cjoint

Publicité


Publicité

Commentaire : http://www.cjoint.com/c/GEemh4xBvGz

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 03-05-2017 01
Executado por Win7 (04-05-2017 09:02:04)
Executando a partir de C:\Users\Win7\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2013-01-25 19:31:37)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2564967431-2231233875-3052671924-500 - Administrator - Disabled)
Convidado (S-1-5-21-2564967431-2231233875-3052671924-501 - Limited - Disabled)
Win7 (S-1-5-21-2564967431-2231233875-3052671924-1000 - Administrator - Enabled) => C:\Users\Win7

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

ACA & MEP 2017 Object Enabler (Version: 7.9.45.0 - Autodesk) Hidden
ACAD Private (Version: 21.0.52.0 - Autodesk) Hidden
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Advanced Calendar 2.0.0.11380 (HKLM\...\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}) (Version: 2.0.0.11380 - MEIXIAN XIE) <==== ATENÇÃO
Akamai NetSession Interface (HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Aplicativo da área de trabalho Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.5.154 - Autodesk)
Aplicativos da Autodesk em destaque 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk)
AutoCAD 2017 - Português - Brasil (Brazilian Portuguese) (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 Language Pack - Brazilian Portuguese (Version: 21.0.52.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk)
Autodesk AutoCAD 2017 - Português - Brasil (Brazilian Portuguese) (HKLM\...\AutoCAD 2017 - Português - Brasil (Brazilian Portuguese)) (Version: 21.0.52.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2017 Add-in 64 bit (HKLM\...\{276A67E0-71EB-4827-B5F7-2ACF02BC1A5B}) (Version: 4.37.6853 - Autodesk)
Autodesk Download Manager (HKLM-x32\...\{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}) (Version: 4.0.14.0 - Autodesk, Inc.)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
Autodesk ReCap 360 (Version: 3.0.0.52 - Autodesk) Hidden
Chromium (HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\Chromium) (Version: 46.0.2470.0 - Chromium)
Componente de Segurança Bradesco (HKLM-x32\...\scpbrad) (Version: 1.0.0 - Banco Bradesco S.A.)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
DLL-Files.com Client (HKLM-x32\...\DA71BA65-680A-4212-9150-6239217B53DC_DLL-Files.c~79141F26_is1) (Version: 2.3.0.4908 - DLL-Files.com Client)
DllKit Pro 2017 (HKLM\...\DllKit Pro 2017) (Version: - )
Dropbox (HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Importação do SketchUp 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.551.2 - McAfee, Inc.)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 53.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 pt-BR)) (Version: 53.0 - Mozilla)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tools Update Platform (HKLM-x32\...\{6A128791-4857-4484-9BB2-71D4C1257200}) (Version: 1.1.0.15773 - Beijing Zhihuimen Techology co,.Ltd) <==== ATENÇÃO
vSnapshot 1.0.0.0 (HKLM\...\{F772C08D-9F61-45c6-982F-ADDEEE0D92C6}) (Version: 1.0.0.0 - ShenZhen Zhihuimen Techology co,.Ltd)
Warsaw 1.15.1.61 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.15.1.61 - GAS Tecnologia)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Win7\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Win7\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Win7\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Win7\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {04E1A8FA-0A52-41D2-85BB-E3BEB48A77CC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated)
Task: {108D9989-7FEC-4B9C-8C7E-5E28A55AAC9C} - System32\Tasks\{8809D392-A1D6-4075-9C5C-6720ED642331} => Firefox.exe
Task: {1D8F2DD0-257D-418B-8140-52001A1612E0} - System32\Tasks\{3BD6727A-1341-4866-881C-FC2194849718} => pcalua.exe -a C:\Users\Win7\AppData\Roaming\sweet-page\UninstallManager.exe -c -ptid=cor
Task: {1E9EAB99-248E-4AC7-9240-1B65B4D640B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {39233F74-6319-422D-BF44-CEED1388BDDB} - System32\Tasks\{3B7FD029-D932-411b-AF15-C96CF8EF0C18}{19F8DB95-4D78-4ddb-AC71-C610654FE37F} => C:\Program Files (x86)\WeatherTool\1.2.2.10256\InstallHelper.exe <==== ATENÇÃO
Task: {90133625-90EB-4F9C-AF51-B46CF2981F2B} - System32\Tasks\DllKitPRO => C:\Program Files (x86)\DllKitPRO\dllkitpro.exe [2017-02-11] ()
Task: {9FACF8DE-781E-4E7B-B5ED-E34AFD378E01} - System32\Tasks\Tools_Update_{CFAC34AB-5DB5-4dea-94EC-1D42E3942873} => C:\Program Files (x86)\tools\update\tools_update.exe [2016-07-04] ()
Task: {A15D79CA-4491-419D-B0A9-6FE254D1BA4F} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATENÇÃO
Task: {A52CBE8C-0FCF-4A07-8F91-6257D170503D} - System32\Tasks\ToolsUpdatePlatform_ScheduledTask => C:\Program Files (x86)\ToolsUpdatePlatform\UpdatePlatform.exe [2015-07-07] () <==== ATENÇÃO
Task: {B025EFF6-ED37-4129-9142-80597E48C88D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-17] (Adobe Systems Incorporated)
Task: {C3434A50-D77C-443C-9B67-16C7E73393DD} - System32\Tasks\{BC221F5B-D9AE-4B9F-ACA2-B6855CB966DB} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {C61D9D5A-3C7F-4B2B-809E-95E355551455} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {CA7F6AFA-0AD0-4C12-BE7B-BA7E8C11F5F9} - System32\Tasks\Dregol mada => Wscript.exe "C:\ProgramData\{14C3FC00-4441-2D86-F5C7-5D0425458E8A}\2.0.1.9\dese.txt" "433a2f50726f6772616d446174612f7b31344333464330302d343434312d324438362d463543372d3544303432353435384538417d2f322e302e312e392f6d6164612e646c6c" "687474703a2f2f73616f2e7265716472652e636f6d2f" "--IsErIk" "//B" "//E:jscript"
Task: {F863B1AB-491D-4B67-96FA-5987B3252550} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-15] (AVAST Software)
Task: {FEAD9760-FCF5-4948-9E51-A44DEC56C6A1} - System32\Tasks\{177C4714-40CC-4774-B053-A80AFC7286B5} => pcalua.exe -a E:\Setup.exe -d E:\

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\ToolsUpdatePlatform_ScheduledTask.job => C:\Program Files (x86)\ToolsUpdatePlatform\UpdatePlatform.exe <==== ATENÇÃO
Task: C:\Windows\Tasks\Tools_Update_{CFAC34AB-5DB5-4dea-94EC-1D42E3942873}.job => C:\Program Files (x86)\tools\update\tools_update.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

==================== Módulos Carregados (Whitelisted) ==============

2014-01-28 07:08 - 2007-01-26 04:41 - 00022016 _____ () C:\Windows\System32\scx530l6.dll
2014-01-29 09:51 - 2007-01-30 23:50 - 00047616 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\SM5x30u.dll
2016-05-19 06:12 - 2016-05-19 06:12 - 00152688 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11380\CalendarEntry.dll
2015-07-07 03:49 - 2015-07-07 03:49 - 00635128 _____ () C:\Program Files (x86)\ToolsUpdatePlatform\UpdatePlatform.exe
2016-05-19 06:11 - 2016-05-19 06:11 - 00153200 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11380\CalendarServ.exe
2016-12-24 00:30 - 2016-12-24 00:30 - 00152264 _____ () C:\Program Files (x86)\vSnapshot\1.0.0.0\vSnapshotServ.exe
2016-05-19 06:12 - 2016-05-19 06:12 - 03933296 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11380\Calendar.exe
2016-12-24 00:30 - 2016-12-24 00:30 - 01730248 _____ () C:\Program Files (x86)\vSnapshot\1.0.0.0\vSnapshot.exe
2013-01-25 16:40 - 2012-08-02 22:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-28 07:09 - 2007-01-30 21:49 - 00253952 _____ () C:\Program Files (x86)\SAMSUNG\Samsung SCX-5x30 Series\SPanel\PSU\Scan2pc.exe
2017-02-11 18:29 - 2017-02-11 18:29 - 02174960 _____ () C:\Program Files (x86)\DllKitPRO\dllkitpro.exe
2014-07-15 12:16 - 2014-07-15 12:16 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2017-05-04 07:47 - 2017-05-04 07:47 - 06028528 _____ () C:\Program Files\AVAST Software\Avast\defs\17050400\algo.dll
2017-05-04 08:00 - 2017-03-10 07:48 - 00061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2017-05-04 08:00 - 2017-03-10 07:48 - 00110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2015-01-12 07:49 - 2015-01-12 07:49 - 00946176 _____ () C:\Program Files (x86)\PC App Store\5.0.1.8490\Plugins\Plugin.ServShellEx\ServShellEx.dll
2016-12-24 00:30 - 2016-12-24 00:30 - 00574152 _____ () C:\Program Files (x86)\vSnapshot\1.0.0.0\Updata.dll
2014-07-15 12:16 - 2014-07-15 12:16 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-28 07:09 - 2007-01-16 21:47 - 00184320 _____ () C:\Program Files (x86)\SAMSUNG\Samsung SCX-5x30 Series\SPanel\PSU\IMFilter.dll
2014-01-28 07:09 - 2007-01-16 21:48 - 01384520 _____ () C:\Program Files (x86)\SAMSUNG\Samsung SCX-5x30 Series\SPanel\PSU\ssole.dll
2014-06-30 16:28 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2015-01-12 08:03 - 2015-01-12 08:03 - 00628256 _____ () C:\Program Files (x86)\PC App Store\5.0.1.8490\WallPaperDataCmd.dll
2015-01-12 08:03 - 2015-01-12 08:03 - 00493600 _____ () C:\Program Files (x86)\PC App Store\5.0.1.8490\WallPaperSdk.dll
2017-05-04 08:00 - 2015-11-05 09:07 - 00052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll
2017-05-04 08:00 - 2015-11-05 09:07 - 00742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll
2017-05-04 08:00 - 2015-11-05 09:07 - 00195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll
2017-05-04 08:00 - 2013-09-23 14:52 - 00043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll
2017-05-04 08:01 - 2017-03-10 07:21 - 00279976 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\pt-BR\AdWingManRes.dll
2017-05-04 08:01 - 2015-09-08 03:31 - 40640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll
2017-05-04 08:01 - 2014-09-02 21:29 - 00912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll
2017-05-04 08:01 - 2014-09-02 21:29 - 00134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll
2017-05-04 08:00 - 2014-09-02 21:29 - 00950272 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll
2013-01-25 16:44 - 2012-06-25 09:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:B40BE602_Bb.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [2262]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\bb.com.br -> aapj.bb.com.br
IE trusted site: HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\...\gastecnologia.com.br -> cloud.gastecnologia.com.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2017-04-25 07:45 - 00000921 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 validation.sls.microsoft.com
0.0.0.1 mssplus.mcafee.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2564967431-2231233875-3052671924-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [TCP Query User{9EDD46D1-C5C9-44CC-AD90-0AF1895DFE69}C:\program files (x86)\samsung\networkscan\nscsystrayui.exe] => (Allow) C:\program files (x86)\samsung\networkscan\nscsystrayui.exe
FirewallRules: [UDP Query User{2E345617-4852-4D6C-A4B9-2CE24CDCBE5F}C:\program files (x86)\samsung\networkscan\nscsystrayui.exe] => (Allow) C:\program files (x86)\samsung\networkscan\nscsystrayui.exe
FirewallRules: [TCP Query User{AA04C0F0-B7B2-472F-AF67-9E2BA6817020}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{547B71E4-3CA8-4D8E-8AA4-7F9C47A4730A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{09E2B79F-8F70-4E8B-BB7A-55D44CEBF3E4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D6D1E1CA-46F7-4548-8193-518EECABC427}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F08F4414-59E9-4A20-BC80-A37314C53041}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BA0686A8-505F-4D1C-A050-B6FB4D9F75FC}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{3918064D-3D8E-4D9C-81B6-9247C3D9C220}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{6CCC24E0-DFB8-4489-BF5F-A6BEA6B95E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{59F96F2F-7A0E-42BC-8877-292D5F352F53}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0BAB5FEB-3CE7-4B2B-B32B-59334F4D2F78}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7CB82F3F-057E-431E-A750-6B8833BDD3B5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5F485288-28EE-4FA7-B4C4-47331538E4D1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3E6603D2-FEF4-44FB-BEEF-AD969F174E3D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{E50E1039-8BE6-46AE-9C90-0E8AE6FE6A82}C:\users\win7\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\win7\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2116FBF8-FD57-40F3-AE0C-7C23409BCA78}C:\users\win7\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\win7\appdata\roaming\spotify\spotify.exe
FirewallRules: [{3B93E005-A48C-42DB-AC95-1EA7199B94A5}] => (Allow) C:\Users\Win7\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [TCP Query User{B47AFE68-307D-4D0C-AE15-CC35EDDE8799}C:\users\win7\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\win7\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{F14F0763-5B5F-42AC-956C-4CF7CEBC7AA4}C:\users\win7\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\win7\appdata\local\akamai\netsession_win.exe
FirewallRules: [{1B4041A7-E06E-4233-8F28-7879C204296D}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{E21E321D-26D8-4C64-8F6C-8BA4AFA144AB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

27-04-2017 08:38:17 Ponto de Verificação Agendado
03-05-2017 13:16:06 Instalador de Módulos do Windows
03-05-2017 13:16:39 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
03-05-2017 13:16:58 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
03-05-2017 13:17:19 DirectX instalado

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Bnbase
Description: Bnbase
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Bnbase
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Baidu NetDefense
Description: Baidu NetDefense
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Bndef
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Baidu Protect
Description: Baidu Protect
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Bprotect
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.

Error: (05/04/2017 09:02:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Falha dos Serviços de Criptografia ao inicializar o Catálogo do Banco de Dados. Erro do ESENT:-1011.


Erros de Sistema:
=============
Error: (05/04/2017 08:31:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Windows Defender terminou com o erro:
Memória esgotada

Error: (05/04/2017 08:30:35 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
e APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
ao usuárioAUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (05/04/2017 08:30:22 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
e APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (05/04/2017 08:29:56 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Windows Defender terminou com o erro:
Memória esgotada

Error: (05/04/2017 08:29:45 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
Bnbase
Bndef
Bprotect

Error: (05/04/2017 08:29:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço TeamViewer 10 devido ao seguinte erro:
TeamViewer 10 não é um aplicativo Win32 válido.

Error: (05/04/2017 08:29:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço DgiVecp devido ao seguinte erro:
O sistema não pode encontrar o dispositivo especificado.

Error: (05/03/2017 08:15:55 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Windows Defender terminou com o erro:
Memória esgotada

Error: (05/03/2017 08:14:45 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
e APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
ao usuárioAUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (05/03/2017 08:14:33 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão Específico do aplicativo não concedem permissãoLocal Iniciar para o aplicativo de Servidor COM com CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
e APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
ao usuárioAUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentagem de memória em uso: 57%
RAM física total: 4008.31 MB
RAM física disponível: 1703.36 MB
Virtual Total: 8014.82 MB
Virtual disponível: 5669.49 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:146.39 GB) (Free:76.03 GB) NTFS
Drive d: () (Fixed) (Total:319.28 GB) (Free:293.41 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: CAD89470)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=146.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=319.3 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité