cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:30-04-2016
Executado por Gateway (2016-05-01 10:54:38)
Executando a partir de C:\Users\Gateway\Downloads
Windows 10 Home Single Language Versão 1511 (X64) (2016-03-15 22:06:44)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-1412601872-4003495661-3799204136-500 - Administrator - Disabled) => C:\Users\Administrator
andre_000 (S-1-5-21-1412601872-4003495661-3799204136-1006 - Limited - Enabled) => C:\Users\andre_000
ASPNET (S-1-5-21-1412601872-4003495661-3799204136-1007 - Limited - Enabled)
Convidado (S-1-5-21-1412601872-4003495661-3799204136-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1412601872-4003495661-3799204136-503 - Limited - Disabled)
Gateway (S-1-5-21-1412601872-4003495661-3799204136-1001 - Administrator - Enabled) => C:\Users\Gateway
HomeGroupUser$ (S-1-5-21-1412601872-4003495661-3799204136-1005 - Limited - Enabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.2.0.129 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Backup Manager v4 (x32 Version: 4.0.0.0059 - NTI Corporation) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.68.1077 - AB Team, d.o.o.)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3103_44819 - CyberLink Corp.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4220.52 - CyberLink Corp.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Gateway Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3007 - Gateway Incorporated)
Gateway MyBackup (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0059 - NTI Corporation)
Gateway Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Gateway Incorporated)
Gateway Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Gateway Incorporated)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Gateway Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.0 - Receita Federal do Brasil)
IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.1 - Receita Federal do Brasil)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3004 - Gateway Incorporated)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Proteção - Banco Santander (Brasil) S.A. (HKLM-x32\...\{83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1) (Version: 3.12.0.2 - )
Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 20.6.0.27 - Symantec Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros)
R for Windows 3.2.2 (HKLM\...\R for Windows 3.2.2_is1) (Version: 3.2.2 - R Core Team)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATENÇÃO
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-1412601872-4003495661-3799204136-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\Gateway\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1412601872-4003495661-3799204136-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\Gateway\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1412601872-4003495661-3799204136-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gateway\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1412601872-4003495661-3799204136-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1412601872-4003495661-3799204136-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {02C9B4FF-065C-4F04-862C-F7DCDFA165A6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-04-27] (Microsoft Corporation)
Task: {045F3361-575D-4C8E-9FDA-2F7A5C0F758D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {05B69841-8234-408A-A8A6-20B226B0B06E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {0D599E90-0A36-4CC6-86AF-EA15B88438E5} - System32\Tasks\PJLCCXCS => C:\ProgramData\d82913a04caa488e83b60a3eb82e8581\d82913a04caa488e83b60a3eb82e8581.exe [2015-06-03] () <==== ATENÇÃO
Task: {10F5285D-B7CA-4B63-96EC-BAC3C03E35CE} - System32\Tasks\{003DDA07-BB38-4829-BA2F-D73E35D1C288} => pcalua.exe -a C:\Users\Gateway\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=slbnew
Task: {1826DAB3-C389-49A2-9EE0-7A4ACA9D1EC0} - System32\Tasks\{F8E820BF-1FD4-4A53-9B32-DDCA6DFAFDA3} => launchwinapp.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.14.0.104&LastError=12007
Task: {1A74F76D-9368-4575-9D8F-A1077812E03C} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {1B6F45B8-A458-4379-8576-DFA6170A2DCE} - System32\Tasks\Pritc => C:\Users\Gateway\AppData\Local\Temp\00023320\casrss.exe [2016-04-29] (VLOME) <==== ATENÇÃO
Task: {1E68FE6B-BB07-4362-8F32-11ED80A9712D} - System32\Tasks\{BD547A79-449C-485C-9C08-38219BB86982} => launchwinapp.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.14.0.104&LastError=12007
Task: {282BA4A8-4A44-4C4C-809E-483FEAB60DD8} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Gateway\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {2DAD9E21-7FEC-4E65-8847-001411D4D121} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {3BA8C8C2-0B1A-48EA-A960-A1918DEA931E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-20] (Google Inc.)
Task: {4DC3BE56-2F85-4625-8232-DDDD6837D2E1} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Gateway\Gateway Recovery Management\Notification\Notification.exe [2012-07-31] (Acer Incorporated)
Task: {71F1A632-C26C-4071-B269-F5C8D642E82A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {7263C05B-701B-4C87-80DE-446BCB0B20B1} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: {77501165-B6BB-42E1-9125-D320D8803A37} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO
Task: {7DA796AC-0D19-47E5-B46B-E4CFCF2BB112} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-07-04] (CyberLink)
Task: {8C1E0D80-ADEF-403B-AE7C-2AB36F7A9974} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-04-16] ()
Task: {9153A4C5-5DBF-4A54-8AFC-3F87972B2310} - System32\Tasks\HSNSMWXB1 => C:\ProgramData\Kikblaster\Kikblaster.exe <==== ATENÇÃO
Task: {9DF65B6D-CD0D-441D-88F5-1848332105E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {AD9AD74A-D5B0-49BF-9C1D-8A1C09ABCC06} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {AE82D86B-EDD9-48B7-B20C-DFAD8A948077} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {B1D7E2E4-9E21-4C1B-89AA-88403E7F05F9} - System32\Tasks\Norton Internet Security\Norton Autofix => C:\Program Files (x86)\Norton Internet Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {B1E1B68B-2FE1-4635-A8D5-891A4888B808} - System32\Tasks\ALU => C:\Program Files (x86)\Gateway\Live Updater\updater.exe [2012-08-30] ()
Task: {BE3DCAFA-34E1-4616-84C1-B746B88D489E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {C2B2D899-365C-4D10-B62B-7B08003E3AA3} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {D50AC648-7428-4FC0-B7A7-5E262159620B} - System32\Tasks\Power Management => C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [2012-08-22] (Acer Incorporated)
Task: {D795BA83-CBCA-4B22-9EC0-88C5EEDB2E60} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: {DE0B64A0-18CF-4565-B12D-CB0E3306CC9E} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {E02AFAB2-F79A-499F-AB6E-F10F35B1411A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {E5F290A9-96A2-469A-9548-6821DC40900E} - System32\Tasks\MaxComputerCleaner_Start => C:\Program Files (x86)\Max Computer Cleaner\MaxComputerCleaner.exe <==== ATENÇÃO
Task: {E75B0311-3074-480A-A972-E97B441876E1} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.5.2.15\WSCStub.exe [2015-07-16] (Symantec Corporation)
Task: {EA50A482-5A95-4B65-B31F-A115C1923BE6} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: {ED2306E2-3C35-4184-BE8A-4A1763650CC8} - System32\Tasks\{B5C87D94-A7B8-4CA6-8492-996AE0617D1C} => pcalua.exe -a "C:\Program Files\BubbleSound\Uninstall.exe"
Task: {EF5DA81C-C885-4F5F-B31A-71A6F4B4EACA} - System32\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935} => C:\Users\Gateway\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exe [2015-05-14] () <==== ATENÇÃO
Task: {F1325876-C732-4493-9068-16BA49F3509B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-20] (Google Inc.)
Task: {F547BB74-7D38-4CA4-B68A-A246F750FA74} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {F750E86F-55F4-4907-94FA-A2E5BB9A3659} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-elisavalenca@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-07-22] (Adobe Systems Incorporated)
Task: {F88AC7E8-470C-423B-9CD5-58DD401B0457} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {F9EA052E-23A9-4B36-841F-081F3DBE8CE3} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-andreyvalenca@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-07-22] (Adobe Systems Incorporated)
Task: {FBA91D2B-0275-484F-AF73-413E6F5B5702} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HSNSMWXB1.job => C:\ProgramData\Kikblaster\Kikblaster.exe <==== ATENÇÃO
Task: C:\WINDOWS\Tasks\{2A6A6C0A-6DF1-4478-807F-2FF9BF46B935}.job => C:\Users\Gateway\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\InstallHelp.exeš-RunCheckUpdate C:\Users\Gateway\AppData\Roaming\{2F3AA0F6-976C-4b02-A66A-5D1DEA00811F}\CheckUpdate.exe <==== ATENÇÃO

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

WMI_ActiveScriptEventConsumer_ASEC: <===== ATENÇÃO (yeabests)

ShortcutWithArgument: C:\Users\Gateway\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://navigation.iwatchavi.com/
ShortcutWithArgument: C:\Users\Gateway\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://navigation.iwatchavi.com/
ShortcutWithArgument: C:\Users\Gateway\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://navigation.iwatchavi.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://navigation.iwatchavi.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://navigation.iwatchavi.com/

==================== Módulos Carregados (Whitelisted) ==============

2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-27 14:09 - 2016-03-29 07:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-27 14:09 - 2016-03-29 07:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-29 20:07 - 2016-04-29 20:07 - 00959176 _____ () C:\Users\Gateway\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-04-24 20:18 - 2016-04-24 20:18 - 00123864 _____ () C:\ProgramData\Microsoft\Network\Dsq\browser\syshostctl.exe
2016-03-15 18:07 - 2016-03-15 18:07 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-27 14:07 - 2016-04-02 00:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-27 14:09 - 2016-04-02 00:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-27 14:08 - 2016-04-01 23:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-27 14:09 - 2016-04-01 23:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-27 14:09 - 2016-04-02 00:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-11-12 07:30 - 2012-11-12 07:30 - 01193176 _____ () C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
2016-04-29 20:43 - 2016-04-16 09:46 - 02055168 _____ () C:\ProgramData\WindowsMsg\osmsg.exe
2015-07-22 01:02 - 2015-07-22 01:02 - 31535264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-03-16 17:44 - 2016-03-16 17:45 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2012-08-23 03:26 - 2012-08-23 03:26 - 00465384 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\sqlite3.dll
2012-08-23 03:25 - 2012-08-23 03:25 - 00125504 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\MailConverter32.dll
2012-08-23 03:26 - 2012-08-23 03:26 - 00155712 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\VolumeSnapshot.dll
2012-08-23 03:25 - 2012-08-23 03:25 - 00118336 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\Online.dll
2012-08-23 03:25 - 2012-08-23 03:25 - 01081408 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\ACE.dll
2012-08-23 03:25 - 2012-08-23 03:25 - 00052288 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\OsSettingPort.dll
2012-08-23 03:26 - 2012-08-23 03:26 - 00727616 _____ () C:\Program Files (x86)\NTI\Gateway MyBackup\OutlookShadow.dll
2012-11-12 07:20 - 2012-06-25 14:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-04-29 20:07 - 2016-04-29 20:07 - 00679624 _____ () C:\Users\Gateway\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll
2015-07-22 15:32 - 2015-07-22 15:32 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-03-16 17:44 - 2016-03-16 17:45 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-03-16 17:44 - 2016-03-16 17:45 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-04-29 20:03 - 2016-04-06 07:04 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libglesv2.dll
2016-04-29 20:03 - 2016-04-06 07:04 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libegl.dll
2016-04-29 20:14 - 2016-04-08 13:53 - 17532096 _____ () C:\Users\Gateway\AppData\Local\Google\Chrome\User Data\PepperFlash\21.0.0.216\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Users\andre_000\Cookies:f58f3jItkK1HSnsl0Q [452]
AlternateDataStreams: C:\Users\andre_000\AppData\Local\Jwr0hnSvHj:jrojX5AkxMC94wGtLBnWJHoz70 [2084]
AlternateDataStreams: C:\Users\andre_000\AppData\Local\Temp:0IMp7W9OSnODlkwz0WNhiUmMIhUB9 [2072]
AlternateDataStreams: C:\Users\Gateway\Cookies:f58f3jItkK1HSnsl0Q [1920]
AlternateDataStreams: C:\Users\Gateway\AppData\Local\Jwr0hnSvHj:jrojX5AkxMC94wGtLBnWJHoz70 [1886]
AlternateDataStreams: C:\Users\Gateway\AppData\Local\Temp:0IMp7W9OSnODlkwz0WNhiUmMIhUB9 [1784]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)


==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2012-07-26 02:26 - 2014-12-25 20:32 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1412601872-4003495661-3799204136-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gateway\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\expert griefing machine.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-1412601872-4003495661-3799204136-1001\...\StartupApproved\Run: => "BitComet"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{2F49D920-3E8B-4911-B1B6-24A6162B6708}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{588DF1B0-A5FA-4D1E-9798-911954E48EE9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{793D60F7-E7A6-488B-B122-0FA5F4AC097A}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{417D4802-C1C2-4349-BB77-C780E7213C3D}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{396B0263-236D-4B2C-AB9B-42B0D9832CB9}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{64B81945-6C50-4AEA-BAF5-14A46724572D}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{C7A677F7-EB7C-4576-AB41-F393F416AB6A}] => (Allow) C:\Program Files (x86)\NTI\Gateway MyBackup\FileExplorer.exe
FirewallRules: [{2B81F9A7-026D-4829-B177-01D98BBDD0C2}] => (Allow) C:\Program Files (x86)\NTI\Gateway MyBackup\IScheduleSvc.exe
FirewallRules: [{0E865112-9356-46A0-AC23-B2B182DB1BFD}] => (Allow) C:\Program Files (x86)\NTI\Gateway MyBackup\BackupManager.exe
FirewallRules: [TCP Query User{6B2F225D-EC7D-4E9D-BBAB-3ED8C691F643}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{5EFCF460-79D9-4B03-96E8-827C5F85E530}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{A2CB98D3-E3EE-467B-8F9D-36C0BAEC8688}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A3FC40E5-0B45-4390-9F18-DA0B9534535F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6437103D-D27C-431E-A219-D64466B8C080}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BAC203CB-EC06-4F92-8D7D-AE4391C3BE09}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{17F08C71-B3A4-4871-B577-E6AB2EF8E652}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{F302FAAC-FFA0-4217-BD8F-93FC2F4CA89B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0EDDA903-A4FB-48C3-ADF0-72B213FED189}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{03B01B5C-7DAB-49DA-9C17-18CCE451D107}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [TCP Query User{550109BF-69CE-47FE-90DD-7C3454D560BF}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{98CB38AD-19D2-46E2-A8FF-CB11CDBD7548}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{2A933E05-B9D8-4099-B99C-512BADA16CCD}C:\program files\bitcomet\bitcomet.exe] => (Block) C:\program files\bitcomet\bitcomet.exe
FirewallRules: [UDP Query User{AF70A1EE-909E-4FB8-946F-89797DF55A0D}C:\program files\bitcomet\bitcomet.exe] => (Block) C:\program files\bitcomet\bitcomet.exe
FirewallRules: [TCP Query User{CBD9ECB1-639D-48D7-A355-279871602514}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe
FirewallRules: [UDP Query User{45220708-ED4C-4EE2-90A6-B4AB0AA065B6}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe
FirewallRules: [TCP Query User{A6C225B7-BD47-48AF-B359-DFB25C5A9669}C:\users\gateway\downloads\tl-wr841nd_tl-wr941nd_utility_100916\wr1043n\easysetupassistant.exe] => (Allow) C:\users\gateway\downloads\tl-wr841nd_tl-wr941nd_utility_100916\wr1043n\easysetupassistant.exe
FirewallRules: [UDP Query User{3E311146-2F23-4664-B6C7-9CBB610BBC17}C:\users\gateway\downloads\tl-wr841nd_tl-wr941nd_utility_100916\wr1043n\easysetupassistant.exe] => (Allow) C:\users\gateway\downloads\tl-wr841nd_tl-wr941nd_utility_100916\wr1043n\easysetupassistant.exe
FirewallRules: [TCP Query User{6C09043A-4260-46CF-A4AC-4543653E8999}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{8E27A54A-7452-4A5A-9342-849B4E28ABF0}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{746C6CB0-E010-4F70-BF52-4E87D08C6B02}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

15-03-2016 19:44:59 Windows Update
23-03-2016 18:31:55 Instalador de Módulos do Windows
27-03-2016 17:40:17 Windows Update
27-04-2016 14:12:48 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (05/01/2016 10:56:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (04/30/2016 09:14:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: casrss.exe, versão: 2.0.0.30, carimbo de data/hora: 0x5715ce71
Nome do módulo com falha: casrss.exe, versão: 2.0.0.30, carimbo de data/hora: 0x5715ce71
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000225c5
ID do processo com falha: 0x3450
Hora de início do aplicativo com falha: 0xcasrss.exe0
Caminho do aplicativo com falha: casrss.exe1
Caminho do módulo com falha: casrss.exe2
ID do Relatório: casrss.exe3
Nome completo do pacote com falha: casrss.exe4
ID do aplicativo relativo ao pacote com falha: casrss.exe5

Error: (04/30/2016 08:36:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OneDrive.exe, versão: 17.3.6386.412, carimbo de data/hora: 0x570ca084
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.10586.162, carimbo de data/hora: 0x56cd55ab
Código de exceção: 0x80000003
Deslocamento da falha: 0x001382a2
ID do processo com falha: 0x1dc8
Hora de início do aplicativo com falha: 0xOneDrive.exe0
Caminho do aplicativo com falha: OneDrive.exe1
Caminho do módulo com falha: OneDrive.exe2
ID do Relatório: OneDrive.exe3
Nome completo do pacote com falha: OneDrive.exe4
ID do aplicativo relativo ao pacote com falha: OneDrive.exe5

Error: (04/30/2016 08:11:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OneDrive.exe, versão: 17.3.6386.412, carimbo de data/hora: 0x570ca084
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.10586.162, carimbo de data/hora: 0x56cd55ab
Código de exceção: 0x80000003
Deslocamento da falha: 0x001382a2
ID do processo com falha: 0x2a34
Hora de início do aplicativo com falha: 0xOneDrive.exe0
Caminho do aplicativo com falha: OneDrive.exe1
Caminho do módulo com falha: OneDrive.exe2
ID do Relatório: OneDrive.exe3
Nome completo do pacote com falha: OneDrive.exe4
ID do aplicativo relativo ao pacote com falha: OneDrive.exe5

Error: (04/30/2016 07:35:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OneDrive.exe, versão: 17.3.6386.412, carimbo de data/hora: 0x570ca084
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.10586.162, carimbo de data/hora: 0x56cd55ab
Código de exceção: 0x80000003
Deslocamento da falha: 0x001382a2
ID do processo com falha: 0x39f8
Hora de início do aplicativo com falha: 0xOneDrive.exe0
Caminho do aplicativo com falha: OneDrive.exe1
Caminho do módulo com falha: OneDrive.exe2
ID do Relatório: OneDrive.exe3
Nome completo do pacote com falha: OneDrive.exe4
ID do aplicativo relativo ao pacote com falha: OneDrive.exe5

Error: (04/30/2016 07:21:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: FAMILIA)
Description: O pacote Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{04589ebf-5483-4cb3-ad32-b10239803ac7} foi terminado porque levou muito tempo para ser suspenso.

Error: (04/30/2016 06:57:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FAMILIA)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2144927142. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.

Error: (04/30/2016 06:54:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Adobe Premiere Pro.exe versão 6.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.

ID do Processo: 2528

Hora de Início: 01d1a32a43104cf3

Hora de Término: 10854

Caminho do Aplicativo: C:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe

ID do Relatório: f33e29b6-0f1d-11e6-bf08-2089840c42cc

Nome completo do pacote com falha:

ID do aplicativo relativo ao pacote com falha:

Error: (04/30/2016 06:36:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OneDrive.exe, versão: 17.3.6386.412, carimbo de data/hora: 0x570ca084
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.10586.162, carimbo de data/hora: 0x56cd55ab
Código de exceção: 0x80000003
Deslocamento da falha: 0x001382a2
ID do processo com falha: 0x1ca8
Hora de início do aplicativo com falha: 0xOneDrive.exe0
Caminho do aplicativo com falha: OneDrive.exe1
Caminho do módulo com falha: OneDrive.exe2
ID do Relatório: OneDrive.exe3
Nome completo do pacote com falha: OneDrive.exe4
ID do aplicativo relativo ao pacote com falha: OneDrive.exe5

Error: (04/30/2016 06:23:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: OneDrive.exe, versão: 17.3.6386.412, carimbo de data/hora: 0x570ca084
Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.10586.162, carimbo de data/hora: 0x56cd55ab
Código de exceção: 0x80000003
Deslocamento da falha: 0x001382a2
ID do processo com falha: 0x19c0
Hora de início do aplicativo com falha: 0xOneDrive.exe0
Caminho do aplicativo com falha: OneDrive.exe1
Caminho do módulo com falha: OneDrive.exe2
ID do Relatório: OneDrive.exe3
Nome completo do pacote com falha: OneDrive.exe4
ID do aplicativo relativo ao pacote com falha: OneDrive.exe5


Erros de Sistema:
=============
Error: (05/01/2016 10:38:38 AM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (04/30/2016 09:22:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Acesso a Dados de Usuário_ad6c44b foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (04/30/2016 09:22:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Armazenamento de Dados de Usuário_ad6c44b foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (04/30/2016 09:22:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Dados de Contato_ad6c44b foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (04/30/2016 09:22:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_ad6c44b foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.

Error: (04/30/2016 09:22:24 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível

Error: (04/30/2016 08:56:40 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (04/30/2016 08:37:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Host de Sincronização_153a423.

Error: (04/30/2016 08:37:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Armazenamento de Dados de Usuário_153a423.

Error: (04/30/2016 08:37:18 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: O Gerenciador de controle de serviços tentou executar uma ação corretiva (Reiniciar o serviço) após a finalização inesperada do serviço Armazenamento de Dados de Usuário_153a423, mas essa ação falhou com o seguinte erro:
%%1056


CodeIntegrity:
===================================
Date: 2016-04-30 17:24:20.881
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-30 16:05:19.110
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-04-29 19:37:27.753
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-04-27 18:43:29.075
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-04-24 22:04:19.119
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\Ijhraj64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 22:04:19.056
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\Ijhraj64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-03 23:04:10.654
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-03-28 20:43:28.019
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-23 18:37:50.791
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-03-16 16:14:01.112
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentagem de memória em uso: 83%
RAM física total: 3911.27 MB
RAM física disponível: 648.19 MB
Virtual Total: 10703.85 MB
Virtual disponível: 7132.12 MB

==================== Drives ================================

Drive c: (Gateway) (Fixed) (Total:278.75 GB) (Free:126.94 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: F40B6406)

Partition: GPT.

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité