cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01
Executado por Weverton (2016-03-30 20:31:07)
Executando a partir de C:\Users\Weverton\Downloads
Windows 10 Home Single Language Versão 1511 (X64) (2016-03-24 07:20:34)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2680859120-148103200-3204393191-500 - Administrator - Disabled)
Convidado (S-1-5-21-2680859120-148103200-3204393191-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-2680859120-148103200-3204393191-503 - Limited - Disabled)
Weverton (S-1-5-21-2680859120-148103200-3204393191-1001 - Administrator - Enabled) => C:\Users\Weverton

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Antivírus e antispyware da McAfee (Disabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Antivírus e antispyware da McAfee (Disabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Disabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2680859120-148103200-3204393191-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
Adobe Reader XI (11.0.15) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.15 - Adobe Systems Incorporated)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1328 - DsNET Corp)
Components (x32 Version: 1.0.023.00 - Lenovo) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.4.0 - Conexant)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2693.2 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4271 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Lenovo Accelerator Application (HKLM-x32\...\{10672FE6-3D50-4F79-B0C7-A5573A5D415D}) (Version: 2.2.0.0701 - Lenovo)
Lenovo BatteryGauge (HKLM\...\{B8D3ED8D-A295-44C2-8AE1-56823D44AD1F}) (Version: 1.0.007.00 - Lenovo)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4210 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.4210 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.1.3024.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo PowerDVD12 (x32 Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.006.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{A5591EC4-8AD6-48EE-9F8D-FACFA8BA4E35}) (Version: 3.0.002.00 - Lenovo)
Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.054.00 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.3 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.3 - Lenovo) Hidden
Manuais do usuário (x32 Version: 4.0.0.1 - Lenovo) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0.7086 - McAfee, Inc.)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{070C55FA-FB9D-46DD-B30B-4B520A83A66A}) (Version: 1.20.146.0 - Microsoft)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_R.G. Gamblers_is1) (Version: - R.G. Gamblers, Fanfar)
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version: - Microsoft Studios)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.003.11 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.5.0 - Lenovo)
Software de dispositivo do Chipset Intel® (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
State of Decay YOSE - Day One Edition (HKLM-x32\...\State of Decay YOSE - Day One Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.0 - Synaptics Incorporated)
Titan Souls (HKLM-x32\...\1427985242_is1) (Version: 2.0.0.1 - GOG.com)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
WinZip 15.0 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}) (Version: 15.0.9302 - WinZip Computing, S.L. )

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2680859120-148103200-3204393191-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Weverton\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\FileCoAuth.exe (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {07256A8D-C62B-41FA-B743-A27B3B3D1BEF} - System32\Tasks\Pritc => C:\Users\Weverton\AppData\Local\Temp\is-4KAPJ.tmp\print.exe <==== ATENÇÃO
Task: {0B6BD233-4731-45A2-9D09-011D9F06C3CB} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {0F07E52D-8739-448A-8C83-E8B0E34A5A53} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {1464972D-FE6E-4BA8-8B9D-B15649D5A0F0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-23] (Google Inc.)
Task: {15813573-9AB5-49E7-A76C-AF736F6C3F0C} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe
Task: {190C2B5E-E667-4812-80CA-18FFA35FC32F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {20C78946-5AD5-4DED-A499-E02C9298385F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-07-01] ()
Task: {2D36E894-BA95-450F-BFDE-7B4F3B7A917A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-23] (Google Inc.)
Task: {4546EA27-E569-4706-828D-F30E38A3E457} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-07-01] (Lenovo)
Task: {5199D61F-72A7-4A89-840A-65CA20267136} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-03-16] (Lenovo)
Task: {5CD75020-1616-48BF-AD11-0AA1CF480673} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {6ECBF343-041B-4E76-BD34-282608B276C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {7BBC77A2-A306-4AE4-9CAB-BF7F5A526A11} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-03-23] (McAfee, Inc.)
Task: {814B5BC0-925F-430D-BC77-4ED2181C5522} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {917702E0-23BA-4550-A50D-57668E74D39A} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program
Task: {AB41C2D9-A1D7-47B6-A4D6-6B19153117BE} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-07-01] ()
Task: {B10B8580-A55E-4BED-9E73-404702760415} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-07-01] (Lenovo)
Task: {C261A754-C87E-462C-9B35-36510F6CF7F4} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {C4503651-9F53-4604-9837-EC7FA26A7930} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_TVSUUpdateTask => add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {CB878DAE-A17B-4A0F-BECD-E527FD3C8037} - System32\Tasks\Lenovo\QuickOptimizer => C:\Program Files\lenovo\QuickOptimizer\QuickOptimizerIcon.exe [2015-07-10] (Lenovo)
Task: {CCE51E31-FF2C-4526-88C2-DEE98AFD2D43} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {DF7E1EF2-43FF-413C-BFE8-378F7D7E6A25} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => control iMControllerService 128
Task: {E634A03F-2A8F-43B2-A0CE-56BF8F28AF17} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-03-23] (McAfee, Inc.)
Task: {F4DFD014-0A82-412E-B338-8D986F017EFC} - System32\Tasks\WinTaske => C:\Program Files (x86)\WinTaske\WinTaske\WinTaske.exe [2016-03-23] ()
Task: {FA71BBB9-9F39-48FD-A190-A59B642D84F4} - System32\Tasks\MixVideoPlayer Update => C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe <==== ATENÇÃO
Task: {FA976066-159C-4AA2-83EB-E5CD84C5D50A} - System32\Tasks\Lenovo\BatteryGauge => C:\Program Files\lenovo\BatteryGauge\BatteryGaugeIcon.exe [2015-07-10] (Lenovo)
Task: {FFA648E1-E4D7-4487-9E68-00C50E69D79D} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-03-23] ()

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-03-24 03:51 - 2016-03-24 03:51 - 02654872 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-24 03:51 - 2016-03-24 03:51 - 02654872 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-02-13 14:34 - 2016-02-13 14:34 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-03-24 03:51 - 2016-03-24 03:51 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-03-24 03:51 - 2016-03-24 03:51 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2016-02-13 14:34 - 2016-02-13 14:34 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-13 14:34 - 2016-02-13 14:34 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-13 14:34 - 2016-02-13 14:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-13 14:34 - 2016-02-13 14:34 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-03-24 04:00 - 2010-10-26 12:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2015-09-29 17:48 - 2015-09-29 17:48 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2015-09-29 17:48 - 2015-09-29 17:48 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2016-03-28 02:08 - 2016-03-23 14:49 - 02036736 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2016-03-24 09:29 - 2016-03-24 09:32 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-03-28 22:20 - 2016-03-28 22:24 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-03-28 22:20 - 2016-03-28 22:24 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-03-21 18:10 - 2016-03-21 18:13 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-03-24 09:29 - 2016-03-24 09:32 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-03-24 09:29 - 2016-03-24 09:32 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-03-29 20:21 - 2016-03-29 11:41 - 01716376 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2693.2\libglesv2.dll
2016-03-29 20:21 - 2016-03-29 11:41 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2693.2\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-07-10 08:04 - 2016-03-28 02:13 - 00001188 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2680859120-148103200-3204393191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Weverton\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\atributos de deus.jpg
DNS Servers: 208.67.222.222 - 208.67.220.220
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: 0177711459232274mcinstcleanup => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: CxAudMsg => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: Ds3Service => 2
MSCONFIG\Services: FastbootService => 2
MSCONFIG\Services: ggbugreport => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HomeNetSvc => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: ImControllerService => 2
MSCONFIG\Services: jihesewyzbt => 2
MSCONFIG\Services: LenovoPortalService => 2
MSCONFIG\Services: LSCWinService => 3
MSCONFIG\Services: McAWFwk => 3
MSCONFIG\Services: mcbootdelaystartsvc => 2
MSCONFIG\Services: mccspsvc => 2
MSCONFIG\Services: McNaiAnn => 2
MSCONFIG\Services: McODS => 3
MSCONFIG\Services: mcpltsvc => 2
MSCONFIG\Services: McProxy => 2
MSCONFIG\Services: MPCProtectService =>
MSCONFIG\Services: MSK80Service => 2
MSCONFIG\Services: PEFService => 2
MSCONFIG\Services: SynTPEnhService => 2
MSCONFIG\Services: UpdateAgentService => 2
MSCONFIG\Services: Winsere => 2
HKLM\...\StartupApproved\Run: => "XboxStat"
HKU\S-1-5-21-2680859120-148103200-3204393191-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2680859120-148103200-3204393191-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2680859120-148103200-3204393191-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8D8EB09D-B718-4087-800D-EBD18254B30A}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5900C05-1130-41B8-BFBC-7B61A62F2F63}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{02003875-9E6C-4F33-A3C4-D6D712113DBB}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{19D29C72-FECD-4433-95BB-BF2C50315559}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{34C85BA4-B479-4C90-9958-60D3B2C0F540}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5DC402F5-E3C8-4A36-A829-6817E025E89C}] => (Allow) C:\Users\Weverton\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{31FCCC6C-A613-47FB-9C59-F90BB926F7B6}] => (Allow) C:\Program Files (x86)\Lenovo\LenovoPortal\Lenovo.Portal.exe
FirewallRules: [{6DD39E70-FA09-47BA-B712-5573F1D7CEAD}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0882F0BE-D6D9-47BA-B691-2742E38B019A}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{B6DC1DA1-9683-4F42-B830-318D1959BAA0}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{CE950E24-1E0D-4B8A-ADDB-1E5951284C53}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{00CF1ED2-04E2-446F-BC38-C6040DCC2F65}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe
FirewallRules: [{B957631C-0E6F-41EB-A2F9-1675BCA7EF5B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

24-03-2016 11:49:53 DirectX instalado
28-03-2016 02:12:31 Uniblue DriverScanner installation
30-03-2016 03:01:37 Installed Adobe Reader XI.

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (03/30/2016 03:18:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: AdobeARMHelper.exe, versão: 1.824.16.6751, carimbo de data/hora: 0x566e7208
Nome do módulo com falha: AdobeARMHelper.exe, versão: 1.824.16.6751, carimbo de data/hora: 0x566e7208
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00009e55
ID do processo com falha: 0x960
Hora de início do aplicativo com falha: 0xAdobeARMHelper.exe0
Caminho do aplicativo com falha: AdobeARMHelper.exe1
Caminho do módulo com falha: AdobeARMHelper.exe2
ID do Relatório: AdobeARMHelper.exe3
Nome completo do pacote com falha: AdobeARMHelper.exe4
ID do aplicativo relativo ao pacote com falha: AdobeARMHelper.exe5

Error: (03/30/2016 03:01:47 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (03/29/2016 08:18:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ori.exe, versão: 5.0.0.51466, carimbo de data/hora: 0x54fe4176
Nome do módulo com falha: ori.exe, versão: 5.0.0.51466, carimbo de data/hora: 0x54fe4176
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000380a7
ID do processo com falha: 0x1bc4
Hora de início do aplicativo com falha: 0xori.exe0
Caminho do aplicativo com falha: ori.exe1
Caminho do módulo com falha: ori.exe2
ID do Relatório: ori.exe3
Nome completo do pacote com falha: ori.exe4
ID do aplicativo relativo ao pacote com falha: ori.exe5

Error: (03/29/2016 07:30:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa TITAN.exe versão 0.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 1ac4

Hora de Início: 01d18a0a656e008e

Hora de Término: 24

Caminho do Aplicativo: C:\GOG Games\Titan Souls\TITAN.exe

ID do Relatório: c213bb64-f5fd-11e5-9be2-5cc9d357abec

Nome completo do pacote com falha:

ID do aplicativo relativo ao pacote com falha:

Error: (03/29/2016 07:27:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo Microsoft.WindowsStore_8wekyb3d8bbwe!App com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/29/2016 07:27:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo Microsoft.WindowsStore_8wekyb3d8bbwe!App com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/29/2016 07:27:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/29/2016 07:27:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/29/2016 07:26:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (03/29/2016 07:24:29 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-8NMKIRCP)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147009280. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.


Erros de Sistema:
=============
Error: (03/30/2016 05:59:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/30/2016 07:03:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_de21f7 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/30/2016 07:03:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Armazenamento de Dados de Usuário_de21f7 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/30/2016 07:03:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dados de Contato_de21f7 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/30/2016 07:03:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_de21f7 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/30/2016 07:03:05 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/30/2016 06:45:40 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-8NMKIRCP)
Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}LAPTOP-8NMKIRCPWevertonS-1-5-21-2680859120-148103200-3204393191-1001LocalHost (Usando LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795

Error: (03/30/2016 03:20:44 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-8NMKIRCP)
Description: Windows.Media.Capture.Internal.AppCaptureShell

Error: (03/30/2016 03:20:44 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-8NMKIRCP)
Description: Windows.Media.Capture.Internal.AppCaptureShell

Error: (03/30/2016 03:20:42 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_4ad14 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.


CodeIntegrity:
===================================
Date: 2016-03-30 06:45:09.542
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-24 09:01:15.799
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-24 04:14:56.863
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-24 04:14:27.872
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-24 03:58:28.359
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentagem de memória em uso: 62%
RAM física total: 4011.08 MB
RAM física disponível: 1520.55 MB
Virtual Total: 4928.07 MB
Virtual disponível: 2175.39 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:886.21 GB) (Free:807.01 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.54 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 885CB1EA)

Partition: GPT.

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité