cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-03-2015 01
Ran by NORMA at 2015-03-08 11:30:15
Running from C:\Users\NORMA\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (Version: - Microsoft) Hidden
Adobe Reader XI (11.0.09) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 9.21 (HKLM\...\Ashampoo Burning Studio 9_is1) (Version: 9.2.1 - ashampoo GmbH & Co. KG)
Auslogics Disk Defrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: version 3.4 - Auslogics Software Pty Ltd)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Dropbox (HKU\S-1-5-21-2365793085-629134142-1384772975-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.76 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 76 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217076FF}) (Version: 7.0.760 - Oracle)
Malwarebytes Anti-Malware versão 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Media Player Codec Pack 4.3.4 (HKLM\...\Media Player - Codec Pack) (Version: 4.3.4 - Media Player Codec Pack)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - Portuguese/Português (Brasil) (HKLM\...\OMUI.pt-br) (Version: 12.0.4518.1019 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 35.0.1 (x86 pt-BR)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Spyware Terminator 2012 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.0.82 - Crawler, LLC)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2365793085-629134142-1384772975-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\NORMA\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2365793085-629134142-1384772975-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\NORMA\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2365793085-629134142-1384772975-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\NORMA\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2365793085-629134142-1384772975-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\NORMA\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

07-11-2014 23:55:27 Windows Update
11-11-2014 10:16:30 Windows Update
13-11-2014 00:22:44 Windows Update
15-11-2014 21:44:43 F-Secure malware removal
16-11-2014 21:17:45 avast! antivirus system restore point
17-11-2014 04:48:24 Installed Java 7 Update 71
18-11-2014 11:55:37 Windows Update
19-11-2014 17:02:46 Windows Update
25-11-2014 16:58:08 Windows Update
02-12-2014 21:29:22 Windows Update
09-12-2014 09:02:37 Windows Update
11-12-2014 02:00:54 Windows Update
12-12-2014 16:31:35 Windows Update
16-12-2014 10:16:28 Windows Update
18-12-2014 16:00:26 Windows Update
23-12-2014 09:38:40 Windows Update
26-12-2014 09:42:44 Windows Update
30-12-2014 09:59:16 Windows Update
06-01-2015 10:17:28 Windows Update
13-01-2015 15:48:21 Ponto de Verificação Agendado
13-01-2015 19:06:33 Windows Update
13-01-2015 23:06:11 Windows Update
20-01-2015 16:25:36 Windows Update
27-01-2015 19:58:56 Windows Update
03-02-2015 12:57:47 Windows Update
10-02-2015 10:41:12 Windows Update
11-02-2015 16:11:37 Windows Update
12-02-2015 15:27:42 Windows Update
17-02-2015 20:22:34 Windows Update
20-02-2015 20:56:52 Windows Update
24-02-2015 19:19:46 Windows Update
25-02-2015 00:33:28 Windows Update
26-02-2015 00:20:27 Windows Update
03-03-2015 10:55:05 Windows Update
03-03-2015 12:34:49 Installed Windows Movie Maker 2.6
04-03-2015 09:57:08 avast! antivirus system restore point
04-03-2015 10:03:08 Windows Update
04-03-2015 10:53:21 Operação de restauração
04-03-2015 15:52:05 Windows Update
05-03-2015 17:17:56 zoek.exe restore point
07-03-2015 17:31:30 ZHPFix Restore System Point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2009-06-10 18:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {3519D1A0-83FE-4670-8094-3F8697C63F3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {409D5229-FC67-49B5-9EF6-FCB2A6F5EA8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {D814B2F2-30D4-4C39-88D9-0DDBD075061A} - \avastBCLRestartS-1-5-21-2365793085-629134142-1384772975-1000 No Task File <==== ATTENTION
Task: {D94E1E71-2738-44E4-AB7B-B3F1AE42B39A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E17DC227-015D-4DBD-90A6-DFD5CDF11C63} - \avast! Emergency Update No Task File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-08 11:09 - 2015-03-08 11:09 - 02919424 _____ () C:\Program Files\AVAST Software\Avast\defs\15030800\algo.dll
2014-10-02 11:21 - 2012-08-23 20:07 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2014-11-16 21:21 - 2014-11-16 21:21 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-09-27 23:17 - 2014-09-27 23:17 - 00048744 _____ () C:\Windows\System32\C2MP\UpdateChecker.exe
2012-04-24 20:18 - 2012-04-24 20:18 - 00087912 _____ () C:\Program Files\Safari\Apple Application Support\zlib1.dll
2012-04-24 20:18 - 2012-04-24 20:18 - 01242472 _____ () C:\Program Files\Safari\Apple Application Support\libxml2.dll
2014-10-15 19:02 - 2014-10-15 19:02 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\6db28a56705777a05ce7d52fe5367afb\PSIClient.ni.dll
2014-10-02 11:24 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2365793085-629134142-1384772975-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\NORMA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 208.67.222.222

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrador (S-1-5-21-2365793085-629134142-1384772975-500 - Administrator - Disabled)
Convidado (S-1-5-21-2365793085-629134142-1384772975-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2365793085-629134142-1384772975-1002 - Limited - Enabled)
NORMA (S-1-5-21-2365793085-629134142-1384772975-1000 - Administrator - Enabled) => C:\Users\NORMA

==================== Faulty Device Manager Devices =============

Name: Controlador de barramento SM
Description: Controlador de barramento SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/08/2015 11:27:17 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/08/2015 11:20:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/08/2015 11:16:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/08/2015 11:09:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/07/2015 05:44:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/07/2015 05:31:30 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {c3c7a355-3b74-497e-8cce-194b6e69b308}

Error: (03/07/2015 05:22:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/07/2015 05:10:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/07/2015 09:43:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2015 07:08:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (03/08/2015 11:15:31 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 12291) (User: AUTORIDADE NT)
Description: O SAM não conseguiu iniciar o thread de escuta do TCP/IP ou do SPX/IPX.

Error: (03/08/2015 11:15:28 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Server terminou com o erro:
%%1062

Error: (03/08/2015 11:14:45 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 12291) (User: AUTORIDADE NT)
Description: O SAM não conseguiu iniciar o thread de escuta do TCP/IP ou do SPX/IPX.

Error: (03/07/2015 05:22:32 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 17:20:31 às ‎07/‎03/‎2015 não era esperado.

Error: (03/05/2015 05:37:07 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (03/05/2015 05:37:07 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (03/05/2015 05:37:06 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (03/05/2015 05:37:05 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (03/05/2015 05:37:03 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3250 CPU @ 3.50GHz
Percentage of memory in use: 53%
Total physical RAM: 1935.43 MB
Available physical RAM: 903.44 MB
Total Pagefile: 3870.86 MB
Available Pagefile: 2749.67 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:156.15 GB) (Free:54.59 GB) NTFS
Drive d: () (Fixed) (Total:542.38 GB) (Free:541.6 GB) NTFS
Drive e: (PISCINA_MOR) (CDROM) (Total:0.56 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: D078762B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=156.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=542.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité