cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:10-01-2015 01
Executado por Lindalva (2016-01-13 21:09:01)
Executando a partir de C:\Users\Lindalva\Desktop
Windows 8.1 Pro (X64) (2014-03-24 00:14:04)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3346231069-2863826343-95346800-500 - Administrator - Disabled)
Convidado (S-1-5-21-3346231069-2863826343-95346800-501 - Limited - Enabled)
Lindalva (S-1-5-21-3346231069-2863826343-95346800-1001 - Administrator - Enabled) => C:\Users\Lindalva

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1462 - DsNET Corp)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
CrazyTalk Cam Suite PRO (HKLM-x32\...\{D1504C77-1B19-4AF0-8DEC-946666123B55}) (Version: 3.0 - Reallusion)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver Booster 3.1 (HKLM-x32\...\Driver Booster_is1) (Version: 3.1 - IObit)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.37 - IObit)
K-Lite Mega Codec Pack 4.7.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.7.0 - )
KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero 7 Ultra Edition (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301046}) (Version: 7.02.9753 - Nero AG)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Realtek PC Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10291 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.3 - IObit)
Stardock Start8 (HKLM\...\Start8_is1) (Version: 1.31 - Stardock Software, Inc.)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.0.0 - Synaptics Incorporated)
VirtualDJ Home FREE (HKLM-x32\...\{B515962D-C979-44AC-9912-F7BB499B4B2C}) (Version: 7.3 - Atomix Productions)
Vivo - Guia Vivo Internet versão 1.0 (HKLM-x32\...\{C2E8B9C9-677A-46E6-AEC7-9435B5BCA765}_is1) (Version: 1.0 - Vivo)
VIVO INTERNET (HKLM-x32\...\VIVO INTERNET) (Version: 16.002.10.19.149 - Huawei Technologies Co.,Ltd)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {070F17D2-ADF4-43E4-BADB-02FAA5C4DBB1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {3A8A4F82-9EA6-4F47-B771-A45E8AACF435} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {3AD44BD5-A52D-4681-B887-811992BB9827} - System32\Tasks\GoogleUpdateTaskMachineUA1cf68d66f805162 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {41B781BF-29F2-4CDD-8D93-3E80638D5EE5} - System32\Tasks\Uninstaller_SkipUac_Lindalva => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-30] (IObit)
Task: {44FAB57D-4EF3-433E-889E-DDDD33947E86} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3346231069-2863826343-95346800-1001Core => C:\Users\Lindalva\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-28] (Facebook Inc.)
Task: {5035858A-6B09-4FCF-9EB2-A624D0D43885} - System32\Tasks\GoogleUpdateTaskMachineCore1d040b38605c44b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {555FF276-687B-4A05-93A4-7EDB6508BC8E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {788CBB64-C3EE-4433-A54A-E3E6F283447A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3346231069-2863826343-95346800-1001UA => C:\Users\Lindalva\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-28] (Facebook Inc.)
Task: {838F7BF5-53B5-483F-90FD-EDE61BF0777D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-12-27] (Microsoft Corporation)
Task: {9B81A35F-31D1-4A7A-914B-D88AB6958F09} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-25] (Realtek Semiconductor)
Task: {A366A72D-539B-4360-9CC7-42CFB1A4F805} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8cec8fe8c8f7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {A903355F-B493-4DB2-AEA1-F444E404BEA6} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {ADCB784A-C6B5-42C4-B5B6-341EE20EA574} - System32\Tasks\{5A31AC2F-B611-4729-88AA-E777AD166773} => pcalua.exe -a "C:\Users\Lindalva\Documents\Need For Speed Most Wanted\eauninstall (2).exe" -d "C:\Users\Lindalva\Documents\Need For Speed Most Wanted"
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {BAC7ED65-4BEB-4F89-8FF7-4056A0A80C8D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {C5E58D57-13AC-483B-86B6-54F693E5B309} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2013-12-11] ()
Task: {C6C7DE8A-44AC-48E1-ACC1-F99F1038BBD1} - System32\Tasks\Driver Booster SkipUAC (Lindalva) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-11-24] (IObit)
Task: {DC0926E0-376D-43FD-8E83-B30C7CE971C2} - System32\Tasks\{A02F2B19-5378-49E4-8002-E965F3C38CDE} => pcalua.exe -a "C:\Users\Lindalva\Documents\Need For Speed Most Wanted\eauninstall.exe" -d "C:\Users\Lindalva\Documents\Need For Speed Most Wanted"
Task: {FFBB0E39-C7DF-4826-A22F-8AA01AF0080A} - System32\Tasks\GoogleUpdateTaskMachineCore1cf49dd26f4d285 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3346231069-2863826343-95346800-1001Core.job => C:\Users\Lindalva\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3346231069-2863826343-95346800-1001UA.job => C:\Users\Lindalva\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8cec8fe8c8f7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d040b38605c44b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf68d66f805162.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Lindalva.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2011-03-14 13:27 - 2011-03-14 13:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-01-25 03:22 - 2014-01-25 03:22 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-02-19 19:40 - 2015-02-19 19:40 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2015-02-27 13:17 - 2014-10-16 11:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-11-25 19:37 - 2015-09-21 10:49 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-11-25 19:37 - 2015-09-21 10:49 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-11-25 19:37 - 2015-09-21 10:49 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-12-26 13:51 - 2015-12-11 01:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-26 13:51 - 2015-12-11 01:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-26 10:49 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\Lindalva\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001\...\100sexlinks.com -> 100sexlinks.com

Existem ainda 4789 sites a mais.

IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> 100sexlinks.com

Existem ainda 4789 sites a mais.


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 11:25 - 2013-08-22 11:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3346231069-2863826343-95346800-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lindalva\AppData\Roaming\Microsoft\Windows Photo Viewer\Papel de Parede do Visualizador de Fotos do Windows.jpg
HKU\S-1-5-21-3346231069-2863826343-95346800-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Lindalva\AppData\Roaming\Microsoft\Windows Photo Viewer\Papel de Parede do Visualizador de Fotos do Windows.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [TCP Query User{55E2A2CB-D912-41AE-BC46-AC9F634CDF77}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{D727D391-421C-499A-AAC4-B1CAE24777F8}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{8D3C04EE-FBE8-4BCE-9F4F-A4EC9913EB88}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{BC42FB9C-9175-4DD4-BC51-CF2452C3E02D}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{8B17F7E2-9F41-486A-815B-21955B9E667A}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{CD9EBB85-1C35-4EDF-AF3A-659656B9B782}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{A297145B-9F68-4B92-BE03-C3BBCF366E78}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{D357B399-6E47-4083-81E7-594869D643D0}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{C9B7B552-1BB9-4C96-97E1-C19C9C67C95C}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{5C4D64DB-E947-44AB-9E51-143B8EB876B7}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{19F7D712-F654-47AD-AC81-E301202D4D16}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{10DBFFD7-BDFC-4D0A-8767-FAA718DADDF2}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{D947BB0B-273D-4877-A20F-FE00F3470A24}] => (Allow) C:\Users\Lindalva\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{064332AF-B1E8-4BC0-A5D3-B831D6B07E6D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9895FCA8-6D37-4782-A115-C2709DB44217}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{4986B3F2-887E-4FFF-9C3A-2E639ED32D85}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1027D161-B5CB-47A0-9211-6D7517A07E5B}] => (Allow) LPort=2869
FirewallRules: [{00E3E010-E4BE-4066-B377-14F9B1C8101B}] => (Allow) LPort=1900
FirewallRules: [{046F7768-95D2-49E8-AF07-636512E6BFAC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{ABC607A3-7535-44AB-B550-150EF40B9314}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{9BDB3891-E0FE-4EF7-B8F2-E29B04A30232}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

==================== Pontos de Restauração =========================

26-12-2015 19:45:50 Ponto de Verificação Agendado
02-01-2016 15:31:08 Windows Update
12-01-2016 18:00:28 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (01/13/2016 09:03:11 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O banco de dados do Registro de configuração está corrompido.

Error: (01/13/2016 09:03:11 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: AUTORIDADE NT)
Description: O Windows não pôde carregar o Registro. Isso geralmente é causado por memória insuficiente ou direitos de segurança insuficientes.

DETALHE - O banco de dados do Registro de configuração está corrompido.
para C:\Users\Lindalva\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (01/13/2016 09:03:11 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O banco de dados do Registro de configuração está corrompido.

Error: (01/13/2016 09:03:11 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: AUTORIDADE NT)
Description: O Windows não pôde carregar o Registro. Isso geralmente é causado por memória insuficiente ou direitos de segurança insuficientes.

DETALHE - O banco de dados do Registro de configuração está corrompido.
para C:\Users\Lindalva\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (01/13/2016 08:51:43 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O banco de dados do Registro de configuração está corrompido.

Error: (01/13/2016 08:51:43 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: AUTORIDADE NT)
Description: O Windows não pôde carregar o Registro. Isso geralmente é causado por memória insuficiente ou direitos de segurança insuficientes.

DETALHE - O banco de dados do Registro de configuração está corrompido.
para C:\Users\Lindalva\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (01/13/2016 08:51:19 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O banco de dados do Registro de configuração está corrompido.

Error: (01/13/2016 08:51:19 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: AUTORIDADE NT)
Description: O Windows não pôde carregar o Registro. Isso geralmente é causado por memória insuficiente ou direitos de segurança insuficientes.

DETALHE - O banco de dados do Registro de configuração está corrompido.
para C:\Users\Lindalva\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (01/12/2016 11:14:33 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O banco de dados do Registro de configuração está corrompido.

Error: (01/12/2016 11:14:33 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: AUTORIDADE NT)
Description: O Windows não pôde carregar o Registro. Isso geralmente é causado por memória insuficiente ou direitos de segurança insuficientes.

DETALHE - O banco de dados do Registro de configuração está corrompido.
para C:\Users\Lindalva\AppData\Local\Microsoft\Windows\\UsrClass.dat


Erros de Sistema:
=============
Error: (01/13/2016 09:02:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: microsoft.windowscommunicationsapps.

Error: (01/13/2016 09:02:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.BingFoodAndDrink.

Error: (01/13/2016 09:02:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.ZuneVideo.

Error: (01/13/2016 09:02:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.WindowsReadingList.

Error: (01/13/2016 09:02:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.ZuneMusic.

Error: (01/13/2016 09:02:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.BingHealthAndFitness.

Error: (01/13/2016 09:02:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.BingTravel.

Error: (01/13/2016 09:02:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.BingFinance.

Error: (01/13/2016 09:02:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.BingNews.

Error: (01/13/2016 09:01:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070002: Microsoft.ZuneVideo.


CodeIntegrity:
===================================
Date: 2016-01-13 01:22:30.312
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentagem de memória em uso: 50%
RAM física total: 3797.48 MB
RAM física disponível: 1885.64 MB
Virtual Total: 4437.48 MB
Virtual disponível: 2074.48 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:233.07 GB) (Free:167.29 GB) NTFS
Drive d: (Novo volume) (Fixed) (Total:207.7 GB) (Free:177.01 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 4F494D44)

Partition: GPT.

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité