cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:21-02-2016 01
Executado por ITACHI (2016-02-23 10:37:17)
Executando a partir de C:\Users\ITACHI\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-01-25 17:54:50)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1396264922-706342351-4060887870-500 - Administrator - Disabled)
Convidado (S-1-5-21-1396264922-706342351-4060887870-501 - Limited - Disabled)
ITACHI (S-1-5-21-1396264922-706342351-4060887870-1000 - Administrator - Enabled) => C:\Users\ITACHI

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
Adobe Reader XI (11.0.14) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.14 - Adobe Systems Incorporated)
Advanced Calendar 2.0.0.11189 (HKLM\...\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}) (Version: 2.0.0.11189 - MEIXIAN XIE) <==== ATENÇÃO
Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.1.0 - IObit)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.15.16 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
Corel Shell Extension - 64Bit (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Capture (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang BR (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang DE (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang EN (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang ES (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang FR (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang IT (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (x32 Version: 14.2 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM-x32\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: - Corel Corporation)
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (x32 Version: 1.1 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 (HKLM-x32\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: - Corel Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
GamesDesktop 020.005010227 (HKLM-x32\...\gmsd_br_005010227_is1) (Version: - GAMESDESKTOP) <==== ATENÇÃO
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2869 - Intel Corporation)
IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.4 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
JP (x32 Version: 14.2 - Corel Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft SQL Server Desktop Engine (HKLM-x32\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.760 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{79BF7CB8-1E09-489F-9547-DB3EE8EA3F16}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{86177DAE-38B1-49DD-912E-35CB703AB779}) (Version: 9.00.4035.00 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.0000 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.0000 - www.motioninjoy.com)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
Opera Stable 35.0.2066.68 (HKLM-x32\...\Opera 35.0.2066.68) (Version: 35.0.2066.68 - Opera Software)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.3 - IObit)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Wilcom EmbroideryStudio (HKLM-x32\...\{83D9307A-2024-4E4A-969E-8B65A1D1BC9A}) (Version: 12.0.0075 - Wilcom)
Wilcom EmbroideryStudio (x32 Version: 12.0.0061 - Wilcom) Hidden
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {1846F76D-04C7-4AB8-A6B6-BCB20BB96774} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {18F10E3C-32C2-4767-989B-BBE286931116} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2010-12-26] (AVAST Software)
Task: {1C2D9632-706F-465B-8A48-23E0FC7EB21B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {25C93B5A-A8DA-4EFC-9C5E-D99589C843D4} - System32\Tasks\ASC9_SkipUac_ITACHI => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-01-18] (IObit)
Task: {2C5B5EE0-3BBB-41D0-8416-10EFF23A53FA} - System32\Tasks\{A60E3131-3BDA-4DDE-86C0-DE6C38FA88A8} => E:\Users\Usuario\Downloads\CLARA\Embrid all\embird 2003\Embird 2003\SFUMATO2.EXE [2003-10-27] ()
Task: {362636DC-1AC7-40DC-97E0-6C06F8077B91} - System32\Tasks\Fhvidcu => C:\PROGRA~1\SHOPPE~1\Leppeff.bat
Task: {4836DDE8-AD2C-4087-873F-D3BB26337880} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-01-13] (IObit)
Task: {83305B37-BF0B-459D-8A4B-D598B159FA49} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {A42743E4-52D0-4779-9E81-AE3D61BC0D68} - System32\Tasks\Uninstaller_SkipUac_ITACHI => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
Task: {AD5F6407-31C3-4398-A88A-B92B41B8E409} - System32\Tasks\Driver Booster SkipUAC (ITACHI) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-01-18] (IObit)
Task: {ADA757E3-33D8-4730-82D7-0F838F545F67} - System32\Tasks\Opera scheduled Autoupdate 1455451495 => C:\Program Files (x86)\Opera\launcher.exe [2016-02-15] (Opera Software)
Task: {CE87D14A-81BA-4382-8AE7-B81553C5C653} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-01-15] (IObit)
Task: {D8E24904-7402-4DB9-9DF8-5AD07ECDD829} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2010-12-26] (AVAST Software)
Task: {F5C32894-BE26-4627-B8FD-BB80EBCEAA55} - System32\Tasks\Arolha => C:\PROGRA~1\SHOPPE~1\Dosyvesm.bat

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\ITACHI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yeabests.cc/
ShortcutWithArgument: C:\Users\ITACHI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome (2).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yeabests.cc/
ShortcutWithArgument: C:\Users\ITACHI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yeabests.cc/
ShortcutWithArgument: C:\Users\ITACHI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Yeabeats Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yeabests.cc/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yeabests.cc/

==================== Módulos Carregados (Whitelisted) ==============

2015-12-25 05:42 - 2015-12-25 05:42 - 00141960 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe
2015-12-25 05:42 - 2015-12-25 05:42 - 03934344 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\Calendar.exe
2015-12-25 05:42 - 2015-12-25 05:42 - 00148104 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarEntry.dll
2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-12-26 23:51 - 2010-12-26 23:51 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2010-12-26 23:51 - 2010-12-26 23:51 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-02-22 10:58 - 2016-02-22 10:58 - 02835968 _____ () C:\Program Files\AVAST Software\Avast\defs\16022201\algo.dll
2010-12-26 23:51 - 2010-12-26 23:51 - 00480760 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2010-12-27 00:08 - 2010-12-27 00:08 - 02834432 _____ () C:\Program Files\AVAST Software\Avast\defs\16022300\algo.dll
2016-02-06 00:19 - 2015-01-09 17:46 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
2015-12-25 05:42 - 2015-12-25 05:42 - 00543368 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPTask.dll
2015-12-25 05:42 - 2015-12-25 05:42 - 00406664 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPNet.dll
2015-12-25 05:41 - 2015-12-25 05:41 - 00428680 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPDR.dll
2016-02-01 01:16 - 2015-12-28 12:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll
2016-02-01 01:16 - 2015-12-28 12:49 - 00629536 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2010-12-26 23:51 - 2010-12-26 23:51 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-02-06 00:19 - 2015-03-27 14:39 - 00182080 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2016-02-06 00:19 - 2015-01-09 17:46 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2016-02-06 00:19 - 2014-10-16 09:26 - 00622880 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\ProductStatistics.dll
2016-02-01 01:16 - 2015-12-23 17:32 - 00355616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2016-02-01 01:16 - 2015-12-23 17:32 - 00190240 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-02-01 01:16 - 2015-12-23 17:32 - 00057632 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2012-09-23 19:43 - 2012-09-23 19:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-02-21 01:05 - 2016-02-18 01:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-21 01:05 - 2016-02-18 01:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
2016-02-21 01:05 - 2016-02-18 01:15 - 16808600 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\PepperFlash\pepflashplayer.dll
2010-12-26 23:51 - 2010-12-26 23:51 - 00984576 _____ () C:\Program Files\AVAST Software\Avast\ffmpegsumo.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1396264922-706342351-4060887870-1000\...\100sexlinks.com -> 100sexlinks.com

Existem ainda 4788 sites a mais.


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2016-01-26 10:46 - 00000967 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1396264922-706342351-4060887870-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ITACHI\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 104.197.191.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupreg: HomePageHelper =>
MSCONFIG\startupreg: LightGate =>

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{68035850-DD6D-49A8-8B78-D74CB7486CCC}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [UDP Query User{C4214A1A-643D-4355-83DA-A255F5D58FA0}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [{A382BC9A-4FD9-4110-8229-E2C80F1BD08A}] => (Allow) LPort=1947
FirewallRules: [{6A1BCD96-518E-49AE-8023-5D3CD5543D7D}] => (Allow) LPort=1947
FirewallRules: [{A737CE2C-243A-4393-8FC1-D83A0AFF201D}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{9920FA58-2490-48BD-A7DC-DA0B1FCE0020}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{609CA2D5-A5EB-4E2A-9D78-B9F735396FEA}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2D5DB0B5-97D0-4172-B9A0-42E4C76D39CC}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AC58E4B5-C6AA-4A33-A707-BF6CB0AA1857}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{46DA213D-749C-4B92-B92F-AB4B960B34E6}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8D9B01E2-6696-4A99-AB5B-8F1932CB7743}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{97EBE8F8-B421-4EEF-9D63-BE9AC1CA0B0F}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E95C1ED7-400E-48F5-8272-78B68614FC3D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{0F4AF6DA-E975-4BCA-8133-23003DA372CC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{B1E90787-D8E2-4D21-9680-9AE1D5426CD7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{E967CF74-31F0-480C-B061-E29D77E97A63}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{D7B13A86-9BC7-4A82-B661-9460454C32D7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{65EFA25B-58A2-4AA1-A1B0-65AEA9939647}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{66B0E078-9C2A-4DDE-BCF5-26FFE5A29514}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

26-12-2010 23:25:24 Instalador de Módulos do Windows
26-12-2010 23:28:00 Instalador de Módulos do Windows
27-12-2010 00:51:44 Instalador de Módulos do Windows

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (12/27/2010 12:07:46 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/27/2010 12:07:37 AM) (Source: MSSQLServer) (EventID: 19011) (User: )
Description: SuperSocket info: FillAddress(MSAFD Tcpip [TCP/IPv6]) : Error 0.

Error: (02/22/2016 07:12:13 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/22/2016 07:12:12 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/22/2016 07:12:12 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/22/2016 07:12:10 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (12/26/2010 11:03:41 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (12/26/2010 11:03:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (12/26/2010 11:03:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (12/26/2010 11:03:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Assembly dependente Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.


Erros de Sistema:
=============
Error: (12/27/2010 12:10:31 AM) (Source: Schannel) (EventID: 4113) (User: AUTORIDADE NT)
Description: O certificado recebido do servidor remoto expirou ou ainda não é válido. Ocorreu uma falha na solicitação de conexão SSL. Os dados anexados contêm o certificado de servidor.

Error: (12/27/2010 12:10:31 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 45. O estado do erro interno é 552.

Error: (12/27/2010 12:10:28 AM) (Source: Schannel) (EventID: 4113) (User: AUTORIDADE NT)
Description: O certificado recebido do servidor remoto expirou ou ainda não é válido. Ocorreu uma falha na solicitação de conexão SSL. Os dados anexados contêm o certificado de servidor.

Error: (12/27/2010 12:10:28 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 45. O estado do erro interno é 552.

Error: (12/27/2010 12:08:10 AM) (Source: Schannel) (EventID: 4113) (User: AUTORIDADE NT)
Description: O certificado recebido do servidor remoto expirou ou ainda não é válido. Ocorreu uma falha na solicitação de conexão SSL. Os dados anexados contêm o certificado de servidor.

Error: (12/27/2010 12:08:10 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 45. O estado do erro interno é 552.

Error: (12/27/2010 12:08:06 AM) (Source: Schannel) (EventID: 4113) (User: AUTORIDADE NT)
Description: O certificado recebido do servidor remoto expirou ou ainda não é válido. Ocorreu uma falha na solicitação de conexão SSL. Os dados anexados contêm o certificado de servidor.

Error: (12/27/2010 12:08:06 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 45. O estado do erro interno é 552.

Error: (12/27/2010 12:07:41 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
cdrom
MPCKpt

Error: (12/27/2010 12:07:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço HardlockFilter devido ao seguinte erro:
%%1275


CodeIntegrity:
===================================
Date: 2010-12-27 01:07:23.007
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 01:07:22.904
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 00:02:07.908
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 00:02:07.801
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 12:22:01.202
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 12:22:01.088
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 11:59:33.273
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 11:59:33.170
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 05:06:32.003
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2010-12-27 05:06:31.869
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\DavidSoares\PROGRAMAS\Wilcom 2006+crack_emulator\Install_crack\Serial Reader\HardlockFilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória ===========================

Processador: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz
Percentagem de memória em uso: 31%
RAM física total: 8157.37 MB
RAM física disponível: 5590.14 MB
Virtual Total: 16312.92 MB
Virtual disponível: 13600.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.75 GB) (Free:278.5 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
Drive e: () (Fixed) (Total:430.66 GB) (Free:4.96 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive f: (Disco local) (Fixed) (Total:500.85 GB) (Free:3.83 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1A191A18)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 MB) - (Type=06)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00071E6E)
Partition 1: (Active) - (Size=430.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=500.8 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité