720
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879
AlternateDataStreams: C:\Users\Usuário\Downloads:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\ACS:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\Nero 8 Startsmart Ultra Edition 8.3.6.0 PT-BR:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\Sugestões escolares diversas PROJETO CONTOS DE FADAS Educação Infantil_arquivos:Shareaza.GUID

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: ACDaemon => 2
MSCONFIG\Services: AdobeARMservice => 3
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdvancedSystemCareService7 => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: BAVSvc => 2
MSCONFIG\Services: BHipsSvc => 2
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: EPSON_EB_RPCV4_01 => 2
MSCONFIG\Services: EPSON_PM_RPCV4_01 => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: IMFservice => 2
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: Nero BackItUp Scheduler 3 => 2
MSCONFIG\Services: NMIndexingService => 3
MSCONFIG\Services: PLFlash DeviceIoControl Service => 2
MSCONFIG\Services: RasAuto => 3
MSCONFIG\Services: RasMan => 3
MSCONFIG\Services: RzKLService => 2
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TapiSrv => 3
MSCONFIG\Services: VIAKaraokeService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Software Kodak EasyShare.lnk => C:\Windows\pss\Software Kodak EasyShare.lnk.CommonStartup
MSCONFIG\startupreg: Advanced SystemCare 7 => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
MSCONFIG\startupreg: EEventManager => C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe
MSCONFIG\startupreg: HDAudDeck => "C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
MSCONFIG\startupreg: IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: NBKeyScan => "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
MSCONFIG\startupreg: OiVelox => "C:\Program Files (x86)\Oi\Programmer\OiVeloxCheck.exe"
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\qttask.exe" -atboottime
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/14/2014 09:08:58 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Transactions, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=x86" /NoDependencies . The error returned was Error: The specified assembly is not installed.
.

Error: (05/14/2014 06:31:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CreateVssExamineWriterMetadata. hr = 0x80042302, O componente Serviço de Cópias de Sombra de Volume encontrou um erro inesperado.
Verifique o log de eventos do aplicativo para obter mais informações.
.


Operação:
Gravador Expondo Metadados

Contexto:
Contexto de Execução: Requestor
ID de Instância de Gravador: {32C514DC-6256-4655-9107-7659C5B3C1DF}
Id de Classe de Gravador: {E8132975-6F93-4464-A53E-1050253AE220}
Nome do Gravador: System Writer

Error: (05/14/2014 06:31:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina XML document is too long. hr = 0x80070018, O programa emitiu um comando, mas o comprimento do comando está incorreto.
.


Operação:
Gravador Expondo Metadados

Contexto:
Contexto de Execução: Requestor
ID de Instância de Gravador: {32C514DC-6256-4655-9107-7659C5B3C1DF}
Id de Classe de Gravador: {E8132975-6F93-4464-A53E-1050253AE220}
Nome do Gravador: System Writer

Error: (05/14/2014 06:31:42 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CreateVssExamineWriterMetadata. hr = 0x80042302, O componente Serviço de Cópias de Sombra de Volume encontrou um erro inesperado.
Verifique o log de eventos do aplicativo para obter mais informações.
.


Operação:
Gravador Expondo Metadados

Contexto:
Contexto de Execução: Requestor
ID de Instância de Gravador: {32C514DC-6256-4655-9107-7659C5B3C1DF}
Id de Classe de Gravador: {E8132975-6F93-4464-A53E-1050253AE220}
Nome do Gravador: System Writer

Error: (05/14/2014 06:31:42 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina XML document is too long. hr = 0x80070018, O programa emitiu um comando, mas o comprimento do comando está incorreto.
.


Operação:
Gravador Expondo Metadados

Contexto:
Contexto de Execução: Requestor
ID de Instância de Gravador: {32C514DC-6256-4655-9107-7659C5B3C1DF}
Id de Classe de Gravador: {E8132975-6F93-4464-A53E-1050253AE220}
Nome do Gravador: System Writer

Error: (05/13/2014 08:56:27 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "34.0.1847.137,language="*",type="win32",version="34.0.1847.137"1".
Assembly dependente 34.0.1847.137,language="*",type="win32",version="34.0.1847.137" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/13/2014 08:26:08 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "34.0.1847.137,language="*",type="win32",version="34.0.1847.137"1".
Assembly dependente 34.0.1847.137,language="*",type="win32",version="34.0.1847.137" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/13/2014 08:21:33 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "34.0.1847.137,language="*",type="win32",version="34.0.1847.137"1".
Assembly dependente 34.0.1847.137,language="*",type="win32",version="34.0.1847.137" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/13/2014 08:21:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "34.0.1847.137,language="*",type="win32",version="34.0.1847.137"1".
Assembly dependente 34.0.1847.137,language="*",type="win32",version="34.0.1847.137" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/13/2014 10:05:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: pes2013.exe, versão: 1.3.0.0, carimbo de hora: 0x50b536fe
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea8e7
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000343e0
Identificação do processo com falha: 0x268
Hora de início do aplicativo com falha: 0xpes2013.exe0
Caminho do aplicativo com falha: pes2013.exe1
FCaminho do módulo de falhas: pes2013.exe2
Identificação do Relatório: pes2013.exe3


System errors:
=============
Error: (05/14/2014 09:07:32 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço Áudio do Windows suspenso ao iniciar.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Windows Installer foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 120000 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Windows Search foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Serviço de Compartilhamento de Rede do Windows Media Player foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Windows Live ID Sign-in Assistant foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Watchdog do AVG foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço AMD FUEL Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (05/13/2014 08:28:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Spooler de Impressão foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 60000 milissegundos: Reiniciar o serviço.

Error: (05/13/2014 07:34:29 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: O Gerenciador de controle de serviços tentou executar uma ação corretiva (Reiniciar o serviço) após a finalização inesperada do serviço Windows Search, mas essa ação falhou com o seguinte erro:
%%1056

Error: (05/13/2014 07:34:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Serviço de Compartilhamento de Rede do Windows Media Player foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.


Microsoft Office Sessions:
=========================
Error: (04/27/2014 10:50:29 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6695.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 119 seconds with 0 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2013-05-03 09:06:02.846
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 09:06:02.811
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 09:06:02.459
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 09:06:02.418
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 07:40:45.562
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 07:40:45.532
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 07:40:45.231
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-03 07:40:45.191
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-02 17:53:19.955
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-02 17:53:19.926
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\LevelUp! Games\RagnarokOnline\npkcrypt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 38%
Total physical RAM: 3839.3 MB
Available physical RAM: 2349.46 MB
Total Pagefile: 7676.79 MB
Available Pagefile: 6153.53 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.41 GB) (Free:268.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Cool (Size: 466 GB) (Disk ID: CFBD4F72)
Partition 1: (Active) - (Size=356 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465 GB) - (Type=07 NTFS)

==================== End Of Log ============================
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Qua 14 maio 2014, 12:48

Computador travando constantemente. - Página 2 772309  Acesse o site [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e envie os arquivos desta pasta destacada em azul abaixo para serem analisados (um de cada vez):
C:\Windows\ôõ1

Assim que a análise de cada um deles for concluída, copie o link que aparecerá na barra de endereços de seu navegador e poste estes links em sua próxima resposta juntamente com o log do Farbar pedido nesta postagem.

Maiores informações de como analisar arquivos no site Virus Total você encontra neste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_________________________________________________________________________________________________________

Baixe o arquivo fixlist.txt que está anexado nesta postagem e salve-o no desktop (área de trabalho).

Execute o FRST64. Clique no botão Fix.

Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

Selecione, copie e cole o conteúdo deste Fixlog.txt em sua próxima resposta juntamente com os links das análises dos arquivos no site Virus Total.
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Qua 14 maio 2014, 13:12

 Computador travando constantemente. - Página 2 772309 https://www.virustotal.com/pt/file/4dd8aaa8bd9f90459d4dc82aeddf5dcd439a7cd27b70a067e2c6ca904c717c83/analysis/1400083157/


 Computador travando constantemente. - Página 2 772309 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-05-2014
Ran by Usuário at 2014-05-14 13:04:01 Run:1
Running from C:\Users\Usuário\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
2014-05-04 15:39 - 2014-05-04 15:39 - 00003544 _____ () C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
C:\Users\Usuário\jagex_cl_runescape_LIVE.dat
C:\Users\Usuário\random.dat
Task: {02F79D44-EF26-4B16-B462-A63608DB0C16} - \DealPlyLiveUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {48BED5A0-7397-4934-9B96-8731D82B986E} - \DealPlyLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {4DF9A9A5-F9B1-41A5-B471-F971E71BCE7F} - \Baidu Antivirus Update No Task File <==== ATTENTION
Task: {6A71F88B-8872-4FC4-960D-11B30772B1C3} - \RunAsStdUser No Task File <==== ATTENTION
Task: {8E060EB2-5F58-423B-806E-95DD3021F5B9} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js"
Task: {917AD88F-74E4-4351-AD67-9E3BA08D10ED} - \Driver Booster Update No Task File <==== ATTENTION
Task: {C2987C1A-C9F4-4B46-9F1A-A47B7559E991} - \Funmoods No Task File <==== ATTENTION
Task: {C75E8B79-7797-4C39-8D58-F054337D5B78} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {FE496867-DF38-4412-BB8A-F7C5C20FBD48} - \DealPlyUpdate No Task File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:373E1720
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879
AlternateDataStreams: C:\Users\Usuário\Downloads:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\ACS:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\Nero 8 Startsmart Ultra Edition 8.3.6.0 PT-BR:Shareaza.GUID
AlternateDataStreams: C:\Users\Usuário\Downloads\Sugestões escolares diversas PROJETO CONTOS DE FADAS Educação Infantil_arquivos:Shareaza.GUID
MSCONFIG\Services: BAVSvc => 2
MSCONFIG\Services: BHipsSvc => 2
end
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Moved successfully.
C:\Users\Usuário\jagex_cl_runescape_LIVE.dat => Moved successfully.
C:\Users\Usuário\random.dat => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{02F79D44-EF26-4B16-B462-A63608DB0C16} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02F79D44-EF26-4B16-B462-A63608DB0C16} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyLiveUpdateTaskMachineCore => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48BED5A0-7397-4934-9B96-8731D82B986E} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48BED5A0-7397-4934-9B96-8731D82B986E} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyLiveUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4DF9A9A5-F9B1-41A5-B471-F971E71BCE7F} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DF9A9A5-F9B1-41A5-B471-F971E71BCE7F} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Baidu Antivirus Update => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A71F88B-8872-4FC4-960D-11B30772B1C3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A71F88B-8872-4FC4-960D-11B30772B1C3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RunAsStdUser => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8E060EB2-5F58-423B-806E-95DD3021F5B9} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E060EB2-5F58-423B-806E-95DD3021F5B9} => Key deleted successfully.
C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\060184C3-9766-46a0-B258-F4518A0B2633 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{917AD88F-74E4-4351-AD67-9E3BA08D10ED} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{917AD88F-74E4-4351-AD67-9E3BA08D10ED} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C2987C1A-C9F4-4B46-9F1A-A47B7559E991} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2987C1A-C9F4-4B46-9F1A-A47B7559E991} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Funmoods => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C75E8B79-7797-4C39-8D58-F054337D5B78} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C75E8B79-7797-4C39-8D58-F054337D5B78} => Key deleted successfully.
C:\Windows\System32\Tasks\0 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE496867-DF38-4412-BB8A-F7C5C20FBD48} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE496867-DF38-4412-BB8A-F7C5C20FBD48} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate => Key deleted successfully.
C:\ProgramData\TEMP => ":373E1720" ADS removed successfully.
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully.
"C:\Users\Todos os Usuários\TEMP" => ":373E1720" ADS not found.
"C:\Users\Todos os Usuários\TEMP" => ":56E2E879" ADS not found.
"C:\Users\Usuário\Downloads" => ":Shareaza.GUID" ADS not found.
C:\Users\Usuário\Downloads\ACS => ":Shareaza.GUID" ADS removed successfully.
C:\Users\Usuário\Downloads\Nero 8 Startsmart Ultra Edition 8.3.6.0 PT-BR => ":Shareaza.GUID" ADS removed successfully.
"C:\Users\Usuário\Downloads\Sugestões escolares diversas PROJETO CONTOS DE FADAS Educação Infantil_arquivos" => ":Shareaza.GUID" ADS not found.


The system needed a reboot.

==== End of Fixlog ====
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Qua 14 maio 2014, 13:13

Reinicie o PC para completar a limpeza e depois nos diga, por gentileza, como está o PC.
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por janderson Qui 15 maio 2014, 11:42

cara é o que eu tinha falado, melhorou um pouco mas, vou ver se compro memoria ram, placa de video, tambem 1 processador novo, mas agora vou comprar mesmo a memoria ram o resto vou vendo ao poucos vlw cara ajudo muito depois que comprar e colocar a memoria eu vejo o que vai dar vlw pode fechar o topico porque ajudou muito tirando varias porcarias do pc :rindo_atoa:
janderson
janderson
Membro
Membro

Mensagens : 72
Reputação : 2
Data de inscrição : 29/10/2013

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Qui 15 maio 2014, 11:46

Realmente para ficar melhor é preciso melhorar o hardware dele.

isso aí! Fico feliz que o problema tenha sido resolvido.

Computador travando constantemente. - Página 2 772309 Só para finalizar siga estes tutoriais abaixo, por gentileza:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________

Computador travando constantemente. - Página 2 772309 Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________

Computador travando constantemente. - Página 2 648673379 Foi um prazer ajudar. Conte sempre conosco!
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Power Max Qui 15 maio 2014, 11:49

CASO RESOLVIDO

Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador travando constantemente. - Página 2 Empty Re: Computador travando constantemente.

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Página 2 de 2 Anterior  1, 2

Ir para o topo

- Tópicos semelhantes

Fórum PC Brasil :: Segurança da Informação :: Casos Resolvidos

 
Permissões neste sub-fórum
Não podes responder a tópicos