cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:27-02-2016
Executado por JCProduções (2016-02-29 21:32:16)
Executando a partir de C:\Users\JCProduções\Downloads
Windows 10 Pro Versão 1511 (X64) (2015-12-22 00:29:37)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-4198751954-1862907302-2704398737-500 - Administrator - Disabled)
Convidado (S-1-5-21-4198751954-1862907302-2704398737-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4198751954-1862907302-2704398737-503 - Limited - Disabled)
JCProduções (S-1-5-21-4198751954-1862907302-2704398737-1000 - Administrator - Enabled) => C:\Users\JCProduções

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
AnalogX VocalRemover (HKLM-x32\...\AnalogX VocalRemover_is1) (Version: 1.04 - AnalogX, LLC)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
DISCIPULUS (HKLM-x32\...\{DA0AF50F-DBE9-42FF-A3D2-EE735386A415}) (Version: 1.1 - DISCIPULUS)
EPSON XP-410 Series Printer Uninstall (HKLM\...\EPSON XP-410 Series) (Version: - SEIKO EPSON Corporation)
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 9.4.9.5 - Sentelic)
Firebird 2.5.0.26074 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.0.26074 - Firebird Project)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MyStart Toolbar (HKLM-x32\...\mystarttb) (Version: 5.6.0.6 - Visicom Media Inc.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
SAM Broadcaster 2014.7 (HKLM-x32\...\SAM3) (Version: 2014.7 - Spacial Audio Solutions, LLC)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shopper-Pro (HKLM-x32\...\ShopperPro3) (Version: - ) <==== ATENÇÃO
Uninstaller Pro 1.0 (HKLM\...\UninstallerPro) (Version: 1.0.0.150 - ShenZhen Enode Techology co,.Ltd)
VDownloader 4.1.1539 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version: - Vitzo Limited)
VirtualDJ 8 (HKLM-x32\...\{90AE6F39-3EE1-45A1-90D5-FB6C82391EDF}) (Version: 8.0.2338.0 - Atomix Productions)
WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))
Warsaw 1.11.0.42826 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-4198751954-1862907302-2704398737-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\JCProduções\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {05824474-6508-4431-9BCC-123D2F5236DE} - System32\Tasks\Price Fountain => C:\Users\JCPROD~1\AppData\Roaming\PRICEF~1\UPDATE~1\UPDATE~1.EXE <==== ATENÇÃO
Task: {0C893273-B9AB-4AFD-824D-3E9B708E990F} - System32\Tasks\ShopperPro3 => C:\Program Files (x86)\ShopperPro3\ShopperPro3.exe [2016-02-28] (Goobzo LTD) <==== ATENÇÃO
Task: {0D731FC0-1499-4CE5-85D5-7AFBBD191BC4} - System32\Tasks\PFExe => C:\Users\JCProduções\AppData\Local\PriceFountain\pricefountain.exe <==== ATENÇÃO
Task: {0E02C58B-831D-4387-A4B6-49AB0C933CC5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {1D2F0D8F-FEAB-45D0-AD70-1057F771D51A} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe
Task: {238A717B-ED32-4100-9A08-C0298598C257} - System32\Tasks\SPBIW_UpdateTask_Time_323835393634383930382d574a324178345a2a376c455a => C:\WINDOWS\system32\wscript.exe [2015-10-30] (Microsoft Corporation)
Task: {24876376-1D71-4AB1-A6E9-018CD19854EA} - System32\Tasks\{07C2B5BF-A830-4535-9719-3D4E765D9807} => pcalua.exe -a "C:\Users\JCProduções\Downloads\pacote de dicionarios.exe" -d C:\Users\JCProduções\Downloads
Task: {2570936F-6238-4DEC-877F-688E13BAC258} - System32\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935} => C:\Users\JCProduções\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exe [2015-05-15] () <==== ATENÇÃO
Task: {26595EE4-663F-412D-891B-D52947E7DD29} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-02-09] ()
Task: {2DD65AE2-E6B7-4C3E-8756-3B4DD9687A97} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {30502F84-621B-4659-9175-4DB6D536A127} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe
Task: {323DB107-7C51-413C-88C4-5A34F01672FB} - System32\Tasks\EPSON XP-410 Series Update {8C9DAB5E-D3FE-459C-8436-270EE60879F1} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2015-12-11] (SEIKO EPSON CORPORATION)
Task: {4011CDA0-F1EF-48B3-B495-AF491E3C178A} - System32\Tasks\Gohfet => C:\PROGRA~1\SHOPPE~1\Acifa.bat
Task: {4964694D-82C8-4EC0-BB03-C947D93A2F17} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe <==== ATENÇÃO
Task: {6651E894-69DE-4108-8A7D-65F7AE48F811} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
Task: {72E9FE49-4D18-4442-B9B7-C17BA124A3DE} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro3\updater.exe [2016-02-28] (Goobzo) <==== ATENÇÃO
Task: {7657EBF3-7677-4257-90D5-224DE13CD383} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe <==== ATENÇÃO
Task: {7FCD4D96-C02D-4ECD-8CD7-E175ADF2CF04} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {806801F4-1A22-436D-BF9F-2282A2372629} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-02-10] (Microsoft Corporation)
Task: {94431C32-3B3E-4FA6-8EC1-EA96E12FFD28} - System32\Tasks\Inst_Rep => C:\Users\JCProduções\AppData\Local\Installer\Install_17108\ytdiegut_gutdc_inst.exe [2016-02-29] () <==== ATENÇÃO
Task: {9C00F576-5CE3-4DDB-947A-C6EF9999B047} - System32\Tasks\{33C2429A-0F17-47A1-98FB-C6D95335193B} => pcalua.exe -a "C:\Program Files (x86)\WeatherTool\2.0.0.11150\InstallHelper.exe" -c -Uninstall English
Task: {9CE782BC-F6FC-4450-8343-0E4D13B06D53} - System32\Tasks\EPSON XP-410 Series Invitation {8C9DAB5E-D3FE-459C-8436-270EE60879F1} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2015-12-11] (SEIKO EPSON CORPORATION)
Task: {B1452C32-703A-43ED-B2F9-E2C7B394A2AF} - System32\Tasks\Pritc => C:\Users\JCProduções\AppData\Local\Temp\00007238\casrss.exe [2016-02-28] (VLOME) <==== ATENÇÃO
Task: {B4B02581-AAF1-45C9-BD97-0BD5E7783049} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
Task: {DC2C2FDC-A0B8-46B0-9E1F-45AD2C96B50E} - System32\Tasks\SPDriver => C:\Program Files (x86)\ShopperPro3\JSDriver\1.42.1.10647\jsdrv.exe [2016-02-28] () <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Invitation {8C9DAB5E-D3FE-459C-8436-270EE60879F1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Update {8C9DAB5E-D3FE-459C-8436-270EE60879F1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE:/EXE:{8C9DAB5E-D3FE-459C-8436-270EE60879F1} /F:UpdateWORKGROUP\JCPRODUÇÕES-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Price Fountain.job =>
Task: C:\WINDOWS\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935}.job => C:\Users\JCProduções\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exež-RunCheckUpdate C:\Users\JCProduções\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\CheckUpdate.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2011-06-15 21:10 - 2011-06-16 00:10 - 00034304 _____ () C:\WINDOWS\System32\ssn2mlm.dll
2015-09-15 11:04 - 2015-09-15 11:04 - 02178896 _____ () C:\Windows\System32\FspService.exe
2016-02-28 12:32 - 2016-02-28 12:32 - 01224192 _____ () C:\Program Files\Common Files\ShopperPro3\spbiu.exe
2016-02-24 17:08 - 2016-02-24 17:08 - 02971648 _____ () C:\Program Files\WajaNetEn\dd3f1e093e0c6bb29de41ae660b83029.exe
2015-11-04 06:22 - 2015-11-04 06:22 - 00151712 _____ () C:\Program Files (x86)\UninstallerPro\1.0.0.150\UnInstallerProService.exe
2015-12-21 21:47 - 2015-12-21 21:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-21 21:47 - 2015-12-21 21:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-04-15 17:13 - 2015-04-15 17:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-02-01 14:52 - 2016-01-04 22:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-21 21:48 - 2015-12-21 21:48 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-21 21:48 - 2015-12-21 21:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-02-26 11:34 - 2016-02-26 11:34 - 01402368 _____ () C:\Users\JCProduções\AppData\Roaming\cpuminer\cpm.exe
2016-02-29 09:10 - 2016-02-28 12:34 - 02720256 _____ () C:\Program Files (x86)\ShopperPro3\JSDriver\1.42.1.10647\jsdrv.exe
2016-01-15 17:45 - 2016-01-15 17:45 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2016-02-28 22:48 - 2016-02-09 12:30 - 02036224 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2016-01-22 17:10 - 2016-01-22 17:29 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-29 15:51 - 2016-02-29 15:58 - 28509232 _____ () C:\Users\JCProduções\AppData\Local\Setup Wizard\563c3e5f-ba5e-497a-9602-ccd0cd03df9c\vlc-media-player.exe
2016-02-29 16:10 - 2016-02-29 16:11 - 00689648 _____ () c:\Users\JCProduções\AppData\Local\Temp\15143\Setup.exe
2015-10-30 04:18 - 2015-10-30 04:18 - 02100064 _____ () C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
2016-02-01 14:52 - 2016-01-04 22:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-01 14:52 - 2016-01-16 02:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-01 14:52 - 2016-01-16 02:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-05-15 00:32 - 2014-05-15 03:32 - 01252864 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\ssn2mdu.dll
2016-01-22 17:10 - 2016-01-22 17:29 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-01-22 17:10 - 2016-01-22 17:29 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-02-29 15:58 - 2016-02-29 15:58 - 00024576 _____ () C:\Users\JCProduções\AppData\Local\Temp\nsa3E7E.tmp\System.dll
2016-02-29 15:59 - 2016-02-29 15:59 - 00011264 _____ () C:\Users\JCProduções\AppData\Local\Temp\nsa3E7E.tmp\nsDialogs.dll
2016-02-28 12:31 - 2016-02-28 12:31 - 00783360 _____ () C:\Program Files\Common Files\ShopperPro3\spbici32.dll
2016-02-29 17:42 - 2016-02-18 01:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-29 17:42 - 2016-02-18 01:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
2016-02-29 17:42 - 2016-02-18 01:15 - 16808600 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\PepperFlash\pepflashplayer.dll
2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:r0d3jo5
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\bb.com.br -> hxxps://seg.bb.com.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-10-14 15:03 - 2016-02-27 22:36 - 00001077 ____N C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\JCProduções\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1 - 10.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

HKLM\...\StartupApproved\Run: => "VDownloader"
HKLM\...\StartupApproved\Run32: => "YTDownloader"
HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\StartupApproved\Run: => "SMSetup"
HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4198751954-1862907302-2704398737-1000\...\StartupApproved\Run: => "YTDownloader"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C5D788F3-5E8C-4C0B-8979-00402E409910}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{F464C5B6-8123-4F05-BA6F-F9FC553C3E3A}] => (Allow) C:\Users\JCProduções\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E5B5531B-7DCB-44D5-A18B-DE5B1D212B0A}] => (Allow) C:\Users\JCProduções\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{3DAAD4EB-ED17-4A58-86C3-75543AA9DE90}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
FirewallRules: [UDP Query User{B1CB3E04-09DF-4DED-B3D0-C64C00BBA6F6}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
FirewallRules: [{7CD8A204-E566-4ECA-8E80-E054E01B1D8D}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{2212BB8A-4F46-40F5-B2AF-4B8B6F2790E5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [TCP Query User{BA1FB488-1F9C-4386-BB3E-B9A1E5A8221E}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [UDP Query User{1EE2F0BA-79C4-45FF-B91A-EFA1C25DAD51}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [TCP Query User{B9A6AD10-1927-4547-A0CD-37F214FF3654}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [UDP Query User{9A6A1A06-7505-443B-8CC5-CF055394231D}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [TCP Query User{EFF12A46-0394-41EA-8DAE-2726246C3335}C:\jazler radiostar 2 demo\jzrs2-st.exe] => (Allow) C:\jazler radiostar 2 demo\jzrs2-st.exe
FirewallRules: [UDP Query User{F04953FE-D5EE-4EDB-8C33-53E7D3E133DA}C:\jazler radiostar 2 demo\jzrs2-st.exe] => (Allow) C:\jazler radiostar 2 demo\jzrs2-st.exe
FirewallRules: [{B142E998-D68D-41B5-BB69-9CB418D1C2B2}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [{895FAE60-F264-48B3-AF82-1AF81C9D3578}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [{C4C514D7-9851-49CC-ADA2-0598D72715A8}] => (Allow) C:\Program Files\NewExt\jsinjector.exe
FirewallRules: [{08F4D064-E33C-4E31-A8D7-6AC1947FE2DA}] => (Allow) C:\Program Files\NewExt\jsinjector.exe
FirewallRules: [{6F6B58C7-2709-44E9-8121-1A14E275B05D}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [{6CFD4370-BA33-48BA-B6F7-F350D18A8076}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [{0E53F68E-5782-425F-80FF-B139985D6C03}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

12-02-2016 16:27:58 Installed VirtualDJ 8
21-02-2016 23:22:03 Ponto de Verificação Agendado
28-02-2016 16:01:16 Installed Jazler RadioStar 2

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (02/29/2016 08:55:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: JCPRODUÇÕES-PC)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2147024865. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (02/29/2016 08:55:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: JCPRODUÇÕES-PC)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (02/29/2016 05:56:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: regedit.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d798
Nome do módulo com falha: COMCTL32.dll, versão: 6.10.10586.0, carimbo de data/hora: 0x5632d2ce
Código de exceção: 0xc000041d
Deslocamento da falha: 0x00000000000037a7
ID do processo com falha: 0x18ec
Hora de início do aplicativo com falha: 0xregedit.exe0
Caminho do aplicativo com falha: regedit.exe1
Caminho do módulo com falha: regedit.exe2
ID do Relatório: regedit.exe3
Nome completo do pacote com falha: regedit.exe4
ID do aplicativo relativo ao pacote com falha: regedit.exe5

Error: (02/29/2016 03:42:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: JCPRODUÇÕES-PC)
Description: O pacote Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{69223796-8739-438b-bb75-01f8a1462b0a} foi terminado porque levou muito tempo para ser suspenso.

Error: (02/29/2016 03:34:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: JCPRODUÇÕES-PC)
Description: Falha na ativação do aplicativo Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App com o erro: -2147024865. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (02/29/2016 03:17:03 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "48.0.2564.116,language="*",type="win32",version="48.0.2564.116"1".
Assembly dependente 48.0.2564.116,language="*",type="win32",version="48.0.2564.116" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/29/2016 03:16:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "48.0.2564.116,language="*",type="win32",version="48.0.2564.116"1".
Assembly dependente 48.0.2564.116,language="*",type="win32",version="48.0.2564.116" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/29/2016 03:15:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "48.0.2564.116,language="*",type="win32",version="48.0.2564.116"1".
Assembly dependente 48.0.2564.116,language="*",type="win32",version="48.0.2564.116" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/29/2016 03:14:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "48.0.2564.116,language="*",type="win32",version="48.0.2564.116"1".
Assembly dependente 48.0.2564.116,language="*",type="win32",version="48.0.2564.116" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (02/29/2016 03:14:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "48.0.2564.116,language="*",type="win32",version="48.0.2564.116"1".
Assembly dependente 48.0.2564.116,language="*",type="win32",version="48.0.2564.116" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.


Erros de Sistema:
=============
Error: (02/29/2016 09:06:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:06:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:06:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:04:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:02:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:02:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:02:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:02:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:01:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2

Error: (02/29/2016 09:01:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Office Software Protection Platform devido ao seguinte erro:
%%2


CodeIntegrity:
===================================
Date: 2016-02-29 20:16:30.252
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 20:16:30.135
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 20:16:30.007
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 17:52:17.466
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 17:48:26.131
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 17:48:26.018
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 17:48:25.088
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 17:47:29.839
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 16:19:07.542
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.

Date: 2016-02-29 16:19:07.396
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz
Percentagem de memória em uso: 58%
RAM física total: 3558.77 MB
RAM física disponível: 1467.48 MB
Virtual Total: 4262.77 MB
Virtual disponível: 1491.93 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:292.43 GB) (Free:89.5 GB) NTFS
Drive d: (Arquivos) (Fixed) (Total:303.2 GB) (Free:54 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: A07C78EB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=292.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=303.2 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité