Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-04-2016 Ran by Thiago (2016-04-27 01:22:20) Running from C:\Users\Thiago\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2009-12-01 00:01:37) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrador (S-1-5-21-2102885096-2366560992-3622796566-500 - Administrator - Disabled) Convidado (S-1-5-21-2102885096-2366560992-3622796566-501 - Limited - Enabled) Thiago (S-1-5-21-2102885096-2366560992-3622796566-1000 - Administrator - Enabled) => C:\Users\Thiago ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.0.0 - ) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.102.64 - Adobe Systems Incorporated) Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated) Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Reader 9.5.5 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated) Advanced Calendar 2.0.0.11189 (HKLM\...\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}) (Version: 2.0.0.11189 - MEIXIAN XIE) <==== ATTENTION ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.85 - ArcSoft) ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.193 - ArcSoft) Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Assistente de Conexão do Windows Live (HKLM-x32\...\{51A9E3DD-37B8-47BB-8E67-5B76B3EFBC48}) (Version: 5.000.818.5 - Microsoft Corporation) ATI Catalyst Install Manager (HKLM\...\{A4BC24CB-F8C7-27FB-41D5-47A405031A41}) (Version: 3.0.732.0 - ATI Technologies, Inc.) Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft) Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft) Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft) Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft) Babylon toolbar (HKLM-x32\...\BabylonToolbar) (Version: - ) <==== ATTENTION ccc-core-static (x32 Version: 2009.0710.1127.18698 - ATI) Hidden Click to Disc (HKLM-x32\...\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}) (Version: 1.2.70.06160 - Sony Corporation) Click to Disc (x32 Version: 1.2.70.06160 - Sony Corporation) Hidden Click to Disc Editor (HKLM-x32\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 2.0.02 - Sony Corporation) Click to Disc Editor (x32 Version: 2.0.02 - Sony Corporation) Hidden Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Counter-Strike 1.6 (HKLM-x32\...\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}) (Version: 1.6 - ) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Ferramenta de Carregamento do Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Grand Chase Season 2 (HKLM-x32\...\Grand Chase Season 2_is1) (Version: - Level Up! Interactive S.A.) HDAUDIO SoftV92 Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.4.50 - Conexant Systems) Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) Java(TM) 6 Update 14 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416014FF}) (Version: 6.0.140 - Sun Microsystems, Inc.) Java(TM) 6 Update 23 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216014FF}) (Version: 6.0.230 - Sun Microsystems, Inc.) Last.fm 1.5.4.24567 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.189 - McAfee, Inc.) Messenger Plus! 5 (HKLM-x32\...\Messenger Plus!) (Version: 5.02.0.712 - Yuna Software) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Works (HKLM-x32\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation) Minimodem USB (HKLM-x32\...\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}) (Version: 1.0.0.0 - ONDA) MixVideoPlayer (HKLM-x32\...\MixVideoPlayer) (Version: v1.0.0.25 - SoftForce LLC) <==== ATTENTION MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Music Transfer (HKLM-x32\...\{CE2121C6-C94D-4A73-8EA4-6943F33EE335}) (Version: 1.3.01.13160 - Sony Corporation) Nero 7 Essentials (HKLM-x32\...\{66EBD70F-A42C-475F-AEDF-277378151046}) (Version: 7.02.9491 - Nero AG) Nokia Internet Modem (HKLM-x32\...\{35C0E12B-1B09-45A8-9607-0AF4445ADA0E}) (Version: 3.8.69.40 - SmartCom) Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.3.6 - Pando Networks Inc.) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Primo (x32 Version: 1.00.0000 - Your Company Name) Hidden RealPlayer (HKLM-x32\...\RealPlayer 12.0) (Version: - RealNetworks) Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.5897 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5886 - Realtek Semiconductor Corp.) RealUpgrade 1.0 (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden Roxio Easy Media Creator 10 LJ (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio) Runtime (x32 Version: 1.00.0000 - Your Company Name) Hidden Setting Utility Series (HKLM-x32\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 5.0.0.07300 - Sony Corporation) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Sony Home Network Library (HKLM-x32\...\{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}) (Version: 2.0.0.07280 - Sony Corporation) Sony Home Network Library (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden Sony Picture Utility (HKLM-x32\...\{D5068583-D569-468B-9755-5FBF5848F46F}) (Version: 4.2.12.16210 - Sony Corporation) Spotify (HKU\S-1-5-21-2102885096-2366560992-3622796566-1000\...\Spotify) (Version: 1.0.28.87.g8f9312a4 - Spotify AB) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.1 - Synaptics Incorporated) The Desktop Weather 2.0.1.11297 (HKLM\...\WeatherTool) (Version: 2.0.1.11297 - Baidu Japan Inc.) <==== ATTENTION Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VAIO Content Metadata Intelligent Analyzing Manager (HKLM-x32\...\{0A5F02E5-1A52-4F85-892C-A35227641C75}) (Version: 3.5.0.06261 - Sony Corporation) VAIO Content Metadata Intelligent Analyzing Manager (x32 Version: 3.5.0.06261 - Sony Corporation) Hidden VAIO Content Metadata Intelligent Network Service Manager (HKLM-x32\...\{3B1168DE-1F8C-471C-AC49-0CA52F096170}) (Version: 3.5.0.06260 - Sony Corporation) VAIO Content Metadata Intelligent Network Service Manager (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden VAIO Content Metadata Manager Settings (HKLM-x32\...\{7395DD51-0D1A-47A7-9993-742073ECF4CE}) (Version: 3.5.0.06260 - Sony Corporation) VAIO Content Metadata Manager Settings (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden VAIO Content Metadata XML Interface Library (HKLM-x32\...\{949419DF-F4AF-4693-B60A-522B24F233C6}) (Version: 3.5.0.06180 - Sony Corporation) VAIO Content Metadata XML Interface Library (x32 Version: 3.5.0.06180 - Sony Corporation) Hidden VAIO Content Monitoring Settings (HKLM-x32\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 2.4.0.06120 - Sony Corporation) VAIO Content Monitoring Settings (x32 Version: 2.4.0.06120 - Sony Corporation) Hidden VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.0.0.06120 - Sony Corporation) VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.1.01.06290 - Sony Corporation) VAIO DVD Menu Data Basic (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 1.0.00.08130 - Sony Corporation) VAIO Entertainment Platform (HKLM-x32\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.5.0.07230 - Sony Corporation) VAIO Entertainment Platform (x32 Version: 3.5.0.07230 - Sony Corporation) Hidden VAIO Event Service (HKLM-x32\...\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}) (Version: 5.0.0.07010 - Sony Corporation) VAIO Marketing Tools (HKLM-x32\...\MarketingTools) (Version: - Sony Corporation) VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.0.0.07280 - Sony Corporation) VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 1.2.0.09100 - Sony Corporation) VAIO Mode Switch (HKLM-x32\...\{7010F660-F97B-4565-9BA2-F985FFFB42B1}) (Version: 2.0.0.07280 - Sony Corporation) VAIO Movie Story (HKLM-x32\...\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 1.5.00.06191 - Sony Corporation) VAIO Movie Story (x32 Version: 1.5.00.06191 - Sony Corporation) Hidden VAIO Movie Story Template Data (HKLM-x32\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 1.5.00.06010 - Sony Corporation) VAIO Original Function Settings (HKLM-x32\...\{A63E7492-A0BC-4BB9-89A7-352965222380}) (Version: 2.0.0.07010 - Sony Corporation) VAIO Original Function Settings (x32 Version: 2.0.0.07010 - Sony Corporation) Hidden VAIO Power Management (HKLM-x32\...\{5F5867F0-2D23-4338-A206-01A76C823924}) (Version: 4.0.0.08240 - Sony Corporation) VAIO Premium Partners 1.00 (HKLM-x32\...\VAIO Premium Partners 1.00) (Version: - ) VAIO Presentation Support (HKLM-x32\...\{2018C019-30D9-4240-8C01-0865C10DCF5A}) (Version: 2.0.0.05270 - Sony Corporation) VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.0.0.08120 - Sony Corporation) VAIO SR screensaver (HKLM-x32\...\VAIO SR screensaver) (Version: 1.0.0.0 - Sony Europe) VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.0.0.07290 - Sony Corporation) VAIO Update 4 (HKLM-x32\...\{83CDA18E-0BF3-4ACA-872C-B4CDABF2360E}) (Version: 4.2.0.07300 - Sony Corporation) VAIO Wallpaper Contents (HKLM-x32\...\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}) (Version: 2.0.0.06010 - Sony Corporation) WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0147D6B3-BDF5-4C7C-86E0-6F7C5EE6E5EF} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2102885096-2366560992-3622796566-1000Core => C:\Users\Thiago\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-24] (Facebook Inc.) Task: {1E293915-77F5-4B01-88E2-8937FC3AE5DE} - System32\Tasks\{1FCD453F-012C-4D32-999F-3A0A13D8D417} => pcalua.exe -a "C:\Users\Thiago\Downloads\cs16full_v7[-=C.G.B=-] {Team}\cs16full_v7[-=C.G.B=-] {Team}\cs16full_v7[-=C.G.B=-] {Team}.exe" -d "C:\Users\Thiago\Downloads\cs16full_v7[-=C.G.B=-] {Team}\cs16full_v7[-=C.G.B=-] {Team}" Task: {249F0751-9B25-4614-9542-0BA7D3B5CAE4} - System32\Tasks\svchost => C:\Users\Thiago\AppData\Local\Temp\nsxC0B0.tmp\setup.exe <==== ATTENTION Task: {30DD40DB-EEB2-495A-82F1-8705596D0C56} - System32\Tasks\PFExe => C:\Users\Thiago\AppData\Local\PriceFountain\pricefountain.exe <==== ATTENTION Task: {37F3A628-FA28-451C-A7E6-3125778D3CA0} - System32\Tasks\{D63051CA-2803-47B9-B5DE-884B98A13D06} => pcalua.exe -a G:\application\dotnetfx.exe -d G:\application Task: {3DA555D5-847B-4F89-B99E-EA2F7D209478} - System32\Tasks\osTip => Rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN Task: {49F31CE3-CF10-41DB-BA52-F1C4021002BC} - System32\Tasks\Pritc => C:\Users\Thiago\AppData\Local\Temp\00022746\casrss.exe [2016-04-26] (VLOME) <==== ATTENTION Task: {4C494724-CBA8-4E70-A40F-F1A3A053C6D7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {52860C1D-BEB9-4816-886D-1E81FBC81150} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {642926D5-9323-4F5F-894A-86CAC18A61B0} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2102885096-2366560992-3622796566-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-02-24] (RealNetworks, Inc.) Task: {7214BB66-DABA-489D-9749-8EBE0D93CB71} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe [2016-04-26] () <==== ATTENTION Task: {81C33F3C-4476-4ECE-A33F-B2BFF0588ADB} - System32\Tasks\{0D424FEE-D5D5-4919-926A-9F5F51F61F8A} => pcalua.exe -a "C:\Level Up! Games\Grand Chase Season 2\unins000.exe" Task: {9413C25A-546E-4BAA-B882-6CBF52257876} - System32\Tasks\Pwtyfemuk Cache => C:\Program Files (x86)\Pwtyfemuk\Pwtcchtsk.exe [2016-04-18] () Task: {9935FBA8-473D-4AF1-9778-6FB5716D6F37} - System32\Tasks\MixVideoPlayer Update => C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [2015-08-06] () <==== ATTENTION Task: {997EE31D-E491-448C-9B4A-1996009867F6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-26] (Adobe Systems Incorporated) Task: {99CBF3A1-1DE5-428E-8528-0F307A7AA0FC} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2102885096-2366560992-3622796566-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-02-24] (RealNetworks, Inc.) Task: {A77515A6-38C4-493E-BF1C-6B69ED91F5CA} - System32\Tasks\Price Fountain => C:\Users\Thiago\AppData\Roaming\PriceFountain\UpdateProc\UpdateTask.exe [2016-04-27] () <==== ATTENTION Task: {B931125E-F491-431A-B3BF-6360521C2EB1} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe Task: {BCCA5303-3251-4FB7-A175-8F5D1151EBBA} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2102885096-2366560992-3622796566-1000UA => C:\Users\Thiago\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-24] (Facebook Inc.) Task: {CA7259A2-3298-446C-9C39-D9E665CDEF0F} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2009-07-31] (Sony Corporation) Task: {DF1B5BDA-4A5C-41D8-A19A-29385225D0C7} - System32\Tasks\Dravsynlether Core => C:\Program Files (x86)\Dravsynlether\Drvcoretsk.exe [2016-04-26] () Task: {EECA1F4F-4E71-4382-824A-3815927341E5} - System32\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} => C:\Program Files (x86)\baidu\update\baidujp_update.exe [2016-03-31] (Baidu) Task: {F16F3D8D-8ABD-4BD3-B8B6-88B63BCC9FDE} - System32\Tasks\{3E2BAE1E-E67B-4775-B754-5D930A9849D7} => pcalua.exe -a "C:\Users\Thiago\Desktop\Nero 8.3.6.0 Portable - Portable Brasil (www.portablebrasil.net)\Nero Port..exe" -d "C:\Users\Thiago\Desktop\Nero 8.3.6.0 Portable - Portable Brasil (www.portablebrasil.net)" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job => C:\Program Files (x86)\baidu\update\baidujp_update.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2102885096-2366560992-3622796566-1000Core.job => C:\Users\Thiago\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2102885096-2366560992-3622796566-1000UA.job => C:\Users\Thiago\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Price Fountain.job => C:\Users\Thiago\AppData\Roaming\PRICEF~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\Thiago\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\Desktop\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\Users\Thiago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> "hxxp://trustedsurf.com/?ssid=1461717901&a=1054904&src=sh&uuid=c6a4e7f8-33bb-4dd0-b6a9-acb20e957eec" ==================== Loaded Modules (Whitelisted) ============== 2016-04-26 09:31 - 2016-04-26 09:31 - 00125768 _____ () C:\Users\Thiago\AppData\Roaming\EtehhArec\Ibuuptup.exe 2016-04-26 19:50 - 2016-04-26 19:50 - 00174952 _____ () C:\Users\Thiago\AppData\Roaming\Bheemef\Bheemef.exe 2016-04-26 19:34 - 2016-04-26 19:34 - 00174984 _____ () C:\Users\Thiago\AppData\Roaming\Dylonok\Dylonok.exe 2016-04-07 05:02 - 2016-04-07 05:02 - 00124928 _____ () C:\Users\Thiago\AppData\Local\Apps\2.0\abril.exe 2016-04-26 21:04 - 2016-04-26 21:04 - 00600576 _____ () C:\Program Files (x86)\10B9B402-1461718175-DE11-8194-0024BE7E8479\knsf8D89.tmpfs 2016-04-26 21:50 - 2016-04-26 21:50 - 00138240 _____ () C:\Program Files (x86)\10B9B402-1461718175-DE11-8194-0024BE7E8479\hnsvEC63.tmp 2016-04-26 09:31 - 2016-04-26 09:31 - 00174920 _____ () C:\Users\Thiago\AppData\Roaming\Bezthlatdh\Bezthlatdh.exe 2016-04-26 19:50 - 2016-04-26 19:50 - 00673128 _____ () C:\Users\Thiago\AppData\Roaming\Bheemef\Dozybora.dll 2016-04-26 19:34 - 2016-04-26 19:34 - 00673160 _____ () C:\Users\Thiago\AppData\Roaming\Dylonok\Cebnoxd.dll 2016-04-26 09:31 - 2016-04-26 09:31 - 00673096 _____ () C:\Users\Thiago\AppData\Roaming\Bezthlatdh\Awhbu.dll 2016-04-05 23:32 - 2016-04-05 23:32 - 00142296 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11297\WeatherService.exe 2016-04-26 19:50 - 2016-04-26 19:50 - 00125800 _____ () C:\Users\Thiago\AppData\Roaming\NewmioKiyagdy\Iijuaie.exe 2016-04-05 23:33 - 2016-04-05 23:33 - 01050072 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11297\WeatherEntryDll.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00148104 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarEntry.dll 2016-04-26 09:31 - 2016-04-26 09:31 - 00116552 _____ () C:\Users\Thiago\AppData\Roaming\Bezthlatdh\Bafveclaps.exe 2016-04-26 19:50 - 2016-04-26 19:50 - 00116584 _____ () C:\Users\Thiago\AppData\Roaming\Bheemef\Cixnagbitt.exe 2016-04-26 19:34 - 2016-04-26 19:34 - 00148360 _____ () C:\Users\Thiago\AppData\Roaming\Dylonok\Cebnoxd.exe 2016-04-26 19:50 - 2016-04-26 19:50 - 00148328 _____ () C:\Users\Thiago\AppData\Roaming\Bheemef\Dozybora.exe 2016-04-26 09:31 - 2016-04-26 09:31 - 00148296 _____ () C:\Users\Thiago\AppData\Roaming\Bezthlatdh\Awhbu.exe 2016-04-26 19:34 - 2016-04-26 19:34 - 00116616 _____ () C:\Users\Thiago\AppData\Roaming\Dylonok\Kaemp.exe 2010-03-17 13:16 - 2010-03-17 13:17 - 02937528 _____ () C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe 2016-04-26 21:52 - 2016-04-26 09:16 - 01916928 _____ () C:\Users\Thiago\AppData\Roaming\msiql.exe 2008-08-26 15:41 - 2008-08-26 15:41 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2009-09-08 10:30 - 2009-09-08 10:30 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00141960 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe 2015-12-25 05:42 - 2015-12-25 05:42 - 03934344 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\Calendar.exe 2015-08-07 07:20 - 2015-08-07 07:20 - 00122536 _____ () C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe 2015-08-07 07:18 - 2015-08-07 07:18 - 02719912 _____ () C:\Program Files (x86)\MixVideoPlayer\MixVideoPlayer.exe 2016-04-27 00:21 - 2016-04-27 00:21 - 00522240 _____ () C:\Users\Thiago\AppData\Roaming\PriceFountain\UpdateProc\UpdateTask.exe 2016-04-26 09:31 - 2016-04-26 22:24 - 00222536 _____ () C:\Users\Thiago\AppData\Roaming\EtehhArec\Cinypek.din 2016-04-26 19:50 - 2016-04-26 21:53 - 00222568 _____ () C:\Users\Thiago\AppData\Roaming\NewmioKiyagdy\Senkeu.din 2016-04-26 09:31 - 2016-04-26 09:31 - 00262984 _____ () C:\Users\Thiago\AppData\Roaming\Bezthlatdh\Bafveclaps.dll 2016-04-26 19:34 - 2016-04-26 19:34 - 00263048 _____ () C:\Users\Thiago\AppData\Roaming\Dylonok\Kaemp.dll 2016-04-26 19:50 - 2016-04-26 19:50 - 00263016 _____ () C:\Users\Thiago\AppData\Roaming\Bheemef\Cixnagbitt.dll 2009-09-08 11:00 - 2009-07-01 15:49 - 00010752 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll 2009-09-08 11:00 - 2009-07-01 15:49 - 00009728 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll 2009-07-29 15:01 - 2009-07-29 15:01 - 02099664 _____ () C:\Program Files (x86)\Nokia\Nokia Internet Modem\Smartcom.dll 2009-07-29 15:01 - 2009-07-29 15:01 - 00543184 _____ () C:\Program Files (x86)\Nokia\Nokia Internet Modem\WellphoneLib.dll 2012-08-28 19:56 - 2009-07-29 15:01 - 00066512 _____ () C:\Program Files (x86)\Common Files\SmartCom\DragnDropCopyHook.dll 2016-04-27 00:52 - 2016-04-07 11:30 - 02027520 _____ () C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll 2016-04-12 09:14 - 2016-04-06 07:04 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libglesv2.dll 2016-04-12 09:14 - 2016-04-06 07:04 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libegl.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00543368 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPTask.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00406664 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPNet.dll 2015-12-25 05:41 - 2015-12-25 05:41 - 00428680 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPDR.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00747144 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPKernel.dll 2015-12-25 05:42 - 2015-12-25 05:42 - 00327304 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPHelp.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2016-04-26 21:47 - 00001006 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2102885096-2366560992-3622796566-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Thiago\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 104.197.191.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{403E0DD8-B78C-4577-9F5C-0ABE8E7D3157}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe FirewallRules: [{307F8460-60F2-44C3-89D0-288552D18A35}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{E22842A8-4B2B-407D-8906-5687C734FAFA}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{F21387FE-EB87-4E66-B900-C8129273D1D9}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{E8321AC9-3322-48E8-B476-9D7F48186FAA}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{F9FD27F5-1D7C-4984-81B1-074BA8AA5698}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{F125725C-5C57-40A6-A8AE-1E257A77083F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{894ECD1E-904F-41F5-890B-EEEA08F1F954}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{A5BF938A-6D83-4264-9B4A-E453A50062ED}] => (Allow) svchost.exe FirewallRules: [{6494E670-EBFD-4684-82F9-98D99B100430}] => (Allow) C:\Users\Thiago\AppData\Local\Temp\Update_37bc.exe FirewallRules: [{1CEB5DD9-E4EE-46D9-B0FB-292D4E87A9A8}] => (Allow) C:\Users\Thiago\AppData\Local\Temp\Update_37bc.exe FirewallRules: [{CE1ED244-10F3-45CA-90F0-47C49BD49F74}] => (Allow) C:\Users\Thiago\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [TCP Query User{1976F894-EB2E-415D-A317-0D7F595840F1}C:\users\thiago\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thiago\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{38CA42CF-C12C-4122-B039-CEB9B877306E}C:\users\thiago\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thiago\appdata\roaming\spotify\spotify.exe FirewallRules: [{1E5760C0-5433-4779-B592-CE785E94C83B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8FD70313-6895-41EA-8289-8B7AEDA5D4AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{AB43FF7A-2F0C-427D-971E-0194D206B5FB}] => (Allow) C:\Users\Thiago\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{8ABC8005-8FE0-4C4C-BEF3-209247DA3A0B}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{EB606D5A-27DD-4425-9A8D-265C26A74130}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{ED80579D-43EC-4621-BBE3-75F67DCCF2B2}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{F55DB804-C339-4268-9651-E7408A194281}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{2579A7A5-57EF-441D-B53F-A291F409E061}] => (Allow) C:\Program Files (x86)\Simcake\Microvirt\MEmu\MEmu.exe FirewallRules: [{1B4DF324-C9F3-4044-972B-616084F6F224}] => (Allow) C:\Program Files (x86)\Simcake\Microvirt\MEmu\MEmu.exe FirewallRules: [{D7B03D3F-6011-45D4-B366-73CBE04645BC}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [{88A563E9-A0A4-4FE9-A8C7-86536ACF3B76}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [TCP Query User{B79ECE74-67C3-4D2E-9051-0A89BA8E5AF6}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Block) C:\program files (x86)\jfilemanager\jfilemanager.exe FirewallRules: [UDP Query User{28173CB9-2C1F-4C95-8EFF-83CEFA9D30A1}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Block) C:\program files (x86)\jfilemanager\jfilemanager.exe ==================== Restore Points ========================= 26-02-2016 00:03:10 Ponto de Verificação Agendado 27-03-2016 19:07:51 Ponto de Verificação Agendado 04-04-2016 15:00:44 Ponto de Verificação Agendado 05-04-2016 14:23:16 Operação de Restauro 12-04-2016 09:12:46 Windows Update 13-04-2016 08:57:24 Windows Update 23-04-2016 14:26:09 Ponto de Verificação Agendado 26-04-2016 23:00:56 Uniblue DriverScanner installation 26-04-2016 23:00:56 Uniblue SpeedUpMyPC installation ==================== Faulty Device Manager Devices ============= Name: Dispositivos Periférico Bluetooth Description: Dispositivos Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivos Periférico Bluetooth Description: Dispositivos Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Dispositivos Periférico Bluetooth Description: Dispositivos Periférico Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Adaptador de Túnel Teredo da Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (04/27/2016 01:08:03 AM) (Source: VzCdbSvc) (EventID: 7) (User: ) Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019) Error: (04/27/2016 01:00:53 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Skype.exe versão 7.22.0.109 deixou de interagir com o Windows e foi fechado. Para verificar se existem mais informações disponíveis sobre o problema, consulte o histórico de problemas no painel de controlo do Centro de Acção. ID do Processo: 1178 Hora de Início: 01d1a0384c642026 Hora de Fim: 10 Caminho da Aplicação: C:\Program Files (x86)\Skype\Phone\Skype.exe ID do Relatório: Error: (04/27/2016 12:52:50 AM) (Source: VzCdbSvc) (EventID: 7) (User: ) Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019) Error: (04/27/2016 12:39:57 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa Bubble Dock Uninstall.exe versão 3.0.705.0 deixou de interagir com o Windows e foi fechado. Para verificar se existem mais informações disponíveis sobre o problema, consulte o histórico de problemas no painel de controlo do Centro de Acção. ID do Processo: 1f04 Hora de Início: 01d1a0363bcdbcad Hora de Fim: 10 Caminho da Aplicação: C:\Users\Thiago\AppData\Local\Temp\274201603815\Bubble Dock Uninstall.exe ID do Relatório: Error: (04/27/2016 12:31:45 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome da aplicação com falha: IEXPLORE.EXE, versão: 9.0.8112.16476, carimbo de data/hora: 0x5126e7ac Nome do módulo com falha: esgjkh.dll_unloaded, versão: 0.0.0.0, carimbo de data/hora: 0x571f84fc Código de excepção: 0xc0000005 Desvio de falha: 0x6ed05bba ID do processo com falha: 0xf0c Data/hora de início da aplicação com falha: 0xIEXPLORE.EXE0 Caminho da aplicação com falha: IEXPLORE.EXE1 Caminho do módulo com falha: IEXPLORE.EXE2 ID do Relatório: IEXPLORE.EXE3 Error: (04/27/2016 12:15:12 AM) (Source: VzCdbSvc) (EventID: 7) (User: ) Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019) Error: (04/26/2016 11:31:11 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa iexplore.exe versão 9.0.8112.16476 deixou de interagir com o Windows e foi fechado. Para verificar se existem mais informações disponíveis sobre o problema, consulte o histórico de problemas no painel de controlo do Centro de Acção. ID do Processo: 1044 Hora de Início: 01d1a02caa07c1ef Hora de Fim: 122 Caminho da Aplicação: C:\Program Files\Internet Explorer\iexplore.exe ID do Relatório: Error: (04/26/2016 11:29:46 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa iexplore.exe versão 9.0.8112.16476 deixou de interagir com o Windows e foi fechado. Para verificar se existem mais informações disponíveis sobre o problema, consulte o histórico de problemas no painel de controlo do Centro de Acção. ID do Processo: 1a10 Hora de Início: 01d1a02bffc1500b Hora de Fim: 27 Caminho da Aplicação: C:\Program Files\Internet Explorer\iexplore.exe ID do Relatório: Error: (04/26/2016 11:09:34 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa nsk72B4.tmp versão 0.0.0.0 deixou de interagir com o Windows e foi fechado. Para verificar se existem mais informações disponíveis sobre o problema, consulte o histórico de problemas no painel de controlo do Centro de Acção. ID do Processo: c6c Hora de Início: 01d1a02907b118a4 Hora de Fim: 28 Caminho da Aplicação: C:\Users\Thiago\AppData\Local\Temp\nsk72B4.tmp ID do Relatório: Error: (04/26/2016 11:05:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Falha nos Serviços de Criptografia ao processar a chamada OnIdentity() no Objecto Escritor de Sistema. Details: AddLegacyDriverFiles: Unable to back up image of binary bsdpr64 service. System Error: Acesso negado. . System errors: ============= Error: (04/27/2016 01:22:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:22:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:21:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:21:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:20:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:20:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:19:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:19:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:18:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 Error: (04/27/2016 01:18:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Instalador de Módulos do Windows terminou com o seguinte erro: %%126 ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU P7450 @ 2.13GHz Percentage of memory in use: 53% Total physical RAM: 4063.03 MB Available physical RAM: 1885.24 MB Total Virtual: 8124.24 MB Available Virtual: 5423.75 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:285.27 GB) (Free:208.84 GB) NTFS Drive f: (Cliente Thiago) (CDROM) (Total:0.04 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ==================== End of Addition.txt ============================