cjoint

Publicité


Publicité

Commentaire : Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 20-07-2016 Executado por MICHEL (2016-07-22 00:52:42) Executando a partir de C:\Users\MICHEL\Downloads Microsoft Windows 7 Ultimate (X86) (2015-05-01 19:59:41) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-399368028-807543392-1878364115-500 - Administrator - Disabled) Convidado (S-1-5-21-399368028-807543392-1878364115-501 - Limited - Disabled) MICHEL (S-1-5-21-399368028-807543392-1878364115-1000 - Administrator - Enabled) => C:\Users\MICHEL ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-399368028-807543392-1878364115-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated) Apple Mobile Device Support (HKLM\...\{15A0A9A6-6CF0-4EEE-8E12-096B33F92CA7}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Arquivo do WinRAR (HKLM\...\WinRAR archiver) (Version: - ) AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos) Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB) Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform) Combat Arms (HKLM\...\Combat Arms) (Version: - ) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.57.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) CrystalDiskInfo 6.5.2 Shizuku Edition (HKLM\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Discador Oi (HKLM\...\oigsm_is1) (Version: 1.4.1.0 - LightComm Tecnologia) Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software) iCloud (HKLM\...\{61D7B517-5914-41D4-BD27-927163631227}) (Version: 5.2.2.87 - Apple Inc.) iTunes (HKLM\...\{8E49009F-3770-4BB1-ADF3-3ADA95415EAD}) (Version: 12.4.2.4 - Apple Inc.) Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Jogos Level Up (HKU\S-1-5-21-399368028-807543392-1878364115-1000\...\6d7bdf9c3c2a31f9) (Version: 0.9.4.1 - Level Up) K-Lite Codec Pack 11.8.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 11.8.0 - ) KMSpico v9.2.3 (HKLM\...\KMSpico_is1) (Version: 9.2.3 - ) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 47.0 (x86 pt-BR) (HKLM\...\Mozilla Firefox 47.0 (x86 pt-BR)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) Nero 7 Ultra Edition (HKLM\...\{C6115A28-F277-4E82-B067-84D28BF21046}) (Version: 7.03.1357 - Nero AG) NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) Origin (HKLM\...\Origin) (Version: 9.5.20.5318 - Electronic Arts, Inc.) PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PhoneClean 3.8.0 (HKLM\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.8.0 - iMobie Inc.) PhotoScape (HKLM\...\PhotoScape) (Version: - ) Pingzapper version 2.0.1 (HKLM\...\{7FD61982-5436-439B-B5D0-36F0536FF8BF}_is1) (Version: 2.0.1 - Pingzapper) PokerStars (HKLM\...\PokerStars) (Version: - PokerStars) Popcorn Time (HKU\S-1-5-21-399368028-807543392-1878364115-1000\...\Popcorn Time) (Version: - Popcorn Official) <==== ATENÇÃO PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) RadeonPro 1.0 (Build 1.1.1.0) (HKLM\...\RadeonPro_is1) (Version: - ) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden RMVB Player 1.0.4 (HKLM\...\RMVB Player_is1) (Version: - ) Skype™ 7.6 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.103 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-399368028-807543392-1878364115-1000\...\Spotify) (Version: 1.0.33.106.g60b5d1f0 - Spotify AB) Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Suplemento Microsoft Salvar como PDF ou XPS para programas do Microsoft Office 2007 (HKLM\...\{90120000-00B2-0416-0000-0000000FF1CE}) (Version: 12.0.4518.1019 - Microsoft Corporation) Suporte para Aplicativos Apple (32-bit) (HKLM\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamSpeak 3 Client (HKU\S-1-5-21-399368028-807543392-1878364115-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.45471 - TeamViewer) Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinThruster (HKLM\...\WinThruster_is1) (Version: 1.79 - solvusoft Corporation) <==== ATENÇÃO World of Warcraft (HKLM\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {12540DA6-64C2-485D-AD41-666C4CACE550} - System32\Tasks\WinThruster_DEFAULT => C:\Program Files\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO Task: {12C3016F-6999-44E9-B313-AA619ED19819} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {14310B98-8767-4171-878F-3CA6A16F79C0} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2016-07-08] (Apple Inc.) Task: {1D1EFE8C-F457-4EC2-B1D9-C0B4F63921AA} - System32\Tasks\WinThruster => C:\Program Files\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO Task: {46A49CC3-0892-4E8C-AA0B-AE1DF28E56D1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation) Task: {8DF91DB1-E34B-4BDF-9F97-69562DF69854} - System32\Tasks\WinThruster_UPDATES => C:\Program Files\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATENÇÃO Task: {94BA28BE-BD9A-4F8B-BBEB-892E5D4633CA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software) Task: {C164A324-C6CB-4668-80EB-EEB9AB032B35} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {C26A38CC-AA6B-435F-B5D1-B32398759EC5} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-03-02] () Task: {C4BCE8CD-E1EE-44A2-A7C8-6B0A6DDD2627} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {CECA6B94-6522-466D-B820-7BCDE0D9F484} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {DF2443CF-95AA-4E69-B3FF-DE53CF27C1DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {E4A3F98D-A226-486C-9912-A846DBB83F58} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {EB4F2ED1-F435-4CE0-B597-CA943950B8EA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\WinThruster_DEFAULT.job => C:\Program Files\WinThruster\WinThruster.exe <==== ATENÇÃO Task: C:\Windows\Tasks\WinThruster_UPDATES.job => C:\Program Files\WinThruster\WinThruster.exe <==== ATENÇÃO ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-03-18 22:56 - 2016-03-18 22:56 - 00080184 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-07-05 15:23 - 2016-07-05 15:23 - 01041208 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2011-03-14 12:27 - 2011-03-14 12:27 - 00271712 _____ () C:\ProgramData\DatacardService\HWDeviceService.exe 2016-02-14 04:25 - 2012-06-11 11:57 - 00679424 ___SH () C:\Program Files\Pingzapper\PZService.exe 2015-07-14 10:05 - 2015-07-14 10:29 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2016-01-07 18:11 - 2016-07-10 01:57 - 52042352 _____ () C:\Users\MICHEL\AppData\Roaming\Spotify\libcef.dll 2016-07-05 15:23 - 2016-07-05 15:23 - 00244536 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxslt.dll 2015-03-13 10:54 - 2015-03-13 10:54 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2016-01-07 18:11 - 2016-07-10 01:57 - 01741936 _____ () C:\Users\MICHEL\AppData\Roaming\Spotify\libglesv2.dll 2016-01-07 18:11 - 2016-07-10 01:57 - 00087664 _____ () C:\Users\MICHEL\AppData\Roaming\Spotify\libegl.dll 2016-06-18 09:51 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libglesv2.dll 2016-06-18 09:51 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libegl.dll 2016-07-13 00:57 - 2016-07-06 18:01 - 17602240 _____ () C:\Users\MICHEL\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:04 - 2009-06-10 18:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-399368028-807543392-1878364115-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MICHEL\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 177.154.192.2 - 177.154.192.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupreg: 20150107 => C:\Program Files\AVAST Software\Avast\setup\emupdate\643992b9-8666-4562-9e10-eac41319e888.exe /check MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: iCloudDrive => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify => "C:\Users\MICHEL\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\MICHEL\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\steam.exe" -silent MSCONFIG\startupreg: WTFast Tray => "C:\Program Files\WTFast\WTFast.exe" trayonly ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{38246396-6A0A-4E4E-9A86-664465963449}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{ADF38A81-83EE-4C3F-8050-BB158ED1456A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{93258EA1-9DDD-4A79-9C41-496BE19583B9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{772E804F-969A-439F-A861-47250461B138}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{A50DBCC9-C031-488A-8487-16801E6592F2}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{A0C916EC-1C42-4FEA-918F-D94A5E501C82}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{F5452ED9-82FB-4A6D-8899-F4D2BD272EA6}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C7C68758-ABB3-45EB-B044-CF345539F9DF}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{A8B2985F-FF5D-4E68-9AF1-E5030110072C}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{954E4067-523F-4B42-8826-741BFDBDAE7D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{D85B997A-B6DB-4B5C-8C3E-2F8FEBE49184}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{045B4B7D-9F7F-4559-88D5-AEF4086C8C11}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{F054ECBC-197A-4890-9878-B7776104100B}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{0ED43FD5-C26C-4CFB-ADDA-CBE3A83D894D}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{E9055E12-B50A-405D-98C3-92A3C73D17CE}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{87D7AE8B-B0F0-4F25-9B31-EA16237C42FB}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{C1707E49-2B95-4DD6-8A63-981CEB600E6E}] => (Allow) LPort=1688 FirewallRules: [{3DDA07CE-ED12-494C-BBBC-202F3FF8C003}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{CDBE0080-87DB-49EC-B494-F69D9E7C3B13}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{CF85303F-B4D7-4FDD-93C7-8579EAB34E42}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{7D4F17EA-BA73-4782-B50B-C3DCE9AD8637}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{EEDB59A0-1E8A-47B6-8418-4060D42BDFFE}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A39D7877-E725-4465-AA6D-664FB3BE8621}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{0CBCB783-B5AD-4F14-9DFC-B8B071504727}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe FirewallRules: [{F1D9CD3D-71A2-4BB1-9344-F2EB6A14C9B4}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe FirewallRules: [{9128E9C8-13E7-4322-91CA-F651C1E8D4F0}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{F837BF56-5A34-463F-AC00-42F9E75F5EE9}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{5E5E2937-5D37-46BE-ABCD-FB5D14C0F84A}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{80CA02B4-19E9-452B-908E-5B482B826FC6}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{506E3EFC-BC14-4D50-875B-2E4FB9DE8344}] => (Allow) C:\Program Files\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{CCAB9EAA-F892-4E3B-9F97-A6BB9F16C820}] => (Allow) C:\Program Files\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{C1B9C9B4-5024-457B-93D8-0CF6C2855802}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{8770D132-18FA-49D7-A08F-A797E6A1DF07}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{53BF508D-5EF8-4C3F-9E05-18CAC7E87715}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{D0CFC149-6B5C-47EF-9101-B893EA328178}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{0CDF06D1-792B-43E3-8A4B-BF14011014A1}C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{2F7CE997-ED92-4D33-A16B-A016F583AA0C}C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{8FD6D468-FC94-40B5-9D54-254D994B1F8D}] => (Block) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{DB7A3766-D834-4AB8-BB02-5BFC2D21663C}] => (Block) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_b7445b2515a9e0fa\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{5B7FE3C6-9958-41C4-94E2-F0D419C365EF}C:\users\michel\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\michel\appdata\local\popcorn time\nw.exe FirewallRules: [UDP Query User{6B3BB32B-04CE-4457-BBA6-1962638CC03E}C:\users\michel\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\michel\appdata\local\popcorn time\nw.exe FirewallRules: [{00E14370-962A-41C1-9D31-1B554988C14E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{EC217ADE-2887-4B75-AFE4-A0484D190F1C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{37C013E1-3138-4527-9A7E-1927626C1495}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{B5D5B7CA-C1B9-448E-9D57-15C2DAD67EED}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{545FDE43-C852-4CAC-8C7B-931595F75DEE}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{36E0D3B4-736D-4007-814E-590FD2E58AB0}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{F4A745A6-552C-4198-8267-19A864CC723D}C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{38CED7DF-7266-433E-B1B0-46F19215AFB2}C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\michel\appdata\local\apps\2.0\20pjaj92.w55\50v7w418.7rx\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{62F13CB3-4296-47E2-8BCB-58D1E736F48A}] => (Allow) C:\Level Up\Combat Arms\NMService.exe FirewallRules: [{A88AD227-F9A3-4EAC-847B-C96D4DEDFA93}] => (Allow) C:\Level Up\Combat Arms\NMService.exe FirewallRules: [{DE2BBA9D-790E-4F00-8EB3-4E8D3B82A129}] => (Allow) C:\Program Files\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{677DE0FF-49F2-4503-B3AA-860EA8CC9A8E}] => (Allow) C:\Program Files\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{FC5659AA-1042-43C7-A898-D33F9BE60C3D}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{20BE22F4-1BF8-45E7-AC11-18FDC9551951}] => (Allow) LPort=2869 FirewallRules: [{2023EAA0-9B01-4678-B6FC-70A3669A0F09}] => (Allow) LPort=1900 FirewallRules: [{C5FADCDE-4ED8-4E46-9219-7CD7432394EE}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{E406A936-466E-49FB-959B-4C5D4C7F1538}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{07732EDA-C1B7-43E4-9A94-A1630B54FD7E}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{676283CA-78A2-4583-A7F1-E48FA0715B4D}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{289EC6BF-6A86-49A8-9390-57558F0F98BA}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{96C59F85-89C7-4E04-8984-D34111404E0F}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A6D7629D-9F4F-4DDE-9097-5A453CA23F9B}] => (Allow) C:\Users\MICHEL\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{411545A1-719B-44BA-BCED-9B121BB62C2D}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{23927682-9028-48D9-BD80-63E5774B4A14}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe FirewallRules: [{00493B94-B455-4A4E-82E4-B41890DCE12C}] => (Allow) C:\Program Files\iTunes\iTunes.exe ==================== Pontos de Restauração ========================= 21-07-2016 22:10:33 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 22:21:31 Windows Update 21-07-2016 22:35:42 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 22:43:56 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 22:46:58 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 22:50:46 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 23:01:15 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 23:15:00 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 23:36:31 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 21-07-2016 23:47:15 WinThruster qui, jul 21, 16 23:47 21-07-2016 23:53:59 Operação de restauração ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: {57d1dcff-a1bc-4bc1-aeb5-b9ecf33d5ab3}Gw Description: {57d1dcff-a1bc-4bc1-aeb5-b9ecf33d5ab3}Gw Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: {57d1dcff-a1bc-4bc1-aeb5-b9ecf33d5ab3}Gw Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: {73693ccd-849c-4133-b0af-cfbd2203bb85}Gw Description: {73693ccd-849c-4133-b0af-cfbd2203bb85}Gw Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: {73693ccd-849c-4133-b0af-cfbd2203bb85}Gw Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: {815e23f7-fa1f-4917-a944-327d921d4bd0}Gw Description: {815e23f7-fa1f-4917-a944-327d921d4bd0}Gw Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: {815e23f7-fa1f-4917-a944-327d921d4bd0}Gw Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/22/2016 12:52:08 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa FRST.exe versão 20.7.2016.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 14b8 Hora de Início: 01d1e3cc5c829a0a Hora de Término: 11 Caminho do Aplicativo: C:\Users\MICHEL\Downloads\FRST.exe Id do Relatório: Error: (07/22/2016 12:51:24 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa FRST.exe versão 20.7.2016.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 418 Hora de Início: 01d1e3cbf2e5a307 Hora de Término: 9 Caminho do Aplicativo: C:\Users\MICHEL\Downloads\FRST.exe Id do Relatório: Error: (07/22/2016 12:11:35 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa WinThruster.exe versão 1.79.69.3083 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: 6d0 Hora de Início: 01d1e3c559959a7c Hora de Término: 11 Caminho do Aplicativo: C:\Program Files\WinThruster\WinThruster.exe Id do Relatório: Error: (07/22/2016 12:03:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Service_KMS.exe, versão: 13.1.0.0, carimbo de hora: 0x5313ef48 Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000 Código de exceção: 0x00000000 Deslocamento com falha: 0x002b01c0 Identificação do processo com falha: 0x130 Hora de início do aplicativo com falha: 0xService_KMS.exe0 Caminho do aplicativo com falha: Service_KMS.exe1 FCaminho do módulo de falhas: Service_KMS.exe2 Identificação do Relatório: Service_KMS.exe3 Error: (07/22/2016 12:02:04 AM) (Source: System Restore) (EventID: 8210) (User: ) Description: Erro não especificado durante a Restauração do Sistema: (WinThruster qui, jul 21, 16 23:47). Informações adicionais: 0x80070017. Error: (07/21/2016 11:59:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome de aplicativo com falha: Service_KMS.exe, versão: 13.1.0.0, carimbo de hora: 0x5313ef48 Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000 Código de exceção: 0x00000000 Deslocamento com falha: 0x007501c0 Identificação do processo com falha: 0x72c Hora de início do aplicativo com falha: 0xService_KMS.exe0 Caminho do aplicativo com falha: Service_KMS.exe1 FCaminho do módulo de falhas: Service_KMS.exe2 Identificação do Relatório: Service_KMS.exe3 Error: (07/21/2016 11:27:54 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Não é possível inicializar o índice. Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (07/21/2016 11:27:54 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Não é possível inicializar o aplicativo. Contexto: Aplicativo Windows Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (07/21/2016 11:27:54 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Não é possível inicializar o objeto coletor. Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (07/21/2016 11:27:54 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Não é possível inicializar o plug-in em <Search.TripoliIndexer>. Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: Elemento não encontrado. (HRESULT : 0x80070490) (0x80070490) Erros de Sistema: ============= Error: (07/22/2016 12:09:24 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:23 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:21 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:19 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:17 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:15 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:13 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:12 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:10 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. Error: (07/22/2016 12:09:08 AM) (Source: Disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um bloco defeituoso. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU 540 @ 3.07GHz Percentagem de memória em uso: 81% RAM física total: 3063.24 MB RAM física disponível: 579.17 MB Virtual Total: 6124.76 MB Virtual disponível: 3515.07 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:270.79 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4E9325E7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================

Format du document : text/plain


Publicité


Signaler le contenu de ce document

Publicité