cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:20-12-2015
Executado por UESPI (2015-12-22 09:08:03)
Executando a partir de C:\Users\UESPI\Desktop
Microsoft Windows 10 Pro (X86) (2015-09-16 22:58:10)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-613365655-2104278902-840499372-500 - Administrator - Disabled)
Convidado (S-1-5-21-613365655-2104278902-840499372-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-613365655-2104278902-840499372-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-613365655-2104278902-840499372-1004 - Limited - Enabled)
UESPI (S-1-5-21-613365655-2104278902-840499372-1000 - Administrator - Enabled) => C:\Users\UESPI

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
aTube Catcher versão 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Internet Security (HKLM\...\Avast) (Version: 11.1.2245 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Dell System Detect (HKU\S-1-5-21-613365655-2104278902-840499372-1000\...\73f463568823ebbe) (Version: 6.6.0.2 - Dell)
Dic Michaelis - UOL (HKLM\...\WDIC) (Version: - )
DriverEasy 4.9.5 (HKLM\...\DriverEasy_is1) (Version: 4.9.5.0 - Easeware)
FormatFactory 3.7.0.0 (HKLM\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
Google Chrome (HKLM\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (Version: 1.3.29.1 - Google Inc.) Hidden
K-Lite Mega Codec Pack 11.3.6 (HKLM\...\KLiteCodecPack_is1) (Version: 11.3.6 - )
Max Impressão 1.0 (HKLM\...\Max Impressão) (Version: 1.0 - Maxprint )
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.6366.2036 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 43.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 43.0.1 (x86 pt-BR)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Nero 7 Premium (HKLM\...\{F14B8ECC-BDA0-4987-9201-D7B7DBE11046}) (Version: 7.02.0936 - Nero AG)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
SafeZone Stable 1.46.1990.139 (Version: 1.46.1990.139 - Avast Software) Hidden
VDownloader 4.1.1650 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version: - Vitzo Limited)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-613365655-2104278902-840499372-1000_Classes\CLSID\19041B6B-8F97-4669-BA21-C17572737ED2\localserver32 -> "C:\Users\UESPI\AppData\Local\BoBrowser\Application\42.0.2311.96\delegate_execute.exe" => Nenhum Arq (a entrada de dados tem 4 mais caracteres).

==================== Pontos de Restauração =========================

15-12-2015 10:11:37 Ponto de Verificação Agendado
21-12-2015 13:52:30 Windows Update

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2009-06-10 18:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {03130FF0-DCB4-4191-BEA1-3510F10C2C09} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {075E034D-29D2-4236-9CDF-94D06064E574} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-12-04] (Microsoft Corporation)
Task: {0EAA6401-C48C-4204-861A-0051137071BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2015-12-17] (Microsoft Corporation)
Task: {10CC4D38-BA87-417F-A312-D55E0070BEF8} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1282FC15-1103-4CC4-8630-07A419833F2B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {1C2961CD-2075-4FF7-9BBA-B7255013E874} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2DB3EFD6-A87D-4837-811B-F90F7691C04B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {304C63DB-E89B-4E1F-ADF0-94299465AAB3} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {31E00F30-1330-419F-9D42-9B083E06C43D} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-03] ()
Task: {375CC9FE-BE1D-4C3E-9A27-0920785184F2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {3846A8C1-1756-46E1-AD76-88D6CB6857D0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-19] (Piriform Ltd)
Task: {3C535243-49DF-4F39-A640-87EBF84C3AD8} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic
Task: {41A30663-69C4-4DBC-99D8-74A637C55ACB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {49485B23-C6AC-4C02-BBE5-EB4B95EF3386} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {4BBFE1BC-EF09-4667-BE78-AC77E66AA8E0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {5303766B-9811-4D6B-85A9-7AA4A12CC774} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {58324586-E508-4271-B5D2-1B5B6D09AC6F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {61A7E732-C19C-400D-A4A3-AFEB298ED26A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {61D070C1-4CB9-4E30-B6F3-9247E470386B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {61DDA0B0-DD26-4DA9-8578-BAE81415F750} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {65A41861-FE2E-4741-B70B-807BB1B8328E} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {65B6B218-AD46-4D9E-9567-895FB58A8373} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {69BD309D-2E3B-4AEC-9418-843B43E31892} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-16] (Adobe Systems Incorporated)
Task: {6D95CE55-78DD-42A6-9BE5-DFA154C773C2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {75DDCA2B-6DAA-4D89-BA44-0E22F0B333AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {7B152515-1CFF-411D-8D63-840F7D935B8B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7E2AE833-1F28-4AAA-9865-4A5FBEB6A050} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7EEA8134-9A85-4096-829B-EB039AAB8DB2} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {871316D6-AD96-4907-8352-0B0724A5F701} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2015-08-02] (Easeware)
Task: {89E9E002-221D-4291-9ED5-D1B41EC10038} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO
Task: {90F7A4BC-D73A-4019-B2C1-60C844647422} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {9B62F802-FFD1-469F-A5A9-C8418318BC52} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {A1774D5A-9F22-4F92-9591-98C12C4AF06A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {A341653D-3837-48E4-B8FB-EF179FDDB5D1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2015-12-17] (Microsoft Corporation)
Task: {A6E3F0D8-ABE9-4F5D-857F-48DEC418E1CC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {AF7D472D-A09B-4F0B-AE5C-75893DFA6ABD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B7B38D63-0263-4247-AD10-35BDEF0230E1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BDEF580C-0D61-4734-AA74-135C0D8EE182} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C2D8D4EB-F30C-4407-B12E-1F4B45B0D4A0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {C80AE607-482A-4340-99D1-9F9DC5ABCE66} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA4E4B89-DB97-45D0-9CD2-7A4CF80BE87A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5E60CFC-8309-4977-B0BD-69DFD95BB8A6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DC0BB0B7-6305-40AB-8156-4EB0123F5F90} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E34730AF-4EE9-41EF-8D72-FB122B1871AF} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> Nenhum Arquivo <==== ATENÇÃO
Task: {E7EE506C-8604-47C4-9800-0B746877934A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {F2B3C114-A217-40F9-9DB1-A2A8F0C79639} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-15] (AVAST Software)
Task: {F324EB41-6703-42D8-AB0B-0934E20A97E9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FA67A0C4-6262-4E74-A759-6FD868021666} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-12-04] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1450719106.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-09-17 09:29 - 2015-07-14 23:41 - 00025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-12-15 09:07 - 2015-12-15 09:07 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-15 09:07 - 2015-12-15 09:07 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-21 12:41 - 2015-12-21 12:41 - 02805760 _____ () C:\Program Files\AVAST Software\Avast\defs\15122001\algo.dll
2015-12-15 09:07 - 2015-12-15 09:07 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-12-22 08:30 - 2015-12-22 08:30 - 02805760 _____ () C:\Program Files\AVAST Software\Avast\defs\15122102\algo.dll
2015-09-17 09:30 - 2015-08-11 05:53 - 00301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-10-17 11:50 - 2015-12-04 03:17 - 00134312 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-10-17 12:10 - 2015-10-17 12:10 - 00023040 _____ () C:\Windows\KMS-R@1n.exe
2015-09-17 18:43 - 2015-08-18 04:27 - 01771592 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-17 18:43 - 2015-08-18 04:27 - 01771592 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-09-17 09:30 - 2015-08-02 21:57 - 04317696 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 05:25 - 2015-07-10 10:24 - 00377856 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-09-17 09:30 - 2015-08-11 05:35 - 01183232 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-09-17 09:30 - 2015-08-02 21:55 - 01425920 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-17 08:44 - 2015-12-11 00:54 - 01583432 _____ () C:\Program Files\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 08:44 - 2015-12-11 00:54 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-15 09:07 - 2015-12-15 09:07 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-10 11:53 - 2015-12-11 08:13 - 00013312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-12-10 11:53 - 2015-12-11 08:13 - 09366016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-12-02 10:45 - 2015-12-02 10:48 - 00169984 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-12-22 08:34 - 2015-12-22 08:34 - 02831360 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1512.17020.0_x86__8wekyb3d8bbwe\Calculator.exe
2015-12-17 08:44 - 2015-12-11 00:54 - 16573256 _____ () C:\Program Files\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll
2015-10-17 12:10 - 2015-10-17 12:10 - 00004096 _____ () C:\WINDOWS\KMS-R@1nhook.exe
2015-10-17 12:10 - 2015-10-17 12:10 - 00003072 _____ () C:\WINDOWS\KMS-QADhook.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-613365655-2104278902-840499372-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run: => "VDownloader"
HKU\S-1-5-21-613365655-2104278902-840499372-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-613365655-2104278902-840499372-1000\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8D74BCAE-83AE-4F9D-8CFA-A3D67ADFB2DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1F0A0D8B-EBAE-412E-85E4-800DEC4A10F1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{04753A12-FAB3-4A20-976E-8804977E292E}C:\users\uespi\appdata\local\temp\keygen.exe] => (Allow) C:\users\uespi\appdata\local\temp\keygen.exe
FirewallRules: [TCP Query User{ECCD7191-E7B8-43F0-93B9-E5DD893DAB6B}C:\users\uespi\appdata\local\temp\keygen.exe] => (Allow) C:\users\uespi\appdata\local\temp\keygen.exe
FirewallRules: [TCP Query User{6949B9ED-8D0C-4C1E-9E43-182A29989843}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{364CF854-C88B-4E46-907A-1522DCAE0EA0}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{C576DF94-EB1F-462E-8503-82B3A00E992E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F56D0A66-C783-4778-BEF3-728FC3F90C9E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{E766BD95-1400-472A-B64E-ABE092E026FB}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{C4AE4C80-B914-4E96-92EF-955537A7C6CC}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{1A7B4713-A8AC-45C9-9928-4E36959D0009}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{B94EC204-55A0-41F7-83C3-37AC09563F75}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{39AD274A-FA5C-4B8E-8927-3521ED2B33F3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{E7D1BBCE-8EFE-4348-98B5-65C4D22E4449}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{FA40BFFB-47F0-432E-85C5-0203C244A7E7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0CB99BF6-1E28-4AAA-B637-E756B279081F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (12/22/2015 08:29:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UESPI-PC2)
Description: Falha na ativação do aplicativo Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (12/22/2015 08:28:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UESPI-PC2)
Description: Falha na ativação do aplicativo Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (12/22/2015 08:28:50 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: UESPI-PC2)
Description: O aplicativo Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App não foi iniciado dentro do tempo alocado.

Error: (12/21/2015 05:27:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UESPI-PC2)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (12/21/2015 05:26:41 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:41Z. Código de Erro: 0x80040154.

Error: (12/21/2015 05:26:11 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:11Z. Código de Erro: 0x80040154.

Error: (12/21/2015 05:25:41 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:41Z. Código de Erro: 0x80040154.

Error: (12/21/2015 05:25:11 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:11Z. Código de Erro: 0x80040154.

Error: (12/21/2015 05:24:41 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:41Z. Código de Erro: 0x80040154.

Error: (12/21/2015 05:24:11 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Falha ao agendar o reinício do serviço Proteção de Software 2015-12-28T11:02:11Z. Código de Erro: 0x80040154.


Erros de Sistema:
=============
Error: (12/22/2015 08:32:24 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (12/22/2015 08:27:33 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 17:23:08 do dia ‎21/‎12/‎2015 não era esperado.

Error: (12/21/2015 05:22:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x8024200d: Atualizar para o Windows 10 Pro, versão 1511, 10586.

Error: (12/21/2015 12:23:52 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Host de Sincronização_Session2 terminou com o erro:
%%1753

Error: (12/21/2015 12:21:50 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: O sistema detectou um conflito de endereço entre o endereço IP 192.168.0.1 e o sistema
que possui o endereço de hardware de rede C8-3A-35-26-9D-70. Como resultado desse conflito, as operações de rede nesse sistema podem ser
interrompidas.

Error: (12/21/2015 10:27:34 AM) (Source: DCOM) (EventID: 10010) (User: UESPI-PC2)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (12/21/2015 10:27:32 AM) (Source: DCOM) (EventID: 10010) (User: UESPI-PC2)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (12/21/2015 10:27:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_Session1 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (12/21/2015 08:51:59 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: Um alerta fatal foi gerado e enviado ao ponto de extremidade remoto. Isso pode resultar no término da conexão. O código de erro fatal definido do protocolo TLS é 10. O estado de erro do Windows SChannel é 10.

Error: (12/21/2015 08:51:59 AM) (Source: Schannel) (EventID: 4120) (User: AUTORIDADE NT)
Description: Um alerta fatal foi gerado e enviado ao ponto de extremidade remoto. Isso pode resultar no término da conexão. O código de erro fatal definido do protocolo TLS é 10. O estado de erro do Windows SChannel é 10.


CodeIntegrity:
===================================
Date: 2015-09-22 14:25:39.378
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:39.319
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:39.239
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:39.087
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:38.996
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:38.779
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:36.051
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2015-09-22 14:25:35.411
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentagem de memória em uso: 73%
RAM física total: 1979.61 MB
RAM física disponível: 522.57 MB
Virtual Total: 3963.61 MB
Virtual disponível: 2207.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.47 GB) (Free:105.67 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: B0000000)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité