cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by Aldemir at 2015-06-29 13:00:41
Running from C:\Users\Aldemir\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3946438998-3197700291-2475896670-500 - Administrator - Disabled)
Aldemir (S-1-5-21-3946438998-3197700291-2475896670-1001 - Administrator - Enabled) => C:\Users\Aldemir
Convidado (S-1-5-21-3946438998-3197700291-2475896670-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3946438998-3197700291-2475896670-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adblock Plus para o IE (32 e 64 bits) (HKLM\...\{7F7180C6-FCE7-436E-95DB-B53889D9AD27}) (Version: 1.3.763 - Eyeo GmbH)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.2.81 - Dll-Files.com)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Malwarebytes Anti-Exploit version 1.06.1.1019 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.06.1.1019 - Malwarebytes)
Malwarebytes Anti-Malware versão 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
MPC-HC 1.7.8 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.8 - MPC-HC Team)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.3 - Notepad++ Team)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Spotify (HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\Spotify) (Version: 1.0.7.157.g2a6526f9 - Spotify AB)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.1.2 - Tweaking.com)
Unchecky v0.3.7.5 (HKLM-x32\...\Unchecky) (Version: 0.3.7.5 - RaMMicHaeL)
Watchtower Library 2013 - Português (HKLM-x32\...\{D83FFF64-624A-4030-9D6E-9613AA6C8BAC}) (Version: 15.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ZHPDiag 2014 (HKLM-x32\...\ZHPDiag_is1) (Version: 2014 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

09-06-2015 21:11:20 Installed Microsoft Fix it Solution - 74e8577d-db55-4f41-9b76-27b4d903dd4a
13-06-2015 15:38:12 Windows Update
23-06-2015 23:25:16 Ponto de Verificação Agendado
25-06-2015 15:51:28 Installed Microsoft Fix it Solution - 74e8577d-db55-4f41-9b76-27b4d903dd4a
25-06-2015 16:46:47 PROPLUS
27-06-2015 17:45:30 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 10:25 - 2015-06-27 19:23 - 00001204 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com

There are 4 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2E32D008-2D68-451B-8774-02447D6274FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {529F088E-E650-4949-97B7-95A57446E384} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {867DDC6A-DF0D-4EE4-B838-1CDCE72A4AE9} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
Task: {C4B75D21-81CD-4F43-AB80-9E8B610B1619} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-04] (Google Inc.)
Task: {CF793BCE-6CCA-4420-84BB-EDBA44B58536} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D26930CC-9515-4362-8C3D-A8A35EBD24FA} - System32\Tasks\Microsoft Office 15 Sync Maintenance for ADMINISTRADOR-Aldemir Administrador => C:\Program Files (x86)\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {EA1572D1-67BA-498C-B07A-BCAA86C7D563} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-15] (Microsoft Corporation)
Task: {ED30CD69-F6D3-4671-8F0A-92BCBD3A1017} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {EDAB6199-72C3-45ED-B8A8-748251EC476A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-04] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-02-20 08:01 - 2015-02-20 08:01 - 00022528 _____ () C:\Windows\System32\us001lm.dll
2012-06-18 12:24 - 2012-06-18 12:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2015-06-22 16:36 - 2015-06-20 04:20 - 01670472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll
2015-06-22 16:36 - 2015-06-20 04:20 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Aldemir\OneDrive:ms-properties
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:5C321E34

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\...\1001movie.com -> 1001movie.com

There are 6091 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3946438998-3197700291-2475896670-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Aldemir\Pictures\Mike Ariesta 4.jpg
DNS Servers: 200.189.80.123 - 200.189.80.109

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{86EB5EA2-FFF2-472C-B091-12547EE08FF3}] => (Allow) C:\Users\Aldemir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A06081AB-A32D-4767-A586-FD9A31DDAEB3}] => (Allow) C:\Users\Aldemir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{60750032-DCE7-4FE0-B489-4C07098C438B}C:\users\aldemir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\aldemir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{13155BFC-3819-41EC-A250-726239CA6DFF}C:\users\aldemir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\aldemir\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B2650C6A-3806-4A3A-996B-0694DC7D0B00}] => (Allow) C:\ProgramData\winnit.exe
FirewallRules: [{21D27E3D-B1E4-425A-B05D-DE47363918C9}] => (Allow) C:\ProgramData\winnit.exe
FirewallRules: [{0921C27A-56D8-4DDC-9BE1-EF74D3197BEC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0D2B22C7-69C9-4178-B478-05360273E36D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{45EFE3B7-D835-468B-84A8-AFB5F94E579F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B455A00E-E59B-4908-98E7-5B12EAA48051}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8094277A-5B04-4F52-AE61-35A83229D8A4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6C0063DC-DEA7-4DAA-A052-4C94A42E57B7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{9A8FD0B1-DF94-44B8-A346-23CACD5E5FA7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{DAE4A6DA-5A9F-4585-82CE-1C662E74C006}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{945E3393-9A4E-4F20-90F7-77E5F3E9EC1A}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AD112D87-396F-46CE-B8D4-9FF35663A80D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8F5305E8-4E07-4E18-9CE6-2E9EEF28CCB5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6F6582EE-6D04-41A1-A7A5-16D4DE08560C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FB6C5B89-03F2-4AEE-A1AD-258FE5BCD26D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{2558CBF8-3825-477A-8684-4D3835CBCE4D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D9ED216E-1C1D-41F0-AD44-889EFAEADD43}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{39E57C5C-348C-4047-BC76-ECA82EC05283}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D19E3217-C59A-4315-AE50-415B90431A33}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{1C318176-9C37-414C-89BD-83539C7F2D67}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{776C97DE-60FF-4F84-AD42-A19859F5BF7B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{24BE018A-34B0-4E27-AD77-31AA5CF7D986}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{01687AFF-3FA2-4EBD-965A-E7B97B245C59}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FD28AE25-49C4-476A-8E00-C69A1B7F090F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BDDB1E5E-10A4-425E-9363-D1ECB8FD3D41}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C714D4B2-B5C1-4A33-B094-F662AEF8C5E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5CCF9FB6-7AC1-4FA5-A46E-629B463DBC61}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C780D5D5-0C36-4DB4-9CF8-BCCAE5221707}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{74A475E7-0E98-45F4-ACCB-C896DB8FA037}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{195999BA-01F1-4B7B-B5CC-F9B098A15802}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3102AD3D-0123-4F42-A672-7C3FA3150E1C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{67C1B236-9784-4A8F-8EF3-72AF0FC96657}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D9332C0F-14F5-4419-98DC-2BFA5726C2D6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6C582A31-3B7F-4B78-83EA-12E6BE77932E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8AC801C8-1EE2-40C2-8987-A177064FB8DF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FB712338-9980-401F-AFB7-D4DAB2E6D713}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8B4A2F5C-74E2-460A-BB7B-08C675A4FC0B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6C8F0526-4D9B-4406-B967-DAEB01551390}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E1ABAED4-0B96-4315-BFD8-7C625353BBA5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{792FDCF5-AD12-485F-91E1-5906995A6A84}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{2162020B-4C46-4FCA-9B69-541DADB1C1BE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{EC4C882F-3DC7-4F75-96FF-21C1C6A74E4E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7992F3A9-B3CF-46CC-9EEA-91F30CC39AB9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3382BC95-39A8-4DB3-9CD9-481D574D2442}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F81E55FA-2B6B-4990-913F-89AED21AEC24}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6D838BD2-B952-4577-8A45-91FADC8E7285}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F3E68C4B-1D68-49FD-9CA4-C6F7F7FC7F78}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E1E1F972-D887-41D3-B9D8-618D68D34734}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{08FC5FCB-A1BB-4BF6-B4E5-6B0AA7D4ECAC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{846449D8-3EF0-489F-A047-9A42201D8977}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3C243C91-89B5-40E6-BA5E-3883695C0C90}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{9A17C431-51E6-4EF6-AAA0-EB3739A47806}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0120CBB5-CB0B-41FB-8A04-E397ED2AC410}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C5D27CCA-B753-4EC1-B6C6-1A524072D942}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FC06BF2D-3591-4568-83F4-AD055CD181D8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3D269538-7848-40A0-B89D-59B1CD5711C4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0FAAAD32-F9F4-4DDA-9A84-BDAD05FBFDB4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F4AF8DF2-AF8E-4FBC-9BB5-C4E8EBD52DBF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{446B8CA6-3D10-4A8F-8D8C-69552700B81A}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{1BF0708A-ED1D-4D82-9DF7-10008C29ECE4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{EFA9611E-6C97-4525-90EE-3FE2437039A8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{A2B4299A-D858-433B-8A02-7C1609AE34D2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{2C8C5CD1-3491-400F-988C-8702E560781A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{3C8B1ACE-1446-4CB8-97C9-B492C94ABC9C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{673E093D-5CA6-4D00-B148-DCAD3440DEA2}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{91CB3676-18B1-445E-A053-944EC2DAECC9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{E1E6EBA3-23F5-41DE-B189-BE620265BDB4}C:\users\aldemir\appdata\local\temp\kmsnano\qemu-system-i386.exe] => (Allow) C:\users\aldemir\appdata\local\temp\kmsnano\qemu-system-i386.exe
FirewallRules: [UDP Query User{9B5DCD3B-FE21-40BB-ACBB-78946493234B}C:\users\aldemir\appdata\local\temp\kmsnano\qemu-system-i386.exe] => (Allow) C:\users\aldemir\appdata\local\temp\kmsnano\qemu-system-i386.exe
FirewallRules: [TCP Query User{41BDBB6D-AA3E-4983-9B85-18F033AB33AC}C:\users\aldemir\desktop\pendrive\nova pasta (2)\fg742p.exe] => (Allow) C:\users\aldemir\desktop\pendrive\nova pasta (2)\fg742p.exe
FirewallRules: [UDP Query User{438072AD-B612-426D-BA85-577C668F73EA}C:\users\aldemir\desktop\pendrive\nova pasta (2)\fg742p.exe] => (Allow) C:\users\aldemir\desktop\pendrive\nova pasta (2)\fg742p.exe
FirewallRules: [{B1931DB6-0145-4A9E-8926-006225F16274}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2015 00:51:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (06/29/2015 00:50:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/28/2015 09:23:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 07:23:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 07:23:19 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 06:57:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa AppRadio.Windows81.exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 13dc

Hora de Início: 01d0b1e79aaceb00

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Program Files\WindowsApps\34628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8\AppRadio.Windows81.exe

ID do Relatório: 999dad84-1de0-11e5-826a-b499bafded39

Nome completo do pacote com falha: 34628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8

ID do aplicativo relativo ao pacote com falha: App

Error: (06/28/2015 06:56:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ADMINISTRADOR)
Description: O pacote 34628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8+App foi terminado porque levou muito tempo para ser suspenso.

Error: (06/28/2015 05:29:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: Falha na ativação do aplicativo Microsoft.SkypeApp_kzf8qxf38zg5c!App com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (06/28/2015 05:23:36 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 03:23:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent


System errors:
=============
Error: (06/27/2015 07:23:34 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Este computador foi configurado como membro de
um grupo de trabalho e não como membro de um domínio. Não é necessário
executar o serviço de logon de rede nesta configuração.

Error: (06/27/2015 06:33:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (06/27/2015 06:33:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (06/27/2015 06:33:50 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (06/27/2015 06:33:50 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (06/27/2015 06:33:50 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (06/26/2015 09:00:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Serviço de Compartilhamento de Rede do Windows Media Player foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.

Error: (06/26/2015 09:00:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Unchecky foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (06/26/2015 09:00:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Malwarebytes Anti-Exploit Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (06/26/2015 09:00:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Spooler de Impressão foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 5000 milissegundos: Reiniciar o serviço.


Microsoft Office:
=========================
Error: (06/29/2015 00:51:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (06/29/2015 00:50:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/28/2015 09:23:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 07:23:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 07:23:19 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 06:57:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: AppRadio.Windows81.exe1.0.0.013dc01d0b1e79aaceb004294967295C:\Program Files\WindowsApps\34628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8\AppRadio.Windows81.exe999dad84-1de0-11e5-826a-b499bafded3934628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8App

Error: (06/28/2015 06:56:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ADMINISTRADOR)
Description: 34628NielsCup.AppRadio_9.1.34.1_neutral__kz2v1f325crd8+App

Error: (06/28/2015 05:29:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927141

Error: (06/28/2015 05:23:36 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (06/28/2015 03:23:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent


CodeIntegrity Errors:
===================================
Date: 2015-06-28 15:18:07.705
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-28 15:16:58.374
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:58.254
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:58.101
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.888
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.770
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.596
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.421
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.178
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-28 15:16:57.050
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentage of memory in use: 71%
Total physical RAM: 2009.33 MB
Available physical RAM: 568.57 MB
Total Pagefile: 4795.74 MB
Available Pagefile: 2717.54 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.42 GB) (Free:362.41 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4A5A8254)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.4 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité