Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 12-09-2016 Executado por Kátia (15-09-2016 08:04:16) Executando a partir de C:\Users\Kátia\Desktop Windows 7 Ultimate (X64) (2012-09-10 16:57:32) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1129891620-779716991-3309888983-500 - Administrator - Disabled) Convidado (S-1-5-21-1129891620-779716991-3309888983-501 - Limited - Enabled) Kátia (S-1-5-21-1129891620-779716991-3309888983-1000 - Administrator - Enabled) => C:\Users\Kátia UpdatusUser (S-1-5-21-1129891620-779716991-3309888983-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) 64 Bit HP CIO Components Installer (Version: 18.2.4 - Hewlett-Packard) Hidden Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.16 - Adobe Systems) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.213 - Adobe Systems Incorporated) Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated) Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Illustrator CC 2014 (32 Bit) (HKLM-x32\...\{8913FAF3-5BFE-45BA-AF57-67AF4BA67898}) (Version: 18.0 - Adobe Systems Incorporated) Adobe InDesign CC 2014 (32-bit) (HKLM-x32\...\{37BEE0A4-72B9-1014-A77C-C46F3F2C3207}) (Version: 10.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (32 Bit) (HKLM-x32\...\{7C25E7A0-A0A1-4B87-BB30-BF0FBDC37878}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Adobe Photoshop Lightroom 4.2 (HKLM-x32\...\{FC5A8E68-A2E5-4E14-91FA-7A3FB83C7E23}) (Version: 4.2.1 - Adobe) Adobe Reader XI (11.0.17) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated) Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.3.0 - IObit) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Aquiles (HKLM-x32\...\{862FAC7A-4E5E-421F-AFBD-2BC58EC3D17A}) (Version: 8.43 - 3dmapp) Atualizações da NVIDIA 1.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.3.5 - NVIDIA Corporation) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform) Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation) Central de Mouse e Teclado da Microsoft (Version: 2.5.166.0 - Microsoft Corporation) Hidden Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - ) CodeMeter Runtime Kit v5.21b (HKLM\...\{3F069568-46DA-4794-B086-9283CF226D37}) (Version: 5.21.1487.502 - WIBU-SYSTEMS AG) Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B865FDD4-E96E-4166-BB69-6E8C207E3E29}) (Version: 17.0.0.491 - Corel Corporation) Corel Graphics - Windows Shell Extension (x32 Version: 17.0.491 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.1.843 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 64 Bit (Version: 17.0.491 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (Version: 15.0.487 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - BR (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Capture (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Common (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Connect (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Custom Data (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Draw (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Filters (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - FontNav (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM Content (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM T (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Photozoom Plugin (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Redist (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Setup Files (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VBA (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VideoBrowser (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Writing Tools (x32 Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 (HKLM-x32\...\_{C5D9CECB-A66F-473F-B406-5C8C2DCA4DF0}) (Version: 17.0.0.491 - Corel Corporation) CorelDRAW Graphics Suite X7 (x32 Version: 17.0 - Corel Corporation) Hidden Crystal Reports XI Runtime (HKLM-x32\...\{8A4CEDBF-B432-4379-8A3A-C506D45AEEE2}) (Version: 1.0.0 - VDF-Guidance) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden HP LaserJet Professional CP1020 Series (HKLM\...\HP LaserJet Professional CP1020 Series) (Version: - ) HP Support Solutions Framework (HKLM-x32\...\{CAF5FFBA-8F3B-409C-9126-74DF66A036DF}) (Version: 12.5.32.37 - Hewlett-Packard Company) Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: - ) Intel(R) Network Connections 15.7.176.0 (HKLM\...\PROSetDX) (Version: 15.7.176.0 - Intel) IObit Apps Toolbar v9.7 (HKLM-x32\...\{E029C309-4421-410B-890A-30D2E8E82D0C}) (Version: 9.7 - Spigot, Inc.) <==== ATENÇÃO Java(TM) 6 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416045FF}) (Version: 6.0.450 - Oracle) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Access MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-0015-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Excel MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-0016-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Groove MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-00BA-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-0044-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-00A1-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-001A-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-0018-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Professional Plus 2010 (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}) (Version: - ) Microsoft Office Proof (English) 2010 (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}) (Version: - ) Microsoft Office Proof (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-001F-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Proof (Spanish) 2010 (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}) (Version: - ) Microsoft Office Proofing (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-002C-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-0019-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Shared MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-006E-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Office Word MUI (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-001B-0416-0000-0000000FF1CE}) (Version: - ) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: - ) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - ) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 pt-BR)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MySQL Connector/ODBC 5.1 (HKLM\...\{29042B1C-0713-4575-B7CA-5C8E7B0899D4}) (Version: 5.1.5 - MySQL AB) MySQL Query Browser 1.1 (HKLM-x32\...\{1444B16A-766B-4AD1-8AE8-F0C04C782E2F}) (Version: 1.1.20 - MySQL AB) NVIDIA Driver de controle do 3D Vision 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 275.33 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation) Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden Painel de controle da NVIDIA 341.95 (Version: 341.95 - NVIDIA Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden qksee (HKLM-x32\...\qksee) (Version: - Taiwan Shui Mu Chih Ching Technology Limited) <==== ATENÇÃO Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.) Revo Uninstaller 1.94 (HKLM-x32\...\Revo Uninstaller) (Version: 1.94 - VS Revo Group) SafeZone Stable 1.51.2220.53 (x32 Version: 1.51.2220.53 - Avast Software) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\Spotify) (Version: 1.0.37.150.gad02a02e - Spotify AB) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.1.19 - Safer-Networking Ltd.) Suporte para Aplicativos Apple (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.) Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit) TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer) Visual DataFlex 11.1.104.0 Client Engine (HKLM-x32\...\Visual DataFlex 11.1.104.0 Client Engine) (Version: 11.1.104.0 Client - Data Access Worldwide) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Xara 3D Maker 7 (HKLM-x32\...\MAGIX_{19B9DAD6-5E6E-4B80-8EFE-314B5638D6D4}) (Version: 7.0.0.442 - Xara Group Ltd) Xara 3D Maker 7 (Version: 7.0.0.442 - Xara Group Ltd) Hidden YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ATENÇÃO Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1129891620-779716991-3309888983-1000_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {03C6D520-CBF3-45A2-BACD-0AC7C8643E50} - System32\Tasks\avastBCLRestart_chrome.exe => Chrome.exe Task: {1B0A4259-C3F8-49DC-8A87-440D8B1DAE4D} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe Task: {1EE37B2B-C495-460F-800D-1A2D454543CC} - System32\Tasks\{63A5464B-0589-44CA-848D-EBFF14B131D7} => pcalua.exe -a C:\Users\Kátia\Documents\Downloads\AdobeDownloadAssistant.exe -d C:\Users\Kátia\Documents\Downloads Task: {221F7DD3-00B7-4F1C-B813-6F3CB5DDFC1E} - System32\Tasks\AdobeAAMUpdater-1.0-Kátia-PC-Kátia => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {25B40CA5-CBA0-481C-9523-4B0F560CEC14} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe Task: {2656252A-7999-4C71-8A45-803D41B7425C} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe Task: {2C72301A-42AD-45E8-BC2F-109E69B3A7FD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated) Task: {332455F0-162B-4FC9-9D1F-967BD91ED50A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {4E1958E8-69B8-4042-8080-02D3CA472CD8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy Task: {4E449C14-8A67-4BC3-B3E2-2C598C994D3D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-12] (AVAST Software) Task: {52929772-EEB8-4E40-BC6F-D134225C5A52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {61582072-E3CE-4F31-91D6-39B257165B4F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2013-05-16] (Safer-Networking Ltd.) Task: {6E33E13D-993F-4FD6-86BC-DE34725FA70A} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-07-11] (Microsoft Corporation) Task: {6EB48276-499C-4F46-BC74-33E1E48211B6} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe Task: {75E0B1A4-8AFB-4C17-9232-A24A4A7A1424} - System32\Tasks\Berary Mapper => C:\Program Files (x86)\Jociph\brrmppqbphchunitain.exe [2016-07-26] () Task: {771C56B9-2A73-47EC-B78D-F3F7C8FA7779} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-09-12] (AVAST Software) Task: {7B60C78F-0AA4-4D86-883D-43BAE954504C} - System32\Tasks\SafeZone scheduled Autoupdate 1473678653 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software) Task: {7FF48EF3-5525-41D1-9533-2DAE87999AD7} - System32\Tasks\ChelfNotify Task => C:\ProgramData\ChelfNotify\BrowserUpdate.exe [2016-06-30] (Tencent) <==== ATENÇÃO Task: {8CFE8566-FED4-406A-9369-5BE8DCEAE973} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe Task: {A4A77217-C283-4D24-B86C-8AE4EC45E7E5} - System32\Tasks\Driver Booster SkipUAC (Kátia) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {A6ADC43B-91DD-4751-B646-1F53E089AF3A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.) Task: {A9690BD1-96A5-45A6-9BC5-D6116EF4FD5E} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: {B26BFF83-C86F-4FF3-984E-CC514FC0BD8A} - System32\Tasks\{C708BDBF-70D0-4CB7-AEEC-B85F81C550CB} => pcalua.exe -a C:\Users\Kátia\Documents\Downloads\ad401.exe -d C:\Users\Kátia\Documents\Downloads Task: {B28BC9D1-D26D-44CA-AE2E-C7ABC90D2682} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-08] (Adobe Systems Incorporated) Task: {C2B0F7FF-34A1-40EE-9790-808FA047F8A8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2013-05-16] (Safer-Networking Ltd.) Task: {C31CE95E-9ED1-49C7-9152-CEEF24301DBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {C7D52A9B-5F9E-4E28-835D-D55B3D6FE6C3} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2013-05-16] (Safer-Networking Ltd.) Task: {D871307E-24E0-4398-8656-61E93A254D98} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe Task: {DCDE62E6-76A5-4CB1-B4D7-02C5B84C0A7F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {E429960E-029E-4F84-9F63-61E516FC93DA} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) Shortcut: C:\Users\Kátia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) ShortcutWithArgument: C:\Users\Kátia\AppData\Local\vejatkerneryfdedom\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Kátia\AppData\Local\Newjob\User Data\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Kátia\AppData\Local\Google\Chrome\User Data\Inicializador de aplicativos do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Kátia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.nuesearch.com/?type=sc&ts=1473246811&z=bf4c439cedcd4e918abf7f4g8zem5c3oczcqdb9g9e&from=che0812&uid=ST1000DM003-9YN162_S1D2MEW8XXXXS1D2MEW8 ShortcutWithArgument: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\e9d2036c8896cd2d\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 8" ShortcutWithArgument: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d755e1040e5d38ac\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1473246811&z=bf4c439cedcd4e918abf7f4g8zem5c3oczcqdb9g9e&from=che0812&uid=ST1000DM003-9YN162_S1D2MEW8XXXXS1D2MEW8 ShortcutWithArgument: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1473246811&z=bf4c439cedcd4e918abf7f4g8zem5c3oczcqdb9g9e&from=che0812&uid=ST1000DM003-9YN162_S1D2MEW8XXXXS1D2MEW8 ShortcutWithArgument: C:\Users\Kátia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\48499db33039e897\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1473246811&z=bf4c439cedcd4e918abf7f4g8zem5c3oczcqdb9g9e&from=che0812&uid=ST1000DM003-9YN162_S1D2MEW8XXXXS1D2MEW8 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Newjob\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1473676055&z=cb889ddf9ceed4063b28e98g4z4mfc4q2mdq2edw0g&from=wpm0912&uid=ST1000DM003-9YN162_S1D2MEW8XXXXS1D2MEW8 ==================== Módulos Carregados (Whitelisted) ============== 2016-09-07 10:05 - 2016-09-07 05:09 - 00767096 _____ () C:\Program Files (x86)\qksee\qkseeSvc.exe 2015-10-28 09:24 - 2012-11-27 23:18 - 00129024 _____ () C:\Windows\System32\HPCP1020LM.DLL 2014-07-12 07:36 - 2010-03-31 11:51 - 03087872 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\hpm1210su.dll 2014-07-12 07:36 - 2010-03-31 12:17 - 01038336 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\HPM1210GC.dll 2016-08-22 07:17 - 2016-08-22 03:13 - 00355608 _____ () C:\Program Files (x86)\WinSaber\WinSaber.exe 2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2011-05-12 20:44 - 2011-05-12 20:44 - 00325344 _____ () C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe 2016-09-07 10:06 - 2016-05-22 23:37 - 00065696 _____ () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll 2016-09-12 08:06 - 2016-09-12 08:06 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-09-15 07:11 - 2016-09-15 07:11 - 03085624 _____ () C:\Program Files\AVAST Software\Avast\defs\16091402\algo.dll 2016-09-12 08:06 - 2016-09-12 08:06 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-09-07 10:05 - 2016-02-14 23:21 - 00582144 _____ () C:\Program Files (x86)\qksee\curlpp.dll 2016-09-07 10:05 - 2015-09-01 22:43 - 00068432 _____ () C:\Program Files (x86)\qksee\zlib1.dll 2013-06-03 09:14 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2013-06-03 09:14 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2013-06-03 09:14 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2013-06-03 09:14 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2013-06-03 09:14 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-09-07 10:07 - 2016-09-07 04:34 - 00335360 _____ () c:\programdata\sun\java\extension.dll 2016-09-07 10:06 - 2016-05-22 23:37 - 00179200 _____ () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll 2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-08-12 07:39 - 2016-09-09 07:05 - 51272304 _____ () C:\Users\Kátia\AppData\Roaming\Spotify\libcef.dll 2016-09-12 08:06 - 2016-09-12 08:06 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2011-05-12 20:45 - 2011-05-12 20:45 - 02896608 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.UI.dll 2011-05-12 20:45 - 2011-05-12 20:45 - 00027360 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll 2011-05-12 20:46 - 2011-05-12 20:46 - 00028672 _____ () C:\Program Files (x86)\Memeo\AutoBackup\pt-BR\InstantBackup.resources.dll 2010-03-22 19:59 - 2010-03-22 19:59 - 00504293 _____ () C:\Program Files (x86)\Memeo\AutoBackup\sqlite3.DLL 2010-03-22 19:57 - 2010-03-22 19:57 - 00178176 _____ () C:\Program Files (x86)\Common Files\Memeo\ProfMan.dll 2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2016-08-12 07:39 - 2016-09-09 07:05 - 01765488 _____ () C:\Users\Kátia\AppData\Roaming\Spotify\libglesv2.dll 2016-08-12 07:39 - 2016-09-09 07:05 - 00088176 _____ () C:\Users\Kátia\AppData\Roaming\Spotify\libegl.dll 2016-09-07 10:07 - 2016-09-07 04:34 - 01764952 _____ () C:\Program Files (x86)\Newjob\Application\libglesv2.dll 2016-09-07 10:07 - 2016-09-07 04:34 - 00087640 _____ () C:\Program Files (x86)\Newjob\Application\libegl.dll 2014-05-10 05:04 - 2014-05-10 05:04 - 00014552 _____ () C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Support Files\Contents\Windows\SPBasic.dll 2014-05-10 05:04 - 2014-05-10 05:04 - 00074456 _____ () C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Support Files\Contents\Windows\Alcid.dll 2010-12-21 01:15 - 2010-12-21 01:15 - 01041248 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2012-03-09 15:26 - 2012-03-09 15:26 - 00100352 _____ () C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\zlib1.dll 2016-09-07 10:08 - 2016-07-06 18:01 - 17602240 _____ () C:\Users\Kátia\AppData\Local\Newjob\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> 008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> 00hq.com IE restricted site: HKU\.DEFAULT\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\.DEFAULT\...\01i.info -> 01i.info IE restricted site: HKU\.DEFAULT\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\.DEFAULT\...\05p.com -> 05p.com IE restricted site: HKU\.DEFAULT\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\.DEFAULT\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\.DEFAULT\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\.DEFAULT\...\0calories.net -> 0calories.net IE restricted site: HKU\.DEFAULT\...\0cj.net -> 0cj.net IE restricted site: HKU\.DEFAULT\...\0scan.com -> 0scan.com IE restricted site: HKU\.DEFAULT\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1-se.com -> 1-se.com IE restricted site: HKU\.DEFAULT\...\1001movie.com -> 1001movie.com IE restricted site: HKU\.DEFAULT\...\1001night.biz -> 1001night.biz IE restricted site: HKU\.DEFAULT\...\100gal.net -> 100gal.net IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> 100sexlinks.com Existem ainda 4788 sites a mais. IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-1129891620-779716991-3309888983-1000\...\100sexlinks.com -> 100sexlinks.com Existem ainda 4788 sites a mais. ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2016-08-26 15:08 - 00000878 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 192.168.1.111 localgvm_mysql 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 na1r.services.adobe.com 127.0.0.1 hlrcv.stage.adobe.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1129891620-779716991-3309888983-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.111 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: Bamboo Dock => MSCONFIG\startupreg: BambooCore => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe MSCONFIG\startupreg: BDRegion => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe MSCONFIG\startupreg: ESET-Phase2 => MSCONFIG\startupreg: Google Update => MSCONFIG\startupreg: QuickTime Task => MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" MSCONFIG\startupreg: SearchSettings => "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" MSCONFIG\startupreg: Slick Savings => ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{B10D6039-6F24-490F-848D-A6C25A18358D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{CFD81EA3-360E-459D-A110-EBB86382DD2E}] => (Allow) C:\Program Files (x86)\Laplink\PCmover\pcmover.exe FirewallRules: [{D9B704C9-F680-4F4A-9B73-8ACA63D0816F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe FirewallRules: [{700D856B-04F1-40B3-832F-604887A6F30C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe FirewallRules: [{43F5DD87-6088-40C2-80C1-D3DD70277FE6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{74CA4405-4E3A-43CF-BA4D-92A4330B38F4}] => (Allow) LPort=2869 FirewallRules: [{BD3F8FAF-83CF-4430-AF56-656BAFAD7D47}] => (Allow) LPort=1900 FirewallRules: [{65FC9453-EEFA-4FB2-80E8-7D875E149F29}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{135E302E-DE90-432D-AD7C-CB4EF5F18A5B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{9E2A7AFF-C24B-499D-817A-18D02C2027AF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{AD533419-580C-4F5D-92D9-7395C5075306}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{17B081F1-6BE0-49EF-86F6-3F2FC55B4C4F}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [TCP Query User{D6B68F0B-92FB-4422-8E89-DC7BA187A7FC}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe FirewallRules: [UDP Query User{76567E14-BC04-4527-8F39-14D595A66560}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe FirewallRules: [{BF5F51EC-0159-4090-8997-739AAE87109B}] => (Allow) LPort=18237 FirewallRules: [{F1345350-7537-48AA-85D0-8E9EE319DE05}] => (Allow) LPort=18237 FirewallRules: [{CE7452F4-6D31-4D13-96F1-286567CB2F7B}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [TCP Query User{0955AB8B-1C69-4664-BFBB-B6DFFD206901}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe FirewallRules: [UDP Query User{7CE17277-7372-4BC0-8217-7CBC846C17F9}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe FirewallRules: [{887F48C7-430A-453B-B81E-F3839F5F3441}] => (Block) c:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDrw.exe FirewallRules: [{BC8F32E1-2CE9-433F-BDEE-D36639A8D5CC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8F67A9A4-27E6-455B-9DEC-03495647EAF4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F69D98C7-3E66-46A1-94B5-C5BB0D1B2BF1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3AA4A1FB-20E1-405A-A656-23664046470A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{DC616EE4-29DF-4DEC-9AEF-867B6EE2008B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{70535A55-C225-41C2-A8FD-25AEB85C2CBA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{D0D8208D-DB47-4156-A575-3039CE41A619}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{82D4D166-502B-4F4C-8E8F-3FD5CBD8E244}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{FDFD543D-3E95-4698-9034-9010A5B8C31D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{A852BA45-6D6C-4ED8-B5CB-A54E6BB13974}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{5D16CB0F-A4F5-466F-B231-249F29E5C874}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{4C9ED3D0-0980-405F-AD02-39C4F5E21AD8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{5E28C627-DA57-4889-BAC8-C6E1C40F528C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{8323AED0-3CED-421E-A2A4-CDEE017C8AB1}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{3384FEBE-41C3-4FA5-900B-7A3063DBC2A3}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{5F573FC7-DF96-47D9-9C3A-145179757D07}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{4DAB7A85-2B1F-42D5-95AC-9FF001C9A4A0}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{10450DD9-D13C-47D1-84BC-D5BE119254EE}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{894EE8ED-BCDA-4604-9039-22CC919E5230}] => (Allow) C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe FirewallRules: [{0AB4CB46-2004-4758-ABBC-5552D6CAF527}] => (Allow) C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe FirewallRules: [{5BC337CF-4404-4019-84B5-775407805D54}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{B1DABF29-72C3-4E66-ABE5-29F4928BCB86}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{6CA2B27A-832E-4F81-A2BA-4EC179CDA240}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{AC09442C-5C1B-462A-8E65-ADC2F4A8C4A3}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{B62BBDD8-559D-4542-8E9F-A4843564C541}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{6DDA1D2E-58A3-45EF-B6D2-632BC614789C}C:\users\kátia\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kátia\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{BEEF78FE-CEBE-4FE8-B2F4-C2FA36E59432}C:\users\kátia\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kátia\appdata\roaming\spotify\spotify.exe FirewallRules: [{923B4D66-EF77-486D-85F4-5486BAB317CB}] => (Allow) C:\Program Files (x86)\Newjob\Update\NewjobUpdate.exe FirewallRules: [{61344ABA-3D2D-4876-B3F7-23EE894E93A3}] => (Allow) C:\Program Files (x86)\Newjob\Application\chrome.exe FirewallRules: [{A1C193B7-EE7D-44DE-B88E-060BB2FC0710}] => (Allow) C:\ProgramData\Newjob\Newjob.exe FirewallRules: [TCP Query User{ABFD76FF-0520-4E33-AB94-00941C62B69B}C:\users\kátia\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kátia\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{A68F241C-0628-4D1C-BD24-F9A049695425}C:\users\kátia\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kátia\appdata\roaming\spotify\spotify.exe DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot-S&D 2 Tray Icon StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server ==================== Pontos de Restauração ========================= 02-08-2016 09:51:01 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 09-08-2016 13:16:08 Ponto de Verificação Agendado 17-08-2016 12:45:22 Ponto de Verificação Agendado 30-08-2016 08:02:04 Ponto de Verificação Agendado 06-09-2016 13:01:45 Ponto de Verificação Agendado 07-09-2016 08:19:47 Removed Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 12-09-2016 08:14:14 ASU_MSI_TRAN 13-09-2016 07:19:39 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 13-09-2016 11:38:00 Operação de restauração 13-09-2016 11:51:30 Installed Microsoft Office Professional Plus 2010 13-09-2016 13:45:18 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 13-09-2016 13:57:54 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 13-09-2016 14:13:26 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 14-09-2016 14:33:05 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 14-09-2016 14:39:22 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Adaptador do Microsoft ISATAP Description: Adaptador do Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (09/15/2016 07:31:30 AM) (Source: SignInAssistant) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/15/2016 07:31:30 AM) (Source: SignInAssistant) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/14/2016 04:54:09 PM) (Source: SignInAssistant) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/14/2016 04:54:09 PM) (Source: SignInAssistant) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/14/2016 01:41:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Illustrator.exe, versão: 18.0.0.18, carimbo de hora: 0x5388024a Nome do módulo de falhas: Illustrator.exe, versão: 18.0.0.18, carimbo de hora: 0x5388024a Código de exceção: 0xc0000005 Deslocamento com falha: 0x00ea58c2 Identificação do processo com falha: 0x12fc Hora de início do aplicativo com falha: 0x01d20ea6db794ebf Caminho do aplicativo com falha: C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Support Files\Contents\Windows\Illustrator.exe FCaminho do módulo de falhas: C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Support Files\Contents\Windows\Illustrator.exe Identificação do Relatório: 260a1e4b-7a9a-11e6-ab98-386077f09983 Error: (09/14/2016 12:00:43 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado. . Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante. Operação: Obtendo Dados do Gravador Contexto: Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220} Nome do Gravador: System Writer ID de Instância de Gravador: {49abeec0-3510-4426-b9af-0f12d5ab51bf} Error: (09/14/2016 09:21:59 AM) (Source: MsiInstaller) (EventID: 11406) (User: KATIA) Description: Produto: Adobe Acrobat XI Pro -- Erro 1406. Não foi possível gravar o valor Acrobat Assistant 8.0 na chave \SOFTWARE\Microsoft\Windows\CurrentVersion\Run. Erro do sistema . Verifique se você tem acesso suficiente a essa chave ou entre em contato com a equipe de suporte. Error: (09/14/2016 09:21:58 AM) (Source: MsiInstaller) (EventID: 11406) (User: KATIA) Description: Produto: Adobe Acrobat XI Pro -- Erro 1406. Não foi possível gravar o valor Acrobat Assistant 8.0 na chave \SOFTWARE\Microsoft\Windows\CurrentVersion\Run. Erro do sistema . Verifique se você tem acesso suficiente a essa chave ou entre em contato com a equipe de suporte. Error: (09/14/2016 09:20:17 AM) (Source: MsiInstaller) (EventID: 11328) (User: KATIA) Description: Produto: Adobe Acrobat XI Pro -- Erro 1328. Erro ao aplicar patch no arquivo C:\Config.Msi\PTBCD8.tmp. Provavelmente, ele foi atualizado por outros meios e não pode mais ser modificado por esse patch. Para obter mais informações, entre em contato com o fornecedor do patch. Erro do sistema: -1072807676 Error: (09/13/2016 04:15:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Illustrator.exe, versão: 18.0.0.18, carimbo de hora: 0x5388024a Nome do módulo de falhas: Vectorize.aip, versão: 17.0.128.0, carimbo de hora: 0x536d44c1 Código de exceção: 0xc0000005 Deslocamento com falha: 0x0002e094 Identificação do processo com falha: 0xb3c Hora de início do aplicativo com falha: 0x01d20de304f5253a Caminho do aplicativo com falha: C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Support Files\Contents\Windows\Illustrator.exe FCaminho do módulo de falhas: C:\Program Files (x86)\Adobe\Adobe Illustrator CC 2014 (32 Bit)\Plug-ins\Extensions\Vectorize.aip Identificação do Relatório: 7cbdf66b-79e6-11e6-9534-386077f09983 Erros de Sistema: ============= Error: (09/15/2016 07:31:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Live ID Sign-in Assistant devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/15/2016 07:31:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Live ID Sign-in Assistant devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/15/2016 07:11:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Spybot-S&D 2 Updating Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (09/15/2016 07:11:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (60000 milissegundos) ao aguardar a conexão do serviço Spybot-S&D 2 Updating Service. Error: (09/15/2016 07:10:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Live ID Sign-in Assistant devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/15/2016 07:10:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço PDIHWCTL devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/15/2016 07:10:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Hardlock devido ao seguinte erro: O Windows não pode verificar a assinatura digital deste arquivo. Talvez uma alteração recente de hardware ou software tenha instalado um arquivo com uma assinatura incorreta ou danificado, ou talvez o arquivo seja um software mal-intencionado de origem desconhecida. Error: (09/15/2016 07:09:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Wacom Professional Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/14/2016 05:12:47 PM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT) Description: O seguinte alerta fatal foi gerado: 10. O estado do erro interno é 10. Error: (09/14/2016 04:54:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Live ID Sign-in Assistant devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. CodeIntegrity: =================================== Date: 2016-09-15 07:10:26.167 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-15 07:10:26.076 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-14 14:47:55.785 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-14 14:47:55.706 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-14 07:05:37.357 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-14 07:05:37.274 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-13 11:41:00.573 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-13 11:41:00.528 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-13 07:07:30.700 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-13 07:07:30.645 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz Percentagem de memória em uso: 69% RAM física total: 8162.4 MB RAM física disponível: 2484.43 MB Virtual Total: 16322.95 MB Virtual disponível: 10067.98 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:198.72 GB) NTFS Drive f: (Seagate Expansion Drive) (Fixed) (Total:2794.51 GB) (Free:413.58 GB) NTFS Drive s: () (Network) (Total:930.96 GB) (Free:726.57 GB) NTFS Drive z: () (Network) (Total:2794 GB) (Free:2120.86 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5BBAE1B2) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) Attempted reading MBR returned 0 bytes. Could not read MBR for disk 2. ==================== Fim de Addition.txt ============================