cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:13-04-2016
Executado por Rafael (2016-04-14 17:29:34)
Executando a partir de C:\Users\Rafael\Downloads
Windows 7 Home Premium (X64) (2013-01-20 04:11:59)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2176017839-3122028425-736170288-500 - Administrator - Disabled)
Convidado (S-1-5-21-2176017839-3122028425-736170288-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2176017839-3122028425-736170288-1002 - Limited - Enabled)
Rafael (S-1-5-21-2176017839-3122028425-736170288-1001 - Administrator - Enabled) => C:\Users\Rafael

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Trend Micro Titanium 2012 (Disabled - Out of date) {B7599298-8445-728A-A5C7-A26A082C8BDA}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Trend Micro Titanium 2012 (Disabled - Out of date) {0C38737C-A27F-7D04-9F77-991873ABC167}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (Version: 1.2.0 - Hewlett-Packard) Hidden
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Reader 9.5.4 - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-A95000000001}) (Version: 9.5.4 - Adobe Systems Incorporated)
AnySend (HKLM-x32\...\ASPackage) (Version: 1.0.0.0 - CMI Limited) <==== ATENÇÃO
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
AVG (HKLM\...\AvgZen) (Version: 1.51.2.3593 - AVG Technologies)
AVG (Version: 16.51.7497 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4545 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.51.7497 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.2.9.726 - AVG Technologies)
AVG Zen (Version: 1.51.58 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG2400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2400_series) (Version: 1.00 - Canon Inc.)
Canon MG2400 series On-screen Manual (HKLM-x32\...\Canon MG2400 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
CashReminder (HKLM-x32\...\CashReminder) (Version: 1.0.0 - Related Deals LLC)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Control Center (HKLM-x32\...\{A09AB2EA-4E3B-48A8-A716-CD4FB3529548}) (Version: 1.0 - TPS)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DealPly (HKU\S-1-5-21-2176017839-3122028425-736170288-1001\...\DealPly) (Version: - ) <==== ATENÇÃO
eMule Plus 1.2e (HKLM-x32\...\eMule Plus_is1) (Version: - eMule Plus Team)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FMW 1 (Version: 1.72.2 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2246 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1004 - Intel Corporation)
InVesalius 1.0 (HKLM-x32\...\InVesalius 1.0_is1) (Version: 1.0 - CenPRA-PROMED, Inc.)
IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 7 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417017FF}) (Version: 7.0.170 - Oracle)
Java 7 Update 21 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.210 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office com Clique para Executar 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Edição 2003 (HKLM-x32\...\{90110416-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Office Starter 2010 - Português (Brasil) (HKLM-x32\...\{90140011-0066-0416-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Módulo de Proteção Banco Santander 3.7.0.7 (HKLM-x32\...\{83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1) (Version: 3.7.0.7 - )
Mozilla Firefox 35.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 pt-BR)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
omiga-plus uninstall (HKLM-x32\...\omiga-plus uninstall) (Version: - omiga-plus) <==== ATENÇÃO
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Pacote de Driver do Windows - TPS (tpsacpi) System (05/13/2010 1.00.00.0005) (HKLM\...\5B99C8D4700391A365AE093C558669E158FEB4AA) (Version: 05/13/2010 1.00.00.0005 - TPS)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.31.1025.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5978 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0145 - REALTEK Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
SoulseekQt (HKLM-x32\...\SoulseekQt) (Version: - )
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
TpsCap (HKLM-x32\...\{46B59C73-99D7-4B23-A0F8-421E418E6794}) (Version: 1.00.00.00 - Tps)
Trend Micro Titanium (Version: 5.00 - Trend Micro Inc.) Hidden
Trend Micro Titanium 2012 (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 5.4 - Trend Micro Inc.)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visualizador do Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-0416-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinDS PRO 2016.04.08 (HKLM\...\{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}_is1) (Version: 2016.04.08 - WinDS PRO Central)
WinDS PRO Apps 2015.12.16 (HKLM\...\{92C4C953-5CE1-4DC3-97D5-BBD1A63EF706}_is1) (Version: 2015.12.16 - WinDS PRO Central)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2176017839-3122028425-736170288-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\Rafael\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2176017839-3122028425-736170288-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\Rafael\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {069C33FB-D458-436C-9CA2-FC3E4439EE7F} - System32\Tasks\GoogleUpdateTaskMachineCore1d16b131d588245 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {0B88B3B1-219E-4969-AC34-47F7FD4AEB11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {11308B43-E8B8-4886-A032-8FAB748AFF6F} - System32\Tasks\SaveSense => C:\Users\Rafael\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATENÇÃO
Task: {1BB5F271-7661-4E11-996B-8D3A066D4454} - System32\Tasks\{6F2DC3A5-9D3C-4CCA-8704-68D8AA2818F4} => pcalua.exe -a "C:\Program Files (x86)\InVesalius 1.0\unins000.exe"
Task: {23B20D03-401A-47CE-93D2-3EE948DE8F95} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2176017839-3122028425-736170288-1001Core => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-11] (Facebook Inc.)
Task: {5A95149D-5B35-48A4-8606-7AFD8372C5BB} - System32\Tasks\{B53C6DA8-3AF3-4B73-A7F2-7C8C55271205} => pcalua.exe -a C:\Users\Rafael\Downloads\Receitanet-1.03.exe -d C:\Users\Rafael\Downloads
Task: {5C8904D1-EEF1-4705-92E2-0D08ABC75854} - System32\Tasks\DealPlyUpdate => C:\Program Files (x86)\DealPly\DealPlyUpdate.exe <==== ATENÇÃO
Task: {654158C4-B71F-4FB5-889A-7F12A5D10B35} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09] (Adobe Systems Incorporated)
Task: {81225128-1F5B-4692-AFE2-B2426E3F2964} - System32\Tasks\GoogleUpdateTaskMachineUA1d16b131f589f85 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {9245E0E1-DEB3-4A3B-8E78-2505F69A3529} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {ABBDBA4F-95AC-45C4-85DC-035CE38BED99} - System32\Tasks\SaveSenseLiveUpdateTaskMachineCore => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATENÇÃO
Task: {C1ABF900-CA83-44E9-B77D-4990A9318B35} - System32\Tasks\SaveSenseLiveUpdateTaskMachineUA => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATENÇÃO
Task: {D294C3FC-7790-4C87-AA60-8EA09FFFB963} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2176017839-3122028425-736170288-1001UA => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-11] (Facebook Inc.)
Task: {D6AC5DD8-5799-406F-A7B7-F55AAE8895C6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D8302E6A-2D2A-489C-A0C8-981F209F5650} - System32\Tasks\DealPly => C:\Users\Rafael\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2176017839-3122028425-736170288-1001Core.job => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2176017839-3122028425-736170288-1001UA.job => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d16b131d588245.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d16b131f589f85.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SaveSense.job => C:\Users\Rafael\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATENÇÃO
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323992&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS
ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323992&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS
ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323993&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS
ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323993&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323992&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS
ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1423323993&from=pcm&uid=TOSHIBAXMQ01ABD075_Y1T4F32LSXXY1T4F32LS

==================== Módulos Carregados (Whitelisted) ==============

2015-09-05 14:42 - 2016-04-12 22:32 - 01223752 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2013-02-23 21:22 - 2013-02-23 21:18 - 00047104 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll
2013-02-23 21:22 - 2013-02-23 21:18 - 00042496 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll
2013-02-23 21:22 - 2013-02-23 21:18 - 00731136 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
2013-02-23 21:22 - 2013-02-23 21:18 - 01719808 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
2013-02-23 21:22 - 2013-02-23 21:18 - 00016384 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_36.dll
2013-02-23 21:18 - 2013-02-23 21:18 - 00289056 _____ () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-08 13:26 - 2013-05-14 06:50 - 00140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-04-12 22:32 - 2016-04-12 22:32 - 00192584 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.9\loggingserver.exe
2011-02-01 09:21 - 2010-11-12 02:08 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-02-01 09:35 - 2010-06-23 13:15 - 00800256 _____ () C:\Program Files (x86)\Control Center\CCenter.exe
2015-09-05 14:42 - 2016-04-12 22:32 - 02885704 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2016-04-12 22:32 - 2016-04-12 22:32 - 00533576 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.9\log4cplusU.dll
2011-02-01 09:35 - 2007-09-24 11:12 - 00088576 _____ () C:\Program Files (x86)\Control Center\AcpiRwDll.dll
2011-02-01 09:35 - 2008-03-07 13:55 - 00088576 _____ () C:\Program Files (x86)\Control Center\ShowIcoOSD.dll
2011-02-01 09:35 - 2007-09-24 11:12 - 00089088 _____ () C:\Program Files (x86)\Control Center\ShowProgressOSD.dll
2011-02-01 09:35 - 2008-01-28 09:46 - 00089088 _____ () C:\Program Files (x86)\Control Center\ShowDisplaySwitchOSD.dll
2015-12-24 13:29 - 2016-04-08 22:13 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2013-01-24 15:33 - 2013-01-24 15:33 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\e4435058455b07c0f114bbc285c5fa58\IsdiInterop.ni.dll
2011-02-01 09:39 - 2010-10-20 08:28 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2016-04-12 22:52 - 2016-04-06 07:04 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libglesv2.dll
2016-04-12 22:52 - 2016-04-06 07:04 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2176017839-3122028425-736170288-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{188D8AB9-E6A8-4755-A077-1115A61A1938}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{12EC353C-7E10-4EB2-B029-F364AF820383}] => (Allow) LPort=2869
FirewallRules: [{24927FE9-AE8E-494C-B247-C0C98AC4BE2C}] => (Allow) LPort=1900
FirewallRules: [{8059060B-19C8-4ECC-98B3-FCAA8B7C1111}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{1FD1288C-6B0B-4163-A1A4-6E090150ECCA}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{8012676D-6202-4827-A476-6DFC48A7E606}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0166F341-9A8E-4AA2-A977-75F69BBF0F34}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{28468E8E-511D-43B9-91A6-C5470AD39664}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6AA56C4B-AE57-41D7-8CAF-25FA5F46B4E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2F2FC9C1-E9C4-41B8-BEFA-208973683A36}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{174B5AEB-3D19-47E6-AA94-606934A70718}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
FirewallRules: [TCP Query User{6CA67E7A-57B4-41FE-8700-2ACE0CA9CC9E}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{67EB6792-02B6-4F7E-AC9E-353E09F2EC7D}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{39767ECF-B7D8-412A-B866-478FDB40F839}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [UDP Query User{D066B612-A6CD-45F1-A23F-2ED165BC812B}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [{3D17C201-57BA-4D00-9AC2-44660DD28270}] => (Allow) C:\Users\Rafael\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{DD8F0122-61D6-4CAE-9005-1611D080106C}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{B1DA4233-CCD8-43C4-9813-784A6F45D0FB}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{47FC2268-3094-4183-9119-A54B470A68FA}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
FirewallRules: [{1737741D-5AB3-4F77-85C6-FE046DE46A1A}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
FirewallRules: [{FA104336-C513-454D-9E95-DD08BF9500CA}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
FirewallRules: [{BCD2C74D-517A-4FF9-A503-B06401D6D340}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
FirewallRules: [{6AC14D3D-F7FA-4D0A-81E4-A1294DBCC2AE}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
FirewallRules: [{C069BCA7-7756-4453-A6D7-79CD6E36371A}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
FirewallRules: [{F7CD1D09-1F14-48F4-BA73-E4ABD6303966}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5BDD0020-EB4F-4A3C-BA14-0E52AD8492F7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{30672D06-79F1-46B6-B243-D6FD21FDBC93}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{FA4E28FE-BB80-4043-B14A-4A7F5EE9EB15}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{B2424C90-B2A8-469A-922A-671E5F2F885B}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [UDP Query User{B3868CCD-2931-4B5B-AF08-0C329AF06604}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [TCP Query User{7F80D9F0-5940-4126-A5BE-7D0D1143607D}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [UDP Query User{22EDA4EA-A942-48AE-AEF6-D9527689B235}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [{C9BB5120-DFAE-4426-BBDA-5EC46DE7D12D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{600B6A4C-A023-41E5-8AE9-86A755E3E6A5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{44226366-5FCE-4448-B74A-366566B97E4A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{356EC2E2-8126-45EF-A811-DCDC67A100D5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{86AABA81-5034-4E46-95A1-532B0CC605EA}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{E35EEBCE-D851-4491-8225-18302C94313A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{B5B919B5-09E6-4776-AE4B-863D6C1085B0}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{C6CD294F-FC98-40FA-AACB-D1E26FBFE4A2}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{B488BF95-6F70-46CF-B375-9B894341B2BE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

19-02-2016 09:33:09 Removido Tesouraria de Igrejas
07-03-2016 11:47:26 Ponto de Verificação Agendado
26-03-2016 20:01:35 Ponto de Verificação Agendado
08-04-2016 23:04:12 Ponto de Verificação Agendado
14-04-2016 16:40:47 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
14-04-2016 16:41:32 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (04/14/2016 05:10:10 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Somente informações.
(Stream product id=0x0066): Streaming Failed

Error: (04/14/2016 05:09:31 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Somente informações.
Too many failures while downloading ranges: 2

Error: (04/14/2016 04:14:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1143051

Error: (04/14/2016 04:14:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1143051

Error: (04/14/2016 04:14:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/14/2016 03:55:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9064

Error: (04/14/2016 03:55:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9064

Error: (04/14/2016 03:55:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/14/2016 03:55:55 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8066

Error: (04/14/2016 03:55:55 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8066


Erros de Sistema:
=============
Error: (04/14/2016 05:10:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/14/2016 05:07:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento anterior do sistema em 17:05:05 às ‎14/‎04/‎2016 não era esperado.

Error: (04/14/2016 09:00:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/13/2016 10:31:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/12/2016 10:19:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/11/2016 10:42:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/09/2016 05:34:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/09/2016 09:55:51 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {CC957078-B838-47C4-A7CF-626E7A82FC58}

Error: (04/09/2016 09:55:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2

Error: (04/08/2016 10:10:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SaveSenseLive Service (savesenselive) devido ao seguinte erro:
%%2


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz
Percentagem de memória em uso: 35%
RAM física total: 8105.99 MB
RAM física disponível: 5247.43 MB
Virtual Total: 16210.12 MB
Virtual disponível: 13142.16 MB

==================== Drives ================================

Drive c: (Windows7) (Fixed) (Total:688.77 GB) (Free:601.59 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive d: (Recuperar) (Fixed) (Total:9.77 GB) (Free:4.16 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 96661A81)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=688.8 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité