cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x86) Version:31-08-2015
Ran by Usuario (2015-08-31 17:18:00)
Running from C:\Users\Usuario\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2741043627-4026230127-4029745268-500 - Administrator - Disabled)
Convidado (S-1-5-21-2741043627-4026230127-4029745268-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2741043627-4026230127-4029745268-1002 - Limited - Enabled)
Usuario (S-1-5-21-2741043627-4026230127-4029745268-1000 - Administrator - Enabled) => C:\Users\Usuario

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Arquivo do WinRAR (HKLM\...\WinRAR archiver) (Version: - )
aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Battery Meter (HKLM\...\InstallShield_{543A4F31-9590-416A-A621-42CEB4C6A694}) (Version: 0.0.0.3C - )
Battery Meter (Version: 0.0.0.3C - ) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
Corel Graphics - Windows Shell Extension (HKLM\...\_{B865FDD4-E96E-4166-BB69-6E8C207E3E29}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - BR (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (HKLM\...\_{C5D9CECB-A66F-473F-B406-5C8C2DCA4DF0}) (Version: 17.0.0.491 - Corel Corporation)
CorelDRAW Graphics Suite X7 (Version: 17.0 - Corel Corporation) Hidden
Dic Michaelis - UOL (HKLM\...\WDIC) (Version: - )
Doro 1.75 (HKLM\...\Doro_is1) (Version: - CompSoft)
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version: - DVD Shrink)
EMSC (Version: 0.0.0.9C - Compal Electronics, Inc.) Hidden
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.0.10.1213 - Foxit Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google Update Helper (Version: 1.3.28.13 - Google Inc.) Hidden
Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Motorola SM56 Speakerphone Modem (HKLM\...\SMSERIAL) (Version: 6.12.25.06 - Motorola Inc)
MPC-HC 1.7.8 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.8 - MPC-HC Team)
MV RegClean 5.9 (HKLM\...\MV RegClean 5.9_is1) (Version: - )
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
PDF Architect 3 (HKLM\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH)
PDF Architect 3 View Module (Version: 3.0.13.22993 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5898 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.51.01 - )
RICOH_Media_Driver_v2.14.18.01 (HKLM\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SiS VGA Utilities (HKLM\...\SiS VGA Utilities) (Version: 5.29 - Silicon Integrated Systems Corporation)
USB2.0 UVC WebCam (HKLM\...\{EA901E9F-6204-4974-8530-CA87F24DA464}) (Version: 6.11.701.002 - D-MAX)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN)
Windows 7 Manager (HKLM\...\{A74F33CB-8C7D-404F-93F5-A63317379BD2}) (Version: 2.0.4 - Yamicsoft)
ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

23-08-2015 19:48:31 Windows Update
25-08-2015 11:05:26 Driver Booster : Adaptador de rede Broadcom 802.11g
25-08-2015 11:29:25 Operação de restauração
27-08-2015 10:42:05 zoek.exe restore point
29-08-2015 11:24:16 JRT Pre-Junkware Removal

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2015-08-29 20:29 - 00000840 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07850895-27F7-4038-925B-01FF3FF4AF13} - System32\Tasks\{D76BBF7F-39CD-4E74-AE0C-93BFA377D6BA} => pcalua.exe -a "C:\Program Files\IObit\Advanced SystemCare 8\SecurityHole_Backup\KB3001652.exe" -d "C:\Program Files\IObit\Advanced SystemCare 8" -c /quiet /norestart
Task: {1049827A-4489-42DF-9B38-DE686E9A4D83} - System32\Tasks\{5DBC89BD-CA2E-4A5F-A015-7790B1205D8F} => Chrome.exe http://ui.skype.com/ui/0/7.7.0.103/pt/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {236AA1B0-5FCB-42B7-9055-A14651D9B938} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf6566503c5b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {36A780BA-2C58-49ED-822A-DE5AB17CAC2C} - System32\Tasks\{94B31A35-61A9-4F4D-8906-07FEFC4CCB31} => pcalua.exe -a "C:\Program Files\IObit\Advanced SystemCare 8\SecurityHole_Backup\KB2565063.exe" -d "C:\Program Files\IObit\Advanced SystemCare 8" -c /quiet /norestart
Task: {51416804-5FB4-4B23-AD8B-49274124CE24} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bcb887f2df93 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {53F07026-2003-4678-B182-1F013FFA34DF} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2741043627-4026230127-4029745268-1000Core => C:\Users\Usuario\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {65C1149A-0119-4403-BBB5-4D04515C84D9} - System32\Tasks\GoogleUpdateTaskMachineCore1d0d5c97f488eb => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {6B333739-0C21-46CB-9852-B7BCFE33BDE9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {6FE0FBBB-76F9-47A2-BD02-95FA8E8EB484} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bcb5e2e9a7f2 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {7B67D197-2350-4D17-BEF7-E8C693ECD5FD} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan
Task: {855F6B56-3145-451F-B6AA-6B926DCC3B3F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {A3250E99-CB5E-4008-A5F6-D52AE202E48C} - \Uninstaller_SkipUac_Usuario -> No File <==== ATTENTION
Task: {C6790A97-7CD2-46B2-BAAA-F5E1AECB67E7} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e3e71e11ea8a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0d5c97f488eb.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e3e71e11ea8a.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-09 20:28 - 2009-08-16 17:06 - 00141312 _____ () C:\Program Files\WinRAR\rarext.dll
2007-04-19 15:21 - 2007-04-19 15:21 - 00266240 _____ () C:\Windows\system32\EMSC.dll
2015-05-08 15:50 - 2015-05-08 15:50 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2015-07-31 09:40 - 2015-08-25 11:38 - 02874656 _____ () C:\Program Files\IObit\LiveUpdate\IObitLauncher.exe
2015-08-13 19:46 - 2014-02-10 11:44 - 04592128 _____ () C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2015-08-13 19:46 - 2014-02-10 11:44 - 00112128 _____ () C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2015-07-29 20:11 - 2009-06-07 06:27 - 00073728 _____ () C:\Program Files\DsNET Corp\aTube Catcher 2.0\vbzlib1.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br

IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 189.38.95.95 - 189.38.95.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Advanced SystemCare 8 => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: DoroServer => C:\Program Files\DoroPDFWriter\DoroServer.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7CB383DE-87E1-4385-8FC7-DEA3A5D532C1}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{5CC3DBD7-D4DA-463C-B45D-9B4F7A94E24C}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{1BA89C0B-E6F9-4813-B8FC-857C4728C08C}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{FABBB210-6C09-40A6-91B8-BDFB1AC78E0F}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDrw.exe
FirewallRules: [{787F0BBD-9F6F-493E-A82D-E21F904110B4}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CorelPP.exe
FirewallRules: [{87B49B06-E1E0-486C-B63E-865E07F2243F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/31/2015 11:31:24 AM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: O backup não foi bem-sucedido. Erro: O sistema não pode encontrar o arquivo especificado. (0x80070002).

Error: (08/31/2015 09:34:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: CorelDRW.exe, versão: 17.0.0.491, carimbo de hora: 0x5323cfe6
Nome do módulo de falhas: CrlFrmWk.dll, versão: 17.0.0.491, carimbo de hora: 0x5323d111
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0007da84
Identificação do processo com falha: 0x2a4
Hora de início do aplicativo com falha: 0xCorelDRW.exe0
Caminho do aplicativo com falha: CorelDRW.exe1
FCaminho do módulo de falhas: CorelDRW.exe2
Identificação do Relatório: CorelDRW.exe3

Error: (08/31/2015 09:34:17 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicativo: CorelDRW.exe
Versão do Framework: v4.0.30319
Descrição: O processo foi terminado devido a uma exceção sem tratamento.
Informações da Exceção: código da exceção c0000005, endereço da exceção 5D8ADA84
Pilha:

Error: (08/31/2015 09:16:21 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2015 11:02:29 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Identificador inválido

Error: (08/29/2015 11:02:28 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Identificador inválido

Error: (08/29/2015 03:47:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: GWXUX.exe, versão: 6.3.9600.17813, carimbo de hora: 0x554a1601
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18869, carimbo de hora: 0x55636303
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00032214
Identificação do processo com falha: 0x400
Hora de início do aplicativo com falha: 0xGWXUX.exe0
Caminho do aplicativo com falha: GWXUX.exe1
FCaminho do módulo de falhas: GWXUX.exe2
Identificação do Relatório: GWXUX.exe3

Error: (08/29/2015 03:14:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2015 11:24:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddCoreCsiFiles : BeginFileEnumeration() failed.

System Error:
Acesso negado.
.

Error: (08/29/2015 11:24:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddCoreCsiFiles : BeginFileEnumeration() failed.

System Error:
Acesso negado.
.


System errors:
=============
Error: (08/31/2015 05:05:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Advanced SystemCare Service 8 foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (08/31/2015 09:17:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Serviço do Google Update (gupdate) devido ao seguinte erro:
%%1053

Error: (08/31/2015 09:17:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Serviço do Google Update (gupdate).

Error: (08/29/2015 03:47:14 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/29/2015 03:47:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço Wlansvc.

Error: (08/29/2015 11:59:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Office Software Protection Platform foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (08/29/2015 11:58:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Serviço de Compartilhamento de Rede do Windows Media Player foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.

Error: (08/29/2015 11:57:29 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Gbp Service foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 1000 milissegundos: Reiniciar o serviço.

Error: (08/29/2015 11:56:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Gbp Service foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 1000 milissegundos: Reiniciar o serviço.

Error: (08/29/2015 11:56:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Advanced SystemCare Service 8 foi encerrado inesperadamente. Isso aconteceu 1 vez(es).


Microsoft Office:
=========================
Error: (08/31/2015 11:31:24 AM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: O sistema não pode encontrar o arquivo especificado. (0x80070002)

Error: (08/31/2015 09:34:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: CorelDRW.exe17.0.0.4915323cfe6CrlFrmWk.dll17.0.0.4915323d111c00000050007da842a401d0e3e9357be450C:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDRW.exeC:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CrlFrmWk.dll987d7267-4fdc-11e5-b2c9-001eec5d7d3e

Error: (08/31/2015 09:34:17 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicativo: CorelDRW.exe
Versão do Framework: v4.0.30319
Descrição: O processo foi terminado devido a uma exceção sem tratamento.
Informações da Exceção: código da exceção c0000005, endereço da exceção 5D8ADA84
Pilha:

Error: (08/31/2015 09:16:21 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2015 11:02:29 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Identificador inválido

Error: (08/29/2015 11:02:28 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Identificador inválido

Error: (08/29/2015 03:47:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.17813554a1601ntdll.dll6.1.7601.1886955636303c00000050003221440001d0e28b2d714050C:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dll6f61c12e-4e7e-11e5-9e8e-001eec5d7d3e

Error: (08/29/2015 03:14:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2015 11:24:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddCoreCsiFiles : BeginFileEnumeration() failed.

System Error:
Acesso negado.

Error: (08/29/2015 11:24:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddCoreCsiFiles : BeginFileEnumeration() failed.

System Error:
Acesso negado.


CodeIntegrity:
===================================
Date: 2015-08-20 13:43:15.611
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-20 13:43:15.283
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-20 13:43:15.017
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-20 13:43:14.267
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appid.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-20 13:43:14.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appid.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-20 13:43:13.626
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appid.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-14 11:57:01.769
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-14 11:57:01.582
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-14 11:57:01.419
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-14 11:57:00.980
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appid.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU T2390 @ 1.86GHz
Percentage of memory in use: 55%
Total physical RAM: 1789.17 MB
Available physical RAM: 795.5 MB
Total Virtual: 3578.34 MB
Available Virtual: 2152.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:82.81 GB) NTFS
Drive e: (HD-EG5) (Fixed) (Total:465.76 GB) (Free:396.66 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 37A2BF8C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BD07A5D0)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité