cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:27-02-2016
Executado por ISAIAS (2016-03-01 16:23:09)
Executando a partir de C:\Users\ISAIAS\Desktop
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) (2009-03-14 21:12:18)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3892671904-924784273-1446608767-500 - Administrator - Disabled)
Convidado (S-1-5-21-3892671904-924784273-1446608767-501 - Limited - Disabled)
ISAIAS (S-1-5-21-3892671904-924784273-1446608767-1000 - Administrator - Enabled) => C:\Users\ISAIAS

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
GBBD Caixa Economica Federal (HKLM\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - )
Last.fm Scrobbler 2.1.37 (HKLM\...\LastFM_is1) (Version: - Last.fm)
Litecoin (HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\Litecoin) (Version: 0.8.5.1 - Litecoin project)
Litecoin Core (32-bit) (HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\Litecoin Core (32-bit)) (Version: 0.10.2.2 - Litecoin Core project)
Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MCShield ::Anti-Malware Tool:: (HKLM\...\MCShield) (Version: 3.0.5.28 - MyCity)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil)) (HKLM\...\{95120000-00AF-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works (HKLM\...\{EE5B6291-45EF-4705-A20E-89A3C5D2F87E}) (Version: 9.7.0621 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKLM\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - )
Mozilla Firefox 44.0.2 (x86 pt-BR) (HKLM\...\Mozilla Firefox 44.0.2 (x86 pt-BR)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MultiBit 0.5.12 (HKLM\...\MultiBit 0.5.12) (Version: 0.5.12 - )
MultiDoge 0.1.6 (HKLM\...\MultiDoge 0.1.6) (Version: 0.1.6 - )
Oi Velox (HKLM\...\programmeroi_is1) (Version: 5.0.0.0 - LightComm Tecnologia)
OpenMG Secure Module (HKLM\...\{C1083DBC-C541-4E8C-91EA-D92397AB9A2C}) (Version: - )
Pacote de Compatibilidade para o sistema Office 2007 (HKLM\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Recuva (HKLM\...\Recuva) (Version: 1.49 - Piriform)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
VLC media player 2.0.5 (HKLM\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Warsaw 1.11.0.42826 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia)
Zemana AntiMalware (HKLM\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.19.904 - Zemana Ltd.)
ZHPFix 2015 (HKLM\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\ISAIAS\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\ISAIAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\ISAIAS\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\ISAIAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{1365A45F-0C8F-4806-A26A-6B22AD37EC66}\localserver32 -> C:\Program Files\AutoCAD 2006\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{3A999A50-AB25-4A20-90A9-08F71FCE320F}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\W32X86\3\hpcdmc32.dll (HP)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{8E75D913-3D21-11D2-85C4-080009A0C626}\localserver32 -> C:\Program Files\AutoCAD 2006\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{98087D89-B93F-4BCF-A998-AE4D9F607C14}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\W32X86\3\hpcdmc32.dll (HP)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{B286F068-5B17-4AE8-989B-8F9A199C47BA}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\W32X86\3\hpcdmc32.dll (HP)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\AutoCAD 2006\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{F131FB74-0E12-4533-8091-D71FE9CCD91D}\localserver32 -> C:\Program Files\AutoCAD 2006\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3892671904-924784273-1446608767-1000_Classes\CLSID\{FC280999-88C6-4499-9622-3B795A8B4A5F}\localserver32 -> C:\Program Files\AutoCAD 2006\acad.exe (Autodesk, Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {13F6C296-AF0A-4D24-880E-0977185460C6} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-20] (Microsoft Corporation)
Task: {1630BA2F-67FF-495E-B1EB-FA7B27872D3A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-09] (Adobe Systems Incorporated)
Task: {1AF4AEAE-BFA3-4CA7-A9A5-0072EAC901AE} - System32\Tasks\desligar => C:\Windows\System32\shutdown.exe [2008-01-20] (Microsoft Corporation)
Task: {2969DBEA-B49A-41BE-B8EC-4BF7B56A5F75} - \{5D5E16CA-5DFB-4B26-A79C-5616192F2707} -> Nenhum Arquivo <==== ATENÇÃO
Task: {315243B4-95D4-48BE-B621-7234FC34764A} - System32\Tasks\Microsoft\Windows\RestartManager\{4EF25FB2-9FAB-4b17-9D24-B229FF447F5C} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation)
Task: {44F6C35B-69D1-4771-ACF1-04402F3D8562} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {7428B299-7179-4C3E-A580-FF27BDA4E23E} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files\Sony\VAIO Wallpaper Setting Tool\VWSet.exe [2008-06-27] (Sony Corporation)
Task: {C38CB8A4-ED51-4A20-B0FD-315F86A3982F} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2008-06-11] (Sony Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2009-06-29 18:17 - 2007-07-12 22:33 - 00087552 ____N () C:\Windows\System32\cpwmon2k.dll
2007-09-11 00:45 - 2007-09-11 00:45 - 00124832 _____ () C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
2008-09-03 13:59 - 2008-07-15 18:04 - 00010752 _____ () C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll
2008-09-03 13:59 - 2008-07-15 18:04 - 00009728 _____ () C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll
2009-03-15 16:02 - 2007-09-20 18:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll
2016-03-01 15:37 - 2016-03-01 15:37 - 00101744 _____ () C:\Program Files\Zemana AntiMalware\ZAMShellExt32.dll
2012-07-10 18:04 - 2011-07-20 12:05 - 00614400 _____ () C:\Program Files\Oi\Programmer\OiVeloxCheck.exe

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==
AlternateDataStreams: C:\Windows\System32:53CA9438_Bb.gbp
AlternateDataStreams: C:\Windows\System32:53CA9438_Cef.gbp
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4
AlternateDataStreams: C:\ProgramData\Temp:A8ADE5D8
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\Users\ISAIAS\Downloads:Shareaza.GUID
AlternateDataStreams: C:\Users\ISAIAS\Downloads\Especialização em Educação, Pobreza e Desigualdade Social.mp4:TOC.WMV

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== EXE Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\bb.com.br -> hxxps://seg.bb.com.br
IE trusted site: HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3892671904-924784273-1446608767-1000\...\caixa.gov.br -> imagem.caixa.gov.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2015-07-26 12:04 - 2015-07-27 15:48 - 00000780 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3892671904-924784273-1446608767-1000\Control Panel\Desktop\\Wallpaper -> C:\Program Files\Sony\First Experience\wallpapers\wallpaper3.jpg
DNS Servers: 208.67.222.222 - 208.67.220.220
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
MpsSvc => O Serviço Firewall não está sendo executado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AutoCAD Startup Accelerator.lnk => C:\Windows\pss\AutoCAD Startup Accelerator.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan.lnk => C:\Windows\pss\McAfee Security Scan.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^ISAIAS^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Recorte de tela e Iniciador do OneNote 2007.lnk => C:\Windows\pss\Recorte de tela e Iniciador do OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeUpdater => C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: ISBMgr.exe => "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
MSCONFIG\startupreg: RtHDVCpl => RtHDVCpl.exe
MSCONFIG\startupreg: VAIOSurvey => "C:\Program Files\Sony\VAIO Survey\VAIO Sat Survey.exe"
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WMP-Out-TCP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-In-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [{FB7AD794-5608-4DC1-AD97-AC0A33588C8A}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe
FirewallRules: [{EC6ECF4A-4636-4BCF-9399-B08236F8377E}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{DC6AE02C-08E4-4835-8B71-C0D0C132F0ED}C:\program files\emule\emule.exe] => (Allow) C:\program files\emule\emule.exe
FirewallRules: [UDP Query User{78D752E2-980E-4381-9564-0AF3F20D55EB}C:\program files\emule\emule.exe] => (Allow) C:\program files\emule\emule.exe
FirewallRules: [TCP Query User{6079D65E-F7B6-449E-92C5-6127E30E3F66}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{48FE3C71-79F5-431E-9EFF-8BF124F0D6EF}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [TCP Query User{F1BCF698-0106-4BD2-B521-ED3FBC9D4472}C:\program files\emule\emule.exe] => (Block) C:\program files\emule\emule.exe
FirewallRules: [UDP Query User{E0FCC238-3C7A-46EA-A92A-4A6A50B097A4}C:\program files\emule\emule.exe] => (Block) C:\program files\emule\emule.exe
FirewallRules: [TCP Query User{AA97F7AB-05C6-4C18-A9AB-C03C1B50B461}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{F59BF4BE-CD7C-4C93-A89B-D71DC6B616E6}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [TCP Query User{428ED7F9-A686-4007-A650-75A18C8D4AA0}C:\program files\utorrent\utorrent.exe] => (Allow) C:\program files\utorrent\utorrent.exe
FirewallRules: [UDP Query User{09E1D67C-3A6B-447A-8B69-DE8F09326AA2}C:\program files\utorrent\utorrent.exe] => (Allow) C:\program files\utorrent\utorrent.exe
FirewallRules: [{A0A588A2-BC37-4BA8-B9FC-B5ED96B19AB3}] => (Allow) svchost.exe
FirewallRules: [{C270A5B7-944C-41CD-B391-0A27FAFC23C7}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{213BEB43-893B-441E-B272-9586911A2197}] => (Allow) LPort=80
FirewallRules: [{E3E221F5-58C6-497A-9F04-1D0E5B511DC4}] => (Allow) LPort=80
FirewallRules: [{F8869444-AD29-4304-A6EE-DFBC83B511A5}] => (Allow) LPort=80
FirewallRules: [TCP Query User{1A6412CF-9623-4468-9689-2D1A288EA4AE}C:\program files\java\jre6\bin\java.exe] => (Block) C:\program files\java\jre6\bin\java.exe
FirewallRules: [UDP Query User{97569D32-4DED-4476-8956-2C87BC453838}C:\program files\java\jre6\bin\java.exe] => (Block) C:\program files\java\jre6\bin\java.exe
FirewallRules: [{4F57F4D2-A884-494B-8B3F-04252A8301FE}] => (Allow) LPort=4481
FirewallRules: [{DEFB9831-EC63-4D88-BD11-48A7A623EF87}] => (Allow) LPort=4481
FirewallRules: [{1031D14F-40AF-4CEB-B0DC-02EBDCD6BF28}] => (Allow) LPort=4482
FirewallRules: [{616C778A-27A1-4852-9EC9-8AAF42D8736C}] => (Allow) LPort=4482
FirewallRules: [{2D2E52C7-A987-40C3-AA94-496095D5D97D}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{AD8E7412-A942-4946-9D2C-639BFCD8AC1C}] => (Allow) LPort=2869
FirewallRules: [{0F2AB24E-0FB6-41E8-BD79-6BB89B3D5AD8}] => (Allow) LPort=1900
FirewallRules: [{14AA7BDF-6CB3-40D1-B57B-854AA964D977}] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [{EC0BFC39-8CB7-480E-BBB5-39367816BF55}] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [{8E116068-DCD8-44FC-980E-A7A3BE8163A5}] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe
FirewallRules: [{1BF7665B-3F3D-4B7A-8788-C673C3ABDB05}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{36774E8E-E1B7-45AB-A552-D94D91AA9DAE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe
FirewallRules: [UDP Query User{976D761E-4036-467A-96B4-0655D6FC265F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe
FirewallRules: [{4A301F4C-617D-43EA-8310-E8413FFF8D31}] => (Allow) LPort=4662
FirewallRules: [{EFDE55B9-56AD-4673-838F-5D6C8D4FD2AC}] => (Allow) LPort=4672
FirewallRules: [{76450EE6-B03C-460A-8C57-415512BD518D}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{696E31CA-DC90-4F62-AB4D-F68AAAB0ABC7}] => (Allow) LPort=64639
FirewallRules: [TCP Query User{529CA9DB-D547-4675-AD88-DD096BDDC3F1}C:\program files\ppcoin\ppcoin-qt.exe] => (Allow) C:\program files\ppcoin\ppcoin-qt.exe
FirewallRules: [UDP Query User{BAA11EB2-FDB8-4C36-A818-35364ADA0E47}C:\program files\ppcoin\ppcoin-qt.exe] => (Allow) C:\program files\ppcoin\ppcoin-qt.exe

==================== Pontos de Restauração =========================

24-02-2016 12:34:53 Ponto de Verificação Agendado
25-02-2016 12:33:49 Ponto de Verificação Agendado
26-02-2016 15:27:41 Windows Update
27-02-2016 20:35:35 Ponto de Verificação Agendado
28-02-2016 23:14:08 Ponto de Verificação Agendado
29-02-2016 14:39:49 JRT Pre-Junkware Removal
29-02-2016 17:05:07 JRT Pre-Junkware Removal
29-02-2016 20:40:06 JRT Pre-Junkware Removal
01-03-2016 14:25:43 Windows Update
Cheque o serviço "winmgmt" ou repare o WMI.


==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: 6TO4 Adapter
Description: Adaptador do Microsoft 6to4
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Adaptador do Microsoft ISATAP #3
Description: Adaptador do Microsoft ISATAP
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (03/01/2016 04:05:46 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (03/01/2016 01:58:51 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (03/01/2016 01:46:18 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Falha ao criar ponto de restauração no volume (Processo = C:\Users\ISAIAS\AppData\Local\Temp\jrt\CreateRestorePoint.exe "JRT Pre-Junkware Removal"; Descrição = JRT Pre-Junkware Removal; Hr = 0x8007043c).

Error: (03/01/2016 01:32:01 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (02/29/2016 08:33:10 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (02/29/2016 02:31:03 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (02/29/2016 01:31:08 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (02/28/2016 04:46:27 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\Windows\system32\wbem\WmiApRpl.dll4

Error: (02/28/2016 04:46:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (02/28/2016 04:46:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL4


Erros de Sistema:
=============
Error: (03/01/2016 04:11:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Gbpddreg svc%%2

Error: (03/01/2016 04:05:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: gbpddreg

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: UI Assistant Service%%1053

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000UI Assistant Service

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Pml Driver HPZ12%%126

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Net Driver HPZ12%%126

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (03/01/2016 04:05:32 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Firewall do Windows13 (0xD)

Error: (03/01/2016 04:04:13 PM) (Source: HTTP) (EventID: 15021) (User: )
Description: \Device\Http\ReqQueue192.168.2.33:63331

Error: (03/01/2016 04:04:13 PM) (Source: HTTP) (EventID: 15021) (User: )
Description: \Device\Http\ReqQueue192.168.100.11:63331


CodeIntegrity:
===================================
Date: 2016-03-01 16:22:35.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wsddpp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:34.248
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wsddpp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:33.343
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wsddpp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:32.469
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wsddpp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:15.356
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:14.467
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:13.547
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:12.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:07.291
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\gbpkm.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-03-01 16:22:06.371
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\gbpkm.sys because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória ===========================

Processador: Intel(R) Pentium(R) Dual CPU T3200 @ 2.00GHz
Percentagem de memória em uso: 70%
RAM física total: 1914.31 MB
RAM física disponível: 562.99 MB
Virtual Total: 4073.64 MB
Virtual disponível: 2635.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:139.85 GB) (Free:19.78 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: 11A12E5D)
Partition 1: (Not Active) - (Size=9.2 GB) - (Type=27)
Partition 2: (Active) - (Size=139.8 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité