Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 25-01-2017 01
Executado por vivia_000 (26-01-2017 16:15:24)
Executando a partir de C:\Users\vivia_000.nascimento\Desktop
Windows 8.1 Pro (X64) (2017-01-15 13:09:17)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-4015679594-1544014280-502934167-500 - Administrator - Disabled)
Convidado (S-1-5-21-4015679594-1544014280-502934167-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4015679594-1544014280-502934167-1003 - Limited - Enabled)
vivia_000 (S-1-5-21-4015679594-1544014280-502934167-1001 - Administrator - Enabled) => C:\Users\vivia_000.nascimento
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-4015679594-1544014280-502934167-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
A Bíblia Sagrada Versão Digital 6.5 Freeware (HKLM-x32\...\A Bíblia Sagrada Versão Digital 6.5 Freeware_is1) (Version: - Por Marcelo Ribeiro de Oliveira - 12/03/2010)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Ashampoo Burning Studio 2012 v10.0.15 (HKLM-x32\...\Ashampoo Burning Studio 2012_is1) (Version: 10.0.15 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 2.9.0.0 - Byte Technologies LLC) <==== ATENÇÃO
CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.60 - Logitech)
Command | Configure (HKLM-x32\...\{E9C2BEC5-3BE0-4F78-AECC-A1542C2AAF8F}) (Version: 3.0.0.1 - Dell)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd)
Dell Client Configuration Toolkit (HKLM-x32\...\{C8EA30FC-B20B-465E-9D8A-CDDC09EA72D4}) (Version: 2.1.1 - Dell)
Dell Client Integration Pack for Microsoft ConfigMgr 2012 (HKLM-x32\...\{8C920990-2885-4786-BA13-6F8C682AD554}) (Version: 3.1.0.99 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.0.0 - Dell Inc.)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{C6993E13-5A28-43BE-9A5F-6B5763433B8E}) (Version: 3.3.14.68 - Broadcom Corporation)
Dell Latitude ON Reader (HKLM-x32\...\InstallShield_{506E853B-8FBF-4F28-86EB-E931ABD0C056}) (Version: 1.2.2116 - CyberLink Corp.)
Dell Latitude ON Reader (x32 Version: 1.2.2116 - CyberLink Corp.) Hidden
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1207.101.108 - ALPS ELECTRIC CO., LTD.)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJ_AIO_05_F4400_Software_Min (x32 Version: 140.0.841.000 - Hewlett-Packard) Hidden
DLL-Files.com Client (HKLM-x32\...\DA71BA65-680A-4212-9150-6239217B53DC_DLL-Files.c~79141F26_is1) (Version: 2.1.1000.4462 - DLL-Files.com Client)
Driver Easy 5.1.5 (HKLM\...\DriverEasy_is1) (Version: 5.1.5 - Easeware)
F4400 (x32 Version: 140.0.841.000 - Hewlett-Packard) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F4400 Printer Driver Software 14.0 Rel. 5 (HKLM\...\{82D96D11-AF74-4449-8811-4D6CE66FEF63}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
InstallVC90Support (x32 Version: 1.01.0000 - Novatel Wireless) Hidden
Integrated Webcam Driver (1.02.02.0603) (HKLM\...\Creative OA001) (Version: - )
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{39BEF607-44E6-472B-90C1-BD62AA2B7A3F}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{C07B4BC7-A37D-46A8-B2A3-620CC569D149}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ vNext Redistributable (x64) - 14.10.24629 (HKLM-x32\...\{c60f2e5a-912d-426c-a6b1-8a80bebab424}) (Version: 14.10.24629.0 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 pt-BR)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
OutlookAddinSetup (x32 Version: 1.0.0 - CyberLink) Hidden
Pacote de Compatibilidade para o sistema Office 2007 (HKLM-x32\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Promob Arch (HKLM\...\Promob Arch) (Version: 5 - Promob Software Solutions)
Qualcomm Gobi Driver Package for Dell (HKLM-x32\...\{98CE29A1-AA14-4858-9A67-9CDBEAA596C8}) (Version: 1.1.20 - QUALCOMM)
Qualcomm Gobi Images for Dell (HKLM-x32\...\{F1557A96-53A1-48F8-9652-D69A0FF41C9F}) (Version: 1.0.50 - QUALCOMM)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
RICOH Media Driver ver.2.07.01.01 (HKLM-x32\...\{2B818257-E6C7-4841-8C29-C5C9A982BCE5}) (Version: 2.07.01.01 - RICOH)
RICOH R5C83x/84x Media Driver Ver.3.53.02 (HKLM-x32\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.53.02 - )
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
TweakBit FixMyPC (HKLM-x32\...\{CA7C4C80-24B8-4027-8849-0C302333C427}_is1) (Version: 1.8.1.0 - Auslogics Labs Pty Ltd)
TweakBit PC Repair (HKLM-x32\...\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1) (Version: 1.4.1.0 - Auslogics Labs Pty Ltd)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.2000 - WIDCOMM, Inc.)
Windows SDK AddOn (HKLM-x32\...\{3BE62AA1-60B9-42EA-99BC-1A46B31C7E0C}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows SDK Non-Versioned Legacy Tools (HKLM-x32\...\{54BE1024-C780-F2BE-C14A-0FAB7DE03159}) (Version: 10.1.14393.795 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
X64 Debuggers And Tools (HKLM\...\{D4F0B58E-8624-FB0A-7ED0-154E03A5885B}) (Version: 10.1.14393.795 - Microsoft Corporation)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {11685D49-9665-4375-84E1-F3FA56A277BF} - System32\Tasks\TweakBit\FixMyPC\Start FixMyPC оn logon => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
Task: {1282CCCC-A65D-48A1-B003-78A7DF8650DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-15] (Google Inc.)
Task: {1BFBE40A-365A-4F69-94C6-007CFBC3E89D} - System32\Tasks\TweakBit\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\TweakBit\PC Repair\PCRepair.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
Task: {1FBDA404-4CB1-493A-ADA1-9AC5FFE3A4CB} - System32\Tasks\{4ECC095D-0785-4236-AA70-CBDF50020543} => pcalua.exe -a "D:\programas para pc\drivers not\R191026(1).exe" -d "D:\programas para pc\drivers not"
Task: {2CACB57D-2809-4D31-9B90-E2307280E480} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {2D8E67D5-0AC7-4CF2-B57E-1054827D66EC} - System32\Tasks\{D3F35242-7912-427D-9D81-60635437A74B} => pcalua.exe -a "D:\programas para pc\drivers not\Ricoh_multi-device_A01_R230630_setup_ZPE.exe" -d "D:\programas para pc\drivers not"
Task: {2E61373E-9465-4E92-89C9-38F00BE48AE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {2E9C4A96-D6EA-43D6-BE46-EBE58A0576AE} - System32\Tasks\{6DA5DB2E-B512-4214-AD69-0DCEFA64D3D5} => pcalua.exe -a "D:\programas para pc\drivers not\MICROSOFT_WINDOWS-VISTA-SP1-_A01_R204794.exe" -d "D:\programas para pc\drivers not"
Task: {385AE950-F682-4FEC-9D90-30DA8429B77A} - System32\Tasks\{2AB2689F-8A05-4BED-AFF2-E37F650D0B69} => pcalua.exe -a "D:\programas para pc\drivers not\DELL_CONTROLPOINT-CONNECTION_A02-2339_R253888.exe" -d "D:\programas para pc\drivers not"
Task: {42A482E5-A665-4462-8C40-21ABC848F02C} - System32\Tasks\{18B31943-FEE9-4AA4-9EEC-0A8094B33458} => pcalua.exe -a "D:\programas para pc\drivers not\DELL_WIRELESS-365-BLUETOOTH-_A19-2_R247518.exe" -d "D:\programas para pc\drivers not"
Task: {569B2456-AC1E-4E4D-BDA2-5A90DB974A46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {56E86290-E340-49A6-B04F-7549967D0827} - System32\Tasks\SafeZone scheduled Autoupdate 1484488588 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {5F287873-414C-44B3-9B31-92CB09729B67} - System32\Tasks\{BA4466D4-0252-41D3-B2BB-C8874290C968} => pcalua.exe -a "D:\programas para pc\drivers not\DCCU_3.1_MR1.exe" -d "D:\programas para pc\drivers not"
Task: {7B4792B6-0A12-44D1-B95B-7118149A252C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-15] (Google Inc.)
Task: {7C5E72F9-6567-41E3-94B3-FBE315FA277F} - System32\Tasks\{F9B914A6-A49B-465A-8C76-2AB7275BE071} => pcalua.exe -a "D:\programas para pc\drivers not\DELL_CONTROLPOINT-CONNECTION_A02-2339_R253895.exe" -d "D:\programas para pc\drivers not"
Task: {875C7EC2-8B01-4DB5-A5D5-CA21F7F00199} - System32\Tasks\{1D9F000C-1DAE-4587-A687-C957073B57BB} => pcalua.exe -a "D:\programas para pc\drivers not\R191026.exe" -d "D:\programas para pc\drivers not"
Task: {8EB1AD50-905D-404E-BE81-0CD6E20CF4F7} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-12-18] (Byte Technologies LLC) <==== ATENÇÃO
Task: {98BA2E8A-9EB5-4A7F-AD20-0B4D79E362F8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2017-01-15] (AVAST Software)
Task: {9BF9FAE9-7D02-452F-9E18-2E18C6F41402} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2016-12-12] (Easeware)
Task: {A40C9D03-E8EE-4E84-8822-2AA56C05452E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-25] (AVAST Software)
Task: {A7B42B79-C3A3-4CF1-9A69-E4113D5E26E5} - System32\Tasks\{52ED8430-62B3-467C-BE45-87D82B6B753D} => pcalua.exe -a "D:\programas para pc\drivers not\CW1384A0.exe" -d "D:\programas para pc\drivers not"
Task: {B2DCC203-74A9-4BEE-852F-9C4255FA37FA} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-30] (@ByELDI)
Task: {B5C430F6-D3D9-445F-BE61-C71A8F4D433A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-25] (Adobe Systems Incorporated)
Task: {BC326A69-82AF-4660-8A23-EFEB1B225283} - System32\Tasks\R@1n-KMS\Windows63Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="c06b6981-d7fd-4a35-b7b4-054742b7af67") call Activate]
Task: {C648D631-A1BE-4AF7-A420-E0D7A09B4594} - System32\Tasks\{ACCE23DA-A1EA-4C58-B2C8-266FB69AB356} => pcalua.exe -a "D:\programas para pc\drivers not\Conexant_D400-External-USB-5_A03_R172651.exe" -d "D:\programas para pc\drivers not"
Task: {CBEE64EA-4FE7-4C24-BFD9-75B29F77EBFE} - System32\Tasks\{1CB294BE-6F56-4040-898B-4F8BD579A5C3} => pcalua.exe -a "D:\programas para pc\drivers not\DELL_WIRELESS-365-BLUETOOTH-_A04-2_R247521.exe" -d "D:\programas para pc\drivers not"
Task: {E01BC3D4-3585-4274-B652-70A0BC18CC14} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {EDCAD801-83B7-49C0-858F-62323E68D1E4} - System32\Tasks\{8AF39065-F3A5-497A-B1AE-9CBA8015BE13} => pcalua.exe -a "D:\programas para pc\drivers not\RICOH_MULTI-DEVICE_A00_R215879.exe" -d "D:\programas para pc\drivers not"
Task: {F41C4ED2-58B1-4D80-ACFA-51FD23C04425} - System32\Tasks\TweakBit\FixMyPC\Time for deal => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe [2017-01-19] (TweakBit) <==== ATENÇÃO
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2009-05-22 14:51 - 2009-05-22 14:51 - 00120104 _____ () C:\Program Files (x86)\Dell\Latitude ON Reader\CLMonitorService.exe
2017-01-17 23:40 - 2017-01-17 23:40 - 00016896 _____ () C:\Program Files\KMSpico\WinDivert.dll
2009-05-22 14:50 - 2009-05-22 14:50 - 00116008 _____ () C:\Program Files (x86)\Dell\Latitude ON Reader\BIOSEvent.exe
2016-05-25 10:38 - 2016-05-25 10:38 - 00129304 _____ () C:\Program Files\ByteFence\x64\lz4_x64.dll
2017-01-15 11:23 - 2017-01-15 11:23 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-26 07:10 - 2017-01-26 07:10 - 04459096 _____ () C:\Program Files\AVAST Software\Avast\defs\17012600\algo.dll
2017-01-15 11:23 - 2017-01-15 11:23 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-26 16:09 - 2017-01-26 16:09 - 04459096 _____ () C:\Program Files\AVAST Software\Avast\defs\17012602\algo.dll
2017-01-15 11:23 - 2017-01-15 11:23 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-01-26 16:17 - 2017-01-26 16:17 - 00254280 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2017-01-26 16:17 - 2017-01-26 16:17 - 00565064 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2013-08-22 11:25 - 2017-01-26 16:17 - 00002024 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
0.0.0.0 cdn.bisrv.com
0.0.0.0 cdn.cdndp.com
0.0.0.0 cdn.download.sweetpacks.com
0.0.0.0 cdn.dpdownload.com
0.0.0.0 cdn.visualbee.net
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-4015679594-1544014280-502934167-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [TCP Query User{600C2F58-1A7A-4E99-A602-ABF556F44499}C:\program files (x86)\daemon sync\daemonsynctray.exe] => C:\program files (x86)\daemon sync\daemonsynctray.exe
FirewallRules: [UDP Query User{4004CEDA-5CAB-47C1-BE6B-A7F3EC67BF39}C:\program files (x86)\daemon sync\daemonsynctray.exe] => C:\program files (x86)\daemon sync\daemonsynctray.exe
FirewallRules: [{711EB4E3-8E9C-4D98-934E-D78629D7889C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{484226B8-65BA-42D7-A260-42B80CA11C2E}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4BCE856F-A6E4-458D-89BC-CA3A3F6AEE71}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5C81BA12-5273-4AC8-AD40-5F9A98119557}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E34F1A6A-4FEC-434B-B1ED-4031F38E5745}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{659F8466-2AEE-4517-B034-66A7C2880208}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84F5D83A-63E2-4BDA-88E6-625AB0246312}] => C:\Users\vivia_000.nascimento\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CC36D7C8-62FF-4520-B0E2-AEBD84ACDE13}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{19C2B1A0-0B72-41F2-871F-81CE8B484F79}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{6D985F3C-F58E-4DCB-9C7A-7F6C0056ED7E}C:\program files (x86)\daemon sync\daemonsynctray.exe] => C:\program files (x86)\daemon sync\daemonsynctray.exe
FirewallRules: [UDP Query User{C42293ED-7962-4FD8-A53A-EAA36BA3F315}C:\program files (x86)\daemon sync\daemonsynctray.exe] => C:\program files (x86)\daemon sync\daemonsynctray.exe
FirewallRules: [{2B3B6DE2-3965-46F9-92B5-DEA2135382E0}] => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
FirewallRules: [{4EB5E960-C73A-431B-AFAF-76ED4D136D1A}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\Backgammon.exe
FirewallRules: [{E72C334E-0986-4FCC-A588-2954BF0FC111}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\Checkers.exe
FirewallRules: [{400B7E08-67CC-494F-AA7E-DC9041F945F9}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\Chess.exe
FirewallRules: [{34179AB5-415C-4E91-A075-DC830E88F139}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\EasyChat.exe
FirewallRules: [{F5EC4195-E636-4C72-A481-D3696E86A512}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\SeaBattle.exe
FirewallRules: [{C7699F8F-FC58-47AF-9607-DAA05578737E}] => C:\Program Files\WIDCOMM\Bluetooth Software\EasyBits Games\TicTacToe.exe
FirewallRules: [{D03DB405-36D1-4647-8226-A6D442D4F07F}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{AA1C49DE-3A14-4467-88A2-5AB09BE7046D}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{153E850E-F6AA-4A0F-8D96-74F6B7DD92C3}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{4E97C304-98FE-4899-B967-DB84CF7E8351}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{7E729CC0-5E98-4652-9201-1571F923E60A}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{41AE00B8-29DD-423B-9BA2-01CD0D5FC443}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{9563ACEB-6DFB-454B-8E3A-F59860490BF1}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{AC903CE4-0EF5-47C5-95E1-C23001D7079D}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{D8D2E5A5-C10A-42C3-A884-F9EE77F89124}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{79B2AB2F-C62E-46DC-A730-F6A81E61DCAA}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{61AE42CC-E004-41BD-AEE9-5B2E618D528E}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{B54DA23C-9A14-463C-BC1C-CB8BF1968561}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{EC0F5E4C-7A5A-41EE-8A85-599FD4ECD8FE}] => C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F2EDC3DB-3FDB-469D-A353-C8E23AF91435}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{D08DBD96-6F5B-4A06-BC53-FC6CD6E955E8}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{150AE5E5-7380-495C-A30A-9F4057ABB3FE}] => C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{DB9F5065-A3C5-42B4-AA12-4CFC13787711}] => C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{331CD0B5-5C41-4D67-8CEC-EDDD24D96E3D}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{7B1E867D-4580-4C7D-96F7-50B519D25841}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{6732FACC-468A-4C30-91F7-27756951D829}] => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{35FDE2AE-4BAF-4696-B0F5-9846509D8CC9}] => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6A5919A2-5E6E-41B8-B55B-043C48E55A18}] => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
==================== Pontos de Restauração =========================
20-01-2017 09:02:48 Installed Command | Configure.
25-01-2017 15:25:34 Windows Software Development Kit - Windows 10.0.14393.795
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (01/26/2017 04:17:12 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: O Windows não consegue carregar a DLL Outlook do contador extensível. Os primeiros quatro bytes (DWORD) da seção de Dados contêm o código de erro do Windows.
Error: (01/26/2017 04:03:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa LiveComm.exe versão 17.5.9600.20911 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID do Processo: a9c
Hora de Início: 01d277fdd07db45b
Hora de Término: 4294967295
Caminho do Aplicativo: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
ID do Relatório: c65a62b4-e3f1-11e6-825a-0024e8ed6bf1
Nome completo do pacote com falha: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
ID do aplicativo relativo ao pacote com falha: ppleae38af2e007f4358a809ac99a64a67c1
Error: (01/26/2017 03:39:04 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Erro no arquivo de manifesto ou de política c:\program files (x86)\spybot - search & destroy\DelZip179.dll", na linha 8.
O valor "*" do atributo language no elemento assemblyIdentity é inválido.
Error: (01/26/2017 03:13:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa install.exe versão 6.3.9600.17041 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID do Processo: ba0
Hora de Início: 01d277e6de7e763f
Hora de Término: 8
Caminho do Aplicativo: C:\$WINDOWS.~BT\Sources\install.exe
ID do Relatório: cb73b8f2-e3ea-11e6-825a-0024e8ed6bf1
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/26/2017 12:45:31 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (01/25/2017 04:07:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: plugin-container.exe, versão: 50.1.0.6186, carimbo de data/hora: 0x584a057c
Nome do módulo com falha: mozglue.dll, versão: 50.1.0.6186, carimbo de data/hora: 0x5849ff8b
Código de exceção: 0x80000003
Deslocamento da falha: 0x0000ec79
ID do processo com falha: 0xf48
Hora de início do aplicativo com falha: 0x01d27733b01c9e6a
Caminho do aplicativo com falha: C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Caminho do módulo com falha: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
ID do Relatório: 1298706f-e329-11e6-8259-0024e8ed6bf1
Nome completo do pacote com falha:
ID do aplicativo relativo ao pacote com falha:
Error: (01/25/2017 03:39:30 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (01/22/2017 02:35:30 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (01/21/2017 06:09:31 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (01/21/2017 03:16:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa LiveComm.exe versão 17.5.9600.20911 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID do Processo: db0
Hora de Início: 01d2738c5ae7a1f7
Hora de Término: 4294967295
Caminho do Aplicativo: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
ID do Relatório: c85c7962-df98-11e6-8256-0024e8ed6bf1
Nome completo do pacote com falha: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
ID do aplicativo relativo ao pacote com falha: ppleae38af2e007f4358a809ac99a64a67c1
Erros de Sistema:
=============
Error: (01/26/2017 12:45:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Proteq devido ao seguinte erro:
O carregamento deste driver foi bloqueado
Error: (01/26/2017 12:45:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\Proteq.SYS
Error: (01/26/2017 12:45:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço KMS-R@1n terminou com o erro:
Parâmetro incorreto.
Error: (01/26/2017 12:38:44 PM) (Source: DCOM) (EventID: 10010) (User: NASCIMENTO)
Description: O servidor {E60687F7-01A1-40AA-86AC-DB1CBF673334} não se registrou no DCOM dentro do tempo limite necessário.
Error: (01/25/2017 11:07:52 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Falha indeterminada do adaptador Bluetooth local; ele não será usado. O driver foi descarregado.
Error: (01/25/2017 07:09:38 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Falha indeterminada do adaptador Bluetooth local; ele não será usado. O driver foi descarregado.
Error: (01/25/2017 04:23:47 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (01/25/2017 04:22:18 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Falha indeterminada do adaptador Bluetooth local; ele não será usado. O driver foi descarregado.
Error: (01/25/2017 04:22:13 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (01/25/2017 04:12:09 PM) (Source: DCOM) (EventID: 10010) (User: NASCIMENTO)
Description: O servidor {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} não se registrou no DCOM dentro do tempo limite necessário.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM)2 Duo CPU P9400 @ 2.40GHz
Percentagem de memória em uso: 91%
RAM física total: 1999.9 MB
RAM física disponível: 179.8 MB
Virtual Total: 2831.9 MB
Virtual disponível: 369.57 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:154.66 GB) (Free:108.23 GB) NTFS
Drive d: (Novo volume) (Fixed) (Total:78.12 GB) (Free:15.54 GB) NTFS
Drive e: (IR3_CPRA_X64FREV_PT-BR_DV9) (CDROM) (Total:3.68 GB) (Free:0 GB) UDF
Drive g: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F4508FE0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=154.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=78.1 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================