Jump to content

Suspect high disk usage on Windows 8.1


Recommended Posts

Hello,

I have a notebook running Windows 8.1 x64. Every time and then I get high levels of disk usage on it, reaching often 100%.

I scanned my PC with Kaspersky Total Security and with Malwarebytes Anti-Malware but found nothing. I am suspecting there's something hidden that is affecting my system.

 

FRST.txt log:

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-08-2016 01
Executado por Luís (administrador) em LUIS-NOTEBOOK (23-08-2016 21:08:55)
Executando a partir de C:\Users\Luís\Desktop
Perfis Carregados: Luís (Perfis Disponíveis: Luís)
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão não detectado!)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2832168 2011-10-01] (Synaptics Incorporated)
HKU\S-1-5-21-3093185574-4245196106-1632066608-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BF3657AF-EEA7-4037-8AA6-287ED08FD64F}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3093185574-4245196106-1632066608-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ncbi.nlm.nih.gov/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-03] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-05] (AO Kaspersky Lab)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-03] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-12-05] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-05] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-12-05] (AO Kaspersky Lab)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-03] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-03] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-03] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Luís\AppData\Roaming\Mozilla\Firefox\Profiles\fkjuqn26.default
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-03] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Luís\AppData\Roaming\mozilla\plugins\npatgpc.dll [2016-07-21] (Cisco WebEx LLC)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Proteção Kaspersky - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\FFExt\light_plugin_firefox [2016-06-23]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe [194000 2015-12-05] (Kaspersky Lab ZAO)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2950856 2016-07-25] (Microsoft Corporation)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [200240 2016-07-23] (Microsoft Corporation) [Arquivo não assinado]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-28] (Microsoft Corporation)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 wampapache64; c:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe [29696 2015-12-09] (Apache Software Foundation) [Arquivo não assinado]
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.11\bin\mysqld.exe [39622144 2016-02-02] () [Arquivo não assinado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 HpqRemHid; C:\Windows\system32\DRIVERS\HpqRemHid.sys [9088 2007-07-11] (Hewlett-Packard Development Company, L.P.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [77728 2016-06-23] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-12-05] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [238000 2016-06-23] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [933808 2016-06-23] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [49240 2016-06-23] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-12-05] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87984 2016-06-23] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 qciusbnet; C:\Windows\system32\DRIVERS\qciusbnet.sys [162816 2013-05-14] (Quanta Computer Inc.)
S3 qciusbser; C:\Windows\system32\DRIVERS\qciusbser.sys [126208 2013-05-14] (Quanta Computer Inc.)
R3 smserial; C:\Windows\system32\DRIVERS\SmSerl64.sys [1227776 2013-06-18] (Motorola Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-23 21:08 - 2016-08-23 21:09 - 00009803 _____ C:\Users\Luís\Desktop\FRST.txt
2016-08-23 21:08 - 2016-08-23 21:08 - 00000000 ____D C:\FRST
2016-08-23 21:07 - 2016-08-23 21:07 - 02396672 _____ (Farbar) C:\Users\Luís\Desktop\FRST64.exe
2016-08-23 04:57 - 2016-08-23 04:57 - 00302616 _____ C:\Windows\Minidump\082316-43531-01.dmp
2016-08-22 21:45 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-08-22 21:45 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-08-22 21:45 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-08-22 21:45 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-08-22 21:45 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-08-22 21:45 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-08-22 21:44 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-08-22 21:44 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-08-22 21:44 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-08-22 21:44 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-08-22 21:44 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-08-22 21:44 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-08-22 21:44 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-08-22 21:44 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-08-22 21:44 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-08-22 21:44 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-08-22 21:44 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-08-22 21:44 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-08-22 21:44 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-08-22 21:44 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-08-22 21:44 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-08-22 21:44 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-08-22 21:44 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-08-22 21:44 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-08-22 21:44 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-08-22 21:44 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-08-22 21:44 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-08-22 21:44 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-08-22 21:44 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-08-22 21:44 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-08-22 21:44 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-08-22 21:44 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-08-22 21:44 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-08-22 21:44 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-08-22 21:44 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-08-22 21:44 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-08-22 21:44 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-08-22 21:44 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-08-22 21:44 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-08-22 21:44 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-08-22 21:44 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-08-22 21:44 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-08-22 21:44 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-08-22 21:44 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-08-22 21:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-08-22 21:44 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-08-22 21:44 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-08-22 21:44 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-08-22 21:44 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-08-22 21:44 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-08-22 21:44 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-08-22 21:44 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-08-22 21:44 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-08-22 21:44 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-08-22 21:44 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-08-22 21:44 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-08-22 21:44 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-08-22 21:44 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-08-22 21:44 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-08-22 21:44 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-08-22 21:44 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-08-22 21:44 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-08-22 21:44 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-08-22 21:44 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-08-22 21:44 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-08-22 21:44 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-08-22 21:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-08-22 21:44 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-08-22 21:44 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-08-22 21:44 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-08-22 21:44 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-08-22 21:44 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-08-22 21:44 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-08-22 21:44 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-08-22 21:44 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-08-22 21:44 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-08-22 21:44 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-08-22 21:44 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-08-22 21:44 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-08-22 21:44 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-08-22 21:44 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-08-22 21:44 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-08-22 21:44 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-08-22 21:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-08-22 21:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-08-22 21:44 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-08-22 21:44 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-08-22 21:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-08-22 21:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-08-22 21:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-08-22 21:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-08-22 21:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-08-22 21:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-08-22 21:44 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-08-22 21:44 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-08-22 21:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-08-22 21:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-08-22 21:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-08-22 21:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-08-22 21:44 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-08-22 21:44 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-08-22 21:44 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-08-22 21:44 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-08-22 21:44 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-08-22 21:44 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-08-22 21:44 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-08-22 21:44 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-08-22 21:44 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-08-22 21:44 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-08-22 21:44 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-08-22 21:44 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-08-22 21:44 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-08-22 21:44 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-08-22 21:44 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-08-22 21:44 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-08-22 21:06 - 2016-08-22 21:06 - 00003560 _____ C:\Users\Luís\AppData\Local\recently-used.xbel
2016-08-22 16:48 - 2016-08-22 16:52 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-22 16:48 - 2016-08-22 16:48 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2016-08-22 16:48 - 2016-08-22 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-22 16:48 - 2016-08-22 16:48 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-22 16:48 - 2016-08-22 16:48 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-22 16:48 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-08-22 16:48 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-08-22 16:48 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-08-22 16:46 - 2016-08-22 16:47 - 22851472 _____ (Malwarebytes ) C:\Users\Luís\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-08-22 16:22 - 2016-08-22 16:22 - 18309328 _____ (Microsoft Corporation) C:\Users\Luís\Downloads\MediaCreationTool.exe
2016-08-22 15:50 - 2016-08-22 15:50 - 00311732 _____ C:\Users\Luís\Downloads\fulltext.pdf
2016-08-21 00:15 - 2016-08-21 00:16 - 00732480 _____ C:\Windows\Minidump\082116-143671-01.dmp
2016-08-20 11:48 - 2016-08-20 11:48 - 00000000 ____D C:\Users\Luís\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-20 11:28 - 2016-08-20 11:28 - 00000000 ____D C:\Users\Luís\AppData\Local\Steam
2016-08-20 11:21 - 2016-08-22 22:34 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-20 11:21 - 2016-08-20 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-20 11:17 - 2016-08-20 11:17 - 01446792 _____ C:\Users\Luís\Downloads\SteamSetup.exe
2016-08-20 11:13 - 2016-08-20 11:13 - 00000000 ____D C:\Users\Luís\AppData\Local\ElevatedDiagnostics
2016-08-18 15:31 - 2016-08-02 03:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-18 15:31 - 2016-08-02 03:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-18 15:31 - 2016-08-02 03:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-08-18 15:31 - 2016-08-02 03:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-08-18 15:31 - 2016-08-02 03:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-18 15:31 - 2016-08-02 03:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-08-18 15:31 - 2016-08-02 02:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-08-18 15:31 - 2016-08-02 02:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-18 15:31 - 2016-08-02 02:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-08-18 15:31 - 2016-08-02 02:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-18 15:31 - 2016-08-02 02:46 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-08-18 15:31 - 2016-08-02 02:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-08-18 15:31 - 2016-08-02 02:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-08-18 15:31 - 2016-08-02 02:39 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-18 15:31 - 2016-08-02 02:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-18 15:31 - 2016-08-02 02:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-18 15:31 - 2016-08-02 02:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-18 15:31 - 2016-08-02 02:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-18 15:31 - 2016-08-02 02:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-18 15:31 - 2016-08-02 02:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-18 15:31 - 2016-08-02 02:20 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-08-18 15:31 - 2016-08-02 02:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-18 15:31 - 2016-08-02 02:15 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-18 15:31 - 2016-08-02 02:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-18 15:31 - 2016-08-02 02:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-18 15:31 - 2016-08-02 02:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-18 15:31 - 2016-08-02 01:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-18 15:31 - 2016-08-02 01:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-18 15:31 - 2016-08-02 01:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-18 15:31 - 2016-08-02 01:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-18 15:31 - 2016-07-08 11:18 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-08-18 15:29 - 2016-07-12 11:08 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-18 15:29 - 2016-07-08 21:09 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-08-18 15:29 - 2016-07-08 21:08 - 00332632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-08-18 15:29 - 2016-07-08 11:32 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-18 15:29 - 2016-07-08 11:25 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-18 15:29 - 2016-07-08 11:22 - 01445376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-18 15:29 - 2016-07-08 11:19 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-08-18 15:29 - 2016-07-08 11:17 - 00696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-08-18 15:29 - 2016-07-07 19:33 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-08-18 15:29 - 2016-07-07 18:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-08-18 15:29 - 2016-07-07 17:06 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-08-18 15:29 - 2016-07-06 11:26 - 07793152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-18 15:29 - 2016-07-06 11:26 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-08-18 15:29 - 2016-07-06 11:23 - 05270016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-08-18 15:29 - 2016-07-06 11:21 - 05265920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-18 15:29 - 2016-05-18 20:18 - 00563024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-18 15:29 - 2016-05-18 20:18 - 00397232 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-08-18 15:29 - 2016-05-18 20:16 - 00178016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-18 15:29 - 2016-05-18 19:28 - 00340880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-08-18 15:28 - 2016-08-18 15:28 - 00003236 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-08-18 15:22 - 2016-08-18 15:22 - 00000000 ____D C:\Users\Luís\AppData\Roaming\Skype
2016-08-18 14:55 - 2016-08-18 14:57 - 00759072 _____ C:\Windows\Minidump\081816-27562-01.dmp
2016-08-08 15:59 - 2016-08-08 15:59 - 00304816 _____ C:\Windows\Minidump\080816-26250-01.dmp
2016-08-08 10:09 - 2016-08-08 10:09 - 00000808 _____ C:\Users\Luís\Documents\script_pie_mutations_setd4.R
2016-08-08 10:05 - 2016-08-08 10:06 - 427680192 _____ C:\Users\Luís\Documents\pie_mutations_SETD4.tiff
2016-08-08 09:59 - 2016-08-08 10:03 - 00005653 _____ C:\Users\Luís\Documents\pie_mutations_SETD4.pdf
2016-08-07 02:52 - 2016-08-07 02:52 - 00310056 _____ C:\Windows\Minidump\080716-44875-01.dmp
2016-08-06 19:26 - 2016-08-06 19:26 - 00000000 ____D C:\Users\Luís\AppData\Roaming\MySQL
2016-08-06 19:23 - 2016-08-06 19:23 - 07186992 _____ (Microsoft Corporation) C:\Users\Luís\Downloads\vcredist_x64 (1).exe
2016-08-06 19:18 - 2016-08-06 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2016-08-06 19:14 - 2016-08-06 19:15 - 00000000 ____D C:\wamp64
2016-08-06 19:11 - 2016-08-06 19:11 - 00000000 ____D C:\Program Files\MySQL
2016-08-06 18:43 - 2016-08-06 18:50 - 195482521 _____ (Dominique Ottello aka Otomatic ) C:\Users\Luís\Downloads\wampserver3.0.4_x64_apache2.4.18_mysql5.7.11_php5.6.19-7.0.4.exe
2016-08-06 18:33 - 2016-08-22 21:43 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-08-06 18:33 - 2016-08-22 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-06 18:31 - 2016-08-06 18:31 - 07194312 _____ (Microsoft Corporation) C:\Users\Luís\Downloads\vcredist_x64.exe
2016-08-06 18:29 - 2016-08-06 18:29 - 00887896 _____ (Microsoft Corporation) C:\Users\Luís\Downloads\dotNetFx40_Client_setup.exe
2016-08-06 18:07 - 2016-08-06 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-08-06 18:07 - 2016-08-06 18:07 - 00000000 ____D C:\Windows\System32\Tasks\MySQL
2016-08-06 18:05 - 2016-08-06 18:05 - 00000000 ____D C:\Users\Todos os Usuários\MySQL
2016-08-06 18:05 - 2016-08-06 18:05 - 00000000 ____D C:\ProgramData\MySQL
2016-08-06 18:05 - 2016-08-06 18:05 - 00000000 ____D C:\Program Files (x86)\MySQL
2016-08-06 17:55 - 2016-08-06 17:55 - 00432857 _____ C:\Users\Luís\Downloads\sqlite-dll-win32-x86-3130000.zip
2016-08-06 17:15 - 2016-08-06 18:00 - 399900672 _____ C:\Users\Luís\Downloads\mysql-installer-community-5.7.14.0.msi
2016-08-04 22:29 - 2016-08-04 22:29 - 00001190 _____ C:\Users\Luís\Documents\anuncio.txt
2016-08-03 00:11 - 2016-08-03 00:11 - 00028888 _____ C:\Users\Luís\Downloads\Livro de Registros de Atos - Reuniões Diretoria UMP - Sheet9.pdf
2016-08-02 14:15 - 2016-08-02 14:17 - 00786016 _____ C:\Windows\Minidump\080216-39312-01.dmp
2016-08-01 20:19 - 2016-08-01 20:34 - 00025088 ___SH C:\Users\Luís\Documents\Thumbs.db
2016-08-01 15:58 - 2016-08-01 15:58 - 00000000 ____D C:\Users\Luís\AppData\Roaming\R
2016-08-01 15:36 - 2016-08-01 15:37 - 12749346 _____ C:\Users\Luís\Downloads\SnowyNight.themepack
2016-07-29 15:03 - 2016-07-29 15:07 - 00000000 ____D C:\Users\Luís\Documents\databases
2016-07-29 14:34 - 2016-07-29 14:34 - 00301824 _____ C:\Windows\Minidump\072916-41203-01.dmp
2016-07-29 13:58 - 2016-07-29 13:58 - 00008406 _____ C:\Users\Luís\Downloads\os_survival_data.txt
2016-07-26 12:08 - 2016-07-26 12:08 - 00037196 _____ C:\Users\Luís\Documents\LEUKEMIA AND METHYLTRANSFERASE CLINICAL DATA2 (para Luis Muniz em 160726).xlsx
2016-07-25 06:50 - 2016-07-25 06:50 - 00309512 _____ C:\Windows\Minidump\072516-40640-01.dmp

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-23 20:45 - 2016-06-23 20:05 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2016-08-23 20:45 - 2016-06-23 20:05 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-08-23 20:44 - 2016-06-21 19:44 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3093185574-4245196106-1632066608-1001
2016-08-23 20:42 - 2016-06-21 19:47 - 00003958 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5AAE82FA-D400-4A0F-9887-C755D93BA624}
2016-08-23 20:39 - 2016-06-21 19:45 - 00000000 __RDO C:\Users\Luís\OneDrive
2016-08-23 05:10 - 2016-06-21 19:34 - 00000000 ____D C:\Users\Luís
2016-08-23 04:57 - 2016-07-15 02:54 - 472944303 _____ C:\Windows\MEMORY.DMP
2016-08-23 04:57 - 2016-07-15 02:54 - 00000000 ____D C:\Windows\Minidump
2016-08-23 04:57 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-23 03:57 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf
2016-08-22 21:16 - 2016-06-22 21:21 - 00000000 ____D C:\Users\Luís\AppData\Roaming\RStudio
2016-08-22 21:16 - 2016-06-22 18:42 - 00000000 ____D C:\Users\Luís\AppData\Local\RStudio-Desktop
2016-08-22 20:02 - 2016-07-04 15:11 - 00000000 ____D C:\Users\Luís\Documents\dissertacao
2016-08-22 18:32 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness
2016-08-22 18:27 - 2016-06-21 19:48 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-22 18:22 - 2013-08-22 10:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-08-22 18:19 - 2016-06-21 19:48 - 00000000 ____D C:\Users\Luís\AppData\Local\Google
2016-08-22 18:18 - 2016-06-22 21:21 - 00034130 _____ C:\Users\Luís\Documents\.Rhistory
2016-08-22 18:08 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\rescache
2016-08-22 18:07 - 2016-06-29 12:10 - 00000000 ____D C:\Users\Luís\Documents\artigos
2016-08-22 18:06 - 2014-03-18 07:09 - 01707228 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-22 18:06 - 2014-03-18 06:30 - 00738078 _____ C:\Windows\system32\prfh0416.dat
2016-08-22 18:06 - 2014-03-18 06:30 - 00150714 _____ C:\Windows\system32\prfc0416.dat
2016-08-22 14:41 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\LiveKernelReports
2016-08-21 00:15 - 2013-08-22 11:44 - 00479696 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-19 16:01 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-19 16:01 - 2013-08-22 12:20 - 00000000 ____D C:\Windows\CbsTemp
2016-08-19 15:58 - 2016-06-23 14:47 - 00000000 ____D C:\Windows\system32\MRT
2016-08-19 15:38 - 2016-06-23 14:47 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-18 18:34 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-18 15:28 - 2016-06-22 14:28 - 00002348 _____ C:\Users\Luís\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-08-18 15:28 - 2016-06-21 20:28 - 00003188 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3093185574-4245196106-1632066608-1001
2016-08-08 08:04 - 2016-06-22 22:13 - 00000000 ____D C:\Users\Luís\Documents\paper_SETD4_draft
2016-08-08 02:13 - 2016-06-21 19:37 - 00000000 ____D C:\Users\Luís\AppData\Local\Packages
2016-08-06 15:01 - 2016-06-22 22:11 - 00000000 ____D C:\Users\Luís\Documents\PRISM_documentos
2016-08-04 20:35 - 2016-06-22 20:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-03 17:50 - 2013-08-22 12:36 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-08-03 17:50 - 2013-08-22 12:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-03 17:47 - 2016-06-21 19:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-01 20:34 - 2016-06-29 12:09 - 00053760 ___SH C:\Users\Luís\Downloads\Thumbs.db
2016-07-29 15:02 - 2016-07-18 01:51 - 00208896 ___SH C:\Users\Luís\Desktop\Thumbs.db
2016-07-29 13:59 - 2016-06-21 19:49 - 00004076 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 13:59 - 2016-06-21 19:49 - 00003840 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

==================== Arquivos na raiz de alguns diretórios =======

2016-08-22 21:06 - 2016-08-22 21:06 - 0003560 _____ () C:\Users\Luís\AppData\Local\recently-used.xbel

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-08-23 05:08

==================== Fim de FRST.txt ============================

 

 

Addition.txt log:

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 21-08-2016 01
Executado por Luís (23-08-2016 21:10:44)
Executando a partir de C:\Users\Luís\Desktop
Windows 8.1 Pro (Update) (X64) (2016-06-21 22:36:47)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3093185574-4245196106-1632066608-500 - Administrator - Disabled)
Convidado (S-1-5-21-3093185574-4245196106-1632066608-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3093185574-4245196106-1632066608-1003 - Limited - Enabled)
Luís (S-1-5-21-3093185574-4245196106-1632066608-1001 - Administrator - Enabled) => C:\Users\Luís

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Kaspersky Total Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Total Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Total Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM\...\Steam App 221380) (Version:  - Skybox Labs)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
GraphPad Prism 7 (HKLM-x32\...\{E37D94D0-6897-11E3-030A-00508F646B89}) (Version: 7.01 - GraphPad Software)
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Total Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mendeley Desktop 1.16.1 (HKLM-x32\...\Mendeley Desktop) (Version: 1.16.1 - Mendeley Ltd.)
Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 16.0.7070.2033 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3093185574-4245196106-1632066608-1001\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Mozilla Firefox 47.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 pt-BR)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla)
MySQL Installer - Community (HKLM-x32\...\{F4C0ABC6-4968-4975-ADCD-3FEEB19A21F8}) (Version: 1.4.16.0 - Oracle Corporation)
MySQL Workbench 6.3 CE (HKLM\...\{0D901124-B910-4985-9D4F-AC5C2FEF7493}) (Version: 6.3.7 - Oracle Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7030.1021 - Microsoft Corporation) Hidden
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
Raptor Shareware (HKLM-x32\...\Raptor (Shareware Version)_is1) (Version: 2.4b - Mountain King Studios)
RStudio (HKLM-x32\...\RStudio) (Version: 0.99.902 - RStudio)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.27.1 - Synaptics Incorporated)
Tim Communicator\Tim_ConnectionManager.exe (HKLM-x32\...\timgsm_is1) (Version: 2.0.0.4 - LightComm Tecnologia)
Update for Japanese Microsoft IME Postal Code Dictionary (HKLM-x32\...\{15015752-9990-4516-A2B1-93823281FB8E}) (Version: 15.0.1759 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Dictionary (HKLM-x32\...\{E75B82FD-B6FD-4653-8685-F3A97BDFEA6E}) (Version: 15.0.2013 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Extended Dictionary (HKLM-x32\...\{01E87699-A49D-413A-B75B-7C434FEF979C}) (Version: 15.0.2013 - Microsoft Corporation)
Wampserver64 3.0.4 (HKLM\...\{wampserver64}_is1) (Version: 3.0.4 - Dominique Ottello aka Otomatic)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3093185574-4245196106-1632066608-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Luís\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3093185574-4245196106-1632066608-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Luís\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0A4E1D8B-99E3-440B-92CE-6359EE2D89A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {206CADF0-1D5F-412E-8545-CC98230CC6A2} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3093185574-4245196106-1632066608-1001 => C:\Users\Luís\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-18] (Microsoft Corporation)
Task: {3F3CEB09-BFF7-4D68-8CC2-B62DE93B4020} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-08-03] (Microsoft Corporation)
Task: {3F6FF467-D742-4CF8-AF95-3E13BFD8AF53} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {593C4009-87CA-4E78-BBA8-C3B189E3860B} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [2016-04-30] (Oracle Corporation)
Task: {689E9215-5114-4A06-B862-29D96FE2B6B8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {869D11F4-B508-417A-8093-8EA08261D5C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B0436083-4F10-46F1-9568-4CB04D7594C4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-25] (Microsoft Corporation)
Task: {ED4CA539-3EB0-4755-AC5B-3B8E74B13CC9} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Luís\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-18] (Microsoft Corporation)
Task: {F5544D89-9608-4CB9-8501-3990AE60EC60} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-25] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\kpcengine.2.3.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 10:25 - 2013-08-22 10:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3093185574-4245196106-1632066608-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Luís\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3093185574-4245196106-1632066608-1001\...\StartupApproved\Run: => "Steam"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{218A521A-D1FC-4090-A509-729F29E5F5C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{DDB254AE-273B-4B04-9ED8-BE7CBD5E2848}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{07A5481C-21C7-42D8-A645-1B02D8BFFEE2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AE511B53-B918-4696-BA8E-40B269D0B0E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7B643E55-1E21-4283-BE6C-4D0406E76570}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D9DED5C9-ACE3-4780-BF9A-10C721564597}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6FB7A2A0-67D0-4829-8261-73B131C7E753}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CA4808EE-6EF8-42CB-922C-FF05280C690C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{1A825452-EAE3-4B93-8885-4CEE8F7A3E81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe

==================== Pontos de Restauração =========================

06-08-2016 18:03:21 Installed MySQL Installer - Community
18-08-2016 18:32:53 Windows Update
22-08-2016 21:42:16 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (08/23/2016 05:12:26 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de política assemblyIdentity2", na linha assemblyIdentity3.
O valor "x64" do atributo processorArchitecture no elemento assemblyIdentity é inválido.

Error: (08/22/2016 08:18:41 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de política assemblyIdentity2", na linha assemblyIdentity3.
O valor "x64" do atributo processorArchitecture no elemento assemblyIdentity é inválido.

Error: (08/22/2016 06:35:52 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: AUTORIDADE NT)
Description: There was an error with the Windows Location Provider database

Error: (08/22/2016 06:21:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LUIS-NOTEBOOK)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/22/2016 04:02:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa chrome.exe versão 52.0.2743.116 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 17b4

Hora de Início: 01d1fc9c52e76552

Hora de Término: 60000

Caminho do Aplicativo: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID do Relatório: c8cab289-689a-11e6-8262-001e6881b83f

Nome completo do pacote com falha:

ID do aplicativo relativo ao pacote com falha:

Error: (08/20/2016 03:07:12 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de política assemblyIdentity2", na linha assemblyIdentity3.
O valor "x64" do atributo processorArchitecture no elemento assemblyIdentity é inválido.

Error: (08/11/2016 10:02:47 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de política assemblyIdentity2", na linha assemblyIdentity3.
O valor "x64" do atributo processorArchitecture no elemento assemblyIdentity é inválido.

Error: (08/11/2016 09:59:22 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485936

Error: (08/11/2016 09:59:22 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {F5924493-726A-44E1-AA17-8F38DFC57BBC}

Error: (08/11/2016 09:59:22 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {F5924493-726A-44E1-AA17-8F38DFC57BBC}


Erros de Sistema:
=============
Error: (08/23/2016 04:57:37 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000d1 (0xffffd0017851a980, 0x0000000000000002, 0x0000000000000000, 0xfffff80130ad49d4)C:\Windows\MEMORY.DMP082316-43531-01

Error: (08/23/2016 04:57:32 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 04:23:03 do dia ‎23/‎08/‎2016 não era esperado.

Error: (08/22/2016 09:40:37 PM) (Source: disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/22/2016 09:14:40 PM) (Source: disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/22/2016 07:56:22 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: O sistema detectou um conflito de endereço entre o endereço IP 192.168.1.5 e o sistema
que possui o endereço de hardware de rede 38-63-BB-6B-DF-E1. Como resultado desse conflito, as operações de rede nesse sistema podem ser
interrompidas.

Error: (08/22/2016 06:26:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Serviço do Google Update (gupdate) devido ao seguinte erro:
%%1053 = O serviço não respondeu à requisição de início ou controle em tempo hábil.

Error: (08/22/2016 06:26:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Serviço do Google Update (gupdate).

Error: (08/22/2016 06:25:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: O serviço Provedor do Grupo Doméstico depende do serviço Publicação de Recursos de Descoberta de Função, mas não foi possível iniciá-lo devido ao seguinte erro:
%%1062 = O serviço não foi iniciado.

Error: (08/22/2016 06:25:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: O serviço Provedor do Grupo Doméstico depende do serviço Publicação de Recursos de Descoberta de Função, mas não foi possível iniciá-lo devido ao seguinte erro:
%%2147952449 = O endereço solicitado não é válido no contexto.

Error: (08/22/2016 06:25:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Publicação de Recursos de Descoberta de Função terminou com o erro:
%%2147952449 = O endereço solicitado não é válido no contexto.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM)2 Duo CPU T5750 @ 2.00GHz
Percentagem de memória em uso: 44%
RAM física total: 4086.43 MB
RAM física disponível: 2248.24 MB
Virtual Total: 8182.43 MB
Virtual disponível: 6333.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:228.89 GB) (Free:159.83 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 0001A258)
Partition 1: (Active) - (Size=228.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=4 GB) - (Type=05)

==================== Fim de Addition.txt ============================

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.