Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:07-01-2015 Executado por Carol (2016-01-08 22:16:55) Executando a partir de C:\Users\Carol\Desktop Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2013-05-30 04:45:02) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1318386723-3953923483-43672438-500 - Administrator - Disabled) Carol (S-1-5-21-1318386723-3953923483-43672438-1000 - Administrator - Enabled) => C:\Users\Carol Convidado (S-1-5-21-1318386723-3953923483-43672438-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1318386723-3953923483-43672438-1002 - Limited - Enabled) Outros (S-1-5-21-1318386723-3953923483-43672438-1003 - Limited - Enabled) => C:\Users\Outros ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe Acrobat Reader DC - Português (HKLM\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 20.0.0.270 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.5.155 - Adobe Systems, Inc.) Amazon Kindle (HKU\S-1-5-21-1318386723-3953923483-43672438-1000\...\Amazon Kindle) (Version: - Amazon) ASUS Media Sharing (HKLM\...\{9042F9FE-43CB-4ACF-9978-F62235127F90}) (Version: 0.65.9 - ASUS) ASUS WebStorage (HKLM\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.) AsusScreensaver (HKLM\...\{99E77016-BCF2-48C8-9119-43ECF5815F65}) (Version: 1.05 - AsusTek Computer Inc.) ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.03 - ASUSTeK Computer Inc.) AsusVibe2.0 (HKLM\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.) Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender) CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) Dropbox (HKU\S-1-5-21-1318386723-3953923483-43672438-1000\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.3.0 - AzureWave) Eee Docking 3.10.5 (HKLM\...\Eee Docking_is1) (Version: 3.10.5 - ASUSTek Computer Inc.) ETDWare PS/2-X86 8.0.5.2_WHQL (HKLM\...\Elantech) (Version: 8.0.5.2 - ELAN Microelectronic Corp.) ExpressGateCloud (HKLM\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.7.44.279 - VideACE Co.) ExpressGateCloud (Version: 2.7.44.279 - VideACE Co.) Hidden Finale Reader 2011 (HKLM\...\Finale Reader) (Version: 2011..r2.1 - MakeMusic) FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek) FontResizer (Version: 1.01.0011 - ASUSTek) Hidden Fotosizer 1.37 (HKLM\...\Fotosizer) (Version: 1.37 - Fotosizer.com) Foxit PDF Editor (HKLM\...\Foxit PDF Editor) (Version: 2.2.1.1102 - Foxit Corporation) Google Chrome (HKLM\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.29.1 - Google Inc.) Hidden Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.45 - AsusTek Computer Inc.) InstantOn for EPC (HKLM\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.6 - ASUS) Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.14.8.1075 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.30 - AsusTek Computer Inc.) Malwarebytes Anti-Malware versão 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) MCShield ::Anti-Malware Tool:: (HKLM\...\MCShield) (Version: 3.0.5.28 - MyCity) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office XP Professional com FrontPage (HKLM\...\{90280416-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.7 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Módulo de Segurança - Banco do Brasil (HKLM\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - ) Mozilla Firefox 43.0.1 (x86 pt-BR) (HKLM\...\Mozilla Firefox 43.0.1 (x86 pt-BR)) (Version: 43.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla) Pacote de Compatibilidade para o sistema Office 2007 (HKLM\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation) Panda USB Vaccine 1.0.1.4 (HKLM\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version: - Panda Security) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge) Plugin Letras.mus.br 1.30 (HKLM\...\Plugin Letras.mus.br) (Version: 1.30 - Letras.mus.br) Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Stickies 7.1a (HKLM\...\ZhornStickies) (Version: - Zhorn Software) Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.21 - AsusTek Computer) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Unchecky v0.4.2 (HKLM\...\Unchecky) (Version: 0.4.2 - RaMMicHaeL) USBCharge+ (HKLM\...\{8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}) (Version: 1.0.0.23 - AsusTek Computer) Warsaw 1.11.0.42826 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia) WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) WiSharing (HKLM\...\{21DD6041-7251-40FA-9D06-C5EB30268E0F}) (Version: 1.1.0.8 - AzureWave) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Carol\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Carol\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Carol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1318386723-3953923483-43672438-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Carol\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {3CB95CE2-3418-48B2-AC1C-2D601202DE70} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.) Task: {446E9A18-6311-40EE-9F74-70F7E661503F} - System32\Tasks\PandaUSBVaccine => C:\Program Files\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] () Task: {5B117483-DF1A-4476-8189-63ED98031FB8} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1318386723-3953923483-43672438-1000UA => C:\Users\Carol\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-08] (Dropbox, Inc.) Task: {6AEF0C98-2CB4-4B67-8C70-4C977C7355CC} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {81794F5B-ACAB-4841-B42D-6B4A67158709} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {940AD15F-0167-4BA4-AE23-20151C0B5441} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1318386723-3953923483-43672438-1000Core => C:\Users\Carol\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-08] (Dropbox, Inc.) Task: {B3013F8D-AFFC-46EB-8EAC-910B047CCA2F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.) Task: {B68D9603-0092-4D91-A2F8-FAD8469D93D2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {CF977FE4-B418-4148-BAD3-C1C1DC57B571} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-03] (Adobe Systems Incorporated) Task: {D622195C-D680-4FEA-9C56-59660C7C9E94} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1318386723-3953923483-43672438-1000Core.job => C:\Users\Carol\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1318386723-3953923483-43672438-1000UA.job => C:\Users\Carol\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-11-11 08:28 - 2013-03-19 12:07 - 00508136 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll 2015-11-11 08:28 - 2013-09-03 14:29 - 00095088 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll 2012-04-11 19:33 - 2011-08-08 16:48 - 00224680 _____ () C:\windows\system32\AsusService.exe 2011-03-25 18:55 - 2011-03-25 18:55 - 00091464 _____ () C:\ExpressGateUtil\VAWinService.exe 2011-03-25 18:55 - 2011-03-25 18:55 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll 2011-03-25 18:55 - 2011-03-25 18:55 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL 2010-09-02 09:08 - 2010-09-02 09:08 - 00118784 _____ () C:\Program Files\Asus\ASUS WebStorage\3.0.108.222\AsusWSShellExt.dll 2013-05-30 19:33 - 2013-05-30 19:33 - 00049152 _____ () C:\Program Files\Stickies\shook70.dll 2015-12-12 01:41 - 2015-10-30 22:59 - 00034768 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd 2015-12-12 01:40 - 2015-10-30 23:00 - 00019408 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\faulthandler.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00022848 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\Crypto.Random.OSRNG.winrandom.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00023352 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\Crypto.Util._counter.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00042296 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\Crypto.Cipher._AES.pyd 2015-12-12 01:40 - 2015-10-30 22:59 - 00116688 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\pywintypes27.dll 2015-12-12 01:41 - 2015-10-30 22:59 - 00093640 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_ctypes.pyd 2015-12-12 01:41 - 2015-10-30 22:59 - 00018376 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\select.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00019760 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00105928 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32api.pyd 2015-12-12 01:40 - 2015-10-30 22:59 - 00392144 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\pythoncom27.dll 2015-12-12 01:41 - 2015-12-08 19:36 - 00381752 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd 2015-12-12 01:41 - 2015-10-30 22:59 - 00692688 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\unicodedata.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00020816 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00109520 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 01737032 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00020808 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00020800 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00021840 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00038696 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\fastpath.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00024528 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32event.pyd 2015-12-12 01:40 - 2015-10-30 23:00 - 00020936 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\mmapfile.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00114640 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32security.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00021320 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00124880 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32file.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00030160 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32pipe.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00043472 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32process.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00175560 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32gui.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00028616 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32ts.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00024016 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32clipboard.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00048592 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32service.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00024392 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd 2015-12-12 01:40 - 2015-10-30 23:00 - 00036296 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\librsync.dll 2015-12-12 01:41 - 2015-10-30 23:00 - 00024016 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\win32profile.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00117056 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00023376 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd 2015-12-12 01:41 - 2015-10-30 22:59 - 00134608 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_elementtree.pyd 2015-12-12 01:40 - 2015-10-30 22:59 - 00134088 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\pyexpat.pyd 2015-12-12 01:40 - 2015-10-30 23:00 - 00240584 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\jpegtran.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00020280 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00052024 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00021304 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\Crypto.Util.strxor.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00350152 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\winxpgui.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00084792 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL 2015-12-12 01:40 - 2015-12-08 19:36 - 01826608 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd 2015-12-12 01:41 - 2015-10-30 23:00 - 00083912 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\sip.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 03891504 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 01950000 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00519984 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00133936 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00225080 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00207672 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd 2015-12-12 01:41 - 2015-12-08 19:36 - 00024904 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00486704 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd 2015-12-12 01:40 - 2015-12-08 19:36 - 00357680 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd 2015-12-12 01:41 - 2015-10-30 23:01 - 00019920 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll 2015-12-12 01:41 - 2015-10-30 23:00 - 00786904 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-12-12 01:41 - 2015-10-30 23:00 - 00063448 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-12-12 01:41 - 2015-10-30 23:00 - 00019408 _____ () C:\Users\Carol\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll 2015-11-16 14:55 - 2015-11-16 14:55 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2015-12-19 03:00 - 2015-12-11 01:54 - 01583432 _____ () C:\Program Files\Google\Chrome\Application\47.0.2526.106\libglesv2.dll 2015-12-19 03:00 - 2015-12-11 01:54 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\47.0.2526.106\libegl.dll 2015-07-08 04:44 - 2015-06-29 15:56 - 00055808 _____ () C:\windows\system32\CompatTel\CosQuery.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt AlternateDataStreams: C:\windows\System32:7C50C70A_Bb.gbp AlternateDataStreams: C:\windows\system32\drivers:GbpKmAp.lst AlternateDataStreams: C:\windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1318386723-3953923483-43672438-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-1318386723-3953923483-43672438-1000\...\bb.com.br -> hxxps://seg.bb.com.br ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-14 00:04 - 2016-01-08 21:49 - 00001227 ____A C:\windows\system32\Drivers\etc\hosts 127.0.0.1 localhost0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com Existem ainda 4 mais linhas. ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1318386723-3953923483-43672438-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Carol\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\windows\pss\Microsoft Office.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S MSCONFIG\startupreg: CapsHook => AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe MSCONFIG\startupreg: Eee Docking => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun MSCONFIG\startupreg: ETDCtrl => %ProgramFiles%\Elantech\ETDCtrl.exe MSCONFIG\startupreg: iSeriesCharge => AsusSender.exe C:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exe MSCONFIG\startupreg: LiveUpdate => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: VAWinAgent => C:\ExpressGateUtil\VAWinAgent.exe ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{A50188D3-243B-45B4-BD62-D04C5CB0D724}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{BA74005A-B1DC-41A5-978B-84CF471C2BC1}] => (Allow) C:\Program Files\WiSharing\P2PUIMain.exe FirewallRules: [{331E1568-8D4A-47B0-AF1A-2B58C6AF3791}] => (Allow) C:\Program Files\WiSharing\DCDhcpService.exe FirewallRules: [{3E011AA6-F3CE-44D0-90CD-BFD9EE598390}] => (Allow) C:\Program Files\WiSharing\WiSharing.exe FirewallRules: [{9B62D8B4-2C09-4773-8B7C-BF6A4FCC9AAA}] => (Allow) C:\Program Files\WiSharing\WiSharing.exe FirewallRules: [{EB98D101-90C3-4A70-B085-85B271C704E1}] => (Allow) LPort=24301 FirewallRules: [{30B6A906-512A-4884-9F54-A27C9631B91F}] => (Allow) LPort=24401 FirewallRules: [{81ED1DDF-AD14-4771-B54D-D91EFA2BF755}] => (Allow) LPort=24501 FirewallRules: [{70FD1E49-5DBF-47E5-AFE5-83D1C349BFD1}] => (Allow) LPort=24601 FirewallRules: [{1914B25D-7AF0-4C6D-A513-E0BDE1F2335A}] => (Allow) LPort=24301 FirewallRules: [{73A095D0-F297-487E-9E4B-DBBD37BE9AC6}] => (Allow) LPort=24401 FirewallRules: [{A5162662-44F8-4651-9A89-6590CAE3D012}] => (Allow) LPort=24501 FirewallRules: [{AC1579F5-A0DD-44B8-B0A9-257CB3673446}] => (Allow) LPort=24601 FirewallRules: [{3E7E0061-8A46-4F17-BE1E-4FBD07194DB7}] => (Allow) C:\Users\Carol\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{6630EDEE-F30F-42EA-9B97-81E4CE2D64A8}] => (Allow) C:\Users\Carol\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{D1D0240E-9957-4B14-B957-58184C63376B}C:\users\carol\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\carol\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{DA4A839B-466E-4C29-9920-C61674F6DF73}C:\users\carol\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\carol\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{6AEF8F99-FE66-4D7C-BD58-D7F78272F08E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{FF5A3689-B8EE-4BD8-A693-9F284219E84B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{6482E9EC-92A7-4744-B5B1-10FFB41EFEE7}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{41402E75-C919-4C83-A95F-E0ABB17DBB43}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{5BE7BC8B-F148-47E2-8144-7CEFCD6688FC}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{AA6108C8-2E7C-40E6-8FFE-DF6C3C887810}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 29-12-2015 02:26:45 JRT Pre-Junkware Removal 29-12-2015 03:54:03 JRT Pre-Junkware Removal 29-12-2015 04:07:42 JRT Pre-Junkware Removal 29-12-2015 15:19:38 Windows Update 29-12-2015 15:55:22 JRT Pre-Junkware Removal 03-01-2016 23:31:43 Revo Uninstaller's restore point - Verbix 2008 ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (01/05/2016 12:58:33 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Não é possível inicializar o índice. Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:33 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Não é possível inicializar o aplicativo. Contexto: Aplicativo Windows Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:33 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Não é possível inicializar o objeto coletor. Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:33 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Não é possível inicializar o plug-in em . Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: Elemento não encontrado. (HRESULT : 0x80070490) (0x80070490) Error: (01/05/2016 12:58:31 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Não é possível inicializar o plug-in em . Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:31 PM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: O Windows Search Service não pode carregar informações do repositório de propriedades. Contexto: Aplicativo Windows, Catálogo SystemIndex Detalhes: O banco de dados do índice de conteúdo está corrompido. (HRESULT : 0xc0041800) (0xc0041800) Error: (01/05/2016 12:58:31 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: O serviço Pesquisa do Windows está sendo interrompido devido a um problema no indexador:The catalog is corrupt. Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:31 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: O serviço de pesquisa detectou arquivos de dados corrompidos no índice {id=4700}. O serviço tentará corrigir automaticamente esse problema recriando o índice. Detalhes: O catálogo do índice de conteúdo está corrompido. (HRESULT : 0xc0041801) (0xc0041801) Error: (01/05/2016 12:58:31 PM) (Source: Windows Search Service) (EventID: 9000) (User: ) Description: O Windows Search Service não pode abrir o repositório de propriedades do Jet. Detalhes: 0x%08x (0xc0041800 - O banco de dados do índice de conteúdo está corrompido. (HRESULT : 0xc0041800)) Error: (01/05/2016 12:58:30 PM) (Source: ESENT) (EventID: 455) (User: ) Description: Windows (4660) Windows: Erro -1811 ao abrir o arquivo de log C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00015.log. Erros de Sistema: ============= Error: (01/08/2016 09:51:18 PM) (Source: WMPNetworkSvc) (EventID: 14349) (User: ) Description: 0x800700b7 Error: (01/08/2016 09:51:18 PM) (Source: WMPNetworkSvc) (EventID: 14353) (User: ) Description: 00x800700b7http://+:10243/WMPNSSv4/2042022812/ Error: (01/08/2016 09:51:18 PM) (Source: WMPNetworkSvc) (EventID: 14349) (User: ) Description: 0x800700b7 Error: (01/08/2016 09:51:18 PM) (Source: WMPNetworkSvc) (EventID: 14353) (User: ) Description: 00x800700b7http://+:10243/WMPNSSv4/2042022812/ Error: (01/08/2016 09:51:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (01/08/2016 09:49:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: gbpddreg Error: (01/05/2016 01:58:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (01/05/2016 12:58:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Search devido ao seguinte erro: %%1053 Error: (01/05/2016 12:58:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Windows Search. Error: (01/05/2016 12:58:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Search devido ao seguinte erro: %%1053 CodeIntegrity: =================================== Date: 2015-07-10 18:14:31.527 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 22:45:59.077 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 22:38:33.903 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 22:22:43.038 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 21:59:52.457 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 21:23:46.571 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 20:38:06.020 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-04-01 20:31:39.034 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-03-31 20:23:32.961 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-08 01:12:35.355 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\GbPlugin\gbpinj.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz Percentagem de memória em uso: 92% RAM física total: 2035.95 MB RAM física disponível: 157.02 MB Virtual Total: 4071.89 MB Virtual disponível: 1594.68 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:250.02 GB) (Free:216.25 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)] Drive d: () (Fixed) (Total:168.84 GB) (Free:165.27 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 3AE726DC) Partition 1: (Active) - (Size=250 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=46.9 GB) - (Type=1B) Partition 3: (Not Active) - (Size=168.8 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=24 MB) - (Type=EF) ==================== Fim de Addition.txt ============================