cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01
Executado por Samir (2016-03-27 07:12:22)
Executando a partir de C:\Users\Samir\Downloads
Windows 8.1 Single Language (X64) (2016-02-09 16:58:33)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2830675187-2129402912-1900169697-500 - Administrator - Disabled)
Convidado (S-1-5-21-2830675187-2129402912-1900169697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2830675187-2129402912-1900169697-1003 - Limited - Enabled)
Samir (S-1-5-21-2830675187-2129402912-1900169697-1001 - Administrator - Enabled) => C:\Users\Samir
visitante (S-1-5-21-2830675187-2129402912-1900169697-1004 - Limited - Enabled) => C:\Users\visitante

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Antivírus e antispyware da McAfee (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Antivírus e antispyware da McAfee (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1202.1711.102 - Alps Electric)
Aplicativo Itaú (HKLM-x32\...\{F88F4F33-A3C7-4B34-AFEA-944E29A95F62}) (Version: 1.0.58 - Banco Itaú)
CleanBrowser (HKLM-x32\...\CleanBrowser) (Version: - )
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.108 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{3BAA7681-EF42-4FEC-84FC-87BA815492A4}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.2.8.25 - HP)
HP Support Solutions Framework (HKLM-x32\...\{57A79409-9C79-4080-9FFA-09D4DAECC26B}) (Version: 12.2.8.17 - HP)
HP System Event Utility (HKLM-x32\...\{D17A3B70-B75E-4C49-83D6-C17DDF65B35F}) (Version: 1.3.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.24.1790 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3368 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.3 - Receita Federal do Brasil)
IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.1 - Receita Federal do Brasil)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 14.0.7086 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.292.3 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 45.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 pt-BR)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1216 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0AC74F9F-12E9-4C73-97C5-ACA284A8F6C1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-26] (Google Inc.)
Task: {18A42931-28F6-4D37-AFC2-5B3D1BBC08D3} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-03-23] ()
Task: {200440F8-4FEC-4E95-9660-D19CA4888212} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {3A7A6FD1-9DC0-4DDF-ADC4-1922370878CA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-23] (Adobe Systems Incorporated)
Task: {420EDE38-08D2-4D23-8316-337823581FF1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {470518D8-CBAB-4C94-9563-2785E1CCB42F} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
Task: {58C58493-7CBB-4546-A770-E6B9016D6AE5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-11] (Hewlett-Packard)
Task: {660D6D85-5AA9-47E5-8AC4-1288C8506DE5} - System32\Tasks\WinTaske => C:\Program Files (x86)\WinTaske\WinTaske\WinTaske.exe [2016-03-23] ()
Task: {69A5C9DA-092A-4D00-93C2-5F22F4667A2B} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-02-16] (McAfee, Inc.)
Task: {78ACF1FF-395B-42A7-ADF3-1799DDE40AB4} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
Task: {7992EE7F-3B2F-479E-94D5-9B2698EF889A} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-02-16] (McAfee, Inc.)
Task: {94C711AB-CC82-423E-9292-996408744505} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-03-02] (Hewlett-Packard)
Task: {A1873A1B-4B91-4101-9E83-0CB5E8F759C3} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
Task: {C69436D6-2B64-41DA-AFDA-DFFC7FEB4A78} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-03-02] (Hewlett-Packard)
Task: {C7856183-371B-4F69-82E9-9F29B39CCE4F} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2015-02-11] (CyberLink Corp.)
Task: {EEC67646-9AF1-45CF-AC32-B1FD4F35D966} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {F6C3A8B7-AA6F-4327-A0B1-8C359F12707C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {FC7710C9-77BE-431D-B4F3-A1785E81E882} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {FC9F3C4F-AC37-4BF4-BE0B-7A219A3798B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-26] (Google Inc.)
Task: {FD33BA91-7494-4544-8486-7EF15A9365C6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForSamir.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2016-03-26 21:27 - 2016-03-26 21:27 - 03587000 _____ () C:\ProgramData\System32\SafeGuard64.dll
2016-03-26 19:26 - 2016-03-26 19:26 - 00339456 _____ () C:\Program Files (x86)\12828DFB-1459035301-DE11-B27E-00235A9DD9D3\knsmDA4A.tmpfs
2016-03-26 20:31 - 2016-03-23 14:49 - 02036736 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2016-02-15 12:56 - 2016-02-15 12:56 - 46344704 _____ () C:\Program Files (x86)\CleanBrowser\app\bin\nw.exe
2016-03-26 21:27 - 2016-03-26 21:27 - 02771896 _____ () C:\ProgramData\System32\SafeGuard32.dll
2016-03-26 21:36 - 2016-03-23 01:31 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.108\libglesv2.dll
2016-03-26 21:36 - 2016-03-23 01:31 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.108\libegl.dll
2016-02-15 12:56 - 2016-02-15 12:56 - 01481728 _____ () C:\Program Files (x86)\CleanBrowser\app\bin\libglesv2.dll
2016-02-15 12:56 - 2016-02-15 12:56 - 00073728 _____ () C:\Program Files (x86)\CleanBrowser\app\bin\libegl.dll
2016-02-15 12:56 - 2016-02-15 12:56 - 01681224 _____ () C:\Program Files (x86)\CleanBrowser\app\bin\ffmpegsumo.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2013-08-22 10:25 - 2016-03-26 20:33 - 00001032 ____N C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.1 mssplus.mcafee.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2830675187-2129402912-1900169697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Samir\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\+-.jpg
DNS Servers: 104.197.191.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A2309DC1-0FE6-48C3-BC5A-DA7289D0E7E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5EA0DD51-8D65-492C-A71F-0DF95EC2BFF8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{03348801-EAE4-4E4A-A907-BACDE6BA6C30}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C5515693-448A-4816-996B-2D06F17C1A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4AD8E000-9454-4451-89D5-130BE0243B5C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{E5FBCE54-BC0B-4AE3-A1DF-6287C159DF3F}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{BB79E01E-14F3-431E-AA2B-115FA8615C0A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{EBDA6F58-CF24-4F75-AC2D-E040218BF5B0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3CEA3F0B-7280-4302-B772-F94046223A9E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4D2E89B3-EF77-47C4-98A4-98BAE2132AEF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{2CADAC08-A0DD-4B3F-8E7D-8E8CEAA736B4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{513C642D-87D3-498C-9C05-CE5616F1A96E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{F48E179F-8FB2-49A5-A3C2-1A25483C6693}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{75454030-FAD9-4A5B-87CC-EE0815D0D0CA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{04D89866-08E0-469D-9569-5E12AF5EA01F}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E681BAFF-32AA-4D07-8781-C6F1CF5EA89D}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83E55807-C2F4-4942-B5A9-69EA96764E4C}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E9D64C8B-7B4C-41A6-A646-AB14A5C9848C}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E2E4F230-93B6-4D0A-8CB9-AF23C0012FF5}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6C8A7344-9FB0-48D0-8804-AA4105668C83}] => (Allow) C:\Users\Samir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{147EE817-9751-429A-A384-B763C7F3751A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

12-03-2016 01:36:28 Ponto de Verificação Agendado
22-03-2016 13:58:53 Ponto de Verificação Agendado
26-03-2016 20:03:55 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (03/27/2016 07:05:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: McCSPServiceHost.exe, versão: 1.8.267.0, carimbo de data/hora: 0x56cc37ae
Nome do módulo com falha: SafeGuard64.dll_unloaded, versão: 2.2.0.40, carimbo de data/hora: 0x5683828f
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000005827b
ID do processo com falha: 0x192c
Hora de início do aplicativo com falha: 0xMcCSPServiceHost.exe0
Caminho do aplicativo com falha: McCSPServiceHost.exe1
Caminho do módulo com falha: McCSPServiceHost.exe2
ID do Relatório: McCSPServiceHost.exe3
Nome completo do pacote com falha: McCSPServiceHost.exe4
ID do aplicativo relativo ao pacote com falha: McCSPServiceHost.exe5

Error: (03/27/2016 07:01:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: McCSPServiceHost.exe, versão: 1.8.267.0, carimbo de data/hora: 0x56cc37ae
Nome do módulo com falha: SafeGuard64.dll_unloaded, versão: 2.2.0.40, carimbo de data/hora: 0x5683828f
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000005827b
ID do processo com falha: 0xca8
Hora de início do aplicativo com falha: 0xMcCSPServiceHost.exe0
Caminho do aplicativo com falha: McCSPServiceHost.exe1
Caminho do módulo com falha: McCSPServiceHost.exe2
ID do Relatório: McCSPServiceHost.exe3
Nome completo do pacote com falha: McCSPServiceHost.exe4
ID do aplicativo relativo ao pacote com falha: McCSPServiceHost.exe5

Error: (03/26/2016 09:52:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: McCSPServiceHost.exe, versão: 1.8.267.0, carimbo de data/hora: 0x56cc37ae
Nome do módulo com falha: SafeGuard64.dll_unloaded, versão: 2.2.0.40, carimbo de data/hora: 0x5683828f
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000005827b
ID do processo com falha: 0xd7c
Hora de início do aplicativo com falha: 0xMcCSPServiceHost.exe0
Caminho do aplicativo com falha: McCSPServiceHost.exe1
Caminho do módulo com falha: McCSPServiceHost.exe2
ID do Relatório: McCSPServiceHost.exe3
Nome completo do pacote com falha: McCSPServiceHost.exe4
ID do aplicativo relativo ao pacote com falha: McCSPServiceHost.exe5

Error: (03/26/2016 09:29:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: McCSPServiceHost.exe, versão: 1.8.267.0, carimbo de data/hora: 0x56cc37ae
Nome do módulo com falha: SafeGuard64.dll_unloaded, versão: 2.2.0.40, carimbo de data/hora: 0x5683828f
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000005827b
ID do processo com falha: 0x1764
Hora de início do aplicativo com falha: 0xMcCSPServiceHost.exe0
Caminho do aplicativo com falha: McCSPServiceHost.exe1
Caminho do módulo com falha: McCSPServiceHost.exe2
ID do Relatório: McCSPServiceHost.exe3
Nome completo do pacote com falha: McCSPServiceHost.exe4
ID do aplicativo relativo ao pacote com falha: McCSPServiceHost.exe5

Error: (03/26/2016 09:24:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SAMIR)
Description: Falha na ativação do aplicativo Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App com o erro: -2144927150. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/26/2016 09:24:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SAMIR)
Description: Falha na ativação do aplicativo Microsoft.BingFoodAndDrink_8wekyb3d8bbwe!AppexFoodAndDrink com o erro: -2144927150. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/26/2016 09:23:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SAMIR)
Description: Falha na ativação do aplicativo Microsoft.BingFoodAndDrink_8wekyb3d8bbwe!AppexFoodAndDrink com o erro: -2144927150. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/26/2016 08:54:55 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (03/26/2016 08:45:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: nsx799E.tmp, versão: 0.0.0.0, carimbo de data/hora: 0x56f70e16
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000
ID do processo com falha: 0xcbc
Hora de início do aplicativo com falha: 0xnsx799E.tmp0
Caminho do aplicativo com falha: nsx799E.tmp1
Caminho do módulo com falha: nsx799E.tmp2
ID do Relatório: nsx799E.tmp3
Nome completo do pacote com falha: nsx799E.tmp4
ID do aplicativo relativo ao pacote com falha: nsx799E.tmp5

Error: (03/26/2016 08:41:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: FlashPlayerPlugin_21_0_0_197.exe, versão: 21.0.0.197, carimbo de data/hora: 0x56ec9f82
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento da falha: 0x5db3ca20
ID do processo com falha: 0x11d0
Hora de início do aplicativo com falha: 0xFlashPlayerPlugin_21_0_0_197.exe0
Caminho do aplicativo com falha: FlashPlayerPlugin_21_0_0_197.exe1
Caminho do módulo com falha: FlashPlayerPlugin_21_0_0_197.exe2
ID do Relatório: FlashPlayerPlugin_21_0_0_197.exe3
Nome completo do pacote com falha: FlashPlayerPlugin_21_0_0_197.exe4
ID do aplicativo relativo ao pacote com falha: FlashPlayerPlugin_21_0_0_197.exe5


Erros de Sistema:
=============
Error: (03/27/2016 07:05:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço McAfee CSP Service foi encerrado inesperadamente. Isso aconteceu 2 vez(es).

Error: (03/27/2016 07:04:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2

Error: (03/27/2016 07:01:35 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço McAfee CSP Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (03/27/2016 06:58:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2

Error: (03/27/2016 06:58:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2

Error: (03/27/2016 06:58:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2

Error: (03/27/2016 06:58:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2

Error: (03/27/2016 06:58:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2

Error: (03/26/2016 09:54:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2

Error: (03/26/2016 09:54:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Virtualização de arquivo UAC devido ao seguinte erro:
%%1275


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentagem de memória em uso: 48%
RAM física total: 4027.84 MB
RAM física disponível: 2091.58 MB
Virtual Total: 4731.84 MB
Virtual disponível: 2667.7 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:446.63 GB) (Free:386.84 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:17.92 GB) (Free:1.74 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 80EE8E0C)

Partition: GPT.

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité