Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:05-03-2016 01 Executado por Mateus (2016-03-29 01:18:55) Executando a partir de C:\Users\Mateus\Downloads Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2016-02-27 02:59:48) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3139388397-1437286483-4279760840-500 - Administrator - Disabled) Convidado (S-1-5-21-3139388397-1437286483-4279760840-501 - Limited - Disabled) Mateus (S-1-5-21-3139388397-1437286483-4279760840-1000 - Administrator - Enabled) => C:\Users\Mateus ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Baidu Antivirus (Enabled - Up to date) {0B023102-4312-4570-585A-1BAAA3570E16} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Baidu Antivirus (Enabled - Up to date) {B063D0E6-6528-4AFE-62EA-20D8D8D044AB} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3139388397-1437286483-4279760840-1000\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) AppHelper (HKLM\...\AppHelper) (Version: 1.0 - AppHelper) aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) BS.Player PRO (HKLM\...\BSPlayerp) (Version: 2.70.1080 - AB Team, d.o.o.) Connectify (HKLM\...\Connectify) (Version: 7.3.3.30440 - Connectify) DriverEasy 4.9.7 (HKLM\...\DriverEasy_is1) (Version: 4.9.7.0 - Easeware) Google Chrome (HKLM\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.) Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation) Java 8 Update 77 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation) Kodi (HKU\S-1-5-21-3139388397-1437286483-4279760840-1000\...\Kodi) (Version: - XBMC-Foundation) LG United Mobile Driver (HKLM\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.8.1 - LG Electronics) Mediatek RT2870 Wireless LAN Card (HKLM\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.126 - MediatekWiFi) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation) MPC-HC 1.7.9 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) PhotoScape (HKLM\...\PhotoScape) (Version: - ) Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Pro Evolution Soccer 2013 (HKLM\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI) Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.97.1001.2015 - Realtek) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7592 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM\...\{D4EEC21C-04F0-4CF4-8078-82C11E38EF11}) (Version: 1.00.0168 - REALTEK Semiconductor Corp.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.) Telegram Desktop versão 0.9.32 (HKU\S-1-5-21-3139388397-1437286483-4279760840-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.32 - Telegram Messenger LLP) UC Browser (HKLM\...\UCBrowser) (Version: 5.6.10764.1009 - UCWeb Inc.) USB Video Device (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.54300.120 - Sonix) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) VSO ConvertXToDVD (HKLM\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.30 - VSO-Software SARL) WinRAR 5.00 beta 5 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.5 - win.rar GmbH) WinZip (HKLM\...\WinZip) (Version: 2.0.10 - Winzipper Pvt Ltd.) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {06C82DCA-1845-49C5-8066-14DA431AD4E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {0FB5290F-52E3-4ECC-BD82-2F602E68FDB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-27] (Google Inc.) Task: {2D7EDF24-4058-4EFF-B4D4-2714A0B142A7} - System32\Tasks\WinTaske => C:\Program Files\WinTaske\WinTaske\WinTaske.exe [2016-03-23] () Task: {3697CDD4-8205-45AA-8D7B-1E9A8498854D} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Duplicaterecord.js" <==== ATENÇÃO Task: {4CFC3FA2-F856-4B21-9F11-B42AE96DDDAF} - System32\Tasks\Microsoft\Windows\Apps\UpService => C:\ProgramData\UpService\UpService.exe [2015-12-24] () <==== ATENÇÃO Task: {61975375-224E-46CB-807A-E37EDA491CB2} - System32\Tasks\UCBrowserUpdater => C:\Program Files\UCBrowser\Application\update_task.exe [2016-03-09] (UCWeb Inc) Task: {664B78C9-C110-4954-95AA-6F9C6CAA8F5B} - System32\Tasks\{D5020D93-FBC5-4D46-A292-C145BA81592D} => C:\Program Files\Connectify\Connectify.exe [2014-03-04] (Connectify) Task: {7F8E3C7C-7854-49F5-860E-B60320C01DFA} - System32\Tasks\{90A19967-3BB7-4E23-9AD8-FD08947393D1} => C:\Program Files\Connectify\Connectify.exe [2014-03-04] (Connectify) Task: {8A9E8532-028D-4EA0-97FF-31711DAD4D01} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2015-11-26] (Easeware) Task: {8BB81012-06EB-4255-BB3F-F3815448F799} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-03-23] () Task: {8C98A5D5-2821-40C2-8809-4B08F93F29E4} - System32\Tasks\Format Factory => C:\Users\Mateus\AppData\Local\Temp\is-660LU.tmp\prsetup.exe <==== ATENÇÃO Task: {A2CD0CA9-D715-4D68-8389-B3E21D64CA2E} - System32\Tasks\DriverMaxAgent => C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe Task: {B1F8BD4C-87CD-4C9A-B3AC-42A2F21FC0C1} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files\QQBrowser\Update\Download\AAE7730786F5621FE911A4F89B48B238\Update\BrowserUpdate.exe [2016-03-16] (Tencent) Task: {BC17F858-0205-4EB9-B8E8-77CBD644F46D} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-05] (AVAST Software) Task: {BEE67E8C-C91D-42CE-8172-219ECA15C913} - System32\Tasks\Baidu Antivirus Update => C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.133394.0\BavUpdater.exe Task: {C1350ED0-56FA-456B-9827-F4BFC8FDA713} - System32\Tasks\Product Updater => C:\Program Task: {F26B4B6C-F9BA-404B-8842-C0F6A7C5055C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-27] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\UCBrowserUpdater.job => C:\Program Files\UCBrowser\Application\update_task.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-03-24 09:39 - 2015-12-30 02:34 - 00582144 _____ () C:\Program Files\WinZipper\curlpp.dll 2016-03-24 09:39 - 2016-01-26 05:27 - 00066560 _____ () C:\Program Files\WinZipper\zlib1.dll 2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-03-07 22:12 - 2016-03-07 22:12 - 00297968 _____ () C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.133394.0\HipsLogger.dll 2016-03-07 22:12 - 2015-05-15 00:09 - 00198128 _____ () C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.133394.0\dark.dll 2016-03-07 22:12 - 2016-03-07 22:12 - 00540656 _____ () C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.133394.0\sqlite.dll 2013-02-19 13:43 - 2013-02-19 13:43 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll 2016-03-16 21:29 - 2016-03-09 01:35 - 00558240 _____ () C:\Program Files\UCBrowser\Application\UCService.exe 2016-02-28 01:01 - 2016-02-28 01:00 - 00008192 _____ () C:\Windows\system32\srvany.exe 2016-02-28 01:01 - 2016-02-28 01:00 - 00077824 _____ () C:\Windows\KMService.exe 2016-03-17 12:57 - 2014-03-04 17:30 - 00376608 _____ () C:\Program Files\Connectify\NativeLibrary.dll 2016-03-17 12:57 - 2014-03-04 17:30 - 03177760 _____ () C:\Program Files\Connectify\ConnectifyNAT.dll 2016-03-17 12:57 - 2014-03-04 17:30 - 00714016 _____ () C:\Program Files\Connectify\log4cplus.dll 2016-03-17 12:57 - 2014-03-04 17:30 - 00354080 _____ () C:\Program Files\Connectify\LibDispatch.dll 2016-03-03 01:15 - 2016-02-04 22:40 - 01588408 _____ () C:\Program Files\SearchesToYesbnd\bugreport.exe 2016-03-29 01:02 - 2016-03-29 01:03 - 03612720 _____ () C:\Users\Mateus\Downloads\gestureworks_gameplay_keygen.exe 2016-03-28 23:21 - 2016-03-28 23:21 - 00298496 _____ () C:\Program Files\41414141-1459224385-4141-4141-414141414141\knsc3CFC.tmpfs 2016-03-29 01:07 - 2016-03-29 01:07 - 00302080 _____ () C:\Program Files\41414141-1459224385-4141-4141-414141414141\jnsh7C33.tmp 2016-03-29 01:07 - 2016-03-29 01:07 - 00416256 _____ () C:\Program Files\41414141-1459224385-4141-4141-414141414141\hnssC630.tmp 2016-03-29 01:08 - 2016-03-23 14:49 - 02036736 _____ () C:\ProgramData\WindowsMsg\osmsg.exe 2016-03-16 21:29 - 2016-03-09 01:35 - 01632928 _____ () C:\Program Files\UCBrowser\Application\5.6.10764.1009\libglesv2.dll 2016-03-16 21:29 - 2016-03-09 01:35 - 00088224 _____ () C:\Program Files\UCBrowser\Application\5.6.10764.1009\libegl.dll 2016-03-16 21:29 - 2016-03-09 01:35 - 16810824 _____ () C:\Program Files\UCBrowser\Application\5.6.10764.1009\PepperFlash\pepflashplayer.dll 2016-03-29 01:06 - 2016-03-29 01:07 - 03505152 _____ () C:\Users\Mateus\AppData\Local\Temp\pps-qq-19.exe ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\ProgramData:gs5sys [2816] AlternateDataStreams: C:\Users\All Users:gs5sys [2816] AlternateDataStreams: C:\Users\Mateus:gs5sys [2048] AlternateDataStreams: C:\Users\Todos os Usuários:gs5sys [2816] AlternateDataStreams: C:\ProgramData\Application Data:gs5sys [2816] AlternateDataStreams: C:\ProgramData\Dados de aplicativos:gs5sys [2816] AlternateDataStreams: C:\ProgramData\Modelos:gs5sys [2048] AlternateDataStreams: C:\ProgramData\Templates:gs5sys [2048] AlternateDataStreams: C:\Users\Mateus\Configurações locais:gs5sys [3074] AlternateDataStreams: C:\Users\Mateus\Cookies:gs5sys [2048] AlternateDataStreams: C:\Users\Mateus\Dados de aplicativos:gs5sys [3074] AlternateDataStreams: C:\Users\Mateus\Modelos:gs5sys [2048] AlternateDataStreams: C:\Users\Mateus\AppData\Local:gs5sys [3074] AlternateDataStreams: C:\Users\Mateus\AppData\Roaming:gs5sys [3074] AlternateDataStreams: C:\Users\Mateus\AppData\Local\Dados de aplicativos:gs5sys [3074] AlternateDataStreams: C:\Users\Mateus\AppData\Local\Histórico:gs5sys [2048] AlternateDataStreams: C:\Users\Todos os Usuários\Application Data:gs5sys [2816] AlternateDataStreams: C:\Users\Todos os Usuários\Dados de aplicativos:gs5sys [2816] AlternateDataStreams: C:\Users\Todos os Usuários\Modelos:gs5sys [2048] AlternateDataStreams: C:\Users\Todos os Usuários\Templates:gs5sys [2048] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BavSvc => "Service"="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BavSvc => "Service"="" ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:04 - 2016-03-13 02:29 - 00001162 ___RA C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 thislineskipsanyemptylines ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3139388397-1437286483-4279760840-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mateus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{336CE9C4-E8ED-48B7-B333-D06C9856F82E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{3E034DE0-B5E8-443E-B06A-EC17C7E4BF32}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{51A12C35-1797-4F61-86CE-7AFE14D866D1}] => (Allow) C:\Users\Mateus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B9E1E568-6387-4937-AF1C-B8BA4F25DFC4}] => (Allow) C:\Users\Mateus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{04E20C7E-DD61-41F0-9A9B-A9954AE3F9FA}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe FirewallRules: [UDP Query User{CA7B294F-B3F4-4487-9C29-708BA3F56F8E}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe FirewallRules: [{4EEC2888-A5F0-490C-A80F-DA8591026013}] => (Allow) C:\Program Files\PC Faster\5.1.0.0\WifiHotspot.exe FirewallRules: [{4873C061-0504-4FD4-B8F1-4FC1E2C876FA}] => (Allow) C:\Program Files\PC Faster\5.1.0.0\WifiHotspot.exe FirewallRules: [TCP Query User{4F143AEC-7FBB-46C6-9FA7-B347A7B86E81}C:\program files\connectify\connectify.exe] => (Allow) C:\program files\connectify\connectify.exe FirewallRules: [UDP Query User{ADE1F767-9BF6-4531-B33B-738C64C68630}C:\program files\connectify\connectify.exe] => (Allow) C:\program files\connectify\connectify.exe FirewallRules: [TCP Query User{662C1632-B127-4C6F-BD24-A46C36D4D18D}C:\program files\genie soft\genie wifi\geniewifi.exe] => (Allow) C:\program files\genie soft\genie wifi\geniewifi.exe FirewallRules: [UDP Query User{0EB98045-79FC-4BAC-95B3-3092B6C93556}C:\program files\genie soft\genie wifi\geniewifi.exe] => (Allow) C:\program files\genie soft\genie wifi\geniewifi.exe FirewallRules: [{E7049005-7C3D-4818-9E99-4C8961BEB6AF}] => (Block) C:\program files\genie soft\genie wifi\geniewifi.exe FirewallRules: [{BFE7EEF8-E1D8-4999-AA8C-9F3E6CE790DB}] => (Block) C:\program files\genie soft\genie wifi\geniewifi.exe FirewallRules: [{62D60CF2-3200-4DEF-9012-B09B2B8B9432}] => (Allow) C:\Program Files\UCBrowser\Application\UCBrowser.exe FirewallRules: [TCP Query User{EC7B611E-2514-418B-B5E1-66CA703C542D}C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe] => (Block) C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe FirewallRules: [UDP Query User{037581BA-35E6-4A68-B025-3F19B47CBFE3}C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe] => (Block) C:\program files\ucbrowser\application\downloader\download\minithunderplatform.exe FirewallRules: [{A0658F56-59E2-4261-A32C-81D2B184D6C5}] => (Allow) C:\Program Files\UCBrowser\Application\5.6.10764.1009\ucwifi.exe FirewallRules: [{35057F76-347C-47CE-B153-DD5147B7C969}] => (Allow) C:\Program Files\UCBrowser\Application\5.6.10764.1009\UCWiFi.exe FirewallRules: [{E917DB7C-A4A1-44B2-88F1-DC7BBCD0F17B}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{C40C459B-E7C8-442D-B2E0-241AC46661E8}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{75635D5B-E712-4AB4-83E5-32897B7C1DC9}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{F4E6A2E7-D882-4626-84B4-21D3CAE82A68}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{91410DCB-27F0-4A7F-AAC7-B08D82516178}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [TCP Query User{FE5665F9-5090-41C2-ACA3-EC20728A5232}C:\program files\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files\pro evolution soccer 2016\pes2016.exe FirewallRules: [UDP Query User{DF3B1B35-A232-4163-A0D0-2BA7E577F1CE}C:\program files\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files\pro evolution soccer 2016\pes2016.exe FirewallRules: [{7B2D598D-A1BF-4F04-A3BA-1BB5BAE473D9}] => (Allow) C:\Program Files\Mobogenie3\mobogenieP2sp.exe FirewallRules: [{367EC6B2-7393-4EA9-976F-5B79303D2D1B}] => (Allow) C:\Program Files\Mobogenie3\mobogenieP2sp.exe FirewallRules: [{F6A28288-481E-4B0C-937B-7E25BEC0F3DF}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2013\pes2013.exe FirewallRules: [{565175DA-233D-4FE6-823D-594DF9A77B08}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2013\pes2013.exe FirewallRules: [{9F4BECFD-EFE2-41A2-808D-4F4523776818}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2013\pes2013 2.2.exe FirewallRules: [{718A141E-22BF-4E58-9EA6-A664CE4F897A}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2013\pes2013 2.2.exe FirewallRules: [{7A3364C3-E3CF-4BF5-83F3-F45377BD507D}] => (Allow) C:\Program Files\Remotr\RemotrServer.exe FirewallRules: [TCP Query User{25E32099-DA12-4979-8E43-1398D2105173}C:\program files\ultimate control\ucontrol.exe] => (Allow) C:\program files\ultimate control\ucontrol.exe FirewallRules: [UDP Query User{026D9B67-DB41-42B6-808A-1B5C0CAF026D}C:\program files\ultimate control\ucontrol.exe] => (Allow) C:\program files\ultimate control\ucontrol.exe FirewallRules: [{29855293-CB66-4FEE-ADC0-C6D75522E9AD}] => (Block) C:\program files\ultimate control\ucontrol.exe FirewallRules: [{ADE6FCB9-57FA-4914-A776-8859A3803ABA}] => (Block) C:\program files\ultimate control\ucontrol.exe FirewallRules: [TCP Query User{9F8180CA-DC7B-4842-9EAE-C4F9CCDA2DD5}C:\program files\nemex\njoy\njoy.exe] => (Allow) C:\program files\nemex\njoy\njoy.exe FirewallRules: [UDP Query User{CC0CCDBC-8BD7-4E77-AE83-46390BA74525}C:\program files\nemex\njoy\njoy.exe] => (Allow) C:\program files\nemex\njoy\njoy.exe FirewallRules: [TCP Query User{A29D59BF-4E0F-4711-9A9F-8B06D9AACEAF}C:\program files\mobile gamepad server\mobile gamepad.exe] => (Allow) C:\program files\mobile gamepad server\mobile gamepad.exe FirewallRules: [UDP Query User{884FA9CC-0022-4635-B82B-1C7227D43886}C:\program files\mobile gamepad server\mobile gamepad.exe] => (Allow) C:\program files\mobile gamepad server\mobile gamepad.exe FirewallRules: [{1D175902-59CD-43E3-AAA2-1E099E7B6174}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{DA174F61-4D87-4ADC-90C4-287CEC347A38}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{6023E19A-DF7C-44AB-A604-BAD5772E47DD}] => (Allow) C:\Program Files\Connectify\Connectifyd.exe FirewallRules: [{2CDDE6AC-28CC-43AA-A900-107798B78F90}] => (Allow) C:\Program Files\Connectify\Connectifyd.exe FirewallRules: [{CF17E22E-DD86-4A7B-99EC-380E93C24E07}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{29BDC83B-CAC6-43BC-9C93-AAB54B04EE3B}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{1A67D576-19F5-4235-A923-769501F435DA}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{B92E3979-5DD0-4194-B14A-0719EA54CA6B}] => (Allow) C:\Program Files\UBar\ubar.exe FirewallRules: [{E6DE2E91-9EFF-4B6D-898E-8CA0C63ACB83}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{27A605D6-933D-4837-8ECF-17FCA127E923}] => (Allow) C:\Program Files\Connectify\ConnectifyNetServices.exe FirewallRules: [{6DA97BEC-BE80-4BC6-82D6-604ABD3E0546}] => (Allow) C:\Program Files\Connectify\Connectifyd.exe FirewallRules: [{ABCDF921-D80F-4BE8-9FC0-F7705ADC151F}] => (Allow) C:\Program Files\Connectify\Connectifyd.exe ==================== Pontos de Restauração ========================= 28-03-2016 21:44:43 Instalação de Pacote de Driver de Dispositivo: Kinoni Dispositivos de sistema 28-03-2016 23:05:09 Instalação de Pacote de Driver de Dispositivo: Microsoft Adaptadores de rede ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: (Bnmon) Description: (Bnmon) Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Bnmon Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (03/29/2016 12:57:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Nome do módulo de falhas: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Código de exceção: 0xc0000417 Deslocamento com falha: 0x000d7a85 Identificação do processo com falha: 0x1e88 Hora de início do aplicativo com falha: 0xwinziper.exe0 Caminho do aplicativo com falha: winziper.exe1 FCaminho do módulo de falhas: winziper.exe2 Identificação do Relatório: winziper.exe3 Error: (03/29/2016 12:57:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Nome do módulo de falhas: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Código de exceção: 0xc0000417 Deslocamento com falha: 0x000d7a85 Identificação do processo com falha: 0x184 Hora de início do aplicativo com falha: 0xwinziper.exe0 Caminho do aplicativo com falha: winziper.exe1 FCaminho do módulo de falhas: winziper.exe2 Identificação do Relatório: winziper.exe3 Error: (03/29/2016 12:35:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Nome do módulo de falhas: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Código de exceção: 0xc0000417 Deslocamento com falha: 0x000d7a85 Identificação do processo com falha: 0x1ff4 Hora de início do aplicativo com falha: 0xwinziper.exe0 Caminho do aplicativo com falha: winziper.exe1 FCaminho do módulo de falhas: winziper.exe2 Identificação do Relatório: winziper.exe3 Error: (03/29/2016 12:32:23 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c Código de exceção: 0xc0000005 Deslocamento com falha: 0x00052ca9 Identificação do processo com falha: 0x104c Hora de início do aplicativo com falha: 0xpes2013 2.2.exe0 Caminho do aplicativo com falha: pes2013 2.2.exe1 FCaminho do módulo de falhas: pes2013 2.2.exe2 Identificação do Relatório: pes2013 2.2.exe3 Error: (03/29/2016 12:24:54 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Nome do módulo de falhas: winziper.exe, versão: 2.0.0.1, carimbo de hora: 0x56efc186 Código de exceção: 0xc0000417 Deslocamento com falha: 0x000d7a85 Identificação do processo com falha: 0x1b94 Hora de início do aplicativo com falha: 0xwinziper.exe0 Caminho do aplicativo com falha: winziper.exe1 FCaminho do módulo de falhas: winziper.exe2 Identificação do Relatório: winziper.exe3 Error: (03/28/2016 11:56:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Nome do módulo de falhas: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Código de exceção: 0xc0000005 Deslocamento com falha: 0x00edd1f9 Identificação do processo com falha: 0x1208 Hora de início do aplicativo com falha: 0xpes2013 2.2.exe0 Caminho do aplicativo com falha: pes2013 2.2.exe1 FCaminho do módulo de falhas: pes2013 2.2.exe2 Identificação do Relatório: pes2013 2.2.exe3 Error: (03/28/2016 11:37:48 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c Código de exceção: 0xc0000005 Deslocamento com falha: 0x00059c5f Identificação do processo com falha: 0x1688 Hora de início do aplicativo com falha: 0xpes2013 2.2.exe0 Caminho do aplicativo com falha: pes2013 2.2.exe1 FCaminho do módulo de falhas: pes2013 2.2.exe2 Identificação do Relatório: pes2013 2.2.exe3 Error: (03/28/2016 11:00:40 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/28/2016 10:53:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Nome do módulo de falhas: pes2013 2.2.exe, versão: 1.4.0.0, carimbo de hora: 0x515cba25 Código de exceção: 0xc0000005 Deslocamento com falha: 0x00edd1f9 Identificação do processo com falha: 0xff0 Hora de início do aplicativo com falha: 0xpes2013 2.2.exe0 Caminho do aplicativo com falha: pes2013 2.2.exe1 FCaminho do módulo de falhas: pes2013 2.2.exe2 Identificação do Relatório: pes2013 2.2.exe3 Error: (03/28/2016 10:12:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: WindowsServer.exe, versão: 1.0.0.1, carimbo de hora: 0x56e2ff5b Nome do módulo de falhas: WindowsServer.exe, versão: 1.0.0.1, carimbo de hora: 0x56e2ff5b Código de exceção: 0xc0000005 Deslocamento com falha: 0x0000ff1a Identificação do processo com falha: 0x12c0 Hora de início do aplicativo com falha: 0xWindowsServer.exe0 Caminho do aplicativo com falha: WindowsServer.exe1 FCaminho do módulo de falhas: WindowsServer.exe2 Identificação do Relatório: WindowsServer.exe3 Erros de Sistema: ============= Error: (03/29/2016 01:17:56 AM) (Source: ipnathlp) (EventID: 1233) (User: ) Description: Error: (03/28/2016 11:06:03 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Error: (03/28/2016 11:06:00 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Error: (03/28/2016 11:05:11 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Error: (03/28/2016 11:05:07 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Error: (03/28/2016 11:02:47 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Error: (03/28/2016 11:00:27 PM) (Source: ipnathlp) (EventID: 1233) (User: ) Description: Error: (03/28/2016 11:00:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço (Bnmon) devido ao seguinte erro: %%2 Error: (03/28/2016 11:00:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço (Bnmon) devido ao seguinte erro: %%2 Error: (03/28/2016 10:59:33 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x0000000a (0xb94c3000, 0x00000002, 0x00000000, 0x82e75e73)C:\Windows\MEMORY.DMP032816-48360-01 ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz Percentagem de memória em uso: 59% RAM física total: 2932.54 MB RAM física disponível: 1192.52 MB Virtual Total: 5863.37 MB Virtual disponível: 3717.25 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:97.17 GB) (Free:37.59 GB) NTFS Drive d: (Arquivos) (Fixed) (Total:368.1 GB) (Free:1.85 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1C0052A5) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================