cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

01
Ran by Ana (2015-08-25 17:18:21)
Running from C:\Users\Ana\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-216632212-3070175800-140490606-500 - Administrator - Disabled)
Ana (S-1-5-21-216632212-3070175800-140490606-1000 - Administrator - Enabled) => C:\Users\Ana
Convidado (S-1-5-21-216632212-3070175800-140490606-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-216632212-3070175800-140490606-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Emsisoft Anti-Malware (Disabled - Up to date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AS: Emsisoft Anti-Malware (Disabled - Up to date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Advanced Typing Datiexpert 2.5 (HKLM\...\Advanced Typing Datiexpert_is1) (Version: - Zezons Software)
Agendador Procreare (HKLM\...\Agendador Procreare_is1) (Version: - RHSuper Software)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.3.2225 - AVAST Software)
CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer)
CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.2.5 - )
Eee Docking 3.8.3 (HKLM\...\Eee Docking_is1) (Version: 3.8.3 - ASUSTek Computer Inc.)
Facebook Messenger 2.1.4814.0 (HKLM\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Google Chrome (HKLM\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
HijackThis 1.99.1 (HKLM\...\HijackThis) (Version: 1.99.1 - Soeperman Enterprises Ltd.)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2364 - Intel Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.22 - AsusTek Computer Inc.)
Malware Defender (HKLM\...\Malware Defender) (Version: - )
Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Procreare (HKLM\...\Procreare_is1) (Version: - Procreare Software)
Receitanet (HKLM\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.06 - Serpro - Serviço Federal de Processamento de Dados)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Speex V1.0.4 (HKLM\...\Speex_is1) (Version: - )
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.13 - AsusTek Computer)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Warsaw 1.5.2.9896 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.2.9896 - GAS Tecnologia)
Winamp (remove only) (HKLM\...\Winamp) (Version: - )
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

18-08-2015 08:49:01 Revo Uninstaller's restore point - ESET Online Scanner v3
18-08-2015 09:06:41 Revo Uninstaller's restore point - ESET Online Scanner v3
18-08-2015 11:57:00 JRT Pre-Junkware Removal
19-08-2015 15:23:16 Revo Uninstaller's restore point - Clean Virus MSN
24-08-2015 10:54:22 WinThruster seg, ago 24, 15 10:54
25-08-2015 14:42:21 Revo Uninstaller's restore point - Emsisoft Anti-Malware
25-08-2015 15:00:45 Revo Uninstaller's restore point - Emsisoft Anti-Malware
25-08-2015 15:11:40 Revo Uninstaller's restore point - Emsisoft Anti-Malware
25-08-2015 16:43:22 Revo Uninstaller's restore point - Malware Defender

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2015-08-18 17:01 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08B2A509-412D-4DFC-8C74-B77DBFE744CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {31D9787D-823D-44C7-A55E-219B8F53D606} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-13] (AVAST Software)
Task: {487042C8-6E9B-4A24-9017-037313AD4E56} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-216632212-3070175800-140490606-1000UA => C:\Users\Ana\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-13] (Facebook Inc.)
Task: {4C863C0E-25B1-4CBB-BDDC-6B76BD30483B} - System32\Tasks\{E5CFE08D-7BD2-4143-8240-7135E98F9208} => pcalua.exe -a "C:\Users\Ana\Downloads\sigo (1).exe" -d C:\Users\Ana\Desktop
Task: {630F9090-45E4-4FCA-988B-02F2E811A0C3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-216632212-3070175800-140490606-1000Core => C:\Users\Ana\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-13] (Facebook Inc.)
Task: {72E66657-A02B-4CB9-A6F8-C053727A60DA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-25] (Adobe Systems Incorporated)
Task: {787DD8AA-C5ED-41BE-80BF-053831215201} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd)
Task: {858B844E-040E-4C59-A1EB-BC64BE01F2F1} - System32\Tasks\{0ED4F045-557C-46F9-9FB6-DEE2EAC44C0D} => pcalua.exe -a "C:\Program Files\Malware Defender\uninstall.exe"
Task: {963C77D5-85AC-4036-9377-D4D4B34AEC99} - System32\Tasks\{5B6FC09B-BCB9-4046-9A98-AE18B3A105BF} => pcalua.exe -a C:\Users\Ana\Downloads\avira_antivir_personal_en.exe -d C:\Users\Ana\Desktop
Task: {B1896D12-DE8B-4262-AE48-D5EEC355BCAB} - System32\Tasks\{BABF60FB-CDBB-4D0B-A3A2-5CD408A68875} => pcalua.exe -a E:\bankerfix.exe -d E:\
Task: {B373DDEA-701F-49F1-88DA-F6EAECE5F211} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-15] (Google Inc.)
Task: {B6526666-19E2-45A5-ADCA-18F934385FCB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-15] (Google Inc.)
Task: {BA895A3B-91F5-43D4-AFC4-8DA90AE6C89D} - System32\Tasks\Malware Defender => c:\program files\malware defender\malwaredefender.exe [2012-01-10] (360.cn)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-216632212-3070175800-140490606-1000Core.job => C:\Users\Ana\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-216632212-3070175800-140490606-1000UA.job => C:\Users\Ana\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-13 19:00 - 2015-08-13 19:00 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-13 18:59 - 2015-08-13 18:59 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-25 14:28 - 2015-08-25 14:28 - 02961408 _____ () C:\Program Files\AVAST Software\Avast\defs\15082501\algo.dll
2015-08-13 19:00 - 2015-08-13 19:00 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2011-03-15 07:13 - 2011-03-15 07:13 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2011-08-11 12:15 - 2011-05-28 22:04 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll
2015-03-13 10:54 - 2015-03-13 10:54 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-2070.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-216632212-3070175800-140490606-1000\...\bancobrasil.com.br -> hxxps://www14.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-216632212-3070175800-140490606-1000\...\bb.com.br -> hxxps://seg.bb.com.br


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-216632212-3070175800-140490606-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 201.10.120.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AgendaProcreare => 2
MSCONFIG\Services: AsusService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: KMService => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Warsaw Technology => 2
MSCONFIG\startupfolder: C:^Users^Ana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk => C:\Windows\pss\Facebook Messenger.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Ana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CapsHook => AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
MSCONFIG\startupreg: Diebold - Warsaw => C:\Program Files\Diebold\Warsaw\core.exe
MSCONFIG\startupreg: Eee Docking => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: LiveUpdate => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
MSCONFIG\startupreg: OfficeSyncProcess => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SuperHybridEngine => AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
MSCONFIG\startupreg: WinampAgent => C:\Program Files\Winamp\winampa.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{06CA328C-456D-4EB5-8421-8DF6DEAEB696}] => (Allow) svchost.exe
FirewallRules: [TCP Query User{ABB9BBE9-3B3E-4B0C-92FA-82DE7C9286AE}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{80E03C2A-7202-4917-B3A6-927D386DDF59}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{87A129A7-1CD8-4481-9D50-E7A37B0D8E93}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DEE745FD-8942-425D-BC1A-4226483542BC}] => (Allow) LPort=2869
FirewallRules: [{7A6D2AD8-7825-44B4-BC08-633993345D7B}] => (Allow) LPort=1900
FirewallRules: [{92091D37-0EC7-4537-99E8-237BD68F5C14}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{4C221F29-04AF-43F1-B392-C8C71C9B8B22}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{4C641A54-4D7B-4A3E-8A2D-9940494C8861}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{CD7276E5-1EC3-4C4B-A1E0-BDD326D140A5}C:\program files\java\jre1.8.0_40\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files\java\jre1.8.0_40\launch4j-tmp\irpf2015.exe
FirewallRules: [UDP Query User{8F2719E6-D286-46B2-9D41-C574F3188A43}C:\program files\java\jre1.8.0_40\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files\java\jre1.8.0_40\launch4j-tmp\irpf2015.exe
FirewallRules: [TCP Query User{261D6453-8C29-4B6A-B4BC-D69EAFB730B8}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe
FirewallRules: [UDP Query User{5F59E721-83E7-4DD9-ACF2-1134AB1009C5}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe
FirewallRules: [{852753A5-C9DB-4AAE-84EB-9BCC95D96A73}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{0DAFA582-FCC5-4F2E-92CB-0766897D674F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{0188CBEE-74E0-47A7-A5F7-D4F7930026C0}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{4C8DA78A-AB1A-4BA2-98ED-79E6705E2ABE}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/25/2015 04:59:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:57:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: winlogon.exe, versão: 6.1.7600.16447, carimbo de hora: 0x4ae7b15d
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7600.16695, carimbo de hora: 0x4cc7ab44
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0006a7d9
Identificação do processo com falha: 0x2b0
Hora de início do aplicativo com falha: 0xwinlogon.exe0
Caminho do aplicativo com falha: winlogon.exe1
FCaminho do módulo de falhas: winlogon.exe2
Identificação do Relatório: winlogon.exe3

Error: (08/25/2015 04:55:19 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:43:21 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {6e5727d1-e7d5-4338-a129-b0a00a110d55}

Error: (08/25/2015 04:23:39 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:15:06 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:04:23 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 03:32:27 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 02:42:17 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {139f22c0-ceb7-4799-8fa4-fcbe1782d9fb}

Error: (08/25/2015 02:39:08 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O Windows não pode carregar o arquivo de Registro de classes.
DETALHE - O sistema não pode encontrar o arquivo especificado.


System errors:
=============
Error: (08/25/2015 05:10:57 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/25/2015 05:10:57 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/25/2015 05:10:56 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/25/2015 05:10:56 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/25/2015 05:10:55 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (08/25/2015 04:56:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
cdrom

Error: (08/25/2015 04:56:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: O serviço Avira Mail Protection depende do serviço Avira Real-Time Protection, mas não foi possível iniciá-lo devido ao seguinte erro:
%%2

Error: (08/25/2015 04:55:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: O serviço Avira Web Protection depende do serviço Avira Real-Time Protection, mas não foi possível iniciá-lo devido ao seguinte erro:
%%2

Error: (08/25/2015 04:55:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Avira Real-Time Protection devido ao seguinte erro:
%%2

Error: (08/25/2015 04:55:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Avira Agendamento devido ao seguinte erro:
%%2


Microsoft Office:
=========================
Error: (08/25/2015 04:59:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:57:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: winlogon.exe6.1.7600.164474ae7b15dntdll.dll6.1.7600.166954cc7ab44c00000050006a7d92b001d0df6fe94306f7C:\Windows\system32\winlogon.exeC:\Windows\SYSTEM32\ntdll.dll79bc6584-4b63-11e5-8f83-bcaec5a4837d

Error: (08/25/2015 04:55:19 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:43:21 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Acesso negado.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {6e5727d1-e7d5-4338-a129-b0a00a110d55}

Error: (08/25/2015 04:23:39 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:15:06 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 04:04:23 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 03:32:27 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.

Error: (08/25/2015 02:42:17 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Acesso negado.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {139f22c0-ceb7-4799-8fa4-fcbe1782d9fb}

Error: (08/25/2015 02:39:08 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: AUTORIDADE NT)
Description: O sistema não pode encontrar o arquivo especificado.


==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N550 @ 1.50GHz
Percentage of memory in use: 43%
Total physical RAM: 2038.12 MB
Available physical RAM: 1142.86 MB
Total Virtual: 4076.23 MB
Available Virtual: 2633.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:65.11 GB) NTFS
Drive d: () (Fixed) (Total:200.43 GB) (Free:199.92 GB) NTFS
Drive e: () (Removable) (Total:7.25 GB) (Free:0.66 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: D4A5FA71)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 7.3 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité