cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:27-02-2016
Executado por Bê (2016-02-27 13:47:04)
Executando a partir de C:\Users\Bê\Downloads
Microsoft Windows 7 Home Basic Service Pack 1 (X86) (2015-12-09 18:10:55)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3935043720-4002746638-1459475620-500 - Administrator - Disabled)
Bê (S-1-5-21-3935043720-4002746638-1459475620-1000 - Administrator - Enabled) => C:\Users\Bê
Convidado (S-1-5-21-3935043720-4002746638-1459475620-501 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3935043720-4002746638-1459475620-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Reader 9.3 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}) (Version: 11.5.1.601 - Adobe Systems, Inc.)
Advanced System Protector (HKLM\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1) (Version: 2.2.1000.19163 - Advanced System Protector) <==== ATENÇÃO
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Bing Bar (HKLM\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink DVD Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2216 - CyberLink Corp.)
CyberLink MediaShow (HKLM\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.3419 - CyberLink Corp.)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1.1110 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2201 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
EaseUS Data Recovery Wizard 8.5 (HKLM\...\EaseUS Data Recovery Wizard 8.5_is1) (Version: - EaseUS)
ESU for Microsoft Windows 7 (HKLM\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden
HP Advisor (HKLM\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10262.3295 - Hewlett-Packard)
HP Quick Launch (HKLM\...\{F50E691C-FAA1-45E3-A04C-DC3604D496CE}) (Version: 1.0.18 - Hewlett-Packard)
HP Setup (HKLM\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Software Framework (HKLM\...\{223E2363-6643-49CB-A062-59A9858EE8EE}) (Version: 3.5.17.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM\...\{B60DCA15-56A3-4D2D-8747-22CF7D7B588B}) (Version: 4.4.6.3 - Hewlett-Packard)
HP Update (HKLM\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0179 (HKLM\...\{5C3E37A9-B7A7-4CDD-8A87-EB6701AFD571}) (Version: 1.02.0001 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2086 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{F16EA575-26A5-4DAD-A800-95267BE02C12}) (Version: 12.3.2.35 - Apple Inc.)
Java(TM) 6 Update 17 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Junk Mail filter update (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 11.8.0 (HKLM\...\KLiteCodecPack_is1) (Version: 11.8.0 - )
LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2215 - CyberLink Corp.)
LabelPrint (Version: 2.5.2215 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM\...\{6AFDE3BE-BC01-45A4-9D06-BBF5AD207313}) (Version: 1.18.12.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office com Clique para Executar 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3935043720-4002746638-1459475620-1000\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
MKV Player 2.1.21 (HKLM\...\MKV Player_is1) (Version: - )
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
muvee Reveal (HKLM\...\{43BA31BA-04BD-2EA3-0A60-A9C54E06D3F2}) (Version: 7.0.43.11502 - muvee Technologies Pte Ltd)
Norton Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3415 - CyberLink Corp.)
Power2Go (Version: 6.0.3415 - CyberLink Corp.) Hidden
PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3420 - CyberLink Corp.)
PowerDirector (Version: 7.0.3420 - CyberLink Corp.) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6037 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Software (HKLM\...\{901F0D4C-009D-1112-8DE4-03599E7B0C5C}) (Version: 1.00.10.0104 - REALTEK Semiconductor Corp.)
Recovery Manager (Version: 5.5.2214 - CyberLink Corp.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Suporte para Aplicativos Apple (32-bit) (HKLM\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.7.0 - Synaptics Incorporated)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Visualizador do Microsoft PowerPoint (HKLM\...\{95140000-00AF-0416-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Warsaw 1.11.0.2578 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.2578 - GAS Tecnologia)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{9E2EE2F7-33BD-4D30-9E5D-8469A9F32009}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3935043720-4002746638-1459475620-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Bê\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuthLib.dll ()

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05E6D67C-40DF-4B12-8D6A-BE1315B1DC55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2016-02-03] (Microsoft)
Task: {11C8F23D-207E-455A-9A1D-F4284E273D57} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-02-09] ()
Task: {1AB14A77-D156-47D2-8D33-9BC27AF446E4} - System32\Tasks\Nybrur => C:\PROGRA~1\SHOPPE~1\Pusbemf.bat
Task: {329D5AF0-BD1D-4964-B5FA-A4C459FF2082} - System32\Tasks\ttwifi => C:\Program Files\ttwifi\tiantianwifi.exe
Task: {399BB92B-9BFC-4C65-999A-56BAA905A451} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-12-23] ()
Task: {45492BE6-BC74-4015-8701-A74B07B88ED9} - System32\Tasks\Advanced System~Protector_startup => C:\Program Files\ASP\AdvancedSystemProtector.exe [2016-01-20] () <==== ATENÇÃO
Task: {6FB8D11A-3F79-4804-8160-1F022A55463A} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-03-24] (Hewlett-Packard)
Task: {90034F68-DB72-4066-9081-6B43E210133F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-09] (Google Inc.)
Task: {9A4E09BE-45FD-4F93-80C8-0AC06490192E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Ghost Resign Task => c:\program files\hewlett-packard\hp health check\activecheck\product_line\HPResignFileLoader.exe [2016-02-03] (Microsoft)
Task: {AC0560C5-1728-4EFD-AE9A-D42FDE8F0C32} - System32\Tasks\Advanced System~Protector => C:\Program Files\ASP\AspManager.exe [2016-01-20] ()
Task: {BDB5DFBF-05CA-49B6-AB37-55C66EA1F67C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-09] (Google Inc.)
Task: {CFDCBC7B-108E-45D2-B348-78D8545D3CE3} - System32\Tasks\Registration => C:\Program Files\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-07] ()
Task: {E4C56A84-0B44-42F8-9CA0-EA47E1932B49} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
Task: {EB1C4483-5A11-4502-A5AE-68E7CBAAF7E5} - System32\Tasks\RecoveryCDWin7 => C:\Program Files\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-07] ()
Task: {EC368414-0762-42C7-AD0E-7E7D1D6A9CB4} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-03-24] (Hewlett-Packard)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2010-02-22 10:19 - 2010-02-22 10:19 - 02121728 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll
2010-02-22 10:19 - 2010-02-22 10:19 - 07745536 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll
2010-02-22 10:19 - 2010-02-22 10:19 - 00135168 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2016-02-02 08:10 - 2016-02-02 08:10 - 00016896 _____ () C:\Program Files\TomTom\MySportsConnect\DeviceDetection.dll
2016-02-02 08:12 - 2016-02-02 08:12 - 00720896 _____ () C:\Program Files\TomTom\MySportsConnect\ContentManager.dll
2016-02-02 08:10 - 2016-02-02 08:10 - 00017920 _____ () C:\Program Files\TomTom\MySportsConnect\TimeParse.dll
2016-02-02 08:10 - 2016-02-02 08:10 - 00109568 _____ () C:\Program Files\TomTom\MySportsConnect\kqoauth.dll
2016-02-02 08:10 - 2016-02-02 08:10 - 00019968 _____ () C:\Program Files\TomTom\MySportsConnect\TomTomSupporterBase.dll
2016-02-02 08:12 - 2016-02-02 08:12 - 00028672 _____ () C:\Program Files\TomTom\MySportsConnect\QtSolutions_SingleApplication.dll
2016-02-10 09:25 - 2016-02-09 11:30 - 02036224 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2009-07-01 15:44 - 2009-07-01 15:44 - 00632888 ____R () C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
2016-02-19 18:29 - 2016-02-18 01:14 - 01630360 _____ () C:\Program Files\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-19 18:29 - 2016-02-18 01:14 - 00085656 _____ () C:\Program Files\Google\Chrome\Application\48.0.2564.116\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==
AlternateDataStreams: C:\Windows\System32:8C009109_Cef.gbp
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3935043720-4002746638-1459475620-1000\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3935043720-4002746638-1459475620-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2016-02-10 09:10 - 00000967 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3935043720-4002746638-1459475620-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bê\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: AeLookupSvc => 3
MSCONFIG\Services: AERTFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: AxInstSV => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: ggbugreport => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: HPWMISVC => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: neqidupozbt => 2
MSCONFIG\Services: reryfuhozbt => 2
MSCONFIG\Services: RichVideo => 2
MSCONFIG\Services: Winsere => 2
MSCONFIG\Services: wucotusy => 2
MSCONFIG\Services: zutuzuni => 2

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{A628D0C9-5D60-4EAC-A99F-F16CFE89B5F1}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{E8B24A2F-0140-4911-A52E-7CA34CCDAB92}] => (Allow) svchost.exe
FirewallRules: [{EA6853F7-EE48-4D02-87C2-7BFE86EB3EE8}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{5CAB2D4B-93F1-4346-9DED-EAA085147DDF}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{097DC82C-4D67-4C34-8E4C-E8D1458DA87C}] => (Allow) C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.EXE
FirewallRules: [{3AFAE8E1-7525-49F4-A9E2-29E4CDCBB535}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3211DC76-86ED-4226-AFD7-38DBB3DE46F6}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1C3D73A2-4ACC-404A-BB13-BCB5C5D3A6E1}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2BB32457-9F6D-4335-BFB1-4F6175403A97}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{57363DB2-2D60-4A14-867D-B3D970EC66BC}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5F750D1B-70E2-4A78-A9BE-EE0A5F197D22}] => (Allow) C:\Users\Bê\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{003FDD3D-83CA-47BF-869A-E4423C4D6DBD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{349ABD61-629C-48B3-B5C6-36132441AAD4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FD615F7E-F2D0-4591-B3D7-F9C28979616B}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3B1090BA-BCFC-453A-99D1-C551451EEBDB}] => (Allow) C:\Users\Bê\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{425F791F-1A1C-4AF9-B414-3815F4B301D8}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{646A4D84-93DD-4E5F-B338-9EA85AD7E48B}] => (Allow) LPort=2869
FirewallRules: [{024649C0-1384-44B7-AE47-B35E6494667C}] => (Allow) LPort=1900
FirewallRules: [{C62DF8B4-83D9-43AB-94CA-2FEAE8310EE7}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{918C7CCC-556E-42A5-9A95-1FE822643B87}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{91C912B7-A3BE-4A98-AF16-423673F24B6B}] => (Allow) C:\Program Files\Max Driver Updater\maxdu.exe
FirewallRules: [{EB40F9C2-D94E-43FE-92C9-B4FBE5ED0BC7}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

12-02-2016 12:39:07 Advanced System~Protector
14-02-2016 22:18:31 Windows Update
17-02-2016 20:57:57 Operação de restauração
19-02-2016 19:13:58 Windows Update
23-02-2016 21:54:37 Windows Update
27-02-2016 13:08:42 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (02/25/2016 07:10:02 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Falha ao criar ponto de restauração (Processo = C:\Windows\system32\svchost.exe -k netsvcs; Descrição = Windows Update; Erro = 0x81000101).

Error: (02/12/2016 03:23:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Explorer.EXE versão 6.1.7601.19135 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 634

Hora de Início: 01d165ac8912a7a1

Hora de Término: 60000

Caminho do Aplicativo: C:\Windows\Explorer.EXE

Id do Relatório: 8bfbfb96-d1b5-11e5-865b-c80aa9e1d761

Error: (02/12/2016 01:37:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Matroska_Pack_Full_v1.1.2.exe versão 1.1.2.1230 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 15dc

Hora de Início: 01d165b31971dc3a

Hora de Término: 16

Caminho do Aplicativo: C:\Users\Bê\AppData\Local\Temp\Temp1_MatroskaPack_Full_1.1.2.zip\Matroska_Pack_Full_v1.1.2.exe

Id do Relatório:

Error: (02/12/2016 12:39:07 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {739cfeb2-3d77-49aa-a020-8b21cdd1e432}

Error: (02/12/2016 08:43:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 48766006

Error: (02/12/2016 08:43:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 48766006

Error: (02/12/2016 08:43:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/12/2016 08:43:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 48764258

Error: (02/12/2016 08:43:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 48764258

Error: (02/12/2016 08:43:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


Erros de Sistema:
=============
Error: (02/25/2016 07:16:08 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: %Trojan:Win32/Patched.AZ60 encontrou um erro crítico ao executar uma ação contra malware ou outro software potencialmente indesejado.

Para obter mais informações, consulte:
%Trojan:Win32/Patched.AZ603

Nome: Trojan:Win32/Patched.AZ

ID: 2147708078

Severidade: %Trojan:Win32/Patched.AZ600

Categoria: %Trojan:Win32/Patched.AZ602

Caminho: 4.9.0218.02

Origem da Detecção: 4.9.0218.04

Tipo de Detecção: 4.9.0218.08

Fonte da Detecção: %Trojan:Win32/Patched.AZ608

Usuário: {B8241523-B201-4C7E-9338-A506C862CBB4}9

Nome do Processo: %Trojan:Win32/Patched.AZ609

Ação: {B8241523-B201-4C7E-9338-A506C862CBB4}1

Status da Ação: {B8241523-B201-4C7E-9338-A506C862CBB4}8

Código de Erro: {B8241523-B201-4C7E-9338-A506C862CBB4}3

Descrição do erro: {B8241523-B201-4C7E-9338-A506C862CBB4}4

Versão da Assinatura: 2016-02-25T22:15:30.777Z1

Versão do Mecanismo: 2016-02-25T22:15:30.777Z2

Error: (02/23/2016 09:56:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80070643: Atualização de Definição Microsoft Security Essentials – KB2310138 (Definição 1.213.7011.0).

Error: (02/23/2016 09:55:59 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORIDADE NT60 encontrou um erro ao atualizar assinaturas.

Nova Versão da Assinatura:

Versão da Assinatura Anterior: 1.213.6995.0

Origem da Atualização: %AUTORIDADE NT59

Etapa da Atualização: 4.8.0204.00

Caminho de Origem: 4.8.0204.01

Tipo de Assinatura: %AUTORIDADE NT602

Tipo de Atualização: %AUTORIDADE NT604

Usuário: AUTORIDADE NT\SISTEMA

Versão do Mecanismo Atual: %AUTORIDADE NT605

Versão do Mecanismo Anterior: %AUTORIDADE NT606

Código de Erro: %AUTORIDADE NT607

Descrição do erro: %AUTORIDADE NT608

Error: (02/23/2016 09:31:23 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (02/23/2016 09:31:22 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (02/23/2016 09:31:22 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (02/23/2016 09:31:21 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (02/23/2016 09:31:21 PM) (Source: Disk) (EventID: 11) (User: )
Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR1.

Error: (02/23/2016 05:33:35 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: %Trojan:Win32/Patched.AZ60 encontrou um erro crítico ao executar uma ação contra malware ou outro software potencialmente indesejado.

Para obter mais informações, consulte:
%Trojan:Win32/Patched.AZ603

Nome: Trojan:Win32/Patched.AZ

ID: 2147708078

Severidade: %Trojan:Win32/Patched.AZ600

Categoria: %Trojan:Win32/Patched.AZ602

Caminho: 4.8.0204.02

Origem da Detecção: 4.8.0204.04

Tipo de Detecção: 4.8.0204.08

Fonte da Detecção: %Trojan:Win32/Patched.AZ608

Usuário: {76F26CBC-9490-451B-BB54-1C79BF91769F}9

Nome do Processo: %Trojan:Win32/Patched.AZ609

Ação: {76F26CBC-9490-451B-BB54-1C79BF91769F}1

Status da Ação: {76F26CBC-9490-451B-BB54-1C79BF91769F}8

Código de Erro: {76F26CBC-9490-451B-BB54-1C79BF91769F}3

Descrição do erro: {76F26CBC-9490-451B-BB54-1C79BF91769F}4

Versão da Assinatura: 2016-02-23T20:32:53.832Z1

Versão do Mecanismo: 2016-02-23T20:32:53.832Z2

Error: (02/22/2016 04:41:57 PM) (Source: Server) (EventID: 2505) (User: )
Description: O servidor não pôde ligar-se com o transporte \Device\NetBT_Tcpip_{558C8BD6-1F87-460F-8E58-7E327D131BCA} porque outro computador na rede tem o mesmo nome. Não foi possível iniciar o servidor.


==================== Informações da Memória ===========================

Processador: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentagem de memória em uso: 77%
RAM física total: 1978.92 MB
RAM física disponível: 450.3 MB
Virtual Total: 3957.84 MB
Virtual disponível: 1903.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:287.35 GB) (Free:119.3 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive d: (RECOVERY) (Fixed) (Total:10.45 GB) (Free:1.76 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: DFA871F4)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=287.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité