cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 27-07-2016
Executado por Holana (2016-07-31 02:57:22)
Executando a partir de C:\Users\Holana\Desktop
Windows 8 (X64) (2013-08-16 13:07:58)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3653245818-3898939100-4217711198-500 - Administrator - Disabled)
Convidado (S-1-5-21-3653245818-3898939100-4217711198-501 - Limited - Enabled)
Holana (S-1-5-21-3653245818-3898939100-4217711198-1001 - Administrator - Enabled) => C:\Users\Holana
HomeGroupUser$ (S-1-5-21-3653245818-3898939100-4217711198-1009 - Limited - Enabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{5ED7462B-EF58-4757-B609-53755021EC34}) (Version: 8.1.0.18 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG2400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2400_series) (Version: 1.00 - Canon Inc.)
Canon MG2400 series On-screen Manual (HKLM-x32\...\Canon MG2400 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.2.413 - Foxit Corporation)
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.140.0 - International GeoGebra Institute)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.1 - Receita Federal do Brasil)
IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
K-Lite Mega Codec Pack 8.9.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.9.5 - )
Microsoft Office 365 ProPlus - pt-br (HKLM\...\O365ProPlusRetail - pt-br) (Version: 16.0.6965.2069 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 36.0.4 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 pt-BR)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MPC-HC 1.7.7 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.7 - MPC-HC Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1028 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1028 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1028 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Software de dispositivo do Chipset Intel® (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{28791292-D18D-42FA-AE66-3D3D20AA8618}) (Version: 3.1.1 - Apple Inc.)
Texmaker (HKLM-x32\...\Texmaker) (Version: - )
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3653245818-3898939100-4217711198-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Holana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3653245818-3898939100-4217711198-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Holana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {257EB8C0-87A9-4C48-B501-16E032E669B0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-01] (AVAST Software)
Task: {32138E4B-59EF-4339-B138-A657F9B15F52} - System32\Tasks\{6973F3D3-0693-4778-8F11-9159D4D2501B} => pcalua.exe -a C:\Users\Holana\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=rbm <==== ATENÇÃO
Task: {5A0FB175-C19E-4169-9043-9DBA1D7557BB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3653245818-3898939100-4217711198-1001UA => C:\Users\Holana\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-25] (Facebook Inc.)
Task: {5B54E70E-77A5-4514-A217-E3A4DB6CFD5D} - System32\Tasks\{93ED4877-120E-41F1-953A-AD199BF0B021} => pcalua.exe -a C:\Users\Holana\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=cor
Task: {5E585793-AF06-439C-A25A-1CA57A325D3D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-07-18] (Microsoft Corporation)
Task: {5EB72938-DEC8-476C-8C45-EDC7DB884457} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-17] (Microsoft Corporation)
Task: {6D137A49-2D89-4C75-9BF8-BB3284F5D6D9} - System32\Tasks\SafeZone scheduled Autoupdate 1467815259 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-06-17] (Avast Software)
Task: {8817D5B8-1D66-4729-9B85-D70FC7690B43} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-17] (Microsoft Corporation)
Task: {94E4DFF6-8E3A-4152-B134-AF1A465DD48B} - System32\Tasks\{C0048DE1-0CBD-45F0-8966-4A13C1FBCA74} => pcalua.exe -a "c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\Silverlight.Configuration.exe" -c -uninstallApp 4168850273.portal.qtrax.com
Task: {95C69D70-886B-4A1C-8F19-D007CADFB031} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13] (Adobe Systems Incorporated)
Task: {981C1B79-A229-49FE-A03F-6FB65F56EFBA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {B0B6191E-2C34-47EB-8CF2-382C89A11C4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {BA31F6BB-6F66-443F-BB8A-6F1486C77E70} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3653245818-3898939100-4217711198-1001Core => C:\Users\Holana\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-25] (Facebook Inc.)
Task: {D8303CF0-8C32-475B-981F-329E9C2F09C9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-06] (AVAST Software)
Task: {EF28D760-7F17-42DB-9EE7-8F4F3036CB19} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {F3123218-74A8-4240-9082-4AEB157C518C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-07-18] (Microsoft Corporation)
Task: {F975BB6E-FF27-41D6-A758-296BBFCA5CFC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-07-18] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3653245818-3898939100-4217711198-1001Core.job => C:\Users\Holana\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3653245818-3898939100-4217711198-1001UA.job => C:\Users\Holana\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2016-05-17 18:56 - 2016-05-17 18:56 - 00959168 _____ () C:\Users\Holana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-01-20 21:35 - 2015-01-20 21:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 21:35 - 2015-01-20 21:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-30 09:35 - 2013-05-14 06:50 - 00140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2012-07-26 07:40 - 2012-07-26 07:36 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2016-07-06 11:10 - 2016-07-06 11:10 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-06 11:10 - 2016-07-06 11:10 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-07-31 01:02 - 2016-07-31 01:02 - 03002880 _____ () C:\Program Files\AVAST Software\Avast\defs\16073000\algo.dll
2016-05-17 18:56 - 2016-05-17 18:56 - 00679624 _____ () C:\Users\Holana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-07-06 11:10 - 2016-07-06 11:10 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-18 03:40 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 03:40 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)


==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\bb.com.br -> www.bb.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2012-07-26 02:26 - 2012-07-26 02:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Holana\AppData\Roaming\Microsoft\Windows Photo Viewer\Papel de Parede do Visualizador de Fotos do Windows.jpg
DNS Servers: 201.46.240.42 - 201.46.240.49
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\StartupApproved\Run: => "Facebook Update"
HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\StartupApproved\Run: => "AceUpdater"
HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\StartupApproved\Run: => "AceWebExtensionUpdater"
HKU\S-1-5-21-3653245818-3898939100-4217711198-1001\...\StartupApproved\Run: => "OfficeSyncProcess"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F38DDC06-F0E9-40F4-8F0C-EA61A7215801}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{01394ABE-9FF9-4465-B86F-B67FAB8BBE6F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [UDP Query User{931873B6-8D62-4575-A6D3-F03E6E540CC8}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [{C2A04FCD-DBCD-4953-9006-59A02C9479D6}] => (Allow) C:\Users\Holana\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{6AE6DA66-BA88-400C-A555-3DDA25BE05A1}] => (Allow) C:\Users\Holana\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A05D0A62-80B2-48C3-A6E3-86FE43876984}] => (Allow) C:\Users\Holana\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6B7DECCE-CD0A-4780-B8E0-A0ECD3441351}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{E2509CAD-FF71-486F-BF49-F9C40303D6E5}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{098D406E-436A-4246-95C1-AF4E551BB7B3}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{299A8009-E420-4F42-AFCB-03B0766F8D4F}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [TCP Query User{3D90B825-8B65-435C-8CAE-2577BC5CC4E8}C:\users\holana\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\holana\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [UDP Query User{CFCE1A6E-E318-4956-B756-B8DDFC16071D}C:\users\holana\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\holana\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [{6997CB24-6EF1-4A2C-93AB-E89994D90538}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D1690E3F-87F5-4647-8025-2A120E9E4078}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6A624857-57EA-4964-8C6C-2BBB989F6720}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{78079A44-3880-4517-8C86-5A403C1C8E81}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [TCP Query User{C782590D-FBC0-4DFB-ADB2-7F3DFF778F31}C:\users\holana\appdata\roaming\utorrent\updates\3.4.3_40298.exe] => (Block) C:\users\holana\appdata\roaming\utorrent\updates\3.4.3_40298.exe
FirewallRules: [UDP Query User{547FBAAF-D38D-4D1F-99C2-59C80D6C05EA}C:\users\holana\appdata\roaming\utorrent\updates\3.4.3_40298.exe] => (Block) C:\users\holana\appdata\roaming\utorrent\updates\3.4.3_40298.exe
FirewallRules: [{8C59EAED-3A5C-487C-B041-230571E0670B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{A040414F-32D8-4A46-95D9-CA9EBC2C89AA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{FC432390-9648-4058-A26B-D01F0DA146BC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E67D68AF-3200-449C-BD5B-605B19CFBC36}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{EBD2D77C-165A-446D-9D2F-696669E99346}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8037C327-4DF5-4305-B994-D65BB46081B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{0A18BF48-4E39-48B8-AAB9-D4BD76FB2748}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{CF20A464-94A7-47BB-9295-BDCC518E0390}] => (Allow) LPort=2869
FirewallRules: [{F5A1B1AE-0781-4238-B9A3-745B9E62E720}] => (Allow) LPort=1900

==================== Pontos de Restauração =========================

13-07-2016 19:38:47 Ponto de Verificação Agendado
28-07-2016 14:14:17 Ponto de Verificação Agendado

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (07/31/2016 02:56:14 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa FRST64.exe versão 27.7.2016.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 57c

Hora de Início: 01d1eaf004a67e41

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Users\Holana\Desktop\FRST64.exe

ID do Relatório: 7cae292b-56e3-11e6-8058-e02a824bb608

Nome completo do pacote com falha:

ID do aplicativo relativo ao pacote com falha:

Error: (07/31/2016 12:12:05 AM) (Source: Google Update) (EventID: 20) (User: Holana-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=0, script=file://C:\Program Files (x86)\Greener Web\bin\Pac9064.js.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct co

Error: (07/30/2016 11:05:03 PM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Não foi possível encontrar o módulo especificado. (HRESULT : 0x8007007e).

Error: (07/30/2016 10:18:34 PM) (Source: Windows Search Service) (EventID: 3083) (User: )
Description: Não é possível carregar o identificador de protocolo OneIndex16. Descrição do erro: Não foi possível encontrar o módulo especificado. (HRESULT : 0x8007007e).

Error: (07/29/2016 05:38:54 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Holana-PC)
Description: O aplicativo ou serviço 'Microsoft Office Document Cache Sync Client Interface' não pôde ser encerrado.

Error: (07/29/2016 05:38:54 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Holana-PC)
Description: O aplicativo ou serviço 'Office Telemetry Agent' não pôde ser encerrado.

Error: (07/29/2016 04:10:29 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Erro no arquivo de manifesto ou de política UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2", na linha UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.

Error: (07/29/2016 04:07:07 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Erro no arquivo de manifesto ou de política UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2", na linha UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.

Error: (07/28/2016 05:33:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: AUTORIDADE NT)
Description: Falha ao descarregar as cadeias de caracteres do contador de desempenho do serviço WmiApRpl (WmiApRpl). O primeiro DWORD da seção de dados contém o código de erro.

Error: (07/28/2016 05:33:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: AUTORIDADE NT)
Description: As cadeias de caracteres de desempenho no valor do Registro de desempenho foram corrompidas durante o processamento do provedor do contador de extensões Performance. O valor BaseIndex do Registro de desempenho é o primeiro DWORD na seção de dados, o valor LastCounter é o segundo DWORD na seção de dados e o valor LastHelp é o terceiro DWORD na seção de dados.


Erros de Sistema:
=============
Error: (07/31/2016 01:04:13 AM) (Source: DCOM) (EventID: 10010) (User: Holana-PC)
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (07/31/2016 01:03:43 AM) (Source: DCOM) (EventID: 10010) (User: Holana-PC)
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (07/31/2016 12:56:19 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORIDADE NT)
Description: 0xc000014d0

Error: (07/30/2016 08:31:29 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORIDADE NT)
Description: 0xc000014d0

Error: (07/30/2016 08:31:45 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 19:13:47 do dia ‎29/‎07/‎2016 não era esperado.

Error: (07/29/2016 03:49:08 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORIDADE NT)
Description: 0xc000014d0

Error: (07/29/2016 03:49:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 18:02:43 do dia ‎28/‎07/‎2016 não era esperado.

Error: (07/28/2016 10:42:35 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORIDADE NT)
Description: 0xc000014d0

Error: (07/28/2016 10:42:43 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 10:21:17 do dia ‎28/‎07/‎2016 não era esperado.

Error: (07/28/2016 10:22:57 AM) (Source: bowser) (EventID: 8003) (User: )
Description: O localizador mestre recebeu uma notificação de servidor do computador COORDENAÇÃO-PC
que acredita ser o localizador mestre do domínio no transporte NetBT_Tcpip_{9F3260BF-9A74-4076-9E17-3661C28C951D}.
O localizador mestre está parando ou está sendo forçada uma eleição.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
Percentagem de memória em uso: 47%
RAM física total: 2933.86 MB
RAM física disponível: 1539.51 MB
Virtual Total: 5877.86 MB
Virtual disponível: 4348.36 MB

==================== Drives ================================

Drive a: (Novo volume) (Fixed) (Total:229.69 GB) (Free:216.14 GB) NTFS
Drive c: () (Fixed) (Total:235.73 GB) (Free:179.16 GB) NTFS
Drive e: (2011-11-01 2113) (CDROM) (Total:0.68 GB) (Free:0 GB) UDF

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6D186D25)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=235.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=229.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité