cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:02-08-2015 01
Ran by Jana (administrator) on JANA-PC (04-08-2015 19:24:23)
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana (Available Profiles: Jana & Convidado)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Português (Brasil)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Essentials\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Nero AG) C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Program Files\Hotkey\PowerBiosServer.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Hotkey\Hotkey.exe
(Dropbox, Inc.) C:\Users\Jana\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1697064 2010-02-11] (Synaptics Incorporated)
HKU\S-1-5-18\...\Run: [MotoCast] => C:\Program Files\Motorola Mobility\MotoCast\MotoLauncher.lnk [1944 2013-03-18] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk [2012-05-27]
ShortcutTarget: Hotkey.lnk -> C:\Program Files\Hotkey\Hotkey.exe ()
Startup: C:\Users\Convidado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\KooBits 4.lnk [2013-03-14]
ShortcutTarget: KooBits 4.lnk -> C:\Program Files\KooBits 4.0\KooBits 4.0.exe (No File)
Startup: C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-07-13]
ShortcutTarget: Dropbox.lnk -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
GroupPolicyScripts: Group Policy detected <======= ATTENTION
GroupPolicyScripts\User: Group Policy detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.br/
HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://br.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000 -> DefaultScope {BC1071B8-DCCC-4DA8-B4D2-ED2700DBE298} URL = http://www.google.com/search?hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000 -> {BC1071B8-DCCC-4DA8-B4D2-ED2700DBE298} URL = http://www.google.com/search?hl=en&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-26] (Oracle Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9F2D5156-C6EE-4973-A77B-6C6F83D3B644}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A9F12E76-4C0B-4278-A8C1-091F399C7BE9}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jana\AppData\Roaming\Mozilla\Firefox\Profiles\30d9cso1.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-17] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2011-07-19] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-06-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll [2013-01-24] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Jana\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-npoctoshape.dll [2013-12-18] (Octoshape ApS)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Jana\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Jana\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @talk.google.com/O1DPlugin -> C:\Users\Jana\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-2879642822-4171143380-2997861222-1000: facebook.com/fbDesktopPlugin -> C:\Users\Jana\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Jana\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Jana\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Jana\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2014-08-15] (Octoshape ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\buscape.xml [2015-05-14]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mercadolivre.xml [2015-05-14]

Chrome:
=======
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-12-24]
CHR Extension: (Talk and Comment for Facebook) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2015-05-17]
CHR Extension: (Overlay Blocker) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdemahcclkobakgfcofpooooicggkabb [2015-05-12]
CHR Extension: (Voice Recognition) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikjmfindklfaonkodbnidahohdfbdhkn [2014-11-01]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-01]
StartMenuInternet: Google Chrome - C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 DeviceMonitorService; C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe [87992 2012-09-07] (Nero AG)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [121144 2013-03-25] (Motorola Mobility LLC)
R2 MsMpSvc; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [17904 2010-03-25] (Microsoft Corporation)
R2 PowerBiosServer; C:\Program Files\Hotkey\PowerBiosServer.exe [32256 2010-03-03] () [File not signed]
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S3 MIRUSB; C:\Windows\System32\Drivers\mirusb.sys [19456 2009-12-07] (M.I.R. s.r.l Medical International Research ) [File not signed]
S3 motandroidusb; C:\Windows\System32\Drivers\motoandroid.sys [25856 2009-07-10] (Motorola)
R1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [151216 2010-03-25] (Microsoft Corporation)
R3 MpNWMon; C:\Windows\System32\DRIVERS\MpNWMon.sys [42368 2010-03-25] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-04 19:24 - 2015-08-04 19:28 - 00014489 _____ C:\Users\Jana\Desktop\FRST.txt
2015-08-04 19:24 - 2015-08-04 19:24 - 00000000 ____D C:\FRST
2015-08-04 19:23 - 2015-08-04 19:22 - 01673728 _____ (Farbar) C:\Users\Jana\Desktop\FRST.exe
2015-08-01 09:23 - 2015-08-01 09:23 - 00000000 ____D C:\Users\Jana\AppData\Local\uTorrent
2015-07-27 18:18 - 2015-07-27 18:18 - 00011755 _____ C:\Users\Jana\Desktop\ZHPFixReport.txt
2015-07-27 18:12 - 2015-07-27 18:12 - 00001806 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2015-07-27 18:12 - 2015-07-27 18:12 - 00000000 ____D C:\Program Files\ZHPFix
2015-07-27 18:11 - 2015-07-27 18:11 - 03522334 _____ (Nicolas Coolman ) C:\Users\Jana\Desktop\ZHPFix.exe
2015-07-27 17:39 - 2015-07-27 17:44 - 00077374 _____ C:\Users\Jana\Desktop\SFTGC.txt
2015-07-27 17:26 - 2015-07-27 17:26 - 01348096 _____ C:\Users\Jana\Desktop\SFTGC.exe
2015-07-27 16:35 - 2015-08-04 19:09 - 00000224 _____ C:\Windows\setupact.log
2015-07-27 16:35 - 2015-07-27 16:35 - 00000000 _____ C:\Windows\setuperr.log
2015-07-25 22:37 - 2015-07-25 22:37 - 00000000 ____D C:\Users\Jana\AppData\Local\CEF
2015-07-24 16:23 - 2015-07-24 16:23 - 00000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-22 19:28 - 2015-07-22 19:28 - 00032479 _____ C:\Users\Jana\Desktop\AdwCleaner[S2].txt
2015-07-22 19:20 - 2015-07-22 19:20 - 00025963 _____ C:\Users\Jana\Desktop\ZHPDiag.txt
2015-07-22 19:17 - 2015-07-27 18:18 - 00000000 ____D C:\Users\Jana\AppData\Roaming\ZHP
2015-07-22 19:17 - 2015-07-27 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-07-22 19:17 - 2015-07-22 19:17 - 00001944 _____ C:\Users\Jana\Desktop\ZHPFix.lnk
2015-07-22 19:17 - 2015-07-22 19:17 - 00001817 _____ C:\Users\Jana\Desktop\ZHPDiag.lnk
2015-07-22 19:17 - 2015-07-22 19:17 - 00000000 ____D C:\Program Files\ZHPDiag
2015-07-22 19:16 - 2015-07-22 19:16 - 06877287 _____ (Nicolas Coolman ) C:\Users\Jana\Desktop\ZHPDiag2-2015.4.6.36.exe
2015-07-22 19:12 - 2015-07-22 19:12 - 00005299 _____ C:\Users\Jana\Desktop\hijackthis.log
2015-07-22 19:11 - 2015-07-22 19:10 - 00388608 _____ (Trend Micro Inc.) C:\Users\Jana\Desktop\HijackThis.exe
2015-07-17 16:35 - 2015-07-17 16:35 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-04 19:27 - 2015-04-20 18:14 - 01441877 _____ C:\Windows\WindowsUpdate.log
2015-08-04 19:23 - 2009-07-14 01:34 - 00025392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-04 19:23 - 2009-07-14 01:34 - 00025392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-04 19:22 - 2013-02-19 10:38 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-04 19:12 - 2012-09-11 16:25 - 00000000 ___RD C:\Users\Jana\Dropbox
2015-08-04 19:12 - 2012-09-11 16:22 - 00000000 ____D C:\Users\Jana\AppData\Roaming\Dropbox
2015-08-04 19:10 - 2013-03-18 14:01 - 00000000 ____D C:\Temp
2015-08-04 19:09 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-27 18:52 - 2014-10-13 06:12 - 00007604 _____ C:\Users\Jana\AppData\Local\Resmon.ResmonCfg
2015-07-22 19:06 - 2015-05-26 16:15 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-22 19:01 - 2015-05-26 17:05 - 00000000 ____D C:\AdwCleaner
2015-07-22 18:07 - 2015-05-26 16:14 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-22 18:07 - 2015-05-26 16:14 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-07-17 16:03 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\rescache
2015-07-17 10:22 - 2013-02-19 10:38 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-17 10:22 - 2013-02-19 10:38 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-17 09:06 - 2015-05-26 15:34 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2015-06-14 17:48 - 2015-06-14 17:48 - 0004096 ____H () C:\Users\Jana\AppData\Local\keyfile3.drm
2014-10-13 06:12 - 2015-07-27 18:52 - 0007604 _____ () C:\Users\Jana\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Jana\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprtaawq.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-07-17 15:55

==================== End of log ============================


Additional scan result of Farbar Recovery Scan Tool (x86) Version:02-08-2015 01
Ran by Jana (2015-08-04 19:38:50)
Running from C:\Users\Jana\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2879642822-4171143380-2997861222-500 - Administrator - Disabled)
Convidado (S-1-5-21-2879642822-4171143380-2997861222-501 - Limited - Disabled) => C:\Users\Convidado
HomeGroupUser$ (S-1-5-21-2879642822-4171143380-2997861222-1002 - Limited - Enabled)
Jana (S-1-5-21-2879642822-4171143380-2997861222-1000 - Administrator - Enabled) => C:\Users\Jana

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Out of date) {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66}
AS: Microsoft Security Essentials (Disabled - Out of date) {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.6.0.5970 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Advanced Office Password Recovery (HKLM\...\{11B36FB5-35BB-4A96-B0D0-8086A8D8923B}) (Version: 6.04.751.2357 - Elcomsoft Co. Ltd.)
AMR Player 1.3 (HKLM\...\{2F881B56-CBDF-4EC6-A8D2-6412A879C66A}_is1) (Version: - www.amrplayer.com)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
Audacity 2.0.6 (HKLM\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Desinstalar impressora EPSON T50 Series (HKLM\...\EPSON T50 Series) (Version: - SEIKO EPSON Corporation)
Dropbox (HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.)
Epson Print CD (HKLM\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.00.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Facebook Messenger 2.1.4814.0 (HKLM\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FormatFactory 3.00 (HKLM\...\FormatFactory) (Version: 3.00 - Free Time)
Foxit PhantomPDF Business (HKLM\...\{F54D6DB2-CEE3-4089-BE83-09F4DD180B4E}) (Version: 7.0.8.1216 - Foxit Software Inc.)
Foxit Reader 5.1 (HKLM\...\Foxit Reader_is1) (Version: 5.1.4.104 - Foxit Corporation)
Galeria de Fotos (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Talk Plugin (HKLM\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Hotkey 3.2031 (HKLM\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 3.2031 - NoteBook)
Hotkey 3.2031 (Version: 3.2031 - NoteBook) Hidden
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JMicron Ethernet Adapter NDIS Driver (HKLM\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.11.10 - JMicron Technology Corp.)
JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.35.3 - JMicron Technology Corp.)
Junk Mail filter update (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Essentials) (Version: 1.0.2498.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MotoCast (HKLM\...\{5401CEE8-3C2D-4835-A802-213306537FF4}) (Version: 2.0.31 - Motorola Mobility)
MotoHelper MergeModules (Version: 1.2.0 - Motorola) Hidden
Motorola Device Manager (HKLM\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.3.9 - Motorola Mobility)
Motorola Device Software Update (Version: 13.02.1402 - Motorola Mobility) Hidden
MOTOROLA MEDIA LINK (Version: 1.9.0002.0 - Motorola) Hidden
Motorola Mobile Drivers Installation 6.0.0 (Version: 6.0.0 - Motorola Inc.) Hidden
Movie Maker (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 38.0.1 (x86 pt-BR)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NetCrate Software LANcet Chat (HKLM\...\LANcet Chat) (Version: - )
Octoshape Streaming Services (HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
Pacote de Driver do Windows - Invisibility Ltd (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00005) (HKLM\...\8A4E2C1CC86657295291BAC6A1C2C1718C9BE52C) (Version: 08/27/2012 7.0.0000.00005 - Invisibility Ltd)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PDF Writer - bioPDF 9.3.0.1516 (HKLM\...\PDF Writer - bioPDF_is1) (Version: 9.3.0.1516 - bioPDF)
REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0152 - REALTEK Semiconductor Corp.)
Skype™ 6.3 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.107 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.0 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
USB Debugging Driver (HKLM\...\{B61F9010-3474-11E4-8C21-0800200C9A66}) (Version: 1.0.4 - Invisibility Ltd)
WebCam Installer (HKLM\...\{AAE521B6-2F19-447F-8CB6-6D1E3A19F3ED}) (Version: 3.31 - WebCam)
Win2PDF 3.30 (HKLM\...\Win2PDF_is1) (Version: 3.30 - Dane Prairie Systems, LLC.)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wondershare PDFelement(Build 4.2.0) (HKLM\...\{75BAE677-F65A-45A4-9931-363FE0CF5E58}_is1) (Version: 4.2.0.3 - Wondershare Software Co.,Ltd.)
ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
ZHPFix 2015 (HKLM\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{04FE3112-DB93-424D-B958-5E709395693F}\InprocServer32 -> C:\Users\Jana\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Jana\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> "C:\Users\Jana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" No File
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Chrome\Application\43.0.2357.81\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Jana\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{7D4733C0-C43B-4A81-AF43-F9B20D1F8348}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-apoctoshape.dll (Octoshape ApS)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Jana\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Jana\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jana\AppData\Local\Google\Update\1.3.27.5\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jana\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2879642822-4171143380-2997861222-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Jana\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.)

==================== Restore Points =========================

27-07-2015 18:17:23 ZHPFix Restore System Point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2012-05-27 21:56 - 00000864 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5CDC26D9-5FD1-40FC-84E3-592A00CE3C8A} - System32\Tasks\Microsoft\Microsoft Antimalware\MP Scheduled Scan => C:\Program Files\Microsoft Security Essentials\MpCmdRun.exe [2010-03-25] (Microsoft Corporation)
Task: {74777B65-E816-4524-9CDC-144784E8E514} - \Adobe Flash Player Updater No Task File <==== ATTENTION
Task: {8564E49C-760A-45F2-90C1-B82F34E18D72} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2879642822-4171143380-2997861222-1000UA => C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-28] (Google Inc.)
Task: {B8DDF6E7-A3E0-49A4-A557-0B53586C0D9A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {C1A8EAC4-F8DE-4F6F-B674-C4592010CF96} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2879642822-4171143380-2997861222-1000Core => C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-28] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2879642822-4171143380-2997861222-1000Core.job => C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2879642822-4171143380-2997861222-1000UA.job => C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2012-05-27 19:10 - 2007-03-22 10:31 - 00021552 _____ () C:\Windows\System32\win2pdfm.dll
2012-09-07 21:35 - 2012-09-07 21:35 - 00128960 _____ () C:\Program Files\Motorola Media Link\Lite\liveupdatetactics.dll
2012-09-07 21:35 - 2012-09-07 21:35 - 00024496 _____ () C:\Program Files\Motorola Media Link\Lite\DbAccess.dll
2012-09-07 21:37 - 2012-09-07 21:37 - 00466256 _____ () C:\Program Files\Motorola Media Link\Lite\sqlite3.dll
2012-09-07 21:36 - 2012-09-07 21:36 - 00045992 _____ () C:\Program Files\Motorola Media Link\Lite\NAdvLog.dll
2012-09-07 21:36 - 2012-09-07 21:36 - 00034752 _____ () C:\Program Files\Motorola Media Link\Lite\NFileCacheDBAccess.dll
2013-03-25 16:44 - 2013-03-25 16:44 - 00172032 _____ () C:\Program Files\Motorola Mobility\Motorola Device Manager\css_core.dll
2010-03-03 11:49 - 2010-03-03 11:49 - 00032256 _____ () C:\Program Files\Hotkey\PowerBiosServer.exe
2010-07-21 13:41 - 2010-07-21 13:41 - 02553856 _____ () C:\Program Files\Hotkey\Hotkey.exe
2009-06-06 14:50 - 2009-06-06 14:50 - 00019968 _____ () C:\Program Files\Hotkey\Audiodll.dll
2006-12-11 02:10 - 2006-12-11 02:10 - 00049152 _____ () C:\Program Files\Hotkey\AudioControlDLL.dll
2015-08-04 19:11 - 2015-08-04 19:11 - 00043008 _____ () c:\users\jana\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprtaawq.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00750080 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00047616 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00865280 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00200704 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00010240 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00726016 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-03-04 18:45 - 2015-03-19 04:15 - 00010240 _____ () C:\Users\Jana\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2015-05-26 15:55 - 2015-05-22 17:22 - 01281864 _____ () C:\Users\Jana\AppData\Local\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 15:55 - 2015-05-22 17:22 - 00080712 _____ () C:\Users\Jana\AppData\Local\Google\Chrome\Application\43.0.2357.81\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2879642822-4171143380-2997861222-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AirDroid 3 => C:\Program Files\AirDroid\AirDroid.exe /start
MSCONFIG\startupreg: EPSON T50 Series => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFFL.EXE /FU "C:\Windows\TEMP\E_S3A53.tmp" /EF "HKCU"
MSCONFIG\startupreg: Google Update => "C:\Users\Jana\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: MotoCast => "C:\Program Files\Motorola Mobility\MotoCast\MotoLauncher.lnk"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{F5E07CC8-DCE7-45A1-998D-6ECD42FAC45E}] => (Allow) svchost.exe
FirewallRules: [{E4F0E346-1E52-4648-8116-06AE213C7975}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE
FirewallRules: [{A39D3F7E-2326-45D3-A926-5462A0843A60}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE
FirewallRules: [TCP Query User{EFEA758B-953E-4AAF-8355-AC3621681D8D}C:\program files\lancet chat\lancetchat.exe] => (Allow) C:\program files\lancet chat\lancetchat.exe
FirewallRules: [UDP Query User{9B8DDC70-46D6-4059-8B71-2DDC0A130F32}C:\program files\lancet chat\lancetchat.exe] => (Allow) C:\program files\lancet chat\lancetchat.exe
FirewallRules: [TCP Query User{2B189309-B32E-47CC-BBD7-71AC7B404EB5}C:\users\jana\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Block) C:\users\jana\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [UDP Query User{ABC18EAA-43B8-49A2-BF08-214B2749A190}C:\users\jana\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Block) C:\users\jana\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{BA797F0C-5813-4B69-88D9-6C6A61566251}] => (Allow) C:\Users\Jana\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CA6D7A6C-1C9D-4624-B0B9-013140AA4FAF}] => (Allow) C:\Users\Jana\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{4210565D-FBAF-44BC-9296-22146214EA6E}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C7B51D3B-C0E7-41DC-BDD1-B48E914967A5}] => (Allow) LPort=2869
FirewallRules: [{56E0E728-BED1-4DF4-9F43-BE6921B58F1E}] => (Allow) LPort=1900
FirewallRules: [{2A29F090-5D20-4055-AA2F-556AED009209}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{59C6D6F2-9B59-497F-B440-B65AB310934D}] => (Allow) C:\Program Files\Motorola Mobility\MotoCast\motocast.exe
FirewallRules: [{6B995EF7-8F9D-49FF-80DB-2296D82F79E1}] => (Allow) C:\Program Files\Motorola Mobility\MotoCast\motocast.exe
FirewallRules: [{D875190C-19D1-4D55-A9AA-02AC508F96A9}] => (Allow) C:\Program Files\Motorola Mobility\MotoCast\bin\MotoCast-thumbnailer.exe
FirewallRules: [{D98AF34A-E99E-41B1-9ECC-D6ABF2218F2C}] => (Allow) C:\Program Files\Motorola Mobility\MotoCast\bin\MotoCast-thumbnailer.exe
FirewallRules: [TCP Query User{5D6A60A3-AE63-4E1F-8BF8-BC5EF69BC938}C:\program files\motorola media link\lite\mml.exe] => (Allow) C:\program files\motorola media link\lite\mml.exe
FirewallRules: [UDP Query User{50B56D2E-459B-481F-9562-361D0CF0D98D}C:\program files\motorola media link\lite\mml.exe] => (Allow) C:\program files\motorola media link\lite\mml.exe
FirewallRules: [{5EA8ACBA-BD09-41E2-A8B5-5CBB187B4A1D}] => (Allow) C:\Program Files\Motorola Media Link\Lite\mml.exe
FirewallRules: [{77F4E1C4-5510-4DFE-B905-D942BA8ACF79}] => (Allow) C:\Users\Jana\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{57F2432D-46BD-4CE8-AA3A-BC57C3D1C988}] => (Allow) C:\Users\Jana\AppData\Local\Google\Chrome\Application\chrome.exe
FirewallRules: [{62D8AE79-9965-4DEC-A81B-99D02FEBA777}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A5CF9C83-9C50-484D-943F-F0C6A3B0943B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1C931D69-47CE-4B12-A219-963C235077DD}D:\jana\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) D:\jana\downloads\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [UDP Query User{2CDA3AF7-F960-4DA2-B728-E8EB745DE262}D:\jana\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) D:\jana\downloads\utorrentportable\app\utorrent\utorrent.exe

==================== Faulty Device Manager Devices =============

Name: Adaptador de Túnel Teredo da Microsoft
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/27/2015 06:17:29 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..


Details:
AddWin32ServiceFiles: Unable to back up image of service Adobe Acrobat Update Service since QueryServiceConfig API failed

System Error:
O sistema não pode encontrar o arquivo especificado.
.

Error: (07/27/2015 06:17:23 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {ba1ecbdd-91c8-4166-8e47-92dcc3cd93c6}

Error: (07/27/2015 04:37:21 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Não é possível inicializar o índice.

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/27/2015 04:37:21 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Não é possível inicializar o aplicativo.

Contexto: Aplicativo Windows

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/27/2015 04:37:21 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Não é possível inicializar o objeto coletor.

Contexto: Aplicativo Windows, Catálogo SystemIndex

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/27/2015 04:37:21 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Não é possível inicializar o plug-in em .

Contexto: Aplicativo Windows, Catálogo SystemIndex

Detalhes:
Elemento não encontrado. (HRESULT : 0x80070490) (0x80070490)

Error: (07/27/2015 04:37:13 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Não é possível inicializar o plug-in em .

Contexto: Aplicativo Windows, Catálogo SystemIndex

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/27/2015 04:37:13 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: O Windows Search Service não pode carregar informações do repositório de propriedades.

Contexto: Aplicativo Windows, Catálogo SystemIndex

Detalhes:
O banco de dados do índice de conteúdo está corrompido. (HRESULT : 0xc0041800) (0xc0041800)

Error: (07/27/2015 04:37:13 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: O serviço Pesquisa do Windows está sendo interrompido devido a um problema no indexador:The catalog is corrupt.

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/27/2015 04:37:13 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: O serviço de pesquisa detectou arquivos de dados corrompidos no índice {id=4700}. O serviço tentará corrigir automaticamente esse problema recriando o índice.

Detalhes:
O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (08/04/2015 07:12:54 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {87DC457B-B35D-48AC-BD42-BDF35EF623CE}

Error: (08/04/2015 07:09:03 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (08/04/2015 07:09:03 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/01/2015 08:22:16 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {87DC457B-B35D-48AC-BD42-BDF35EF623CE}

Error: (08/01/2015 08:13:44 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT61 encontrou um erro ao tentar atualizar assinaturas.

Versão da Nova Assinatura:

Versão da Assinatura Anterior: 1.195.1069.0

Origem da Atualização: %AUTORIDADE NT51

Estágio da Atualização: 2.1.6805.00

Caminho de Origem: 2.1.6805.01

Tipo de Assinatura: %AUTORIDADE NT612

Tipo de Atualização: %AUTORIDADE NT614

Usuário: AUTORIDADE NT\SERVIÇO DE REDE

Versão do Mecanismo Atual: %AUTORIDADE NT615

Versão do Mecanismo Anterior: %AUTORIDADE NT616

Código do erro: %AUTORIDADE NT617

Descrição do erro: %AUTORIDADE NT618

Error: (08/01/2015 08:13:44 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT61 encontrou um erro ao tentar atualizar assinaturas.

Versão da Nova Assinatura:

Versão da Assinatura Anterior: 1.195.1069.0

Origem da Atualização: %AUTORIDADE NT51

Estágio da Atualização: 2.1.6805.00

Caminho de Origem: 2.1.6805.01

Tipo de Assinatura: %AUTORIDADE NT612

Tipo de Atualização: %AUTORIDADE NT614

Usuário: AUTORIDADE NT\SERVIÇO DE REDE

Versão do Mecanismo Atual: %AUTORIDADE NT615

Versão do Mecanismo Anterior: %AUTORIDADE NT616

Código do erro: %AUTORIDADE NT617

Descrição do erro: %AUTORIDADE NT618

Error: (08/01/2015 08:13:44 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT61 encontrou um erro ao tentar atualizar assinaturas.

Versão da Nova Assinatura:

Versão da Assinatura Anterior: 1.195.1069.0

Origem da Atualização: %AUTORIDADE NT51

Estágio da Atualização: 2.1.6805.00

Caminho de Origem: 2.1.6805.01

Tipo de Assinatura: %AUTORIDADE NT612

Tipo de Atualização: %AUTORIDADE NT614

Usuário: AUTORIDADE NT\SERVIÇO DE REDE

Versão do Mecanismo Atual: %AUTORIDADE NT615

Versão do Mecanismo Anterior: %AUTORIDADE NT616

Código do erro: %AUTORIDADE NT617

Descrição do erro: %AUTORIDADE NT618

Error: (08/01/2015 08:13:44 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT61 encontrou um erro ao tentar atualizar assinaturas.

Versão da Nova Assinatura:

Versão da Assinatura Anterior: 1.195.1069.0

Origem da Atualização: %AUTORIDADE NT51

Estágio da Atualização: 2.1.6805.00

Caminho de Origem: 2.1.6805.01

Tipo de Assinatura: %AUTORIDADE NT612

Tipo de Atualização: %AUTORIDADE NT614

Usuário: AUTORIDADE NT\SERVIÇO DE REDE

Versão do Mecanismo Atual: %AUTORIDADE NT615

Versão do Mecanismo Anterior: %AUTORIDADE NT616

Código do erro: %AUTORIDADE NT617

Descrição do erro: %AUTORIDADE NT618

Error: (08/01/2015 08:13:43 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT61 encontrou um erro ao tentar atualizar assinaturas.

Versão da Nova Assinatura:

Versão da Assinatura Anterior: 1.195.1069.0

Origem da Atualização: %AUTORIDADE NT59

Estágio da Atualização: 2.1.6805.00

Caminho de Origem: 2.1.6805.01

Tipo de Assinatura: %AUTORIDADE NT612

Tipo de Atualização: %AUTORIDADE NT614

Usuário: AUTORIDADE NT\SISTEMA

Versão do Mecanismo Atual: %AUTORIDADE NT615

Versão do Mecanismo Anterior: %AUTORIDADE NT616

Código do erro: %AUTORIDADE NT617

Descrição do erro: %AUTORIDADE NT618

Error: (08/01/2015 08:03:05 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active


Microsoft Office:
=========================
Error: (04/21/2015 04:14:06 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 460 seconds with 60 seconds of active time. This session ended with a crash.

Error: (12/11/2014 10:37:23 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 6239 seconds with 2340 seconds of active time. This session ended with a crash.

Error: (06/12/2013 10:09:38 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1308 seconds with 120 seconds of active time. This session ended with a crash.

Error: (05/09/2013 02:27:37 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 776 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/29/2013 10:43:30 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2632 seconds with 0 seconds of active time. This session ended with a crash.

Error: (03/15/2013 08:42:36 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.

Error: (03/05/2013 02:14:01 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1586 seconds with 60 seconds of active time. This session ended with a crash.

Error: (02/26/2013 10:10:08 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1862 seconds with 60 seconds of active time. This session ended with a crash.

Error: (02/06/2013 03:43:31 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7553 seconds with 3540 seconds of active time. This session ended with a crash.

Error: (02/05/2013 02:03:50 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 20408 seconds with 12060 seconds of active time. This session ended with a crash.


==================== Memory info ===========================

Processor: AMD Athlon(tm) X2 Dual-Core QL-62
Percentage of memory in use: 73%
Total physical RAM: 1790.36 MB
Available physical RAM: 469.41 MB
Total Virtual: 3838.36 MB
Available Virtual: 2068.18 MB

==================== Drives ================================

Drive c: (SISTEMA) (Fixed) (Total:78.13 GB) (Free:9.3 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DADOS) (Fixed) (Total:387.63 GB) (Free:217.09 GB) NTFS
Drive e: (Escola Diversos) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 97BE5B6A)
Partition 1: (Active) - (Size=78.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=387.6 GB) - (Type=OF Extended)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité