Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 01-03-2017 01
Executado por ITACHI (02-03-2017 07:56:57)
Executando a partir de C:\Users\ITACHI\Downloads
Microsoft Windows 7 Ultimate (X86) (2016-12-11 14:04:44)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-545558114-3859491095-1493294545-500 - Administrator - Disabled)
Convidado (S-1-5-21-545558114-3859491095-1493294545-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-545558114-3859491095-1493294545-1002 - Limited - Enabled)
ITACHI (S-1-5-21-545558114-3859491095-1493294545-1001 - Administrator - Enabled) => C:\Users\ITACHI
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-545558114-3859491095-1493294545-1001\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Reader XI (11.0.19) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.318.0 - AVAST Software)
Bandicam (HKLM\...\Bandicam) (Version: 2.1.2.739 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
Camtasia Studio 8 (HKLM\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Clownfish for Skype (HKLM\...\Clownfish) (Version: - )
Cracklock 3.9.44 (HKLM\...\Cracklock_is1) (Version: 3.9.44 - William Blum)
DeepSound 2.0 (HKLM\...\{805FED7C-06CB-4E90-BE39-490044BD80BB}) (Version: 2.0.0 - Jpinsoft)
Discord (HKU\S-1-5-21-545558114-3859491095-1493294545-1001\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
Facebook Gameroom 1.2.1.5 (HKLM\...\{61373D8E-915C-49C2-B9B9-1834EBD9B64B}) (Version: 1.2.1.5 - Facebook)
GenArts Sapphire Plug-ins 6.13 for After Effects and Compatible (HKLM\...\GenArts Sapphire AE_is1) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KFSensor Evaluation (HKLM\...\{0E71AB4C-8BC5-434B-94D7-D4DEDA3DFBCE}) (Version: 5.2.4.0 - KeyFocus Ltd.)
K-Lite Mega Codec Pack 12.9.0 (HKLM\...\KLiteCodecPack_is1) (Version: 12.9.0 - KLCP)
Lightshot-5.4.0.1 (HKLM\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains)
MEGAsync (HKLM\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Small Basic v1.2 (HKLM\...\{7AAA27E4-CDB3-49C0-AA2D-41827C001BA3}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Studio Platinum 12.0 (HKLM\...\{D112D601-C0E2-11E1-AAB9-F04DA23A5C58}) (Version: 12.0.333 - Sony)
Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSI Afterburner 2.0.0 (HKLM\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
MTA:SA v1.5.3 (HKLM\...\MTA:SA 1.5) (Version: v1.5.3 - Multi Theft Auto)
Nmap 7.40 (HKLM\...\Nmap) (Version: 7.40 - )
Npcap 0.78 r5 (HKLM\...\NpcapInst) (Version: 0.78 r5 - Nmap Project)
NVIDIA Driver de áudio HD 1.1.9.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.9.0 - NVIDIA Corporation)
NVIDIA Driver de gráficos 261.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 261.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 261.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 261.01 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Painel de controle da NVIDIA 261.01 (Version: 261.01 - NVIDIA Corporation) Hidden
PureVPN (HKLM\...\PureVPN_is1) (Version: 5.17.0.0 - PureVPN)
PuTTY (HKLM\...\{ED9EF59B-0799-428E-823D-6D2B7B4FE2E0}) (Version: 0.67.0.0 - Simon Tatham)
Python 2.7.12 (HKLM\...\{9DA28CE5-0AA5-429E-86D8-686ED898C665}) (Version: 2.7.12150 - Python Software Foundation)
Service Pack 1 for SQL Server 2008 (KB968369) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Skype™ 7.33 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
Technitium MAC Address Changer v6.0 (HKLM\...\TMACv6.0) (Version: 6.0 - Technitium)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VMware Workstation (HKLM\...\VMware_Workstation) (Version: 9.0.4 - VMware, Inc)
VMware Workstation (Version: 9.0.4 - VMware, Inc.) Hidden
WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wireshark 2.2.4 (32-bit) (HKLM\...\Wireshark) (Version: 2.2.4 - The Wireshark developer community, hxxps://www.wireshark.org)
Wondershare Filmora(Build 7.8.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {1EC3381D-59B5-4E99-BD0F-891F8B070E54} - System32\Tasks\{DDC47955-ABBD-4B93-A08D-026B6B7B2FC2} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {234A9B59-89C5-4C1D-9680-A30CB2D904FE} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-10-31] (AVAST Software)
Task: {2E3604F7-843D-45A7-936C-0EDC603086C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.)
Task: {33A22D57-AC34-4DD5-A66E-7B0617AAFEDB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {519612C5-CC8D-4257-9217-6F12DB92C8E9} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2016-07-11] ()
Task: {5670CEE0-23FA-4590-A92D-EE2651A1C38D} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-02-01] ()
Task: {64E73368-B62C-4FA0-BD3B-0415B7939D73} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {9A342276-B7FC-4DFA-8BD3-6463F898AC5C} - System32\Tasks\{FD8ACB28-2203-4911-9586-8AE87DC4D82C} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {9AAC6DCB-B849-400E-A4C6-5732F0AA8D7E} - System32\Tasks\{7838C85B-5797-4CE0-96BA-BA9CECCA2011} => pcalua.exe -a C:\Users\ITACHI\Downloads\VMware-player.exe -d C:\Users\ITACHI\Downloads
Task: {A58E71AD-9164-4549-8469-F81D8006E7AD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {C0A957D2-1691-4001-91E1-A8AC031939D2} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {C8D08DF6-8A75-4529-BD7E-EE7CB77A39F8} - System32\Tasks\{F48AD990-12CC-4404-AE8C-51BD0AF0BBD3} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.28.64.101/pt/go/help.faq.installer?LastError=1618
Task: {E27A1A8A-2F58-442F-A97B-18BFD76BD34D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.)
Task: {E9536E6D-3BFD-475D-838D-42862BA64DF2} - System32\Tasks\{838328AE-1265-4D78-81D2-1A58F3EB128F} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {EC62112F-77B4-4D96-BAC1-730C58EBD424} - System32\Tasks\update-S-1-5-21-545558114-3859491095-1493294545-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2016-07-11] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\update-S-1-5-21-545558114-3859491095-1493294545-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2014-07-02 00:09 - 2014-07-02 00:09 - 01261272 _____ () C:\Program Files\VMware\VMware Workstation\libxml2.dll
2016-10-31 16:43 - 2016-10-31 16:43 - 00564736 _____ () C:\Users\ITACHI\AppData\Local\MEGAsync\ShellExtX32.dll
2017-03-01 22:38 - 2016-10-31 16:02 - 38907296 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2016-01-06 13:41 - 2016-01-06 13:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2017-02-05 19:29 - 2017-02-01 06:01 - 01870168 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-05 19:29 - 2017-02-01 06:01 - 00085848 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libegl.dll
2017-03-02 06:45 - 2016-12-20 13:16 - 04838400 _____ () C:\Program Files\PureVPN\vpnclient.exe
2017-03-02 00:09 - 2017-02-25 18:52 - 07919904 _____ () C:\Program Files\PureVPN\purevpn.exe
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [432]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários:NT2 [432]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [432]
AlternateDataStreams: C:\ProgramData\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\ProgramData\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432]
AlternateDataStreams: C:\Users\ITACHI\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\Users\ITACHI\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\Users\ITACHI\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\ITACHI\AppData\Roaming:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\Application Data:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\Application Data:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\MTA San Andreas All:NT2 [432]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2016-12-12 15:12 - 00000913 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-545558114-3859491095-1493294545-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ITACHI\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^Users^ITACHI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk => C:\Windows\pss\Facebook Gameroom.lnk.Startup
MSCONFIG\startupfolder: C:^Users^ITACHI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\Bluestacks\HD-Agent.exe
MSCONFIG\startupreg: Clownfish => "C:\Program Files\Clownfish\Clownfish.exe"
MSCONFIG\startupreg: Discord => C:\Users\ITACHI\AppData\Local\Discord\app-0.0.296\Discord.exe
MSCONFIG\startupreg: KFSensor => C:\Program Files\KeyFocus\KFSensor\bin\kfsensmonitor.exe -s
MSCONFIG\startupreg: uTorrent => "C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{FB3A417E-B09D-4E1F-BE59-5645336C2D85}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{515A4CE4-7A6B-4D4D-9CAD-89FF94474069}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{454C9BA2-ADFE-4759-955C-BEBD6783C581}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{BC3689B9-3180-47BA-AE9C-7E87525E6989}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{44E912BE-BCC7-42D9-91ED-3937D7ECFEA5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{1EB2E06A-E9DB-45D4-94CA-5F60C38B5831}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8D92B401-A3AF-4F8A-97D3-42654BEE4C1C}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D320CB50-F325-4924-A3ED-FE122FE34E06}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A2796DA0-616F-40FA-AD08-73D389C4A555}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{42FFE39F-CFA5-4699-9040-ED411D0B5413}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BCCCAB84-3849-4ED6-A928-B092B56A2E8A}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1F03BD41-8870-4FEB-99FE-436B80577E1F}] => (Allow) LPort=8317
FirewallRules: [{CF10C507-71F4-49D2-9FF7-D3129017DB47}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{39C59ECA-6CBD-49DA-BDC4-FA414BF92148}C:\program files\nmap\nmap.exe] => (Allow) C:\program files\nmap\nmap.exe
FirewallRules: [UDP Query User{E355D694-1687-44C5-83A8-C1E2D5CD5C9D}C:\program files\nmap\nmap.exe] => (Allow) C:\program files\nmap\nmap.exe
FirewallRules: [{5B695A9C-C5DC-4AA4-9839-2198518914BD}] => (Block) C:\program files\nmap\nmap.exe
FirewallRules: [{885222F8-0A23-4321-AF19-0C0D4885E765}] => (Block) C:\program files\nmap\nmap.exe
FirewallRules: [{824BE30B-24CC-4E19-8D48-FB61B129125E}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{CF2B3048-8F71-4686-A569-ABC874B4B127}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{8A2259F6-419F-42A9-8121-482BDCF6EAC3}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{F04FAB9A-9CE7-4251-9B37-BE0864CB9605}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{A63AC4AF-E770-4345-8BBE-322EF633BEE3}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{5E711896-2A73-4046-AD80-6B72EC3278A1}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{4BAE9A07-B124-4349-AE6F-602072D73A39}] => (Allow) C:\Program Files\PureVPN\vpnclient.exe
FirewallRules: [{029D8DE7-4C60-4562-B4AA-C89CF1EBF214}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
==================== Pontos de Restauração =========================
27-02-2017 03:00:17 Windows Update
27-02-2017 06:25:45 Windows Update
27-02-2017 16:08:08 Installed DeepSound 2.0
01-03-2017 08:59:11 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
01-03-2017 22:38:46 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 00:11:06 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 00:12:04 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
02-03-2017 06:45:57 Instalação de Pacote de Driver de Dispositivo: PureVPN Adaptadores de rede
02-03-2017 06:46:43 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 07:08:59 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
02-03-2017 07:28:25 Removed Skype™ 7.33
02-03-2017 07:33:38 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Npcap Loopback Adapter
Description: Microsoft Loopback Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: msloop
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (03/02/2017 07:25:50 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={12448751-926A-4B76-8C99-F557808163B0}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 07:25:10 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={40CD7E8A-354D-4E43-9372-C5093F4779D8}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 07:19:46 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={F903E74D-9048-4B93-ADCB-40CE8FF8B85B}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 619.
Error: (03/02/2017 07:19:08 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={B4EF793E-726B-493C-875D-89305E5220F4}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 06:55:11 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Falha ao criar ponto de restauração (Processo = C:\Users\ITACHI\AppData\Local\Temp\vc_redist.x86.exe /install /quiet /norestart; Descrição = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215; Erro = 0x80070514).
Error: (03/02/2017 12:35:24 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={C030B87C-4822-42F1-9FCF-C6E2E5A3312E}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:33:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={7CAB7162-2930-423C-B768-5C8AC6943536}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:30:10 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={C85EADE5-57C1-44CC-970A-7402B5093B64}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:28:52 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={D6BC1634-50C6-4618-B0E1-E464235AA1B7}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:27:42 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={D1EA3500-148B-49D3-8560-871AD67CEE56}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Erros de Sistema:
=============
Error: (03/02/2017 06:37:54 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
cdrom
VBoxNetAdp
Error: (03/02/2017 06:37:52 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço KFSensor suspenso ao iniciar.
Error: (03/02/2017 06:35:47 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description: Alguns recursos de gerenciamento do consumo de energia em desempenho do processador foram desabilitados devido a um problema de firmware conhecido. Verifique com o fabricante do computador se há um firmware atualizado.
Error: (03/02/2017 02:14:40 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: O servidor {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} não se registrou com o DCOM dentro do tempo limite requerido.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 107.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4106) (User: AUTORIDADE NT)
Description: Uma solicitação de conexão SSL 3.0 foi recebida de um aplicativo cliente remoto, mas o servidor não oferece suporte aos pacotes de codificação aos quais o aplicativo cliente oferece. Falha na solicitação de conexão SSL.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 107.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4106) (User: AUTORIDADE NT)
Description: Uma solicitação de conexão SSL 3.0 foi recebida de um aplicativo cliente remoto, mas o servidor não oferece suporte aos pacotes de codificação aos quais o aplicativo cliente oferece. Falha na solicitação de conexão SSL.
Error: (03/01/2017 11:08:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswHwid devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (03/01/2017 10:38:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswHwid devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
==================== Informações da Memória ===========================
Processador: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Percentagem de memória em uso: 68%
RAM física total: 2559.3 MB
RAM física disponível: 813.33 MB
Virtual Total: 5114.83 MB
Virtual disponível: 2931.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.51 GB) (Free:74.32 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 114.5 GB) (Disk ID: 2670F439)
Partition 1: (Active) - (Size=109.8 GB) - (Type=83)
Partition 2: (Not Active) - (Size=4.7 GB) - (Type=05)
========================================================
Disk: 1 (Size: 74.5 GB) (Disk ID: 6BF7EE2C)
Partition 1: (Active) - (Size=243 MB) - (Type=83)
Partition 2: (Not Active) - (Size=74.3 GB) - (Type=05)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: E535E535)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fim de Addition.txt ============================
Executado por ITACHI (02-03-2017 07:56:57)
Executando a partir de C:\Users\ITACHI\Downloads
Microsoft Windows 7 Ultimate (X86) (2016-12-11 14:04:44)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-545558114-3859491095-1493294545-500 - Administrator - Disabled)
Convidado (S-1-5-21-545558114-3859491095-1493294545-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-545558114-3859491095-1493294545-1002 - Limited - Enabled)
ITACHI (S-1-5-21-545558114-3859491095-1493294545-1001 - Administrator - Enabled) => C:\Users\ITACHI
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-545558114-3859491095-1493294545-1001\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Reader XI (11.0.19) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.318.0 - AVAST Software)
Bandicam (HKLM\...\Bandicam) (Version: 2.1.2.739 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
Camtasia Studio 8 (HKLM\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Clownfish for Skype (HKLM\...\Clownfish) (Version: - )
Cracklock 3.9.44 (HKLM\...\Cracklock_is1) (Version: 3.9.44 - William Blum)
DeepSound 2.0 (HKLM\...\{805FED7C-06CB-4E90-BE39-490044BD80BB}) (Version: 2.0.0 - Jpinsoft)
Discord (HKU\S-1-5-21-545558114-3859491095-1493294545-1001\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
Facebook Gameroom 1.2.1.5 (HKLM\...\{61373D8E-915C-49C2-B9B9-1834EBD9B64B}) (Version: 1.2.1.5 - Facebook)
GenArts Sapphire Plug-ins 6.13 for After Effects and Compatible (HKLM\...\GenArts Sapphire AE_is1) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KFSensor Evaluation (HKLM\...\{0E71AB4C-8BC5-434B-94D7-D4DEDA3DFBCE}) (Version: 5.2.4.0 - KeyFocus Ltd.)
K-Lite Mega Codec Pack 12.9.0 (HKLM\...\KLiteCodecPack_is1) (Version: 12.9.0 - KLCP)
Lightshot-5.4.0.1 (HKLM\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains)
MEGAsync (HKLM\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Small Basic v1.2 (HKLM\...\{7AAA27E4-CDB3-49C0-AA2D-41827C001BA3}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Studio Platinum 12.0 (HKLM\...\{D112D601-C0E2-11E1-AAB9-F04DA23A5C58}) (Version: 12.0.333 - Sony)
Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSI Afterburner 2.0.0 (HKLM\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
MTA:SA v1.5.3 (HKLM\...\MTA:SA 1.5) (Version: v1.5.3 - Multi Theft Auto)
Nmap 7.40 (HKLM\...\Nmap) (Version: 7.40 - )
Npcap 0.78 r5 (HKLM\...\NpcapInst) (Version: 0.78 r5 - Nmap Project)
NVIDIA Driver de áudio HD 1.1.9.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.9.0 - NVIDIA Corporation)
NVIDIA Driver de gráficos 261.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 261.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 261.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 261.01 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Painel de controle da NVIDIA 261.01 (Version: 261.01 - NVIDIA Corporation) Hidden
PureVPN (HKLM\...\PureVPN_is1) (Version: 5.17.0.0 - PureVPN)
PuTTY (HKLM\...\{ED9EF59B-0799-428E-823D-6D2B7B4FE2E0}) (Version: 0.67.0.0 - Simon Tatham)
Python 2.7.12 (HKLM\...\{9DA28CE5-0AA5-429E-86D8-686ED898C665}) (Version: 2.7.12150 - Python Software Foundation)
Service Pack 1 for SQL Server 2008 (KB968369) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Skype™ 7.33 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
Technitium MAC Address Changer v6.0 (HKLM\...\TMACv6.0) (Version: 6.0 - Technitium)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VMware Workstation (HKLM\...\VMware_Workstation) (Version: 9.0.4 - VMware, Inc)
VMware Workstation (Version: 9.0.4 - VMware, Inc.) Hidden
WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wireshark 2.2.4 (32-bit) (HKLM\...\Wireshark) (Version: 2.2.4 - The Wireshark developer community, hxxps://www.wireshark.org)
Wondershare Filmora(Build 7.8.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {1EC3381D-59B5-4E99-BD0F-891F8B070E54} - System32\Tasks\{DDC47955-ABBD-4B93-A08D-026B6B7B2FC2} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {234A9B59-89C5-4C1D-9680-A30CB2D904FE} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-10-31] (AVAST Software)
Task: {2E3604F7-843D-45A7-936C-0EDC603086C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.)
Task: {33A22D57-AC34-4DD5-A66E-7B0617AAFEDB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {519612C5-CC8D-4257-9217-6F12DB92C8E9} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2016-07-11] ()
Task: {5670CEE0-23FA-4590-A92D-EE2651A1C38D} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-02-01] ()
Task: {64E73368-B62C-4FA0-BD3B-0415B7939D73} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {9A342276-B7FC-4DFA-8BD3-6463F898AC5C} - System32\Tasks\{FD8ACB28-2203-4911-9586-8AE87DC4D82C} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {9AAC6DCB-B849-400E-A4C6-5732F0AA8D7E} - System32\Tasks\{7838C85B-5797-4CE0-96BA-BA9CECCA2011} => pcalua.exe -a C:\Users\ITACHI\Downloads\VMware-player.exe -d C:\Users\ITACHI\Downloads
Task: {A58E71AD-9164-4549-8469-F81D8006E7AD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {C0A957D2-1691-4001-91E1-A8AC031939D2} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {C8D08DF6-8A75-4529-BD7E-EE7CB77A39F8} - System32\Tasks\{F48AD990-12CC-4404-AE8C-51BD0AF0BBD3} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.28.64.101/pt/go/help.faq.installer?LastError=1618
Task: {E27A1A8A-2F58-442F-A97B-18BFD76BD34D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.)
Task: {E9536E6D-3BFD-475D-838D-42862BA64DF2} - System32\Tasks\{838328AE-1265-4D78-81D2-1A58F3EB128F} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-14] (Skype Technologies S.A.)
Task: {EC62112F-77B4-4D96-BAC1-730C58EBD424} - System32\Tasks\update-S-1-5-21-545558114-3859491095-1493294545-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2016-07-11] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\update-S-1-5-21-545558114-3859491095-1493294545-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2014-07-02 00:09 - 2014-07-02 00:09 - 01261272 _____ () C:\Program Files\VMware\VMware Workstation\libxml2.dll
2016-10-31 16:43 - 2016-10-31 16:43 - 00564736 _____ () C:\Users\ITACHI\AppData\Local\MEGAsync\ShellExtX32.dll
2017-03-01 22:38 - 2016-10-31 16:02 - 38907296 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2016-01-06 13:41 - 2016-01-06 13:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2017-02-05 19:29 - 2017-02-01 06:01 - 01870168 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-05 19:29 - 2017-02-01 06:01 - 00085848 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libegl.dll
2017-03-02 06:45 - 2016-12-20 13:16 - 04838400 _____ () C:\Program Files\PureVPN\vpnclient.exe
2017-03-02 00:09 - 2017-02-25 18:52 - 07919904 _____ () C:\Program Files\PureVPN\purevpn.exe
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [432]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários:NT2 [432]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [432]
AlternateDataStreams: C:\ProgramData\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\ProgramData\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432]
AlternateDataStreams: C:\Users\ITACHI\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\Users\ITACHI\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\Users\ITACHI\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\ITACHI\AppData\Roaming:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\Application Data:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\Application Data:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\Dados de aplicativos:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\Dados de aplicativos:NT2 [432]
AlternateDataStreams: C:\Users\Todos os Usuários\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\Users\Todos os Usuários\MTA San Andreas All:NT2 [432]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2016-12-12 15:12 - 00000913 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-545558114-3859491095-1493294545-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ITACHI\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^Users^ITACHI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk => C:\Windows\pss\Facebook Gameroom.lnk.Startup
MSCONFIG\startupfolder: C:^Users^ITACHI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\Bluestacks\HD-Agent.exe
MSCONFIG\startupreg: Clownfish => "C:\Program Files\Clownfish\Clownfish.exe"
MSCONFIG\startupreg: Discord => C:\Users\ITACHI\AppData\Local\Discord\app-0.0.296\Discord.exe
MSCONFIG\startupreg: KFSensor => C:\Program Files\KeyFocus\KFSensor\bin\kfsensmonitor.exe -s
MSCONFIG\startupreg: uTorrent => "C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{FB3A417E-B09D-4E1F-BE59-5645336C2D85}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{515A4CE4-7A6B-4D4D-9CAD-89FF94474069}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{454C9BA2-ADFE-4759-955C-BEBD6783C581}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{BC3689B9-3180-47BA-AE9C-7E87525E6989}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{44E912BE-BCC7-42D9-91ED-3937D7ECFEA5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{1EB2E06A-E9DB-45D4-94CA-5F60C38B5831}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8D92B401-A3AF-4F8A-97D3-42654BEE4C1C}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D320CB50-F325-4924-A3ED-FE122FE34E06}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A2796DA0-616F-40FA-AD08-73D389C4A555}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{42FFE39F-CFA5-4699-9040-ED411D0B5413}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BCCCAB84-3849-4ED6-A928-B092B56A2E8A}] => (Allow) C:\Users\ITACHI\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1F03BD41-8870-4FEB-99FE-436B80577E1F}] => (Allow) LPort=8317
FirewallRules: [{CF10C507-71F4-49D2-9FF7-D3129017DB47}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{39C59ECA-6CBD-49DA-BDC4-FA414BF92148}C:\program files\nmap\nmap.exe] => (Allow) C:\program files\nmap\nmap.exe
FirewallRules: [UDP Query User{E355D694-1687-44C5-83A8-C1E2D5CD5C9D}C:\program files\nmap\nmap.exe] => (Allow) C:\program files\nmap\nmap.exe
FirewallRules: [{5B695A9C-C5DC-4AA4-9839-2198518914BD}] => (Block) C:\program files\nmap\nmap.exe
FirewallRules: [{885222F8-0A23-4321-AF19-0C0D4885E765}] => (Block) C:\program files\nmap\nmap.exe
FirewallRules: [{824BE30B-24CC-4E19-8D48-FB61B129125E}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{CF2B3048-8F71-4686-A569-ABC874B4B127}] => (Allow) C:\ongame\Pointblank\PointBlank.exe
FirewallRules: [{8A2259F6-419F-42A9-8121-482BDCF6EAC3}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{F04FAB9A-9CE7-4251-9B37-BE0864CB9605}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{A63AC4AF-E770-4345-8BBE-322EF633BEE3}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{5E711896-2A73-4046-AD80-6B72EC3278A1}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{4BAE9A07-B124-4349-AE6F-602072D73A39}] => (Allow) C:\Program Files\PureVPN\vpnclient.exe
FirewallRules: [{029D8DE7-4C60-4562-B4AA-C89CF1EBF214}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
==================== Pontos de Restauração =========================
27-02-2017 03:00:17 Windows Update
27-02-2017 06:25:45 Windows Update
27-02-2017 16:08:08 Installed DeepSound 2.0
01-03-2017 08:59:11 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
01-03-2017 22:38:46 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 00:11:06 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 00:12:04 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
02-03-2017 06:45:57 Instalação de Pacote de Driver de Dispositivo: PureVPN Adaptadores de rede
02-03-2017 06:46:43 Instalação de Pacote de Driver de Dispositivo: TAP-Windows Provider V9 Adaptadores de rede
02-03-2017 07:08:59 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
02-03-2017 07:28:25 Removed Skype™ 7.33
02-03-2017 07:33:38 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Npcap Loopback Adapter
Description: Microsoft Loopback Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: msloop
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (03/02/2017 07:25:50 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={12448751-926A-4B76-8C99-F557808163B0}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 07:25:10 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={40CD7E8A-354D-4E43-9372-C5093F4779D8}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 07:19:46 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={F903E74D-9048-4B93-ADCB-40CE8FF8B85B}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 619.
Error: (03/02/2017 07:19:08 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={B4EF793E-726B-493C-875D-89305E5220F4}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 806.
Error: (03/02/2017 06:55:11 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Falha ao criar ponto de restauração (Processo = C:\Users\ITACHI\AppData\Local\Temp\vc_redist.x86.exe /install /quiet /norestart; Descrição = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215; Erro = 0x80070514).
Error: (03/02/2017 12:35:24 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={C030B87C-4822-42F1-9FCF-C6E2E5A3312E}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:33:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={7CAB7162-2930-423C-B768-5C8AC6943536}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:30:10 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={C85EADE5-57C1-44CC-970A-7402B5093B64}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:28:52 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={D6BC1634-50C6-4618-B0E1-E464235AA1B7}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Error: (03/02/2017 12:27:42 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={D1EA3500-148B-49D3-8560-871AD67CEE56}: o usuário ITACHI-MODZ\ITACHI discou uma conexão de nome PureVPN que falhou. O código do erro retornado na falha é 0.
Erros de Sistema:
=============
Error: (03/02/2017 06:37:54 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
cdrom
VBoxNetAdp
Error: (03/02/2017 06:37:52 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Serviço KFSensor suspenso ao iniciar.
Error: (03/02/2017 06:35:47 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description: Alguns recursos de gerenciamento do consumo de energia em desempenho do processador foram desabilitados devido a um problema de firmware conhecido. Verifique com o fabricante do computador se há um firmware atualizado.
Error: (03/02/2017 02:14:40 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: O servidor {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} não se registrou com o DCOM dentro do tempo limite requerido.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 107.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4106) (User: AUTORIDADE NT)
Description: Uma solicitação de conexão SSL 3.0 foi recebida de um aplicativo cliente remoto, mas o servidor não oferece suporte aos pacotes de codificação aos quais o aplicativo cliente oferece. Falha na solicitação de conexão SSL.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi gerado: 40. O estado do erro interno é 107.
Error: (03/02/2017 01:16:35 AM) (Source: Schannel) (EventID: 4106) (User: AUTORIDADE NT)
Description: Uma solicitação de conexão SSL 3.0 foi recebida de um aplicativo cliente remoto, mas o servidor não oferece suporte aos pacotes de codificação aos quais o aplicativo cliente oferece. Falha na solicitação de conexão SSL.
Error: (03/01/2017 11:08:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswHwid devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (03/01/2017 10:38:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço aswHwid devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
==================== Informações da Memória ===========================
Processador: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Percentagem de memória em uso: 68%
RAM física total: 2559.3 MB
RAM física disponível: 813.33 MB
Virtual Total: 5114.83 MB
Virtual disponível: 2931.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.51 GB) (Free:74.32 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 114.5 GB) (Disk ID: 2670F439)
Partition 1: (Active) - (Size=109.8 GB) - (Type=83)
Partition 2: (Not Active) - (Size=4.7 GB) - (Type=05)
========================================================
Disk: 1 (Size: 74.5 GB) (Disk ID: 6BF7EE2C)
Partition 1: (Active) - (Size=243 MB) - (Type=83)
Partition 2: (Not Active) - (Size=74.3 GB) - (Type=05)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: E535E535)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fim de Addition.txt ============================