Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 12-02-2017
Executado por Computador (12-02-2017 20:59:03)
Executando a partir de C:\Users\Computador\Downloads
Microsoft Windows 7 Ultimate (X86) (2014-11-18 20:18:04)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2531994756-4072431436-2826721706-500 - Administrator - Disabled)
Computador (S-1-5-21-2531994756-4072431436-2826721706-1000 - Administrator - Enabled) => C:\Users\Computador
Convidado (S-1-5-21-2531994756-4072431436-2826721706-501 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM\...\{845380e2-f0b5-4584-bc40-cc54345b3c06}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG)
Avira Connect (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Chromium (HKLM\...\{F5F31D33-A573-CCB3-14F3-BC33C4736FB3}) (Version: - )
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell System Detect (HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\73f463568823ebbe) (Version: 6.2.0.5 - Dell)
FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NextUp-ScanSoft Raquel Brazilian Portuguese Voice (HKLM\...\{5FAFC823-5E8C-40FB-8238-F2C536B2FB11}) (Version: 4.0.0 - NextUp.com)
Norton Security Scan (HKLM\...\NSS) (Version: 4.6.1.80 - Symantec Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
RealDownloader (Version: 18.1.6.161 - RealNetworks, Inc.) Hidden
RealDownloader (Version: 18.1.6.165 - RealNetworks) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks Local Runtimes (Version: 1.0.0 - RealNetworks, Inc.) Hidden
RealPlayer (RealTimes) (HKLM\...\RealPlayer 18.1) (Version: 18.1.6 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Receitanet (HKLM\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Search the Web (Yahoo) (HKLM\...\{55B4BD74-0534-6CF4-B4B4-1C746434CFF4}) (Version: - )
UpdateService (Version: 1.0.0 - RealNetworks, Inc.) Hidden
vc2012_redist (Version: 1.0.0.0 - Realnetworks) Hidden
Video Downloader (Version: 1.3.0 - RealNetworks) Hidden
vs2015_redist x86 (Version: 1.0.0.0 - Realnetworks) Hidden
Windows 7 USB/DVD Download Tool (HKLM\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Yahoo! Powered (HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\{F5F31D33-A573-CCB3-14F3-BC33C4736FB3}) (Version: - ) <==== ATENÇÃO
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {053BA6AD-F545-479D-A426-55C5A3881F94} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {0D0855CA-798C-40E7-8F2D-AABC360B86C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {10467FB0-9346-49A8-9C0B-64E6E423853C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-02-04] (AVAST Software)
Task: {12BE49BD-3A24-45A1-A2B3-1F97352938D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {61420929-84C3-4E70-B994-F50035E792CD} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealDownloader\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {64B3E2B1-BB86-4134-94EE-F758374637C3} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {6DF60225-C0F3-463B-83B6-347D1F0B32FD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-23] (Adobe Systems Incorporated)
Task: {728A50DC-3420-44E5-9FE4-703900DDFC2B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {7460D335-F598-420D-A12F-019D08E8EE88} - System32\Tasks\Bing Search Engine racir => Wscript.exe "C:\ProgramData\{7CCAB9A9-F688-336F-704E-AD2DEA0C26E3}\sasa.txt" "687474703a2f2f77617662736c792e636f6d" "433a5c50726f6772616d446174615c7b37434341423941392d463638382d333336462d373034452d4144324445413043323645337d5c6e6564696c6f" "433a5c50726f6772616d446174615c7b37434341423941392d463638382d333336462d37 (a entrada de dados tem 82 mais caracteres).
Task: {78614635-EF8F-4D7C-8501-9AC361814AB5} - System32\Tasks\RealDownloader Update Check => C:\Program Files\Real\RealDownloader\downloader2.exe [2016-12-13] ()
Task: {7EBCEBF6-0C63-4C1D-B0F1-0A94003D4B5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {82252487-788A-4B59-832D-10F04AF00284} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {831001C8-C2E5-47CC-A10D-AB4B80B9673E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {8904F2A4-4510-45E6-B817-9E096F117898} - System32\Tasks\{3C640506-924D-4B71-91A2-F2A31FC245F4} => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
Task: {9F8FA418-6B4F-4796-B043-F07EED9BC17F} - System32\Tasks\{4AD75860-4291-4562-8168-9B5046EFD82D} => pcalua.exe -a C:\Users\Computador\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=cor <==== ATENÇÃO
Task: {A0D8DF2E-63E5-4337-A57A-4F13447440F3} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealDownloader\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {ADAC6A05-B4B8-467A-9764-51A775826CD9} - System32\Tasks\Yahoo! Powered racir => Wscript.exe "C:\ProgramData\{9B625E01-1120-D4C7-97E6-4A850DA4C14B}\sasa.txt" "687474703a2f2f74646670612e636f6d" "433a5c50726f6772616d446174615c7b39423632354530312d313132302d443443372d393745362d3441383530444134433134427d5c6e6564696c6f" "433a5c50726f6772616d446174615c7b39423632354530312d313132302d443443372d393745 (a entrada de dados tem 78 mais caracteres).
Task: {B0CB11F2-785E-4094-8CC3-40D46A938AA3} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Computador-PC-Computador Computador-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {B2B8EB9E-8A0E-406F-8C1A-098FC178AA72} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => "%Systemdrive%\Office Activation Technologies\Install.cmd"
Task: {FBBCB40E-3814-4DFB-9CB0-C31452C97429} - System32\Tasks\Norton Product InstallerIdle => C:\Users\COMPUT~1\AppData\Local\Temp\SymInstallStub.exe <==== ATENÇÃO
Task: {FC2EE747-5A6E-4359-9E62-2B95E6BD8DB3} - System32\Tasks\{40329473-3A59-783A-486C-337DC4BAA971} => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Users\COMPUT~1\AppData\Local\Temp\SymInstallStub.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\{3C640506-924D-4B71-91A2-F2A31FC245F4}.job => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\{40329473-3A59-783A-486C-337DC4BAA971}.job => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1419780878&from=cor&uid=ST500LM012XHN-M500MBB_S2ZAJ5ED806263
==================== Módulos Carregados (Whitelisted) ==============
2016-11-11 12:52 - 2016-11-11 12:52 - 00035104 _____ () C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
2016-11-11 12:52 - 2016-11-11 12:52 - 00040248 _____ () C:\Program Files\Real\UpdateService\DL2UpdatePlugin.dll
2016-11-11 12:52 - 2016-11-11 12:52 - 00042296 _____ () C:\Program Files\Real\UpdateService\RealDownloaderUpdatePlugin.dll
2016-11-11 12:52 - 2016-11-11 12:52 - 00039752 _____ () C:\Program Files\Real\UpdateService\VideoDLUpdatePlugin.dll
2016-09-06 22:06 - 2016-09-06 12:00 - 05197312 _____ () C:\Users\Computador\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-09-06 22:06 - 2016-09-06 12:00 - 00147456 _____ () C:\Users\Computador\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll
2016-12-13 13:50 - 2016-12-13 13:50 - 00730864 _____ () C:\Program Files\Real\RealDownloader\downloader2.exe
2017-01-08 20:44 - 2017-01-08 20:44 - 00037768 _____ () C:\Program Files\Real\RealPlayer\lang\pdgenxfer_br.dll
2012-05-06 07:20 - 2012-05-06 07:20 - 03449856 _____ () C:\Program Files\FreeTime\FormatFactory\FFModules\Filters\ffdshow\ffdshow.ax
2009-08-11 10:19 - 2009-08-11 10:19 - 00797184 _____ () C:\Program Files\FreeTime\FormatFactory\FFModules\Filters\ac3filter.ax
2017-01-08 20:40 - 2017-01-08 20:40 - 00080384 _____ () C:\Program Files\Real\RealPlayer\Visualizations\cosmicbelt.rpv
2017-01-08 20:40 - 2017-01-08 20:40 - 00069632 _____ () C:\Program Files\Real\RealPlayer\Visualizations\nebula.rpv
2017-02-12 20:39 - 2017-02-12 20:39 - 00866304 _____ () C:\Users\Computador\AppData\Local\Temp\is-J63TC.tmp\copyspider-setup.tmp
2017-02-12 20:39 - 2017-02-12 20:39 - 00866304 _____ () C:\Users\Computador\AppData\Local\Temp\is-61S3I.tmp\copyspider-setup.tmp
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8]
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:8BC57D1B_Bb.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [412]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2174]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\bb.com.br -> hxxps://seg.bb.com.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\dell.com -> dell.com
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2017-01-03 09:15 - 00000921 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Computador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 187.17.52.1 - 187.17.52.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^Users^Computador^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PlutoTV.lnk => C:\Windows\pss\PlutoTV.lnk.Startup
MSCONFIG\startupreg: RealDownloader => C:\Program Files\Real\RealDownloader\downloader2.exe
MSCONFIG\startupreg: VDownloader => "C:\Program Files\VDownloader\VDownloader4.exe" /silent
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{D9FBD08A-DDC2-4F3F-9D3E-1DED8BCAC807}] => C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{203A8B26-339C-49FD-9FC3-937CC24276BC}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{CBEFB9A6-6E3C-4FFC-B1F3-4E07857D6E25}] => LPort=2869
FirewallRules: [{65079409-5A77-4102-B2D0-B7F1D58707CD}] => LPort=1900
FirewallRules: [TCP Query User{9A682CB4-45AE-41C0-8DF9-712B4DCF57AD}F:\office 2013\utorrentportable\app\utorrent\utorrent.exe] => F:\office 2013\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [UDP Query User{201CE3E5-40FC-4B99-BDCA-ACF617DEAC87}F:\office 2013\utorrentportable\app\utorrent\utorrent.exe] => F:\office 2013\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [{6CE683E4-554F-443C-9F04-4839D30A01E2}] => C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [{41D917E2-0DD4-46C4-9A69-9F33452942D2}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{2F61544E-64F3-4DCC-8BAC-DE980F274BF6}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{4CCE1BFA-6230-4588-AFD1-2A4825433E5E}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{F2549CCC-3524-4925-ADB3-8F50FD200784}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{3555611D-5571-4637-8E9B-5FBA091FC71C}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{EBE7975F-1625-4B6A-AD9F-E225D6FEBBD8}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{255E9B00-74C2-494F-9CC7-EBE1A4D60E30}] => C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{2D79D7F2-76C0-41A4-AE6A-A980A579B881}] => C:\Users\Computador\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{DE908B97-5D3F-4D6C-B9C1-DD48A1D0EB0D}] => C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{2760AD7F-B842-4D6C-9064-9DC088A937A6}] => C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Pontos de Restauração =========================
23-11-2016 19:03:41 Removed Windows Phone app for desktop
28-12-2016 11:24:00 Instalação de Pacote de Driver de Dispositivo: Diebold Network Monitor Serviço de Rede
03-01-2017 07:18:07 Installed Windows 7 USB/DVD Download Tool
14-01-2017 07:06:24 Instalação de Pacote de Driver de Dispositivo: Avast Serviço de Rede
14-01-2017 07:32:50 Removed Java 8 Update 101
21-01-2017 16:44:00 Ponto de Verificação Agendado
08-02-2017 23:03:50 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Intel(R) 82567LM Gigabit Network Connection
Description: Intel(R) 82567LM Gigabit Network Connection
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e1yexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Broadcom USH w/swipe sensor
Description: Broadcom USH w/swipe sensor
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Mouse compatível com PS/2
Description: Mouse compatível com PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (02/11/2017 09:58:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: ucrtbase.DLL, versão: 10.0.10586.212, carimbo de hora: 0x56fa10f1
Código de exceção: 0xc0000417
Deslocamento com falha: 0x00083484
Identificação do processo com falha: 0x18c0
Hora de início do aplicativo com falha: 0x01d2845c79f308e2
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: C:\Windows\ucrtbase.DLL
Identificação do Relatório: cf1ef496-f059-11e6-b6a6-de1fa07dbafb
Error: (02/08/2017 11:01:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/27/2017 10:52:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00700fd1
Identificação do processo com falha: 0x1e2c
Hora de início do aplicativo com falha: 0x01d2789321454c0c
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: dff24656-e497-11e6-85f5-fc9e3b6a1adb
Error: (01/27/2017 10:52:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00700fd3
Identificação do processo com falha: 0x1e2c
Hora de início do aplicativo com falha: 0x01d2789321454c0c
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: de09d01f-e497-11e6-85f5-fc9e3b6a1adb
Error: (01/20/2017 02:29:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: RealPlay.exe, versão: 18.1.6.161, carimbo de hora: 0x58263039
Nome do módulo de falhas: MFPlat.DLL, versão: 12.0.7600.16385, carimbo de hora: 0x4a5bda38
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00006cd4
Identificação do processo com falha: 0x1f94
Hora de início do aplicativo com falha: 0x01d27340b9954862
Caminho do aplicativo com falha: C:\Program Files\Real\RealPlayer\RealPlay.exe
FCaminho do módulo de falhas: C:\Windows\System32\MFPlat.DLL
Identificação do Relatório: ef418831-df35-11e6-85f5-fc9e3b6a1adb
Error: (01/20/2017 09:07:18 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/17/2017 08:41:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/17/2017 02:55:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RealPlay.exe versão 18.1.6.161 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1840
Hora de Início: 01d270e76bed2743
Hora de Término: 41
Caminho do Aplicativo: C:\Program Files\Real\RealPlayer\RealPlay.exe
Id do Relatório: e6e88caa-dcdd-11e6-ab04-ed7d549adade
Error: (01/16/2017 11:35:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: plugin-container.exe, versão: 50.1.0.6186, carimbo de hora: 0x584a057c
Nome do módulo de falhas: mozglue.dll, versão: 50.1.0.6186, carimbo de hora: 0x5849ff8b
Código de exceção: 0x80000003
Deslocamento com falha: 0x0000ec79
Identificação do processo com falha: 0x1378
Hora de início do aplicativo com falha: 0x01d26e7bc7b7db76
Caminho do aplicativo com falha: C:\Program Files\Mozilla Firefox\plugin-container.exe
FCaminho do módulo de falhas: C:\Program Files\Mozilla Firefox\mozglue.dll
Identificação do Relatório: 0fdbbd4f-dbf9-11e6-b700-ffe5f0b98535
Error: (01/14/2017 08:41:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa InstStub.exe versão 4.6.1.80 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: ca8
Hora de Início: 01d26e52730adf56
Hora de Término: 51
Caminho do Aplicativo: C:\Program Files\NortonInstaller\{397E31AA-0D78-4649-A01C-339D73A2ED35}\NSS\LicenseType\4.6.1.80\InstStub.exe
Id do Relatório:
Erros de Sistema:
=============
Error: (02/12/2017 08:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 07:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 06:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 05:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 04:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 02:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 01:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 12:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 11:21:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 10:21:01 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM)2 Duo CPU P9300 @ 2.26GHz
Percentagem de memória em uso: 56%
RAM física total: 3535.92 MB
RAM física disponível: 1534.42 MB
Virtual Total: 7070.11 MB
Virtual disponível: 4241.16 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:244.04 GB) (Free:33.68 GB) NTFS
Drive d: () (Fixed) (Total:221.62 GB) (Free:2.2 GB) NTFS
==================== MBR & Tabela de Partições ==================
==================== Fim de Addition.txt ============================
Executado por Computador (12-02-2017 20:59:03)
Executando a partir de C:\Users\Computador\Downloads
Microsoft Windows 7 Ultimate (X86) (2014-11-18 20:18:04)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2531994756-4072431436-2826721706-500 - Administrator - Disabled)
Computador (S-1-5-21-2531994756-4072431436-2826721706-1000 - Administrator - Enabled) => C:\Users\Computador
Convidado (S-1-5-21-2531994756-4072431436-2826721706-501 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM\...\{845380e2-f0b5-4584-bc40-cc54345b3c06}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG)
Avira Connect (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Chromium (HKLM\...\{F5F31D33-A573-CCB3-14F3-BC33C4736FB3}) (Version: - )
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell System Detect (HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\73f463568823ebbe) (Version: 6.2.0.5 - Dell)
FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NextUp-ScanSoft Raquel Brazilian Portuguese Voice (HKLM\...\{5FAFC823-5E8C-40FB-8238-F2C536B2FB11}) (Version: 4.0.0 - NextUp.com)
Norton Security Scan (HKLM\...\NSS) (Version: 4.6.1.80 - Symantec Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Extended PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
RealDownloader (Version: 18.1.6.161 - RealNetworks, Inc.) Hidden
RealDownloader (Version: 18.1.6.165 - RealNetworks) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks Local Runtimes (Version: 1.0.0 - RealNetworks, Inc.) Hidden
RealPlayer (RealTimes) (HKLM\...\RealPlayer 18.1) (Version: 18.1.6 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Receitanet (HKLM\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Search the Web (Yahoo) (HKLM\...\{55B4BD74-0534-6CF4-B4B4-1C746434CFF4}) (Version: - )
UpdateService (Version: 1.0.0 - RealNetworks, Inc.) Hidden
vc2012_redist (Version: 1.0.0.0 - Realnetworks) Hidden
Video Downloader (Version: 1.3.0 - RealNetworks) Hidden
vs2015_redist x86 (Version: 1.0.0.0 - Realnetworks) Hidden
Windows 7 USB/DVD Download Tool (HKLM\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Yahoo! Powered (HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\{F5F31D33-A573-CCB3-14F3-BC33C4736FB3}) (Version: - ) <==== ATENÇÃO
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {053BA6AD-F545-479D-A426-55C5A3881F94} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {0D0855CA-798C-40E7-8F2D-AABC360B86C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {10467FB0-9346-49A8-9C0B-64E6E423853C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-02-04] (AVAST Software)
Task: {12BE49BD-3A24-45A1-A2B3-1F97352938D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {61420929-84C3-4E70-B994-F50035E792CD} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealDownloader\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {64B3E2B1-BB86-4134-94EE-F758374637C3} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {6DF60225-C0F3-463B-83B6-347D1F0B32FD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-23] (Adobe Systems Incorporated)
Task: {728A50DC-3420-44E5-9FE4-703900DDFC2B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {7460D335-F598-420D-A12F-019D08E8EE88} - System32\Tasks\Bing Search Engine racir => Wscript.exe "C:\ProgramData\{7CCAB9A9-F688-336F-704E-AD2DEA0C26E3}\sasa.txt" "687474703a2f2f77617662736c792e636f6d" "433a5c50726f6772616d446174615c7b37434341423941392d463638382d333336462d373034452d4144324445413043323645337d5c6e6564696c6f" "433a5c50726f6772616d446174615c7b37434341423941392d463638382d333336462d37 (a entrada de dados tem 82 mais caracteres).
Task: {78614635-EF8F-4D7C-8501-9AC361814AB5} - System32\Tasks\RealDownloader Update Check => C:\Program Files\Real\RealDownloader\downloader2.exe [2016-12-13] ()
Task: {7EBCEBF6-0C63-4C1D-B0F1-0A94003D4B5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {82252487-788A-4B59-832D-10F04AF00284} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {831001C8-C2E5-47CC-A10D-AB4B80B9673E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {8904F2A4-4510-45E6-B817-9E096F117898} - System32\Tasks\{3C640506-924D-4B71-91A2-F2A31FC245F4} => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
Task: {9F8FA418-6B4F-4796-B043-F07EED9BC17F} - System32\Tasks\{4AD75860-4291-4562-8168-9B5046EFD82D} => pcalua.exe -a C:\Users\Computador\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=cor <==== ATENÇÃO
Task: {A0D8DF2E-63E5-4337-A57A-4F13447440F3} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2531994756-4072431436-2826721706-1000 => C:\Program Files\Real\RealDownloader\RealUpgrade.exe [2016-11-11] (RealNetworks, Inc.)
Task: {ADAC6A05-B4B8-467A-9764-51A775826CD9} - System32\Tasks\Yahoo! Powered racir => Wscript.exe "C:\ProgramData\{9B625E01-1120-D4C7-97E6-4A850DA4C14B}\sasa.txt" "687474703a2f2f74646670612e636f6d" "433a5c50726f6772616d446174615c7b39423632354530312d313132302d443443372d393745362d3441383530444134433134427d5c6e6564696c6f" "433a5c50726f6772616d446174615c7b39423632354530312d313132302d443443372d393745 (a entrada de dados tem 78 mais caracteres).
Task: {B0CB11F2-785E-4094-8CC3-40D46A938AA3} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Computador-PC-Computador Computador-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {B2B8EB9E-8A0E-406F-8C1A-098FC178AA72} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => "%Systemdrive%\Office Activation Technologies\Install.cmd"
Task: {FBBCB40E-3814-4DFB-9CB0-C31452C97429} - System32\Tasks\Norton Product InstallerIdle => C:\Users\COMPUT~1\AppData\Local\Temp\SymInstallStub.exe <==== ATENÇÃO
Task: {FC2EE747-5A6E-4359-9E62-2B95E6BD8DB3} - System32\Tasks\{40329473-3A59-783A-486C-337DC4BAA971} => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Users\COMPUT~1\AppData\Local\Temp\SymInstallStub.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\{3C640506-924D-4B71-91A2-F2A31FC245F4}.job => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\{40329473-3A59-783A-486C-337DC4BAA971}.job => C:\Users\COMPUT~1\AppData\Local\UPDATE~1\SyncTask.exe <==== ATENÇÃO
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://isearch.omiga-plus.com/?type=sc&ts=1419780878&from=cor&uid=ST500LM012XHN-M500MBB_S2ZAJ5ED806263
==================== Módulos Carregados (Whitelisted) ==============
2016-11-11 12:52 - 2016-11-11 12:52 - 00035104 _____ () C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
2016-11-11 12:52 - 2016-11-11 12:52 - 00040248 _____ () C:\Program Files\Real\UpdateService\DL2UpdatePlugin.dll
2016-11-11 12:52 - 2016-11-11 12:52 - 00042296 _____ () C:\Program Files\Real\UpdateService\RealDownloaderUpdatePlugin.dll
2016-11-11 12:52 - 2016-11-11 12:52 - 00039752 _____ () C:\Program Files\Real\UpdateService\VideoDLUpdatePlugin.dll
2016-09-06 22:06 - 2016-09-06 12:00 - 05197312 _____ () C:\Users\Computador\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-09-06 22:06 - 2016-09-06 12:00 - 00147456 _____ () C:\Users\Computador\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll
2016-12-13 13:50 - 2016-12-13 13:50 - 00730864 _____ () C:\Program Files\Real\RealDownloader\downloader2.exe
2017-01-08 20:44 - 2017-01-08 20:44 - 00037768 _____ () C:\Program Files\Real\RealPlayer\lang\pdgenxfer_br.dll
2012-05-06 07:20 - 2012-05-06 07:20 - 03449856 _____ () C:\Program Files\FreeTime\FormatFactory\FFModules\Filters\ffdshow\ffdshow.ax
2009-08-11 10:19 - 2009-08-11 10:19 - 00797184 _____ () C:\Program Files\FreeTime\FormatFactory\FFModules\Filters\ac3filter.ax
2017-01-08 20:40 - 2017-01-08 20:40 - 00080384 _____ () C:\Program Files\Real\RealPlayer\Visualizations\cosmicbelt.rpv
2017-01-08 20:40 - 2017-01-08 20:40 - 00069632 _____ () C:\Program Files\Real\RealPlayer\Visualizations\nebula.rpv
2017-02-12 20:39 - 2017-02-12 20:39 - 00866304 _____ () C:\Users\Computador\AppData\Local\Temp\is-J63TC.tmp\copyspider-setup.tmp
2017-02-12 20:39 - 2017-02-12 20:39 - 00866304 _____ () C:\Users\Computador\AppData\Local\Temp\is-61S3I.tmp\copyspider-setup.tmp
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8]
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:8BC57D1B_Bb.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [412]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2174]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\bb.com.br -> hxxps://seg.bb.com.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\...\dell.com -> dell.com
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2017-01-03 09:15 - 00000921 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2531994756-4072431436-2826721706-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Computador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 187.17.52.1 - 187.17.52.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupfolder: C:^Users^Computador^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PlutoTV.lnk => C:\Windows\pss\PlutoTV.lnk.Startup
MSCONFIG\startupreg: RealDownloader => C:\Program Files\Real\RealDownloader\downloader2.exe
MSCONFIG\startupreg: VDownloader => "C:\Program Files\VDownloader\VDownloader4.exe" /silent
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{D9FBD08A-DDC2-4F3F-9D3E-1DED8BCAC807}] => C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{203A8B26-339C-49FD-9FC3-937CC24276BC}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{CBEFB9A6-6E3C-4FFC-B1F3-4E07857D6E25}] => LPort=2869
FirewallRules: [{65079409-5A77-4102-B2D0-B7F1D58707CD}] => LPort=1900
FirewallRules: [TCP Query User{9A682CB4-45AE-41C0-8DF9-712B4DCF57AD}F:\office 2013\utorrentportable\app\utorrent\utorrent.exe] => F:\office 2013\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [UDP Query User{201CE3E5-40FC-4B99-BDCA-ACF617DEAC87}F:\office 2013\utorrentportable\app\utorrent\utorrent.exe] => F:\office 2013\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [{6CE683E4-554F-443C-9F04-4839D30A01E2}] => C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [{41D917E2-0DD4-46C4-9A69-9F33452942D2}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{2F61544E-64F3-4DCC-8BAC-DE980F274BF6}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{4CCE1BFA-6230-4588-AFD1-2A4825433E5E}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{F2549CCC-3524-4925-ADB3-8F50FD200784}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{3555611D-5571-4637-8E9B-5FBA091FC71C}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{EBE7975F-1625-4B6A-AD9F-E225D6FEBBD8}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{255E9B00-74C2-494F-9CC7-EBE1A4D60E30}] => C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{2D79D7F2-76C0-41A4-AE6A-A980A579B881}] => C:\Users\Computador\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{DE908B97-5D3F-4D6C-B9C1-DD48A1D0EB0D}] => C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{2760AD7F-B842-4D6C-9064-9DC088A937A6}] => C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Pontos de Restauração =========================
23-11-2016 19:03:41 Removed Windows Phone app for desktop
28-12-2016 11:24:00 Instalação de Pacote de Driver de Dispositivo: Diebold Network Monitor Serviço de Rede
03-01-2017 07:18:07 Installed Windows 7 USB/DVD Download Tool
14-01-2017 07:06:24 Instalação de Pacote de Driver de Dispositivo: Avast Serviço de Rede
14-01-2017 07:32:50 Removed Java 8 Update 101
21-01-2017 16:44:00 Ponto de Verificação Agendado
08-02-2017 23:03:50 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Intel(R) 82567LM Gigabit Network Connection
Description: Intel(R) 82567LM Gigabit Network Connection
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e1yexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Broadcom USH w/swipe sensor
Description: Broadcom USH w/swipe sensor
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Mouse compatível com PS/2
Description: Mouse compatível com PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Dispositivo do sistema básico
Description: Dispositivo do sistema básico
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (02/11/2017 09:58:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: ucrtbase.DLL, versão: 10.0.10586.212, carimbo de hora: 0x56fa10f1
Código de exceção: 0xc0000417
Deslocamento com falha: 0x00083484
Identificação do processo com falha: 0x18c0
Hora de início do aplicativo com falha: 0x01d2845c79f308e2
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: C:\Windows\ucrtbase.DLL
Identificação do Relatório: cf1ef496-f059-11e6-b6a6-de1fa07dbafb
Error: (02/08/2017 11:01:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/27/2017 10:52:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00700fd1
Identificação do processo com falha: 0x1e2c
Hora de início do aplicativo com falha: 0x01d2789321454c0c
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: dff24656-e497-11e6-85f5-fc9e3b6a1adb
Error: (01/27/2017 10:52:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: downloader2.exe, versão: 18.1.6.165, carimbo de hora: 0x58506d10
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00700fd3
Identificação do processo com falha: 0x1e2c
Hora de início do aplicativo com falha: 0x01d2789321454c0c
Caminho do aplicativo com falha: C:\Program Files\Real\RealDownloader\downloader2.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: de09d01f-e497-11e6-85f5-fc9e3b6a1adb
Error: (01/20/2017 02:29:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: RealPlay.exe, versão: 18.1.6.161, carimbo de hora: 0x58263039
Nome do módulo de falhas: MFPlat.DLL, versão: 12.0.7600.16385, carimbo de hora: 0x4a5bda38
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00006cd4
Identificação do processo com falha: 0x1f94
Hora de início do aplicativo com falha: 0x01d27340b9954862
Caminho do aplicativo com falha: C:\Program Files\Real\RealPlayer\RealPlay.exe
FCaminho do módulo de falhas: C:\Windows\System32\MFPlat.DLL
Identificação do Relatório: ef418831-df35-11e6-85f5-fc9e3b6a1adb
Error: (01/20/2017 09:07:18 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/17/2017 08:41:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "C:\Windows\Installer\{496CA6A6-13F4-49AA-9A27-CD96CF65B29A}\recordingmanager.exe".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (01/17/2017 02:55:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RealPlay.exe versão 18.1.6.161 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1840
Hora de Início: 01d270e76bed2743
Hora de Término: 41
Caminho do Aplicativo: C:\Program Files\Real\RealPlayer\RealPlay.exe
Id do Relatório: e6e88caa-dcdd-11e6-ab04-ed7d549adade
Error: (01/16/2017 11:35:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: plugin-container.exe, versão: 50.1.0.6186, carimbo de hora: 0x584a057c
Nome do módulo de falhas: mozglue.dll, versão: 50.1.0.6186, carimbo de hora: 0x5849ff8b
Código de exceção: 0x80000003
Deslocamento com falha: 0x0000ec79
Identificação do processo com falha: 0x1378
Hora de início do aplicativo com falha: 0x01d26e7bc7b7db76
Caminho do aplicativo com falha: C:\Program Files\Mozilla Firefox\plugin-container.exe
FCaminho do módulo de falhas: C:\Program Files\Mozilla Firefox\mozglue.dll
Identificação do Relatório: 0fdbbd4f-dbf9-11e6-b700-ffe5f0b98535
Error: (01/14/2017 08:41:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa InstStub.exe versão 4.6.1.80 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: ca8
Hora de Início: 01d26e52730adf56
Hora de Término: 51
Caminho do Aplicativo: C:\Program Files\NortonInstaller\{397E31AA-0D78-4649-A01C-339D73A2ED35}\NSS\LicenseType\4.6.1.80\InstStub.exe
Id do Relatório:
Erros de Sistema:
=============
Error: (02/12/2017 08:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 07:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 06:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 05:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 04:40:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 02:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 01:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 12:21:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 11:21:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
Error: (02/12/2017 10:21:01 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Serviço de Notificação da SPP terminou com o erro:
Acesso negado.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM)2 Duo CPU P9300 @ 2.26GHz
Percentagem de memória em uso: 56%
RAM física total: 3535.92 MB
RAM física disponível: 1534.42 MB
Virtual Total: 7070.11 MB
Virtual disponível: 4241.16 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:244.04 GB) (Free:33.68 GB) NTFS
Drive d: () (Fixed) (Total:221.62 GB) (Free:2.2 GB) NTFS
==================== MBR & Tabela de Partições ==================
==================== Fim de Addition.txt ============================