cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-08-2015
Ran by Hakaz7 (2015-08-23 18:28:53)
Running from C:\Users\Hakaz7\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1487806579-2887001220-3690848270-500 - Administrator - Disabled)
Convidado (S-1-5-21-1487806579-2887001220-3690848270-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1487806579-2887001220-3690848270-503 - Limited - Disabled)
Hakaz7 (S-1-5-21-1487806579-2887001220-3690848270-1000 - Administrator - Enabled) => C:\Users\Hakaz7
HomeGroupUser$ (S-1-5-21-1487806579-2887001220-3690848270-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1487806579-2887001220-3690848270-1000\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
ComicRack v0.9.176 (HKLM\...\ComicRack) (Version: v0.9.176 - cYo Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.5 - Google Inc.) Hidden
Intel(R) Network Connections 15.2.89.2 (HKLM\...\PROSetDX) (Version: 15.2.89.2 - Intel)
K-Lite Mega Codec Pack 11.3.6 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.3.6 - )
Legendas 3.3 (HKLM-x32\...\{461C0377-D2EC-4FB0-B038-847BC6455432}_is1) (Version: 3.3 - LegendasBrasil.com.br)
Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MPC-HC 1.7.8 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.8 - MPC-HC Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1487806579-2887001220-3690848270-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Hakaz7\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

14-08-2015 14:59:28 Windows Update
14-08-2015 15:00:13 Windows Update
19-08-2015 16:53:48 Windows Update
21-08-2015 12:31:46 Instalador de Módulos do Windows
23-08-2015 16:19:01 ZHPFix Restore System Point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2015-08-11 13:24 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {026A821F-8398-4C7A-9415-F1690D2011A1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {03AC74DB-BBD3-4F7F-B391-CEEBA99F502B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {0BC2A582-C3C4-4A10-9EF5-67B9F23A6AEE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {12B98FC6-062C-44B6-8433-7E5116B5BD8B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {1338BBB9-402D-41A9-9C9A-AB16163A54A5} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {1739977B-320E-45E7-9024-3C1C1E8580EE} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {2970FA44-C38F-4165-A8FB-4EF25680150E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-11] (Google Inc.)
Task: {31F918BF-866D-4E0F-9CBF-2F387EB41B76} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3230F5D5-3995-495C-82DC-802F3F297A64} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {33DDB5EA-3264-4E03-9F66-7552691226E8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3494DA09-AD03-4AF8-A2D6-D1B43D35D587} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {43CF86E4-E7D0-4419-AA01-B29D106C1D1D} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation)
Task: {446C545E-8F15-4667-AD95-6E7803101DEB} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-03] ()
Task: {5C1E0603-BE9E-4BB8-9E17-2954C62AAA1E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {616F594A-6B50-4C7F-A985-C45CE5465C25} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {67F0F594-BEDE-4499-AC0E-50C915D3E177} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6AD72B4B-85F1-4373-AC2D-654F1819B128} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {6E9ADB02-B6DD-447E-B236-03F568A16191} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {71ABB2F6-A74E-4CFB-BABB-D4670F8502F9} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {72A30AC0-4C91-47A4-B4D6-61D276BE5D8D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {741881B2-CD8A-4512-8FAF-AC79A3CBD08E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {78D35C12-C505-4805-A7C6-B6E97FC6821F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {79AF35CC-C4E4-405A-A612-9186E80E1C2C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {7A55049D-73DA-49EB-9656-4164E4B22FF1} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7B0F7B37-8556-467E-9144-A9D99811B770} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {84664C42-883A-4732-B22C-4A4EF94A0B2E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {89EF385D-8D1B-49E8-BD2C-76808756CB2A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-14] (Microsoft Corporation)
Task: {97428D03-ED99-4498-8F49-B1F92A687F20} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A9477F8C-3789-465D-9B1A-4B47F22D2876} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {BA90D122-3435-4B3B-993A-B0945F23D1A5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BDA5345D-59D9-426F-A204-CDD8C51D0D00} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C584DED3-BD55-415E-B98E-7948FD354614} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CEDEA982-B649-44DA-AB68-EFEF9A463CAF} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E1FCC86E-3A9D-40EE-AD6F-04BDFCD87BCE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E74ADD65-BA9B-49CD-95FC-2AC7D03291C4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {ECD7BE54-F1F9-4EF8-8628-6DA7A95F4787} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F58DE465-AEB3-4C7E-BD9A-4A3D587CBF65} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F7851219-569F-4813-AF5A-718CF7509804} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-11] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-14 12:15 - 2015-08-14 12:15 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-14 12:15 - 2015-08-14 12:15 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-16 17:24 - 2015-08-12 17:24 - 00199456 _____ () C:\Program Files (x86)\Viva\viva.exe
2015-08-14 14:58 - 2015-07-30 03:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-14 14:58 - 2015-07-30 03:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 07:59 - 2015-07-10 07:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 07:59 - 2015-07-10 07:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-08-14 14:59 - 2015-08-02 22:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 08:00 - 2015-07-10 13:49 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-14 14:58 - 2015-08-02 22:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-14 14:58 - 2015-08-02 22:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 08:00 - 2015-07-10 13:49 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-19 12:03 - 2015-08-19 12:03 - 07824896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-08-19 12:03 - 2015-08-19 12:03 - 02062336 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-08-18 13:00 - 2015-08-18 13:00 - 00006656 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_8.8.15003.0_x64__8wekyb3d8bbwe\XboxApp.exe
2015-08-18 13:00 - 2015-08-18 13:00 - 25675264 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_8.8.15003.0_x64__8wekyb3d8bbwe\XboxApp.dll
2015-07-10 13:57 - 2015-07-10 13:57 - 07897088 _____ () C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.0_1.0.22929.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
2015-08-18 13:00 - 2015-08-18 13:00 - 03175936 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_8.8.15003.0_x64__8wekyb3d8bbwe\Avatars.dll
2015-08-14 13:18 - 2015-08-14 13:18 - 04627456 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_8.8.15003.0_x64__8wekyb3d8bbwe\Microsoft.Xbox.SmartGlass.dll
2015-08-18 13:00 - 2015-08-18 13:00 - 03945472 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_8.8.15003.0_x64__8wekyb3d8bbwe\XboxNano.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 05971456 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI.Xaml\0064c7f3927391418c988e043ce3cdd6\Windows.UI.Xaml.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 04090880 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\a6d0b936baafc75d445cfeeea2c45692\Windows.ApplicationModel.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 00302080 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Gloaae92e31#\ace13f37bf8359a23a39787571bfb496\Windows.Globalization.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 01752576 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\8f320c4a308d2e39c6aa40c7cdf4ce49\Windows.UI.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 00497152 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\49d9e2eb148fe29623ae98ad26130766\Windows.Foundation.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 01808896 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Networking\5f64ee8e856ca2dcb210574542741fb3\Windows.Networking.ni.dll
2015-08-18 13:29 - 2015-08-18 13:29 - 00054784 _____ () C:\Users\Hakaz7\AppData\Local\Packages\microsoft.windowsfeedback_cw5n1h2txyewy\AC\Microsoft\CLR_v4.0\NativeImages\feedbackapp.helper\64e439fe869e407acfead97d0dc16d90\feedbackapp.helper.ni.dll
2015-07-10 08:00 - 2015-07-10 08:00 - 00083808 _____ () C:\Windows\SystemApps\WindowsFeedback_cw5n1h2txyewy\FeedbackApp.Helper.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 01173504 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Storage\9dfa032a6f6a3f35088ff19c8b877189\Windows.Storage.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 00961536 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Security\17b2f1dc4e6f8f2b2ba837c656b12243\Windows.Security.ni.dll
2015-08-18 13:28 - 2015-08-18 13:28 - 00438272 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.System\22ee2eca5777d747cde4f70fc557030c\Windows.System.ni.dll
2015-08-14 13:17 - 2015-08-14 13:17 - 00007168 _____ () C:\Program Files\WindowsApps\Microsoft.Getstarted_2.2.7.0_x64__8wekyb3d8bbwe\WhatsNew.Store.exe
2015-08-14 13:17 - 2015-08-14 13:17 - 06044672 _____ () C:\Program Files\WindowsApps\Microsoft.Getstarted_2.2.7.0_x64__8wekyb3d8bbwe\WhatsNew.Store.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 00007680 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.News.exe
2015-08-22 12:49 - 2015-08-22 12:49 - 00133568 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6027.10061.0_x64__8wekyb3d8bbwe\textinputdriver.dll
2015-08-14 14:58 - 2015-08-02 22:22 - 00293376 _____ () C:\WINDOWS\SYSTEM32\textinputframework.dll
2015-08-14 13:18 - 2015-08-14 13:19 - 00007680 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
2015-08-23 13:24 - 2015-08-23 13:24 - 00007168 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1508.17010.0_x64__8wekyb3d8bbwe\CompanionApp.exe
2015-08-23 13:24 - 2015-08-23 13:24 - 06572544 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1508.17010.0_x64__8wekyb3d8bbwe\CompanionApp.dll
2015-08-23 13:24 - 2015-08-23 13:24 - 00623616 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1508.17010.0_x64__8wekyb3d8bbwe\CompanionAppDeviceManager.dll
2015-08-16 17:24 - 2015-08-10 14:56 - 00167712 _____ () C:\Program Files (x86)\Viva\nfapi.dll
2015-08-16 17:24 - 2015-08-10 14:54 - 00253728 _____ () C:\Program Files (x86)\Viva\ProtocolFilters.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 09459712 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.News.dll
2015-07-10 13:57 - 2015-07-10 13:57 - 06459392 _____ () C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.0_1.0.22929.0_x86__8wekyb3d8bbwe\SharedLibrary.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 00970240 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_4.4.200.0_x86__8wekyb3d8bbwe\SQLiteWrapper.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 03517616 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Advertising.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 00646144 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Aria.ClientTelemetry.dll
2015-08-14 13:18 - 2015-08-14 13:19 - 09744384 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.Weather.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 00970240 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\SQLiteWrapper.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 03517616 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Advertising.dll
2015-08-14 13:13 - 2015-08-14 13:13 - 00646144 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Aria.ClientTelemetry.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1487806579-2887001220-3690848270-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 200.189.80.123 - 200.189.80.109
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [UDP Query User{FE981564-E1DA-40A4-BE8A-20DAF1DB712E}C:\users\hakaz7\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hakaz7\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{973A1226-CB31-44FB-A343-2C2C3B942D59}C:\users\hakaz7\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hakaz7\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{44E2D3B3-3189-4F57-B099-97C27300B6B7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{C949CFCB-9B02-4866-BAAA-FA9A7989CD89}C:\program files\comicrack\comicrack.exe] => (Block) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{4FB5AAF2-F04E-4B3B-9E99-95A699D8D7D9}C:\program files\comicrack\comicrack.exe] => (Block) C:\program files\comicrack\comicrack.exe
FirewallRules: [{7399FE18-07C2-4FA2-AE6C-5E24F536B209}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/23/2015 04:19:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (08/23/2015 02:23:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: taskhostw.exe, versão: 10.0.10240.16384, carimbo de data/hora: 0x559f3982
Nome do módulo com falha: ntdll.dll, versão: 10.0.10240.16430, carimbo de data/hora: 0x55c59f92
Código de exceção: 0xc0000374
Deslocamento da falha: 0x00000000000ea28c
ID do processo com falha: 0x1114
Hora de início do aplicativo com falha: 0xtaskhostw.exe0
Caminho do aplicativo com falha: taskhostw.exe1
Caminho do módulo com falha: taskhostw.exe2
ID do Relatório: taskhostw.exe3
Nome completo do pacote com falha: taskhostw.exe4
ID do aplicativo relativo ao pacote com falha: taskhostw.exe5

Error: (08/23/2015 02:22:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/23/2015 02:22:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: Falha na ativação do aplicativo Microsoft.Windows.Photos_8wekyb3d8bbwe!App com o erro: -2147024865. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (08/23/2015 01:22:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OHub.exe, versão: 16.0.6106.2350, carimbo de data/hora: 0x55c40ea1
Nome do módulo com falha: ntdll.dll, versão: 10.0.10240.16430, carimbo de data/hora: 0x55c59f92
Código de exceção: 0xc0000374
Deslocamento da falha: 0x00000000000ea28c
ID do processo com falha: 0x18ac
Hora de início do aplicativo com falha: 0xOHub.exe0
Caminho do aplicativo com falha: OHub.exe1
Caminho do módulo com falha: OHub.exe2
ID do Relatório: OHub.exe3
Nome completo do pacote com falha: OHub.exe4
ID do aplicativo relativo ao pacote com falha: OHub.exe5

Error: (08/22/2015 12:47:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OHub.exe, versão: 16.0.6106.2350, carimbo de data/hora: 0x55c40ea1
Nome do módulo com falha: ntdll.dll, versão: 10.0.10240.16430, carimbo de data/hora: 0x55c59f92
Código de exceção: 0xc0000374
Deslocamento da falha: 0x00000000000ea28c
ID do processo com falha: 0xac4
Hora de início do aplicativo com falha: 0xOHub.exe0
Caminho do aplicativo com falha: OHub.exe1
Caminho do módulo com falha: OHub.exe2
ID do Relatório: OHub.exe3
Nome completo do pacote com falha: OHub.exe4
ID do aplicativo relativo ao pacote com falha: OHub.exe5

Error: (08/21/2015 10:56:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: MicrosoftEdge.exe, versão: 11.0.10240.16425, carimbo de data/hora: 0x55bec30f
Nome do módulo com falha: eModel.dll, versão: 11.0.10240.16425, carimbo de data/hora: 0x55bebfb9
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000815d9
ID do processo com falha: 0x22a4
Hora de início do aplicativo com falha: 0xMicrosoftEdge.exe0
Caminho do aplicativo com falha: MicrosoftEdge.exe1
Caminho do módulo com falha: MicrosoftEdge.exe2
ID do Relatório: MicrosoftEdge.exe3
Nome completo do pacote com falha: MicrosoftEdge.exe4
ID do aplicativo relativo ao pacote com falha: MicrosoftEdge.exe5

Error: (08/21/2015 01:33:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (08/21/2015 12:31:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (08/21/2015 07:32:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OHub.exe, versão: 16.0.6106.2350, carimbo de data/hora: 0x55c40ea1
Nome do módulo com falha: ntdll.dll, versão: 10.0.10240.16430, carimbo de data/hora: 0x55c59f92
Código de exceção: 0xc0000374
Deslocamento da falha: 0x00000000000ea28c
ID do processo com falha: 0xa6c
Hora de início do aplicativo com falha: 0xOHub.exe0
Caminho do aplicativo com falha: OHub.exe1
Caminho do módulo com falha: OHub.exe2
ID do Relatório: OHub.exe3
Nome completo do pacote com falha: OHub.exe4
ID do aplicativo relativo ao pacote com falha: OHub.exe5


System errors:
=============
Error: (08/23/2015 04:19:00 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hakaz7\AppData\Local\Temp\catchme.sys

Error: (08/23/2015 02:22:03 PM) (Source: DCOM) (EventID: 10001) (User: ADMINISTRADOR)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXwmnqm0nvq2b90pwvr42qmtdjp7cj3w82.mca31App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mcaNão DisponívelNão Disponível

Error: (08/22/2015 11:04:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_Session6 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (08/22/2015 11:04:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Armazenamento de Dados de Usuário_Session6 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (08/22/2015 11:04:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dados de Contato_Session6 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (08/22/2015 11:04:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_Session6 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (08/22/2015 07:37:10 PM) (Source: DCOM) (EventID: 10016) (User: ADMINISTRADOR)
Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}AdministradorHakaz7S-1-5-21-1487806579-2887001220-3690848270-1000LocalHost (Usando LRPC)Deezer.Deezer_1.3.5.0_x64__q7m17pa7q8kj0S-1-15-2-1603163045-3571281156-695395475-2439299277-3395427646-929816475-371680158

Error: (08/22/2015 07:32:36 PM) (Source: DCOM) (EventID: 10016) (User: ADMINISTRADOR)
Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}AdministradorHakaz7S-1-5-21-1487806579-2887001220-3690848270-1000LocalHost (Usando LRPC)Deezer.Deezer_1.3.5.0_x64__q7m17pa7q8kj0S-1-15-2-1603163045-3571281156-695395475-2439299277-3395427646-929816475-371680158

Error: (08/22/2015 07:29:04 PM) (Source: DCOM) (EventID: 10016) (User: ADMINISTRADOR)
Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}AdministradorHakaz7S-1-5-21-1487806579-2887001220-3690848270-1000LocalHost (Usando LRPC)Deezer.Deezer_1.3.5.0_x64__q7m17pa7q8kj0S-1-15-2-1603163045-3571281156-695395475-2439299277-3395427646-929816475-371680158

Error: (08/22/2015 07:28:17 PM) (Source: DCOM) (EventID: 10016) (User: ADMINISTRADOR)
Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}AdministradorHakaz7S-1-5-21-1487806579-2887001220-3690848270-1000LocalHost (Usando LRPC)Deezer.Deezer_1.3.5.0_x64__q7m17pa7q8kj0S-1-15-2-1603163045-3571281156-695395475-2439299277-3395427646-929816475-371680158


Microsoft Office:
=========================
Error: (08/23/2015 04:19:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.

Error: (08/23/2015 02:23:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskhostw.exe10.0.10240.16384559f3982ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28c111401d0ddc831333968C:\WINDOWS\system32\taskhostw.exeC:\WINDOWS\SYSTEM32\ntdll.dll28742b5b-217e-41ea-9792-efb2845aa085

Error: (08/23/2015 02:22:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147023170

Error: (08/23/2015 02:22:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINISTRADOR)
Description: Microsoft.Windows.Photos_8wekyb3d8bbwe!App-2147024865

Error: (08/23/2015 01:22:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6106.235055c40ea1ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28c18ac01d0ddbfdd618b2aC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dll9cdb2f4c-3109-495a-8469-4241e7d3080bMicrosoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (08/22/2015 12:47:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6106.235055c40ea1ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28cac401d0dcf1e3fd921bC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dllf25cbb3f-8e57-4808-b58d-4778729c6fc0Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (08/21/2015 10:56:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MicrosoftEdge.exe11.0.10240.1642555bec30feModel.dll11.0.10240.1642555bebfb9c000000500000000000815d922a401d0dc6e44e6a9c9C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exeC:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll1485ceaa-faef-4607-bcdb-776d278520baMicrosoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbweMicrosoftEdge

Error: (08/21/2015 01:33:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifestC:\Users\Hakaz7\Desktop\pendrive dedé\pendrive dedé\esetsmartinstaller_enu.exe

Error: (08/21/2015 12:31:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.

Error: (08/21/2015 07:32:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6106.235055c40ea1ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28ca6c01d0dbfc9ae9f1c8C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dllbad2ae6a-ed9f-4c24-a0a4-4924e369e8e1Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub


CodeIntegrity:
===================================
Date: 2015-08-23 16:19:00.337
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Hakaz7\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-18 13:29:57.401
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:55.224
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:52.942
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:52.640
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:44.334
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:42.133
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:31.850
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 13:29:29.229
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-08-15 15:17:21.023
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentage of memory in use: 59%
Total physical RAM: 2009.33 MB
Available physical RAM: 804.37 MB
Total Virtual: 5055.12 MB
Available Virtual: 2771.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.22 GB) (Free:359.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4A5A8254)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité