cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01
Executado por Bruno (2016-03-17 18:58:41)
Executando a partir de C:\Users\CADU\Downloads
Windows 10 Pro Versão 1511 (X64) (2016-02-06 21:24:26)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2889613829-1383529641-2852769792-500 - Administrator - Disabled)
Bruno (S-1-5-21-2889613829-1383529641-2852769792-1001 - Administrator - Enabled) => C:\Users\CADU
Convidado (S-1-5-21-2889613829-1383529641-2852769792-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-2889613829-1383529641-2852769792-503 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ATENÇÃO
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CheckMeUp (HKLM-x32\...\6ECB650E-8177-CC04-71B4-6BE3CD063758) (Version: - CheckMeUp-software)
Chromium (HKU\S-1-5-21-2889613829-1383529641-2852769792-1001\...\Chromium) (Version: 46.0.2480.0 - Chromium)
ExpressFiles (HKU\S-1-5-21-2889613829-1383529641-2852769792-1001\...\ExpressFiles) (Version: 1.9.7 - hxxp://www.express-files.com/) <==== ATENÇÃO
GamesDesktop 020.005010228 (HKLM-x32\...\gmsd_br_005010228_is1) (Version: - GAMESDESKTOP) <==== ATENÇÃO
GamesDesktop 020.005010230 (HKLM-x32\...\gmsd_br_005010230_is1) (Version: - ) <==== ATENÇÃO
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.)
LG Mobile Drivers (HKLM-x32\...\{D8D0327A-72B4-4C79-9883-1B6B6C20ED2B}) (Version: 4.0.3 - LG Electronics)
Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 16.0.6568.2036 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MixVideoPlayer (HKLM-x32\...\MixVideoPlayer) (Version: v1.0.0.25 - SoftForce LLC) <==== ATENÇÃO
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.2.28 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 1.0.40 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0 - Motorola Inc.) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6528.1017 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6528.1017 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6528.1017 - Microsoft Corporation) Hidden
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATENÇÃO
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Update for PriceFountain (HKU\S-1-5-21-2889613829-1383529641-2852769792-1001\...\Price Fountain) (Version: - Update for PriceFountain) <==== ATENÇÃO
WebShield (HKLM-x32\...\WebShield) (Version: 3.0.91 - Irrational Number Applications)
yoursearching (HKLM-x32\...\yoursearching) (Version: 1.0.0.60 - )
YTDownloader (HKLM-x32\...\YTDownloader) (Version: - YTDownloader) <==== ATENÇÃO

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2889613829-1383529641-2852769792-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\CADU\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0F6E8A55-91D7-42CF-9AE8-409A2DBA0B33} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-07-17] ()
Task: {1B3A8D70-E611-4A3A-8F16-E89D308F3C89} - System32\Tasks\ProfessionalCleaningSoftware_Start => C:\Program Files (x86)\Professional Cleaning Software\ProfessionalCleaningSoftware.exe
Task: {1C222A11-1354-4D85-AB53-4C8DFE7B0FDC} - System32\Tasks\{090B0A47-057A-050F-7F11-7978787A1179} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand JABFAHIAcgBvAHIAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGwAeQBDAG8AbgB0AGkAbgB1AGUAIgA7ACQAVwBhAHIAbgBpAG4AZwBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AJABzAGMAOwAkAFAAcgBvAGcA (a entrada de dados tem 9048 mais caracteres).
Task: {24F2344C-7416-408E-9F97-002C7F060764} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-07-17] ()
Task: {31A3B7C7-388A-4A36-BCD7-2926ECAABB47} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-28] (Microsoft Corporation)
Task: {3B1F6BEA-19CA-4123-BC00-952316577D99} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2016-02-04] (Reimage ltd.) <==== ATENÇÃO
Task: {46354468-1A01-467E-9685-D62FD038C360} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {4C2A9D11-A4B1-4B9A-A857-56CFFB132552} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-02-04] ()
Task: {5FEA4E00-6AC1-42A8-B411-5697D77969FA} - System32\Tasks\Buiwmev => C:\PROGRA~1\SHOPPE~1\Rukpa.bat
Task: {6F3BFCFA-80DD-48DD-A1A4-D6C9757AC52C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-03-02] (Microsoft Corporation)
Task: {8912470C-9652-4156-A203-C821097F81F4} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {8A51E858-3E9A-4660-9E99-F67FB7271FB4} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-07-17] ()
Task: {8BADF990-43D5-41E3-9759-30D6F5D32150} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro3\updater.exe [2016-02-03] (Goobzo) <==== ATENÇÃO
Task: {8EFDA19F-3175-40E3-AED8-711992051DEC} - System32\Tasks\PC SpeedUp Service Deactivator => C:\Program Files (x86)\Velocidade Do PC\PCSUSD.exe [2016-01-28] (Optimal Software s.r.o.) <==== ATENÇÃO
Task: {9CA9AD66-6849-461F-8346-3EEC81B06318} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe
Task: {9F9EAA89-195D-48FA-8E69-CDE93D40C07C} - System32\Tasks\UpdateTask => C:\Users\CADU\AppData\Local\{55366~1\UNINST~1.EXE
Task: {B24DDBD7-3907-41AD-A964-E9142821CF42} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-28] (Microsoft Corporation)
Task: {BB813A67-6E2C-4FE0-B7B7-ADE4992F6A3A} - System32\Tasks\ProfessionalCleaningSoftware_Popup => C:\Program Files (x86)\Professional Cleaning Software\Splash.exe
Task: {DD52D54C-98F4-4FE7-8C49-D4650C55EC04} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe [2016-02-08] () <==== ATENÇÃO
Task: {E369DC65-E857-48AF-BD5A-371927894EF3} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2015-08-02] (Easeware)
Task: {E76A23EC-4462-4A4A-AEAB-B1A93ABF1574} - System32\Tasks\DriverScanner => C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe
Task: {EA677663-86E3-4F9E-B643-298998388DE4} - System32\Tasks\MixVideoPlayer Update => C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [2015-08-06] () <==== ATENÇÃO
Task: {F47A81D0-4A69-44F2-A04C-EF343C93E4E7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\DriverScanner.job => C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe
Task: C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Velocidade Do PC\PCSUSD.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\SPBIW_UpdateTask_Time_333339303636323631342d5a376c5a4a6c573250344141.job => Wscript.exe T/B C:\ProgramData\ShopperPro3\spbihe.js spbiu.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\UpdateTask.job =>

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\CADU\Desktop\Continue .lnk -> C:\Users\CADU\AppData\Local\Temp\DownloadManager.exe (@) -> "C:\Users\CADU\AppData\Local\Temp\DownloadManager.exe" /PID=110 /SUBPID=0 /DISTID=182 /NETWORKID=0 /CID=0 /PRODUCT_ID=102 /SERVER_URL=hxxp://installer.ppdownload.com

==================== Módulos Carregados (Whitelisted) ==============

2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-10-19 05:37 - 2016-02-28 02:20 - 00173248 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-12-25 05:42 - 2015-12-25 05:42 - 00141960 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe
2016-02-03 04:31 - 2016-02-03 04:31 - 01217536 _____ () C:\Program Files\Common Files\ShopperPro3\spbiu.exe
2012-07-17 17:31 - 2012-07-17 17:31 - 00116632 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
2015-12-17 17:38 - 2015-12-17 17:38 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-12-17 17:38 - 2015-12-17 17:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-03-01 19:19 - 2016-02-23 08:27 - 02654872 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-02-07 18:21 - 2016-02-07 18:23 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-03-01 19:19 - 2016-02-23 08:27 - 02654872 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-25 05:42 - 2015-12-25 05:42 - 00148104 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarEntry.dll
2012-07-17 17:31 - 2012-07-17 17:31 - 00776088 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
2015-12-25 05:42 - 2015-12-25 05:42 - 03934344 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\Calendar.exe
2016-02-07 07:45 - 2015-12-07 01:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-03-01 19:19 - 2016-02-23 05:36 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-02-07 07:48 - 2016-01-04 22:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-07 07:46 - 2016-01-04 22:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-07 07:48 - 2016-01-16 02:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-07 07:48 - 2016-01-16 02:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-03 21:24 - 2015-09-03 21:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-02-06 18:56 - 2016-02-04 16:35 - 02036224 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2015-12-25 05:42 - 2015-12-25 05:42 - 00543368 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPTask.dll
2015-12-25 05:42 - 2015-12-25 05:42 - 00406664 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPNet.dll
2015-12-25 05:41 - 2015-12-25 05:41 - 00428680 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPDR.dll
2016-02-07 18:21 - 2016-02-07 18:23 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-02-07 18:21 - 2016-02-07 18:26 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-07-10 08:04 - 2016-02-07 08:51 - 00000967 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2889613829-1383529641-2852769792-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\CADU\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{f3d682a5-bce5-46f2-871e-568f225b70be}.jpg
DNS Servers: 201.17.0.82 - 201.17.0.54
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DC3F495E-B81C-4F0F-9CFD-19393B8755EE}] => (Allow) C:\Users\CADU\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{3E484965-BB47-43C8-A8B1-782323A84D65}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2A01F48A-8240-4D3E-AA4D-D5537707A345}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CC7C3DF4-97BC-4789-8D8B-35DEBA03A1BF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{02DBBBE3-07C0-44B6-9105-C5755946B4EA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{620732EB-764B-4FE6-BBB5-F9E9DC7533C6}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{9D0EA205-017D-4452-8916-FA0C61D3C421}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [{6D1F0BE8-805D-4216-8A2E-A8E6DE5F28B2}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
FirewallRules: [TCP Query User{B029129D-2B13-40D0-8809-1286743AEC8F}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Block) C:\program files (x86)\jfilemanager\jfilemanager.exe
FirewallRules: [UDP Query User{6B1BA299-E079-4243-B8E5-877A038D21EA}C:\program files (x86)\jfilemanager\jfilemanager.exe] => (Block) C:\program files (x86)\jfilemanager\jfilemanager.exe
FirewallRules: [{8073C738-B1DF-4DA3-9101-24E8B8126BFC}] => (Allow) C:\Program Files (x86)\ExpressFiles\expressdl.exe
FirewallRules: [{3D3CC5F6-82BB-477F-91FF-D172A318BCAD}] => (Allow) C:\Program Files (x86)\ExpressFiles\expressdl.exe
FirewallRules: [{D40CCD39-8F84-4AE6-AB3B-96054E383010}] => (Allow) C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe
FirewallRules: [{177E5FCF-6FB9-43F6-8059-71D0EB1E1D74}] => (Allow) C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe
FirewallRules: [TCP Query User{4C70A496-059F-45D7-B673-1F1CFFE68930}C:\program files (x86)\expressfiles\expressdl.exe] => (Block) C:\program files (x86)\expressfiles\expressdl.exe
FirewallRules: [UDP Query User{603E3A81-AC82-425C-AFF3-B8316A9421CD}C:\program files (x86)\expressfiles\expressdl.exe] => (Block) C:\program files (x86)\expressfiles\expressdl.exe
FirewallRules: [{D790B903-3983-4549-ACA5-57864B15EB07}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2FD43870-F5EA-4B6A-8928-574E08493C67}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{65FFAF55-5764-4A25-9A2D-FD266B3807D1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AFEBB019-47C7-461A-996B-623A306F5585}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{11B17540-FE68-4667-916D-BA4A16C01D26}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Pontos de Restauração =========================

23-02-2016 20:31:39 Ponto de Verificação Agendado
01-03-2016 19:13:10 Installed LG Mobile Drivers.
05-03-2016 23:33:55 Windows Update
11-03-2016 23:32:02 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (03/17/2016 06:52:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: Sound+.exe, versão: 1.0.0.1, carimbo de data/hora: 0x562a4a75
Nome do módulo com falha: Sound+.exe, versão: 1.0.0.1, carimbo de data/hora: 0x562a4a75
Código de exceção: 0x40000015
Deslocamento da falha: 0x001262b4
ID do processo com falha: 0x670
Hora de início do aplicativo com falha: 0xSound+.exe0
Caminho do aplicativo com falha: Sound+.exe1
Caminho do módulo com falha: Sound+.exe2
ID do Relatório: Sound+.exe3
Nome completo do pacote com falha: Sound+.exe4
ID do aplicativo relativo ao pacote com falha: Sound+.exe5

Error: (03/17/2016 06:51:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (03/17/2016 06:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: spbia.exe, versão: 1.0.0.4, carimbo de data/hora: 0x56b1acbd
Nome do módulo com falha: spbia.exe, versão: 1.0.0.4, carimbo de data/hora: 0x56b1acbd
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000003f81
ID do processo com falha: 0xad0
Hora de início do aplicativo com falha: 0xspbia.exe0
Caminho do aplicativo com falha: spbia.exe1
Caminho do módulo com falha: spbia.exe2
ID do Relatório: spbia.exe3
Nome completo do pacote com falha: spbia.exe4
ID do aplicativo relativo ao pacote com falha: spbia.exe5

Error: (03/17/2016 06:50:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0x8007139F
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/17/2016 06:31:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/17/2016 06:31:09 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/17/2016 06:02:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/17/2016 05:36:31 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/17/2016 05:35:49 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Falha na Ativação de Licença (slui.exe). Código de erro:
hr=0xC004F074
Argumento de linha de comando:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/17/2016 05:18:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: Sound+.exe, versão: 1.0.0.1, carimbo de data/hora: 0x562a4a75
Nome do módulo com falha: Sound+.exe, versão: 1.0.0.1, carimbo de data/hora: 0x562a4a75
Código de exceção: 0x40000015
Deslocamento da falha: 0x001262b4
ID do processo com falha: 0x4c8
Hora de início do aplicativo com falha: 0xSound+.exe0
Caminho do aplicativo com falha: Sound+.exe1
Caminho do módulo com falha: Sound+.exe2
ID do Relatório: Sound+.exe3
Nome completo do pacote com falha: Sound+.exe4
ID do aplicativo relativo ao pacote com falha: Sound+.exe5


Erros de Sistema:
=============
Error: (03/17/2016 06:49:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_31872 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/17/2016 06:49:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Armazenamento de Dados de Usuário_31872 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/17/2016 06:49:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dados de Contato_31872 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/17/2016 06:49:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_31872 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/17/2016 06:49:11 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/17/2016 05:45:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/17/2016 05:42:12 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/17/2016 05:18:30 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (03/17/2016 01:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_2fb6a foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (03/17/2016 01:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Armazenamento de Dados de Usuário_2fb6a foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.


CodeIntegrity:
===================================
Date: 2016-03-15 20:50:40.372
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-13 22:12:14.909
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-12 13:10:09.768
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-12 13:07:07.138
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-12 12:23:17.907
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-11 23:52:54.457
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-06 15:11:56.284
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-05 23:38:53.585
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-02-22 21:40:37.931
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-02-13 22:59:25.757
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Percentagem de memória em uso: 40%
RAM física total: 3894.68 MB
RAM física disponível: 2318.18 MB
Virtual Total: 8246.68 MB
Virtual disponível: 6722.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:288.11 GB) (Free:230 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: B8000000)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=9.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=288.1 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité