Logo Hardware.com.br
Wilker Lacerda
Wilker Lacer... Novo Membro Registrado
2 Mensagens 1 Curtida

[Resolvido] HD lotado repentinamente, sem motivo aparente.

#1 Por Wilker Lacer... 02/10/2015 - 12:44
Bom dia.

Deixei meu notebook ao cuidado de terceiros no começo da semana, aparentemente apenas para o uso de jogos do facebook.
Ontem, ao retomar minhas atividades com o notebook, constatei que um antivírus "free" que eu uso encontra-se desativado, e não consigo reativá-lo.
Pra minha surpresa, o HD encontra-se lotado, com talvez 200GB de arquivos que não estavam presentes a três dias atrás, os quais não consigo localizar.
Como meu SO veio instalado, não tenho CD de instalação, formatar não seria a melhor opção para mim no momento.

Segue log das análise com o Farbar, conforme instruções em como criar um tópico:

"Log Farbar FRST"

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Ran by Wilker (administrator) on WILKER-PC (02-10-2015 12:17:53)
Running from C:\Users\Wilker\Desktop
Loaded Profiles: Wilker (Available Profiles: Wilker)
Platform: Windows 7 Home Basic Service Pack 1 (X64) Language: Português (Brasil)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{D6DF35A2-64FD-424D-904E-CC4E63B8E30A}\YSearchUtilSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Behringer Spezielle Studiotechnik GmbH) C:\Program Files\Behringer\BCD3000\Drivers\bcd3kcpan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\updrgui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwsc.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
() C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008 2015-09-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-10] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-08-19] (Banco do Brasil)
HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\...\Run: [Google Update] => C:\Users\Wilker\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-06-19] (Microsoft Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1896320 2015-08-19] (Banco do Brasil)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BCD3000 Control Panel.lnk [2015-09-16]
ShortcutTarget: BCD3000 Control Panel.lnk -> C:\Program Files\Behringer\BCD3000\Drivers\bcd3kcpan.exe (Behringer Spezielle Studiotechnik GmbH)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 187.122.188.110 187.122.188.53
Tcpip\..\Interfaces\{7603FF49-9FC0-48B8-A0DE-37EE990C7842}: [DhcpNameServer] 192.168.0.91
Tcpip\..\Interfaces\{DDD4CFFB-81F9-4866-99C4-C302C4C416B1}: [DhcpNameServer] 187.122.188.110 187.122.188.53

Internet Explorer:
==================
HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-19] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2015-08-19] (Banco do Brasil)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-19] (Oracle Corporation)

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2015-06-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-19] (Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3008551486-3286811120-3958546433-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Wilker\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3008551486-3286811120-3958546433-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Wilker\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-18]
CHR Extension: (Google Docs) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-18]
CHR Extension: (Google Drive) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-18]
CHR Extension: (Destiny Item Manager) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apghicjnekejhfancbkahkhdckhdagna [2015-10-01]
CHR Extension: (YouTube) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-18]
CHR Extension: (Google Search) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-18]
CHR Extension: (uBlock) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2015-06-22]
CHR Extension: (Planilhas do Google) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-18]
CHR Extension: (Documentos Google off-line) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-18]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-18]
CHR Extension: (Gmail) - C:\Users\Wilker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-18]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.KOQU4UOXTQUQ5P6NYDRLMOHH6Y - C:\Users\Wilker\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [887128 2015-09-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-09-01] (Avira Operations GmbH & Co. KG)
U2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-01] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1213072 2015-09-01] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [240872 2015-09-10] (Avira Operations GmbH & Co. KG)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576 2015-08-12] (GAS Tecnologia)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [858424 2015-06-19] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{D6DF35A2-64FD-424D-904E-CC4E63B8E30A}\YSearchUtilSvc.exe [148760 2015-06-16] (Yahoo Inc.)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162528 2015-09-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-09-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-13] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-06-19] (Avira Operations GmbH & Co. KG)
S3 bcd3000; C:\Windows\System32\DRIVERS\bcd3000_x64.sys [54888 2010-08-05] (Behringer)
S3 bcd3000wdm; C:\Windows\System32\DRIVERS\bcd3000wdm_x64.sys [32872 2010-08-05] (Behringer)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2015-10-02] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
S3 RTLE8023x64; C:\Windows\System32\DRIVERS\Rtenic64.sys [525016 2014-01-07] (Realtek Semiconductor Corporation )
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-04-29] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-04-01] (Basil)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 12:17 - 2015-10-02 12:20 - 00012752 _____ C:\Users\Wilker\Desktop\FRST.txt
2015-10-02 12:17 - 2015-10-02 12:18 - 00000000 ____D C:\FRST
2015-10-02 12:15 - 2015-10-02 12:15 - 02192384 _____ (Farbar) C:\Users\Wilker\Desktop\FRST64.exe
2015-10-02 12:05 - 2015-10-02 12:05 - 14261440 _____ (Microsoft Corporation) C:\Users\Wilker\Downloads\mseinstall.exe
2015-10-02 12:01 - 2015-10-02 12:01 - 00000000 ____D C:\Program Files (x86)\ESET
2015-10-02 12:00 - 2015-10-02 12:01 - 02870984 _____ (ESET) C:\Users\Wilker\Downloads\esetsmartinstaller_ptg.exe
2015-10-02 11:54 - 2015-10-02 11:55 - 06639264 _____ (JAM Software ) C:\Users\Wilker\Downloads\TreeSizeFreeSetup.exe
2015-09-27 22:48 - 2015-09-27 22:48 - 00000000 ____D C:\Users\Wilker\AppData\Roaming\OpenOffice
2015-09-27 22:45 - 2015-10-02 11:24 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-09-27 22:45 - 2015-09-27 22:45 - 00001052 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-09-27 22:44 - 2015-10-02 11:22 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-09-27 22:35 - 2015-09-27 22:37 - 128760369 _____ C:\Users\Wilker\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_pt-BR.exe
2015-09-20 12:44 - 2015-09-20 12:45 - 37723936 _____ C:\Users\Wilker\Downloads\Marcioz+-+God,+Don't+Lie+(RR2).zip
2015-09-20 12:42 - 2015-09-20 12:43 - 23690186 _____ C:\Users\Wilker\Downloads\FelixNoGoZoneEP.zip
2015-09-19 01:40 - 2015-09-19 02:31 - 143613675 _____ C:\Users\Wilker\Downloads\2014.zip
2015-09-17 01:06 - 2015-09-17 01:06 - 10424397 _____ C:\Users\Wilker\Downloads\20150916_214723.mp4
2015-09-16 23:24 - 2015-09-16 23:24 - 00118165 _____ C:\Users\Wilker\Downloads\Beatport-Top-100-August-2015.rar
2015-09-16 23:22 - 2015-09-16 23:22 - 00031957 _____ C:\Users\Wilker\Downloads\[limetorrents.cc]VA.-.Music.Remix.Weekend.Party.1..2015..MP3.torrent
2015-09-16 23:21 - 2015-09-16 23:21 - 00013889 _____ C:\Users\Wilker\Downloads\Rihanna_-_Best_Dance_Remixes_2015_-_www.musicasparabaixar.org.rar.torrent
2015-09-16 19:23 - 2008-09-28 22:10 - 01015786 _____ (Behringer Spezielle Studiotechnik GmbH) C:\Users\Wilker\Downloads\setup-BCD3000-Vista-XP-1.2.0.0.exe
2015-09-16 19:22 - 2015-09-16 19:22 - 00001142 _____ C:\Users\Wilker\Desktop\ASIO4ALL v2 Instruction Manual.lnk
2015-09-16 19:22 - 2015-09-16 19:22 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2015-09-16 19:21 - 2015-09-16 19:21 - 01219040 _____ C:\Users\Wilker\Downloads\BCD3000_1.3.4 (1).zip
2015-09-16 19:21 - 2015-09-16 19:21 - 00000000 ____D C:\Behringer
2015-09-16 19:20 - 2015-09-16 19:21 - 00419552 _____ C:\Users\Wilker\Downloads\BCD3000-Vista-XP-1.2.0.0.zip
2015-09-16 19:20 - 2015-09-16 19:20 - 00461946 _____ C:\Users\Wilker\Downloads\ASIO4ALL_2_12_English (3).exe
2015-09-16 19:20 - 2015-09-16 19:20 - 00000679 _____ C:\Users\Wilker\Downloads\download.htm
2015-09-16 19:20 - 2015-09-16 19:20 - 00000679 _____ C:\Users\Wilker\Downloads\download (1).htm
2015-09-16 19:14 - 2015-10-02 11:25 - 00004255 _____ C:\Windows\setupact.log
2015-09-16 19:14 - 2015-09-16 19:14 - 00000000 _____ C:\Windows\setuperr.log
2015-09-16 19:12 - 2015-09-16 19:13 - 00018738 _____ C:\Users\Wilker\Documents\cc_20150916_191257.reg
2015-09-16 18:44 - 2015-09-16 18:44 - 00011296 _____ C:\Users\Wilker\Downloads\Atomix Virtual DJ Pro 8.0.2048 com Crack.torrent
2015-09-16 18:43 - 2015-09-16 18:43 - 00000000 ____D C:\Program Files (x86)\Native Instruments
2015-09-14 22:08 - 2015-09-14 22:08 - 00056294 _____ C:\Users\Wilker\Downloads\DavidGuetta-DiscographyiTunes - ThePirateBay.TO.torrent
2015-09-09 12:20 - 2015-08-17 22:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 12:20 - 2015-08-17 22:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-09 12:20 - 2015-08-15 03:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 12:20 - 2015-08-15 03:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-09 12:20 - 2015-08-15 03:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 12:20 - 2015-08-15 03:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 12:20 - 2015-08-15 03:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-09 12:20 - 2015-08-15 03:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 12:20 - 2015-08-15 03:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 12:20 - 2015-08-15 03:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 12:20 - 2015-08-15 03:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-09 12:20 - 2015-08-15 03:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 12:20 - 2015-08-15 03:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 12:20 - 2015-08-15 03:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-09 12:20 - 2015-08-15 03:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 12:20 - 2015-08-15 03:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 12:20 - 2015-08-15 03:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-09 12:20 - 2015-08-15 03:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 12:20 - 2015-08-15 03:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-09 12:20 - 2015-08-15 03:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 12:20 - 2015-08-15 02:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 12:20 - 2015-08-15 02:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-09 12:20 - 2015-08-15 02:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 12:20 - 2015-08-15 02:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 12:20 - 2015-08-15 02:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 12:20 - 2015-08-15 02:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 12:20 - 2015-08-15 02:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-09 12:20 - 2015-08-15 02:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-09 12:20 - 2015-08-15 02:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-09 12:20 - 2015-08-15 02:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 12:20 - 2015-08-15 02:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-09 12:20 - 2015-08-15 02:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-09 12:20 - 2015-08-15 02:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-09 12:20 - 2015-08-15 02:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-09 12:20 - 2015-08-15 02:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-09 12:20 - 2015-08-15 02:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-09 12:20 - 2015-08-15 02:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-09 12:20 - 2015-08-15 02:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-09 12:20 - 2015-08-15 02:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-09 12:20 - 2015-08-15 02:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 12:20 - 2015-08-15 02:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 12:20 - 2015-08-15 02:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 12:20 - 2015-08-15 02:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-09 12:20 - 2015-08-15 02:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-09 12:20 - 2015-08-15 02:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 12:20 - 2015-08-15 02:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-09 12:20 - 2015-08-15 02:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-09 12:20 - 2015-08-15 02:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-09 12:20 - 2015-08-15 02:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-09 12:20 - 2015-08-15 02:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-09 12:20 - 2015-08-15 02:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 12:20 - 2015-08-15 02:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-09 12:20 - 2015-08-15 02:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-09 12:20 - 2015-08-15 02:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-09 12:20 - 2015-08-15 02:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-09 12:20 - 2015-08-15 01:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 12:20 - 2015-08-15 01:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-09 12:20 - 2015-08-15 01:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-09 12:20 - 2015-08-15 01:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-09 12:20 - 2015-08-15 01:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-09 12:20 - 2015-08-05 14:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 12:20 - 2015-08-05 14:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-09 12:20 - 2015-08-05 14:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-09 12:20 - 2015-07-15 00:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 12:20 - 2015-07-14 23:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-09 12:20 - 2015-07-09 14:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-09 12:20 - 2015-07-09 14:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-09 12:20 - 2015-07-09 14:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-09 12:20 - 2015-07-09 14:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-09 12:17 - 2015-07-22 21:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-09 12:17 - 2015-07-22 21:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-09 12:17 - 2015-07-22 21:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-09 12:17 - 2015-07-22 21:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-09 12:17 - 2015-07-22 21:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-09 12:17 - 2015-07-22 21:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-09 12:17 - 2015-07-22 21:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-09 12:17 - 2015-07-22 21:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-09 12:17 - 2015-07-22 21:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-09 12:17 - 2015-07-22 21:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-09 12:17 - 2015-07-22 21:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-09 12:17 - 2015-07-22 21:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-09 12:17 - 2015-07-22 21:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-09 12:17 - 2015-07-22 21:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-09 12:17 - 2015-07-22 20:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-09 12:17 - 2015-07-22 20:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 20:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-09 12:17 - 2015-07-22 14:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-09 12:17 - 2015-07-22 14:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-09 12:17 - 2015-07-22 14:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-09 12:17 - 2015-07-22 14:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-09 12:17 - 2015-07-22 14:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-09 12:17 - 2015-07-22 14:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-09 12:17 - 2015-07-22 14:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-09 12:17 - 2015-07-22 14:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-09 12:17 - 2015-07-22 14:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-09 12:17 - 2015-07-22 14:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-09 12:17 - 2015-07-22 14:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-09 12:17 - 2015-07-22 14:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-09 12:17 - 2015-07-22 14:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 14:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 13:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-09 12:17 - 2015-07-22 13:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-09 12:17 - 2015-07-22 13:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-09 12:17 - 2015-07-22 13:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-09 12:17 - 2015-07-22 13:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-09 12:17 - 2015-07-22 13:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-09 12:17 - 2015-07-22 13:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 13:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 13:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 12:17 - 2015-07-22 13:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 12:17 - 2015-06-25 07:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-09 12:17 - 2015-06-25 07:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-09 12:17 - 2015-06-25 07:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-09 12:17 - 2015-06-25 06:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-09 12:16 - 2015-09-02 00:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-09 12:16 - 2015-09-02 00:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 12:16 - 2015-09-02 00:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-09 12:16 - 2015-09-02 00:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-09 12:16 - 2015-09-01 23:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-09 12:16 - 2015-09-01 23:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-09 12:16 - 2015-09-01 23:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-09 12:16 - 2015-09-01 23:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-09 12:16 - 2015-09-01 22:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 12:16 - 2015-09-01 22:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 12:16 - 2015-09-01 22:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-09 12:16 - 2015-08-27 15:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 12:16 - 2015-08-27 15:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 12:16 - 2015-08-27 15:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-09 12:16 - 2015-08-27 15:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-09 12:16 - 2015-08-27 14:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-09 12:16 - 2015-08-27 14:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-09 12:16 - 2015-08-27 14:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-09 12:16 - 2015-08-27 14:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-09 12:16 - 2015-08-26 15:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-09 12:16 - 2015-08-26 15:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-09 12:16 - 2015-08-26 15:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-09 12:16 - 2015-08-26 15:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-09 12:16 - 2015-08-26 15:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 12:16 - 2015-08-26 14:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-09 12:16 - 2015-08-26 14:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-09 12:16 - 2015-08-26 14:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-09 12:16 - 2015-08-26 14:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-09 12:16 - 2015-08-26 14:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-09 12:16 - 2015-08-04 15:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-09 12:16 - 2015-08-04 15:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-09 12:16 - 2015-08-04 14:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-09 12:16 - 2015-08-04 14:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-09 12:16 - 2015-08-04 14:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-09 12:16 - 2015-08-04 14:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 12:16 - 2015-08-04 14:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 12:16 - 2015-08-04 14:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-09 12:16 - 2015-08-04 13:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-09 03:08 - 2015-09-09 03:09 - 10726105 _____ C:\Users\Wilker\Downloads\Envane & Shia LaBeouf - Just Do It (Ultimate Remix).zip
2015-09-03 17:08 - 2015-09-03 17:08 - 00111104 _____ C:\Users\Wilker\Downloads\Fontesrenováveis20151C (2).xls
2015-09-03 15:15 - 2015-09-03 15:15 - 00000000 ____D C:\Users\Wilker\Documents\iZotope
2015-09-03 15:15 - 2015-09-03 15:15 - 00000000 ____D C:\Users\Wilker\AppData\Roaming\iZotope
2015-09-03 15:12 - 2015-09-03 15:12 - 00000000 ____D C:\Users\Wilker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iZotope
2015-09-03 15:12 - 2015-09-03 15:12 - 00000000 ____D C:\Program Files (x86)\iZotope
2015-09-03 14:58 - 2015-09-03 14:58 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2015-09-03 14:58 - 2015-09-03 14:58 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2015-09-03 14:58 - 2015-09-03 14:58 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 12:08 - 2015-06-19 09:09 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-02 11:55 - 2015-06-18 14:05 - 01293441 _____ C:\Windows\WindowsUpdate.log
2015-10-02 11:50 - 2009-07-14 01:45 - 00018192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-02 11:50 - 2009-07-14 01:45 - 00018192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-02 11:47 - 2015-06-18 15:15 - 00001082 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000UA.job
2015-10-02 11:36 - 2015-08-26 20:13 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2015-10-02 11:36 - 2015-08-10 08:19 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2015-10-02 11:27 - 2015-06-19 08:37 - 00064816 _____ C:\Users\Wilker\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-02 11:25 - 2015-06-18 14:07 - 00000000 ____D C:\Users\Wilker
2015-10-02 11:25 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-02 11:24 - 2015-08-30 21:47 - 00000000 ____D C:\Users\Todos os Usuários\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
2015-10-02 11:24 - 2015-08-30 21:47 - 00000000 ____D C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
2015-10-02 11:24 - 2015-06-22 00:22 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-02 11:24 - 2015-06-19 16:31 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-02 11:24 - 2015-06-19 09:42 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2015-10-02 11:24 - 2015-06-19 09:42 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-02 11:24 - 2015-06-19 09:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-10-02 11:23 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\registration
2015-10-01 09:44 - 2015-08-26 11:51 - 00001138 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-30 23:46 - 2015-06-18 15:15 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000Core.job
2015-09-28 12:21 - 2009-07-14 01:45 - 00295640 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-26 00:49 - 2015-06-18 15:15 - 00002333 _____ C:\Users\Wilker\Desktop\Google Chrome.lnk
2015-09-24 13:54 - 2009-07-14 14:55 - 00663804 _____ C:\Windows\system32\prfh0416.dat
2015-09-24 13:54 - 2009-07-14 14:55 - 00128094 _____ C:\Windows\system32\prfc0416.dat
2015-09-24 13:54 - 2009-07-14 02:13 - 01517030 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-22 00:08 - 2015-06-19 09:09 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 00:08 - 2015-06-19 09:09 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-22 00:08 - 2015-06-19 09:09 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-09-17 17:37 - 2015-06-26 16:22 - 00000000 ____D C:\Users\Wilker\AppData\Roaming\uTorrent
2015-09-16 23:41 - 2015-06-18 15:15 - 00004054 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000UA
2015-09-16 23:41 - 2015-06-18 15:15 - 00003658 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000Core
2015-09-16 19:22 - 2015-06-26 17:12 - 00000000 ____D C:\Users\Wilker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2015-09-14 19:19 - 2015-08-01 10:28 - 00000000 ____D C:\Users\Wilker\Documents\Native Instruments
2015-09-13 15:26 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2015-09-10 18:45 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-10 13:04 - 2015-06-18 15:11 - 00000000 ____D C:\Users\Wilker\AppData\Local\Google
2015-09-03 17:52 - 2015-08-30 23:56 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2015-09-03 17:52 - 2015-08-30 23:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-09-03 15:13 - 2015-06-26 17:11 - 00000000 ____D C:\Program Files (x86)\VstPlugins

==================== Files in the root of some directories =======

2015-06-18 16:04 - 2015-06-18 16:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Wilker\AppData\Local\Temp\avgnt.exe
C:\Users\Wilker\AppData\Local\Temp\WISEOSC.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-01 00:49

==================== End of FRST.txt ============================

"Log Farbar Add"

Additional scan result of Farbar Recovery Scan Tool (x64) Version:30-09-2015
Ran by Wilker (2015-10-02 12:22:07)
Running from C:\Users\Wilker\Desktop
Windows 7 Home Basic Service Pack 1 (X64) (2015-06-18 17:07:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3008551486-3286811120-3958546433-500 - Administrator - Disabled)
Convidado (S-1-5-21-3008551486-3286811120-3958546433-501 - Limited - Disabled)
Wilker (S-1-5-21-3008551486-3286811120-3958546433-1000 - Administrator - Enabled) => C:\Users\Wilker

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
3DP Chip v14.12 (HKLM-x32\...\3DP Chip) (Version: v14.12 - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{5dfbeba9-9f22-463d-8c95-c861911810a2}) (Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Hidden
Behringer BCD3000 Driver v1.3.4 (HKLM-x32\...\Behringer BCD3000 Driver v1.3.4) (Version: 1.3.4 - Behringer)
Capture NX-D (HKLM\...\{794529D3-D489-4CF2-B2ED-CF241809E5EC}) (Version: 1.2.1 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.2.3442 - CDBurnerXP)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Google Books Downloader version 2.5 (HKLM-x32\...\{216729B6-014A-F413-814F-F17F74FBA113}_is1) (Version: 2.5 - GBOOKSDOWNLOADER.COM)
Google Chrome (HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
K-Lite Mega Codec Pack 7.9.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.9.0 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.7.2.189 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.5.9.132 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.7.1.854 - Native Instruments)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
OpenOffice 4.1.1 (HKLM-x32\...\{503D2C42-D698-43BC-97FE-3610F4E8CDDC}) (Version: 4.11.9775 - Apache Software Foundation)
Pacote de Driver do Windows - Realtek (RTL8167) Net (05/08/2014 7.086.0508.2014) (HKLM\...\191514B09CEAFE4EE344B52C256E10655A98919B) (Version: 05/08/2014 7.086.0508.2014 - Realtek)
Pacote de Driver do Windows - Realtek Semiconductor Corp. (RTLE8023x64) Net (01/07/2014 5.824.0107.2014) (HKLM\...\56F4336CA4BBFC7D3B030BFB3CC552C3C190512D) (Version: 01/07/2014 5.824.0107.2014 - Realtek Semiconductor Corp.)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Picture Control Utility 2 (HKLM\...\{D4893C47-704F-4B84-8486-9DE4974ACA6F}) (Version: 2.1.1 - Nikon Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7512 - Realtek Semiconductor Corp.)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
Toribash (HKLM-x32\...\Steam App 248570) (Version: - Nabi Studios)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
Warsaw 1.8.0.10356 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.8.0.10356 - GAS Tecnologia)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3008551486-3286811120-3958546433-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Wilker\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3008551486-3286811120-3958546433-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Wilker\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3008551486-3286811120-3958546433-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Wilker\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

==================== Restore Points =========================

27-09-2015 22:39:33 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
27-09-2015 22:40:52 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
27-09-2015 22:44:13 Instalado OpenOffice 4.1.1
02-10-2015 01:53:26 Operação de restauração
02-10-2015 11:37:09 Removido OpenOffice 4.1.1

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {027A46A1-D53D-44BA-B88E-4B5FBC82227D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {57D1E61D-1389-40D5-A56C-F0208E4CA8F6} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {641641F3-A49A-4B56-AAA1-47143E8DFDE1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000UA => C:\Users\Wilker\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {6F34CCFA-AA61-4EA6-8E4C-44B1694297AC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000Core => C:\Users\Wilker\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {AA3110AD-2259-4C0B-BF92-0172E572B502} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated)
Task: {C515F208-F1EF-4FB9-A412-F27B77CB21A0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000Core.job => C:\Users\Wilker\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3008551486-3286811120-3958546433-1000UA.job => C:\Users\Wilker\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-26 20:50 - 2015-05-26 20:50 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-10-02 12:01 - 2015-05-14 11:54 - 00422600 _____ () C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
2015-09-26 00:49 - 2015-09-23 23:34 - 01501512 _____ () C:\Users\Wilker\AppData\Local\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-26 00:49 - 2015-09-23 23:34 - 00081224 _____ () C:\Users\Wilker\AppData\Local\Google\Chrome\Application\45.0.2454.101\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Windows\System32:3215BF7A_Bb.gbp
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\...\bb.com.br -> hxxps://seg.bb.com.br


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3008551486-3286811120-3958546433-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Wilker\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 187.122.188.110 - 187.122.188.53
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BCD3000 Control Panel.lnk => C:\Windows\pss\BCD3000 Control Panel.lnk.CommonStartup
MSCONFIG\startupreg: Diebold - Warsaw => C:\Program Files\Diebold\Warsaw\core.exe
MSCONFIG\startupreg: Nikon Message Center 2 => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
MSCONFIG\startupreg: {5dfbeba9-9f22-463d-8c95-c861911810a2} => "C:\ProgramData\Package Cache\{5dfbeba9-9f22-463d-8c95-c861911810a2}\Avira.OE.Setup.Bundle.exe" /quiet /norestart /burn.log.append "C:\Windows\TEMP\Avira_Launcher_20151001094351.log" /install CALLER_PARTNER_ID=avira /burn.runonce

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A8DC6012-F325-4D53-AA87-E809D12F0F5C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DE5F5F11-697A-4DE6-8FD6-3AB5F1CFDFB0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B2450C38-90E9-4F81-820E-65EBA4F2F0BB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5812DA28-B810-4083-A073-7C85025C4174}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7030C32E-5857-45CE-9954-F532CCFFC5A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{BEAA7C29-5F6B-4397-9D16-4649F0E13E9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{AD1D975F-2441-4A2F-AC5E-B02B6FFB36FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{B5DB5B28-2B35-49E8-9C4F-5BE34B370518}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{30311684-CF25-48DF-BDA1-B9F6ECA1DF48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{E9621268-BF2F-4994-BBA8-CA4D36FD9DDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{E710B6DE-10E0-4003-BFFA-1844001542B8}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{6DD465AF-C573-44B1-B6CE-D83646191114}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{6B2EE3E1-941F-4F5C-BFC9-B885566237D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [{23B55ADA-1C04-4A6B-99AD-B3B430C5CE97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [{4929D23D-225C-4EE5-8809-7D8DA69FB765}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{262C1546-4499-4C35-8544-5424EF0CB230}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1CD5C5FC-EBAD-4DA8-899B-971D95E17923}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B9C38526-A6DD-4E78-B479-2B6A8F304AC3}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DFE1362C-B510-470C-9CC4-6AB7504E2779}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DAD0EE2C-9A5A-407E-9D91-164B3C4A9BA7}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E60D2384-529A-48DB-8237-6F1B47AC8485}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1DE673F6-610B-4F0F-B316-E0D3A461CF40}] => (Allow) C:\Users\Wilker\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{073F49B2-5ED9-4ABD-996F-70C2A80DC002}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{6C889C6E-D3C9-48BE-B3BF-82067E655A06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0D296584-9537-4B3F-B301-891481DABD86}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{9681E43F-7A84-4257-805B-7CAD19B97F5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4B5BEF72-85B7-432F-9F21-22060EBA772B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/02/2015 12:16:11 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Erro no arquivo de manifesto ou de diretiva "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2", na linhaC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (10/02/2015 12:01:15 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Erro no arquivo de manifesto ou de diretiva "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2", na linhaC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (10/02/2015 05:25:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: CompatTelRunner.exe, versão: 10.0.10208.0, carimbo de hora: 0x55b5cf7a
Nome do módulo de falhas: devinv.dll, versão: 10.0.10208.0, carimbo de hora: 0x55b5cb74
Código de exceção: 0xc0000005
Deslocamento com falha: 0x000000000002155e
Identificação do processo com falha: 0xf08
Hora de início do aplicativo com falha: 0xCompatTelRunner.exe0
Caminho do aplicativo com falha: CompatTelRunner.exe1
FCaminho do módulo de falhas: CompatTelRunner.exe2
Identificação do Relatório: CompatTelRunner.exe3

Error: (10/02/2015 01:13:16 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (10/01/2015 01:09:46 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (09/30/2015 10:32:07 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (09/27/2015 10:44:14 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (09/27/2015 10:24:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: CaptureNX-D.exe, versão: 1.2.1.3005, carimbo de hora: 0x553dcade
Nome do módulo de falhas: MSVCP110.dll, versão: 11.0.51106.1, carimbo de hora: 0x50988283
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0000000000008f3b
Identificação do processo com falha: 0xf24
Hora de início do aplicativo com falha: 0xCaptureNX-D.exe0
Caminho do aplicativo com falha: CaptureNX-D.exe1
FCaminho do módulo de falhas: CaptureNX-D.exe2
Identificação do Relatório: CaptureNX-D.exe3

Error: (09/27/2015 02:09:27 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (09/25/2015 08:21:09 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005


System errors:
=============
Error: (10/02/2015 12:05:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço eapihdrv devido ao seguinte erro:
%%1275

Error: (10/02/2015 12:05:07 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Wilker\AppData\Local\Temp\ehdrv.sys foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver.

Error: (10/02/2015 12:05:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Wilker\AppData\Local\Temp\ehdrv.sys foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver.

Error: (10/02/2015 12:05:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço eapihdrv devido ao seguinte erro:
%%1275

Error: (10/02/2015 12:05:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço eapihdrv devido ao seguinte erro:
%%1275

Error: (10/02/2015 12:05:04 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Wilker\AppData\Local\Temp\ehdrv.sys foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver.

Error: (10/02/2015 12:01:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço eapihdrv devido ao seguinte erro:
%%1275

Error: (10/02/2015 12:01:51 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Wilker\AppData\Local\Temp\ehdrv.sys foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver.

Error: (10/02/2015 12:01:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço eapihdrv devido ao seguinte erro:
%%1275

Error: (10/02/2015 12:01:47 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Wilker\AppData\Local\Temp\ehdrv.sys foi impedido de carregar devido a uma incompatibilidade com este sistema. Contate o fornecedor do software para obter uma versão compatível do driver.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz
Percentage of memory in use: 53%
Total physical RAM: 4009.99 MB
Available physical RAM: 1851.56 MB
Total Virtual: 8018.19 MB
Available Virtual: 5212.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:3.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 94680AC5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Update 1: Utilizando o TreeSize identifiquei que nos diretórios do meu antivírus está localizado um único arquivo de 269,3 GB, cuja data de modificação é recente (01/10/2015). Estou procurando na internet do que se trata o arquivo avgntflt.db e porque ele está ocupando todo este espaço. Como o antivírus esta desativado, devo prosseguir com a desinstalação e eliminar estes arquivos. Como possuo Windows Original vou recorrer ao Microsoft Security Essentials enquanto busco uma alternativa.
hd virus armazenamento disco-rigido hd bom notebook dias motivo aparentemente lotado repentinamente
Power Max
Power Max Ubbergeek Registrado
4.2K Mensagens 509 Curtidas
#2 Por Power Max
04/10/2015 - 10:07
Olá Wilker.

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
http://www.bleepingcomputer.com/download/adwcleaner/

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

Remova adwares e toolbars maliciosas com o Adwcleaner

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[C1].txt

Ficamos na espera.
<><><><><><><><><><><><><><><><>

Caixa de Dicas = Sempre com novos tutoriais e atualidades em informática e tecnologia.
Super Links = Mensagens de fé e esperança ao seu coração.
© 1999-2024 Hardware.com.br. Todos os direitos reservados.
Imagem do Modal