cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:29-05-2016 02
Executado por Geraldo (2016-05-29 11:16:21)
Executando a partir de D:\Usuários\Geraldo\Downloads
Microsoft Windows 7 Ultimate (X86) (2016-02-20 13:47:25)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-4067738430-1492921036-3304036372-500 - Administrator - Disabled)
Convidado (S-1-5-21-4067738430-1492921036-3304036372-501 - Limited - Disabled)
Geraldo (S-1-5-21-4067738430-1492921036-3304036372-1000 - Administrator - Enabled) => D:\Usuários\Geraldo

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

1310 (Version: 130.0.365.000 - Hewlett-Packard) Hidden
1310_Help (Version: 82.0.58.000 - Hewlett-Packard) Hidden
1310Trb (Version: 82.0.242.000 - Hewlett-Packard) Hidden
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.14) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.14 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.3.633 - Adobe Systems, Inc.)
AIO_CDB_ProductContext (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.2.2262 - AVAST Software)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Copy (Version: 130.0.428.000 - Hewlett-Packard) Hidden
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.465.000 - Hewlett-Packard) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden
Google Chrome (HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Support Assistant (HKLM\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM\...\{57A79409-9C79-4080-9FFA-09D4DAECC26B}) (Version: 12.4.18.7 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2117 - Intel Corporation)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JMicron Ethernet Adapter NDIS Driver (HKLM\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.23.4 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.45.0 - JMicron Technology Corp.)
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Media Player Codec Pack 3.9.9 (HKLM\...\Media Player - Codec Pack) (Version: - Media Player Codec Pack)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 10.0 (x86 pt-BR) (HKLM\...\Mozilla Firefox 10.0 (x86 pt-BR)) (Version: 10.0 - Mozilla)
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0148 - REALTEK Semiconductor Corp.)
SafeZone Stable 1.48.2066.101 (Version: 1.48.2066.101 - Avast Software) Hidden
Samsung Kies3 (HKLM\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung SideSync (HKLM\...\Samsung SideSync) (Version: 4.3.0.92 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype™ 7.5 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Smart Switch (HKLM\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16034.4 - Samsung Electronics Co., Ltd.)
Smart Switch (Version: 4.1.16034.4 - Samsung Electronics Co., Ltd.) Hidden
SmartWebPrinting (Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (Version: 130.0.469.000 - Hewlett-Packard) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Warsaw 1.12.3.5 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia)
Webcam 1.5 (HKLM\...\{39B78651-6FD2-4752-BE68-C3BDB6F2D9EE}) (Version: 1.5 - OEM)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
WinRAR 5.00 beta 5 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.5 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.21.79\psuser.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.29.5\psuser.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> D:\Usuários\Geraldo\AppData\Local\Google\Update\1.3.30.3\psuser.dll (Google Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0EC0708C-1F6B-48F6-8F13-1F2A4C119DD2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {15B73BD2-C1EC-4FFE-905B-2E54CAF6F744} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {1DB0144A-B775-4420-AEDA-58B058A0C4A5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {21E4A0E1-1C2D-4D6F-B8FE-D6EC60D97466} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-15] (Adobe Systems Incorporated)
Task: {3A92D848-692E-48FD-BF19-C7C3BFB97542} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {3F5701E2-8478-475E-8C4A-3E446C32F4AD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {5CC543A1-E7E7-43C1-83A0-2268EEB41121} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-06] (AVAST Software)
Task: {5EC8E9E3-C2D8-437F-A93F-75B502D79617} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-04] (AVAST Software)
Task: {614463FC-8118-465D-A80A-B6A7C78F2F2F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {63CA79AB-CB83-4C2F-A758-6A55F6469F59} - System32\Tasks\HPCeeScheduleForGeraldo => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {647246AC-B955-48B2-B3E1-F9E43FA44484} - System32\Tasks\SafeZone scheduled Autoupdate 1458668006 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {9D9DF901-7AA2-40E5-8461-9BD30742CA28} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4067738430-1492921036-3304036372-1000UA => D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe [2016-02-20] (Google Inc.)
Task: {E41FDF0F-899B-4F9B-B08E-57E350157846} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4067738430-1492921036-3304036372-1000Core => D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe [2016-02-20] (Google Inc.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4067738430-1492921036-3304036372-1000Core.job => D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4067738430-1492921036-3304036372-1000UA.job => D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForGeraldo.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2014-05-01 11:15 - 2014-05-01 11:15 - 00463360 ____N () C:\ProgramData\MEGAsync\ShellExtX32.dll
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-05-06 20:04 - 2016-05-06 20:04 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-05-06 20:04 - 2016-05-06 20:04 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-05-27 16:59 - 2016-05-27 16:59 - 02982040 _____ () C:\Program Files\AVAST Software\Avast\defs\16052701\algo.dll
2016-05-06 20:04 - 2016-05-06 20:04 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-05-06 20:04 - 2016-05-06 20:04 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-28 15:52 - 2016-05-28 15:52 - 02982040 _____ () C:\Program Files\AVAST Software\Avast\defs\16052801\algo.dll
2016-05-29 11:11 - 2016-05-29 11:11 - 02982040 _____ () C:\Program Files\AVAST Software\Avast\defs\16052900\algo.dll
2016-02-20 11:57 - 2016-02-20 11:57 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-08-11 17:18 - 2009-08-11 17:18 - 00497664 _____ () C:\Windows\system32\ac3filter.acm
2016-03-18 06:09 - 2016-03-18 06:09 - 10952880 _____ () C:\Program Files\Samsung\SideSync4\SideSync.exe
2016-03-18 04:26 - 2016-03-18 04:26 - 01289216 _____ () C:\Program Files\Samsung\SideSync4\cairo.dll
2016-03-18 04:26 - 2016-03-18 04:26 - 00230529 _____ () C:\Program Files\Samsung\SideSync4\libpng14-14.dll
2016-03-18 04:26 - 2016-03-18 04:26 - 00100352 _____ () C:\Program Files\Samsung\SideSync4\zlib1.dll
2016-03-18 06:24 - 2016-03-18 06:24 - 02660016 _____ () C:\Program Files\Samsung\SideSync4\NativeSideSyncFramework.dll
2016-03-18 06:27 - 2016-03-18 06:27 - 00842416 _____ () C:\Program Files\Samsung\SideSync4\SCommon.dll
2016-03-18 06:29 - 2016-03-18 06:29 - 04523184 _____ () C:\Program Files\Samsung\SideSync4\SLocales.dll
2016-03-18 04:26 - 2016-03-18 04:26 - 00091136 _____ () C:\Program Files\Samsung\SideSync4\ThoughtWorks.QRCode.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8]
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:1FF20C43_Cef.gbp [2]
AlternateDataStreams: C:\Windows\System32:1FF20C43_Uni.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [314]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2016-02-20 13:23 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-4067738430-1492921036-3304036372-1000\Control Panel\Desktop\\Wallpaper -> D:\Usuários\Geraldo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^hpzrcv01.LNK => C:\Windows\pss\hpzrcv01.LNK.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: Google Update => "D:\Usuários\Geraldo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{E4C7A551-1DE8-4D6C-BAD0-EC43CBABE4D4}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{9443FFF8-2E57-4E8E-832B-38BC06CC08D5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{100706A5-4501-479A-8271-47A13F6E2683}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{5914B005-E454-4A9D-82DB-DB71D5B8249D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{A0E8D1F9-E434-477E-ABA4-AFA96F3B769A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{F817BF4D-2E41-4B56-AFD0-FE81478632EB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{E2966519-F7E5-4A24-8A86-C9D0086678F5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{98FB1EA2-E03A-4FB9-8E59-8D045BA07AB6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{C5CB63E4-D0D2-4A6F-82B3-573F60BCBB7A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{D830F936-4E87-4532-B766-74B409439A0C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{2BC051FB-DF13-4533-A4AE-A82F4C866D40}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{38C37249-8250-42F1-A195-2E692442A1A0}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{39396BD4-F89B-4467-BCB0-015B7D1BA92B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{948194C7-507D-47F9-A739-1CA0334D0A01}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{EEA71835-3A08-4846-AA40-EFF6EDF242B5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{37214F30-7481-490E-A756-908A5D557CE6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{2CE3BFCE-C993-4471-944C-CD99DB4F74FF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{3BBFED58-DC14-434A-A1B4-4B5E8FAE1BD9}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{BF9BD60C-4ADD-4F84-809E-A18D6C12CBE2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{6DFC6889-25FF-4B40-9501-8660343A97B0}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{0D53535B-4797-41F6-AFEF-11486041EE53}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{653200DA-4D3F-49A6-9EDF-6C11D019E41D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{73061072-2717-4F31-AAE3-4E0977147823}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{5DDCF540-8290-4EC6-AF9A-8E5AA358CC55}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{3109216B-404A-4C53-BD97-ED6BCE878234}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{F279EE5D-8F0E-4046-8523-6A5D44543AB2}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [TCP Query User{0553EDBA-7373-47F1-B172-B6A18ED16686}D:\usuários\geraldo\appdata\local\google\chrome\application\chrome.exe] => (Block) D:\usuários\geraldo\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{6EA2EA9B-91C5-4DE3-A335-A795A9C30155}D:\usuários\geraldo\appdata\local\google\chrome\application\chrome.exe] => (Block) D:\usuários\geraldo\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{99910E7C-3F75-4732-B7C8-AE8DCBD6E53D}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{3F729483-5FB0-4C1C-9350-F65B924ECA71}] => (Allow) C:\Program Files\Samsung\SideSync4\SideSync.exe
FirewallRules: [{576503E0-D424-4086-B865-879777F01829}] => (Allow) C:\Program Files\Samsung\SideSync4\SideSync.exe

==================== Pontos de Restauração =========================

23-05-2016 15:25:56 Ponto de Verificação Agendado
26-05-2016 09:00:18 Removed Apple Mobile Device Support
26-05-2016 09:05:38 Removed Apple Software Update
26-05-2016 09:08:01 Removed Bonjour
26-05-2016 09:38:43 Removed Cisco EAP-FAST Module
26-05-2016 09:40:24 Removed Cisco LEAP Module
26-05-2016 09:41:37 Removed Cisco PEAP Module
26-05-2016 09:43:54 Removed iTunes
26-05-2016 18:01:29 JRT Pre-Junkware Removal
26-05-2016 21:26:17 JRT Pre-Junkware Removal

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: JMicron PCI Express Fast Ethernet Adapter
Description: JMicron PCI Express Fast Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: JMicron Technology Corp.
Service: JME
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (05/25/2016 09:26:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7972

Error: (05/25/2016 09:26:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7972

Error: (05/25/2016 09:26:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/25/2016 09:26:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3355

Error: (05/25/2016 09:26:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3355

Error: (05/25/2016 09:26:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/25/2016 08:30:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4197

Error: (05/25/2016 08:30:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4197

Error: (05/25/2016 08:30:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/25/2016 08:29:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1950


Erros de Sistema:
=============
Error: (05/29/2016 10:43:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw Technology devido ao seguinte erro:
%%1053

Error: (05/29/2016 10:43:39 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço Wlansvc.

Error: (05/29/2016 10:43:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Warsaw Technology.

Error: (05/29/2016 05:39:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 4 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (05/28/2016 11:12:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 3 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (05/28/2016 11:07:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço HPSLPSVC.

Error: (05/28/2016 12:01:13 PM) (Source: JME) (EventID: 5001) (User: )
Description: JMicron PCI Express Fast Ethernet Adapter : Não foi possível alocar os recursos necessários à operação.

Error: (05/28/2016 11:45:39 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (05/28/2016 04:02:12 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a resposta de uma transação do serviço WinDefend.

Error: (05/27/2016 09:54:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.


==================== Informações da Memória ===========================

Processador: Intel(R) Atom(TM) CPU D425 @ 1.80GHz
Percentagem de memória em uso: 53%
RAM física total: 2038.3 MB
RAM física disponível: 954.56 MB
Virtual Total: 4076.6 MB
Virtual disponível: 2427.12 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:102.68 GB) (Free:82.05 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
Drive d: (Arquivos) (Fixed) (Total:195.31 GB) (Free:172.61 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 490FDD78)
Partition 1: (Active) - (Size=102.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité