cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-08-2015
Ran by Ionara (2015-08-10 19:54:21)
Running from C:\Users\Valmor\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-4289557062-2233464397-3948540844-500 - Administrator - Disabled) => C:\Users\Administrator
Convidado (S-1-5-21-4289557062-2233464397-3948540844-501 - Limited - Enabled) => C:\Users\Convidado
HomeGroupUser$ (S-1-5-21-4289557062-2233464397-3948540844-1003 - Limited - Enabled)
Ionara (S-1-5-21-4289557062-2233464397-3948540844-1001 - Administrator - Enabled) => C:\Users\Valmor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Total Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Total Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Total Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.5970 - Adobe Systems Incorporated)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.5.143 - AVG Technologies)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver 1.3.1 (HKLM\...\{BA56CD60-1D9F-4BE6-AC2F-B7C4A5437C35}) (Version: 1.3.1 - OEM)
Dynasty of Nordics versão 7.55 (HKLM-x32\...\{C8141479-83BC-4CCB-B70C-5C033F227E79}}_is1) (Version: 7.55 - Galaxy Games)
EaseUS Partition Master 10.1 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Galeria de Fotos (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.9.0.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Earth (HKLM-x32\...\{1A295C25-6E02-49FB-826B-F0D2C56FFA4E}) (Version: 7.1.4.1529 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
iBrightness 1.0.1 (HKLM-x32\...\{B351A468-173F-43D8-B6E6-5A6E9A0125A8}) (Version: 1.0.1 - OEM)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IPM 1.9.4 (HKLM-x32\...\{AADF4228-0772-4D43-92EB-B245E3A17B00}) (Version: 1.9.4 - OEM)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.2 - Receita Federal do Brasil)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab)
Kaspersky Total Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware versão 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 37.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 pt-BR)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0.2 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
OpenOffice 4.1.1 (HKLM-x32\...\{503D2C42-D698-43BC-97FE-3610F4E8CDDC}) (Version: 4.11.9775 - Apache Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6809 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.27030 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0208 - REALTEK Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.14.0 - Synaptics Incorporated)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Valmor\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Valmor\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Valmor\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Valmor\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Valmor\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Valmor\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

17-07-2015 20:42:10 Removed AVG 2015
01-08-2015 09:43:28 Ponto de Verificação Agendado
06-08-2015 21:49:16 Installed HiJackThis

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 10:25 - 2013-08-22 10:25 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00B8CD65-1157-4076-9F54-3120357C740F} - System32\Tasks\Microsoft\Windows\SysResetServicingCleanup => C:\$SysReset\Framework\Stack\SystemResetOSUpdates.exe
Task: {33C96A49-3D76-4163-BD0B-EE8871410998} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {404AE639-4441-4ADD-AE4B-C216A771F826} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-04] (Google Inc.)
Task: {6B7C9F47-1B47-44CD-B418-C03B1615C9B6} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-09-10] (Synaptics Incorporated)
Task: {6E15E028-905E-4468-AD90-4E1BDA8F063D} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {BDFC3145-819C-41D8-9805-21E924B1D55F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {FE1AF576-F76B-4FD5-8B6C-1C213B9B1B0A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-04] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-06 10:28 - 2015-07-22 18:19 - 01195920 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2015-07-22 18:19 - 2015-07-22 18:19 - 00168336 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\loggingserver.exe
2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2012-10-12 17:39 - 2012-10-12 17:39 - 02410496 _____ () C:\Program Files (x86)\OEM\IPM 1.9.4\IPM.exe
2014-02-19 16:24 - 2012-10-22 03:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-07-22 18:19 - 2015-07-22 18:19 - 00528272 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\log4cplusU.dll
2014-12-23 16:54 - 2014-12-23 16:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\kpcengine.2.3.dll
2009-11-17 17:21 - 2009-11-17 17:21 - 00092160 _____ () C:\Program Files (x86)\OEM\iBrightness 1.0.1\SoilIO.dll
2009-11-17 17:21 - 2009-11-17 17:21 - 00092160 _____ () C:\Program Files (x86)\OEM\IPM 1.9.4\SoilIO.dll
2012-10-12 17:39 - 2012-10-12 17:39 - 01582080 _____ () C:\Program Files (x86)\OEM\IPM 1.9.4\vista.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Users\Valmor\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Valmor\OneDrive.old:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\caixa.gov.br -> imagem.caixa.gov.br


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Valmor\Desktop\montanha.jpg
HKU\S-1-5-21-4289557062-2233464397-3948540844-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\OEM\wallpaperdefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\StartupApproved\Run: => "HW_OPENEYE_OUC_VIVO INTERNET"
HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-4289557062-2233464397-3948540844-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A916AA74-4802-495D-822E-16B5C693B4C0}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D4CE4107-EEBB-4144-84BC-20283AA335E2}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4CA7F482-5422-4727-A6AF-0A5FDBF7BDC8}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{E461FBFE-9E64-42A7-A0E0-50FD8EB1D506}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C2370E42-A60C-4D73-826D-49FB362CA097}] => (Allow) LPort=1900
FirewallRules: [{51341BA1-42B0-467B-A319-3E0C6A7049F8}] => (Allow) LPort=2869
FirewallRules: [{7437DB5A-39B8-4A37-BE94-5D4331CD42F8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8B1044C3-7829-42E8-BD27-36225A8BCEE9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{11D736EB-A8EE-4DEC-9708-2E4B0C90CDFD}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{423610DC-D2E5-47BA-8FD6-C7FCA12FC1B5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [TCP Query User{6BEF8681-48A5-4144-95A9-0D4E870A7ACB}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe
FirewallRules: [UDP Query User{95E26606-E7A5-4F29-84C7-D660F0A3E409}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe
FirewallRules: [{DE60046E-0EA0-472C-A772-4038FCA3C825}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{EC2E8F81-8F64-44F8-82F8-D88624787890}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A4B4A474-5883-4486-956A-CBD32CC48BA4}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{259F531D-37DD-4468-A731-0746FD9B927D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FEF2C100-DDE4-4E64-B881-CD405576B85C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{8192E8B8-B75B-4E6E-BB0C-715BF17C548D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{981FB7D9-51F5-443E-A00D-39E5935247C3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{986B7AAE-5091-4CC4-A2FB-44113CF62006}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{7FA56BEC-930A-4C35-9056-A963501BF2BC}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{F1C06839-1C36-45E9-A02A-960A6413E65D}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{DBAE8770-2886-4D05-98AE-266F678D9EA7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{E69EF52B-2E5F-4777-9608-06227FF36F6F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{85E0CE06-9E8C-40AC-900F-7F0B5B30B17B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BB62AAEF-823B-49EE-B961-3DD105057E2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E44BE8E1-14C1-4661-AAAB-B1522ED41EF8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{28763B57-6179-49C5-8A9B-AE8AEA214C1E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{1A5F5FAF-1980-4D6D-91CC-00A5F57ED7C4}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{F9545126-E3BA-4449-B84B-4B606D27A921}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{3F4BB76E-761F-443B-A9AF-7E5BC7B30C97}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{297D3B85-F56B-46A6-8299-75A5E871B0D4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{57F9AC9C-EDC8-45D4-922C-A05D7CBE0574}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{9F7B21CE-6DAE-4589-9EBD-2B7EB3B75CC6}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{8FAA5889-5F56-4B31-956B-40C37857D9E8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/10/2015 07:43:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x12b4
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/09/2015 12:12:33 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-VALMOR)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail com o erro: -2144927152. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/09/2015 12:12:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-VALMOR)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail com o erro: -2144927152. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/08/2015 11:01:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x11b0
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/07/2015 09:57:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x12bc
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/06/2015 09:28:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x1008
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/04/2015 08:07:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x10e0
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/03/2015 08:28:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x1784
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/01/2015 01:17:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x67c
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5

Error: (08/01/2015 09:26:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Nome do módulo com falha: vprot.exe, versão: 4.1.5.143, carimbo de data/hora: 0x55acb49b
Código de exceção: 0xc0000417
Deslocamento da falha: 0x001d4f63
ID do processo com falha: 0x3ec
Hora de início do aplicativo com falha: 0xvprot.exe0
Caminho do aplicativo com falha: vprot.exe1
Caminho do módulo com falha: vprot.exe2
ID do Relatório: vprot.exe3
Nome completo do pacote com falha: vprot.exe4
ID do aplicativo relativo ao pacote com falha: vprot.exe5


System errors:
=============
Error: (08/09/2015 10:21:10 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:21:09 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:21:07 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:21:05 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:21:03 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:21:01 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:20:59 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:20:57 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:20:56 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.

Error: (08/09/2015 10:20:54 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.


Microsoft Office:
=========================
Error: (08/10/2015 07:43:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f6312b401d0d3bde70b7646C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe273e27bd-3fb1-11e5-becf-80ee73bcb3b8

Error: (08/09/2015 12:12:33 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-VALMOR)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2144927152

Error: (08/09/2015 12:12:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-VALMOR)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2144927152

Error: (08/08/2015 11:01:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f6311b001d0d24758a3675dC:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe98d87ae0-3e3a-11e5-becf-80ee73bcb3b8

Error: (08/07/2015 09:57:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f6312bc01d0d1753d4f8413C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe7d192328-3d68-11e5-becf-80ee73bcb3b8

Error: (08/06/2015 09:28:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f63100801d0d0a7f2356fb3C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe353901b6-3c9b-11e5-becf-80ee73bcb3b8

Error: (08/04/2015 08:07:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f6310e001d0cf0a548e7dd1C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe966cb55b-3afd-11e5-becf-80ee73bcb3b8

Error: (08/03/2015 08:28:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f63178401d0ce441950ee13C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe5cb6f0b8-3a37-11e5-becf-80ee73bcb3b8

Error: (08/01/2015 01:17:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f6367c01d0cc759b596b63C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exedb71e1ba-3868-11e5-becf-80ee73bcb3b8

Error: (08/01/2015 09:26:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: vprot.exe4.1.5.14355acb49bvprot.exe4.1.5.14355acb49bc0000417001d4f633ec01d0cc5544c433b2C:\Program Files (x86)\AVG Web TuneUp\vprot.exeC:\Program Files (x86)\AVG Web TuneUp\vprot.exe844b39c0-3848-11e5-becf-80ee73bcb3b8


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentage of memory in use: 61%
Total physical RAM: 1942.14 MB
Available physical RAM: 747.94 MB
Total Virtual: 4118.14 MB
Available Virtual: 2659.58 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:347.91 GB) (Free:308.43 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 0B9C92EA)

Partition: GPT.

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité