Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão:22-11-2015
Executado por Juliana (2015-11-23 13:25:03)
Executando a partir de C:\Users\Juliana\Documents\Downloads
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) (2009-03-30 16:09:30)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-387508887-31818520-1564832625-500 - Administrator - Disabled)
Convidado (S-1-5-21-387508887-31818520-1564832625-501 - Limited - Disabled)
Juliana (S-1-5-21-387508887-31818520-1564832625-1000 - Administrator - Enabled) => C:\Users\Juliana
UpdatusUser (S-1-5-21-387508887-31818520-1564832625-1003 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0416-0000-0000000FF1CE}_HOMESTUDENTR_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0416-0000-0000000FF1CE}_HOMESTUDENTR_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0416-0000-0000000FF1CE}_HOMESTUDENTR_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
Atualizações da NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.4.2233 - AVAST Software)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LSI PCI-SV92PP Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MegaProLib versão 1.0 (HKLM\...\{F922B4E6-04A5-464E-8C40-CB4887DEE0D4}_is1) (Version: 1.0 - Megaware Industrial Ltda)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5FC7AB5C-61FC-42DF-A923-5139BCF10D42}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
NVIDIA Driver de gráficos 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - ptb) (Version: - Microsoft Corporation)
Painel de controle da NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - )
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visualizador - Java Web Start (HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\Visualizador - Java Web Start) (Version: - SERPRO)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{2DF215E0-BD3C-4C98-8616-AFEF09747285}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4040.0 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Juliana\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Juliana\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{31261F21-2B16-45EE-BEAB-07C4CFA18B65}\InprocServer32 -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
==================== Pontos de Restauração =========================
06-11-2015 13:22:24 Windows Update
23-11-2015 12:58:38 Windows Update
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2006-11-02 08:23 - 2015-11-23 11:57 - 00000759 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0AE8AB19-9AAC-403F-B400-622FA0A3A6D8} - System32\Tasks\{767A16B0-760C-4147-9032-29CD7549790A} => pcalua.exe -a "C:\Arquivos de Programas RFB\IRPF2013\IRPF2013.exe" -d "C:\Arquivos de Programas RFB\IRPF2013"
Task: {5163105A-E452-43B3-A671-DDE3A6E788D8} - System32\Tasks\GoogleUpdateTaskMachineCore1cf938fa2ed6bce => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {574D4276-D05D-47E8-8CB2-497F0CF76E92} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-10-16] (AVAST Software)
Task: {A2E03284-31E4-48B4-BBF4-B36E4AA7C591} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {A4568AE0-9D97-4837-A869-7E5CF50620DB} - System32\Tasks\Microsoft_Hardware_Launch_vVX3000_exe => C:\Windows\vVX3000.exe [2010-05-20] (Microsoft Corporation)
Task: {AE731560-C7C7-40D5-AD52-5BCD238C5CB4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {CDB87CA4-DBE7-499C-AAC3-5DB5F89BEF8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {D05C3C13-83D1-45B5-8368-4B9DA4AE385D} - System32\Tasks\{C48AEF54-1DA8-48B6-ADB7-B693A58FA2CF} => pcalua.exe -a E:\15.56-nforce-winvista-win7-64bit-international-whql.exe -d E:\
Task: {D5A82D9D-F963-4987-BB6C-48C184B56853} - \ASP -> Nenhum Arquivo <==== ATENÇÃO
Task: {E9765D50-F0C6-4AD3-9800-4327D71EC932} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-23] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf938fa2ed6bce.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{92CFDBEA-B0FA-42B2-8FE5-FF817D3B8DC7}.job => C:\Windows\system32\msfeedssync.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-04-11 18:56 - 2015-10-16 14:59 - 00103376 _____ () C:\Program Files\Alwil Software\Avast5\log.dll
2015-04-11 18:56 - 2015-10-16 14:59 - 00123976 _____ () C:\Program Files\Alwil Software\Avast5\JsonRpcServer.dll
2015-11-23 11:39 - 2015-11-23 11:39 - 02994176 _____ () C:\Program Files\Alwil Software\Avast5\defs\15112300\algo.dll
2014-08-14 23:07 - 2015-10-16 14:59 - 40539648 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2014-05-18 17:51 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-05-18 17:51 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\System32:FC0246D6_Bb.gbp
AlternateDataStreams: C:\Windows\System32:FC0246D6_Cef.gbp
AlternateDataStreams: C:\Windows\System32:FC0246D6_Uni.gbp
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== EXE Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\bb.com.br -> www.bb.com.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-387508887-31818520-1564832625-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Public\Pictures\Sample Pictures\Capitola-CA.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: Freemake Improver => 2
MSCONFIG\Services: NMSAccessU => 2
MSCONFIG\Services: npggsvc => 3
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\startupfolder: C:^Users^Juliana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Recorte de tela e Iniciador do OneNote 2007.lnk => C:\Windows\pss\Recorte de tela e Iniciador do OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: DANFEViewMon => C:\DANFEView\danfemon.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: NeroCheck => C:\Windows\system32\\NeroCheck.exe
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: NvSvc => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
MSCONFIG\startupreg: RtHDVCpl => RtHDVCpl.exe
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: VX3000 => C:\Windows\vVX3000.exe
MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [{263DDC68-1F0F-40A7-A149-AAEADB05F7B0}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{90261D8B-51BE-4CC4-A5FD-06EFB8D40F5B}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{1D33773D-7A7B-43C5-945C-9DD1CB17F2A3}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{C345719D-485D-4788-8BA6-92C6DBC18D5B}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{5082C8DE-758E-4DA5-AE5A-A58454BDA82D}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{A0E0DAF9-2277-4A5D-8E9D-2A9AAA165D80}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{BE78972B-578B-4F76-9E5C-3F4033130561}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [{94032696-28E1-4CDD-8DFF-77C938940348}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{4D503E14-C771-48D1-B855-4BE7D836654E}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{BECF3E55-116F-4515-AB71-267ED25080F1}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{1AC63315-CACB-4DB4-814F-3FEDC70E0879}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{066FDDC5-15DB-4DA6-8C45-A31E24DCF472}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F261BC82-501A-425A-A04A-09F499DEB8D2}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{47D4122B-8A41-40AE-B382-71F01EC0D57F}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{FFD0B76C-FCC2-4291-BB49-DD54B48503F0}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeTray.exe
FirewallRules: [TCP Query User{B7DD4633-EE5B-43CA-AF8B-81063AE9ED3C}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{74EF0ED7-25E6-45A4-AC76-AA581EE747AF}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{665B2267-9E27-4A6C-96E7-8125395AC6C9}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{F5F817CB-E895-469F-8AEF-72777B4EDEE3}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [{C6F9A164-DBC4-4749-8DB5-41B70667B8F4}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{9BE45436-9863-4584-8559-76925FB6BC32}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C79A52BE-FE85-4513-A031-0CFF358A8CC9}] => (Allow) svchost.exe
FirewallRules: [{57CD408A-FFF4-43D4-BA08-E6A231E62069}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [TCP Query User{93129119-544D-43AE-BEC1-52154EF82029}C:\Program Files\Google\google earth\client\googleearth.exe] => (Allow) C:\Program Files\Google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{4DC8BCBF-AF5A-4539-930D-A6799E45774E}C:\Program Files\Google\google earth\client\googleearth.exe] => (Allow) C:\Program Files\Google\google earth\client\googleearth.exe
FirewallRules: [{979C5585-8247-487F-A6D2-6E43B93AF70A}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{FAE30671-7792-4CB8-B4D3-337FF0EB6B27}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{983637AD-1AA1-401F-88A9-F16D3CBA949D}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{C08B9DB3-2232-4A62-A7AA-0B897A872FF3}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{A5DA5800-0F55-4845-A9E0-9A139B249E8E}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{B19C6DE7-CA5B-463F-86AE-B83F588ABED9}C:\Program Files\Java\jre6\bin\javaw.exe] => (Allow) C:\Program Files\Java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{B95812E4-8AB1-4E55-96D2-5DFE78581A0D}C:\Program Files\Java\jre6\bin\javaw.exe] => (Allow) C:\Program Files\Java\jre6\bin\javaw.exe
FirewallRules: [{BD532DAD-E427-49A2-8A2E-7370E880D286}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{A7D863B3-53E9-4D27-B128-98643445584E}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [TCP Query User{62F0616B-81A1-4B17-BCCD-595E51DA8701}C:\Program Files\Java\jre6\bin\java.exe] => (Block) C:\Program Files\Java\jre6\bin\java.exe
FirewallRules: [UDP Query User{055ECCFB-8867-46E3-8694-107B9ACF81C4}C:\Program Files\Java\jre6\bin\java.exe] => (Block) C:\Program Files\Java\jre6\bin\java.exe
FirewallRules: [TCP Query User{0EAE135B-749E-47F9-851B-F4C37A041BF2}C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe] => (Allow) C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe
FirewallRules: [UDP Query User{F93F7F4B-7097-49AA-9501-8AA8D0D1F183}C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe] => (Allow) C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe
FirewallRules: [TCP Query User{C40EF54C-4149-4A18-8740-12C288FD87B6}D:\easysetupassistant\wr841n\easysetupassistant.exe] => (Allow) D:\easysetupassistant\wr841n\easysetupassistant.exe
FirewallRules: [UDP Query User{81295B5D-F926-4C27-BDCF-891349E26721}D:\easysetupassistant\wr841n\easysetupassistant.exe] => (Allow) D:\easysetupassistant\wr841n\easysetupassistant.exe
FirewallRules: [TCP Query User{33186A65-CCB3-426A-9D30-31345B11DFD2}C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe] => (Allow) C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe
FirewallRules: [UDP Query User{1B8A4BC7-A340-449A-8D41-FBF1406E0F6A}C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe] => (Allow) C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe
FirewallRules: [{3F69E590-D845-453F-AE43-F254F65C6BFC}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe
FirewallRules: [{843B76F7-C4F0-40FC-BCF7-2084FF3BE746}] => (Allow) LPort=5357
FirewallRules: [{38B05054-9F5B-4C45-80D0-416D03C3B93B}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{12FCD9C1-D3E2-4395-810E-F555CF688309}] => (Allow) LPort=80
FirewallRules: [{02A73E9A-9E56-48CE-BF6F-F8CFF6F042B1}] => (Allow) LPort=80
FirewallRules: [{5C9B9A30-1051-40A4-A4EC-862C9C1FCCCE}] => (Allow) LPort=80
FirewallRules: [{D237B126-3987-44A5-88A9-42950646C1B7}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C7FBD5AF-0ADA-4B45-99F5-434ACF585EF9}] => (Allow) LPort=2869
FirewallRules: [{41D5BB08-468D-42D4-A82B-70168440D9FC}] => (Allow) LPort=1900
FirewallRules: [{A3D2B7B6-FA28-45AB-8FFD-D900F4CCF7C5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{9A2734F8-123A-44A8-B097-020E8B4E1A41}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{60D0CF1D-A05C-4C2C-A948-662C993BDC93}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{F8021775-58EB-4BEC-9FED-93A03422BDAF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{8EA93C35-8CF2-4D0C-BE6E-A4A48F04785D}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{A88396DF-4935-485D-9EBD-CC42DCDDC762}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{497CA388-EAB1-4BDF-9AD8-99C5FDF6EF29}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{E0A0B230-F0A6-4B18-833A-6F5584262A17}] => (Allow) C:\Users\Juliana\AppData\Local\Temp\7zS9047.tmp\SymNRT.exe
FirewallRules: [{68ACED87-525B-48D1-B450-214F47F55340}] => (Allow) C:\Users\Juliana\AppData\Local\Temp\7zS9047.tmp\SymNRT.exe
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Flash Reader
Description: Flash Reader
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Multi
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/23/2015 00:58:40 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina ConvertStringSidToSid. hr = 0x80070539.
Operação:
Evento OnIdentify
Obtendo Dados do Gravador
Contexto:
Contexto de Execução: Shadow Copy Optimization Writer
Id de Classe de Gravador: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Nome do Gravador: Shadow Copy Optimization Writer
ID de Instância de Gravador: {7c95b772-baf1-4b50-9189-643c75379484}
Error: (11/23/2015 00:10:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/23/2015 11:36:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 05:01:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:49:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:46:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:46:10 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
Error: (11/06/2015 04:03:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/06/2015 02:26:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/06/2015 01:22:44 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina ConvertStringSidToSid. hr = 0x80070539.
Operação:
Evento OnIdentify
Obtendo Dados do Gravador
Contexto:
Contexto de Execução: Shadow Copy Optimization Writer
Id de Classe de Gravador: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Nome do Gravador: Shadow Copy Optimization Writer
ID de Instância de Gravador: {f3d5478d-1fb1-4bc6-9387-63817dd65219}
Erros de Sistema:
=============
Error: (11/23/2015 00:11:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (11/23/2015 00:11:37 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (11/23/2015 00:10:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Bhbase
Bnbase
Bndef
Bprotect
Error: (11/23/2015 00:08:47 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description:
Error: (11/23/2015 11:42:10 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (11/23/2015 11:41:17 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (11/23/2015 11:38:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (11/23/2015 11:38:44 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (11/23/2015 11:36:34 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Bhbase
Bnbase
Bndef
Bprotect
Error: (11/23/2015 11:35:10 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description:
CodeIntegrity:
===================================
Date: 2015-11-23 13:24:14.864
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:14.347
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:13.640
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:12.878
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:09.802
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:09.232
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:08.782
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:08.098
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-08 16:49:46.698
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-08 16:49:46.091
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM)2 Duo CPU E7400 @ 2.80GHz
Percentagem de memória em uso: 64%
RAM física total: 2814.52 MB
RAM física disponível: 993.82 MB
Virtual Total: 5840.19 MB
Virtual disponível: 3570.16 MB
==================== Drives ================================
Drive c: (Unidade de Disco) (Fixed) (Total:298.09 GB) (Free:241.12 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: C2DDD14D)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Juliana (2015-11-23 13:25:03)
Executando a partir de C:\Users\Juliana\Documents\Downloads
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) (2009-03-30 16:09:30)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-387508887-31818520-1564832625-500 - Administrator - Disabled)
Convidado (S-1-5-21-387508887-31818520-1564832625-501 - Limited - Disabled)
Juliana (S-1-5-21-387508887-31818520-1564832625-1000 - Administrator - Enabled) => C:\Users\Juliana
UpdatusUser (S-1-5-21-387508887-31818520-1564832625-1003 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0416-0000-0000000FF1CE}_HOMESTUDENTR_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0416-0000-0000000FF1CE}_HOMESTUDENTR_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0416-0000-0000000FF1CE}_HOMESTUDENTR_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
Atualizações da NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.4.2233 - AVAST Software)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LSI PCI-SV92PP Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MegaProLib versão 1.0 (HKLM\...\{F922B4E6-04A5-464E-8C40-CB4887DEE0D4}_is1) (Version: 1.0 - Megaware Industrial Ltda)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5FC7AB5C-61FC-42DF-A923-5139BCF10D42}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
NVIDIA Driver de gráficos 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - ptb) (Version: - Microsoft Corporation)
Painel de controle da NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - )
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visualizador - Java Web Start (HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\Visualizador - Java Web Start) (Version: - SERPRO)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{2DF215E0-BD3C-4C98-8616-AFEF09747285}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4040.0 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Juliana\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Juliana\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{31261F21-2B16-45EE-BEAB-07C4CFA18B65}\InprocServer32 -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CustomCLSID: HKU\S-1-5-21-387508887-31818520-1564832625-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
==================== Pontos de Restauração =========================
06-11-2015 13:22:24 Windows Update
23-11-2015 12:58:38 Windows Update
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2006-11-02 08:23 - 2015-11-23 11:57 - 00000759 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0AE8AB19-9AAC-403F-B400-622FA0A3A6D8} - System32\Tasks\{767A16B0-760C-4147-9032-29CD7549790A} => pcalua.exe -a "C:\Arquivos de Programas RFB\IRPF2013\IRPF2013.exe" -d "C:\Arquivos de Programas RFB\IRPF2013"
Task: {5163105A-E452-43B3-A671-DDE3A6E788D8} - System32\Tasks\GoogleUpdateTaskMachineCore1cf938fa2ed6bce => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {574D4276-D05D-47E8-8CB2-497F0CF76E92} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-10-16] (AVAST Software)
Task: {A2E03284-31E4-48B4-BBF4-B36E4AA7C591} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {A4568AE0-9D97-4837-A869-7E5CF50620DB} - System32\Tasks\Microsoft_Hardware_Launch_vVX3000_exe => C:\Windows\vVX3000.exe [2010-05-20] (Microsoft Corporation)
Task: {AE731560-C7C7-40D5-AD52-5BCD238C5CB4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {CDB87CA4-DBE7-499C-AAC3-5DB5F89BEF8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-16] (Google Inc.)
Task: {D05C3C13-83D1-45B5-8368-4B9DA4AE385D} - System32\Tasks\{C48AEF54-1DA8-48B6-ADB7-B693A58FA2CF} => pcalua.exe -a E:\15.56-nforce-winvista-win7-64bit-international-whql.exe -d E:\
Task: {D5A82D9D-F963-4987-BB6C-48C184B56853} - \ASP -> Nenhum Arquivo <==== ATENÇÃO
Task: {E9765D50-F0C6-4AD3-9800-4327D71EC932} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-23] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf938fa2ed6bce.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{92CFDBEA-B0FA-42B2-8FE5-FF817D3B8DC7}.job => C:\Windows\system32\msfeedssync.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-04-11 18:56 - 2015-10-16 14:59 - 00103376 _____ () C:\Program Files\Alwil Software\Avast5\log.dll
2015-04-11 18:56 - 2015-10-16 14:59 - 00123976 _____ () C:\Program Files\Alwil Software\Avast5\JsonRpcServer.dll
2015-11-23 11:39 - 2015-11-23 11:39 - 02994176 _____ () C:\Program Files\Alwil Software\Avast5\defs\15112300\algo.dll
2014-08-14 23:07 - 2015-10-16 14:59 - 40539648 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2014-05-18 17:51 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-05-18 17:51 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\System32:FC0246D6_Bb.gbp
AlternateDataStreams: C:\Windows\System32:FC0246D6_Cef.gbp
AlternateDataStreams: C:\Windows\System32:FC0246D6_Uni.gbp
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== EXE Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\bb.com.br -> www.bb.com.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-387508887-31818520-1564832625-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-387508887-31818520-1564832625-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Public\Pictures\Sample Pictures\Capitola-CA.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: Freemake Improver => 2
MSCONFIG\Services: NMSAccessU => 2
MSCONFIG\Services: npggsvc => 3
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\startupfolder: C:^Users^Juliana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Recorte de tela e Iniciador do OneNote 2007.lnk => C:\Windows\pss\Recorte de tela e Iniciador do OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: DANFEViewMon => C:\DANFEView\danfemon.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: NeroCheck => C:\Windows\system32\\NeroCheck.exe
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: NvSvc => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
MSCONFIG\startupreg: RtHDVCpl => RtHDVCpl.exe
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: VX3000 => C:\Windows\vVX3000.exe
MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [{263DDC68-1F0F-40A7-A149-AAEADB05F7B0}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{90261D8B-51BE-4CC4-A5FD-06EFB8D40F5B}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{1D33773D-7A7B-43C5-945C-9DD1CB17F2A3}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{C345719D-485D-4788-8BA6-92C6DBC18D5B}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{5082C8DE-758E-4DA5-AE5A-A58454BDA82D}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{A0E0DAF9-2277-4A5D-8E9D-2A9AAA165D80}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{BE78972B-578B-4F76-9E5C-3F4033130561}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [{94032696-28E1-4CDD-8DFF-77C938940348}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{4D503E14-C771-48D1-B855-4BE7D836654E}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{BECF3E55-116F-4515-AB71-267ED25080F1}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{1AC63315-CACB-4DB4-814F-3FEDC70E0879}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{066FDDC5-15DB-4DA6-8C45-A31E24DCF472}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F261BC82-501A-425A-A04A-09F499DEB8D2}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{47D4122B-8A41-40AE-B382-71F01EC0D57F}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{FFD0B76C-FCC2-4291-BB49-DD54B48503F0}] => (Allow) C:\Program Files\Microsoft LifeCam\LifeTray.exe
FirewallRules: [TCP Query User{B7DD4633-EE5B-43CA-AF8B-81063AE9ED3C}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{74EF0ED7-25E6-45A4-AC76-AA581EE747AF}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{665B2267-9E27-4A6C-96E7-8125395AC6C9}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{F5F817CB-E895-469F-8AEF-72777B4EDEE3}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [{C6F9A164-DBC4-4749-8DB5-41B70667B8F4}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{9BE45436-9863-4584-8559-76925FB6BC32}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C79A52BE-FE85-4513-A031-0CFF358A8CC9}] => (Allow) svchost.exe
FirewallRules: [{57CD408A-FFF4-43D4-BA08-E6A231E62069}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [TCP Query User{93129119-544D-43AE-BEC1-52154EF82029}C:\Program Files\Google\google earth\client\googleearth.exe] => (Allow) C:\Program Files\Google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{4DC8BCBF-AF5A-4539-930D-A6799E45774E}C:\Program Files\Google\google earth\client\googleearth.exe] => (Allow) C:\Program Files\Google\google earth\client\googleearth.exe
FirewallRules: [{979C5585-8247-487F-A6D2-6E43B93AF70A}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{FAE30671-7792-4CB8-B4D3-337FF0EB6B27}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{983637AD-1AA1-401F-88A9-F16D3CBA949D}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{C08B9DB3-2232-4A62-A7AA-0B897A872FF3}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{A5DA5800-0F55-4845-A9E0-9A139B249E8E}] => (Allow) C:\Program Files\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{B19C6DE7-CA5B-463F-86AE-B83F588ABED9}C:\Program Files\Java\jre6\bin\javaw.exe] => (Allow) C:\Program Files\Java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{B95812E4-8AB1-4E55-96D2-5DFE78581A0D}C:\Program Files\Java\jre6\bin\javaw.exe] => (Allow) C:\Program Files\Java\jre6\bin\javaw.exe
FirewallRules: [{BD532DAD-E427-49A2-8A2E-7370E880D286}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{A7D863B3-53E9-4D27-B128-98643445584E}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [TCP Query User{62F0616B-81A1-4B17-BCCD-595E51DA8701}C:\Program Files\Java\jre6\bin\java.exe] => (Block) C:\Program Files\Java\jre6\bin\java.exe
FirewallRules: [UDP Query User{055ECCFB-8867-46E3-8694-107B9ACF81C4}C:\Program Files\Java\jre6\bin\java.exe] => (Block) C:\Program Files\Java\jre6\bin\java.exe
FirewallRules: [TCP Query User{0EAE135B-749E-47F9-851B-F4C37A041BF2}C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe] => (Allow) C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe
FirewallRules: [UDP Query User{F93F7F4B-7097-49AA-9501-8AA8D0D1F183}C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe] => (Allow) C:\users\juliana\documents\firmware dlink di-524-150\20100304_524_h1_v4.05b02.exe
FirewallRules: [TCP Query User{C40EF54C-4149-4A18-8740-12C288FD87B6}D:\easysetupassistant\wr841n\easysetupassistant.exe] => (Allow) D:\easysetupassistant\wr841n\easysetupassistant.exe
FirewallRules: [UDP Query User{81295B5D-F926-4C27-BDCF-891349E26721}D:\easysetupassistant\wr841n\easysetupassistant.exe] => (Allow) D:\easysetupassistant\wr841n\easysetupassistant.exe
FirewallRules: [TCP Query User{33186A65-CCB3-426A-9D30-31345B11DFD2}C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe] => (Allow) C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe
FirewallRules: [UDP Query User{1B8A4BC7-A340-449A-8D41-FBF1406E0F6A}C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe] => (Allow) C:\Program Files\Java\jre7\launch4j-tmp\IRPF2013.exe
FirewallRules: [{3F69E590-D845-453F-AE43-F254F65C6BFC}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe
FirewallRules: [{843B76F7-C4F0-40FC-BCF7-2084FF3BE746}] => (Allow) LPort=5357
FirewallRules: [{38B05054-9F5B-4C45-80D0-416D03C3B93B}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{12FCD9C1-D3E2-4395-810E-F555CF688309}] => (Allow) LPort=80
FirewallRules: [{02A73E9A-9E56-48CE-BF6F-F8CFF6F042B1}] => (Allow) LPort=80
FirewallRules: [{5C9B9A30-1051-40A4-A4EC-862C9C1FCCCE}] => (Allow) LPort=80
FirewallRules: [{D237B126-3987-44A5-88A9-42950646C1B7}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C7FBD5AF-0ADA-4B45-99F5-434ACF585EF9}] => (Allow) LPort=2869
FirewallRules: [{41D5BB08-468D-42D4-A82B-70168440D9FC}] => (Allow) LPort=1900
FirewallRules: [{A3D2B7B6-FA28-45AB-8FFD-D900F4CCF7C5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{9A2734F8-123A-44A8-B097-020E8B4E1A41}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{60D0CF1D-A05C-4C2C-A948-662C993BDC93}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{F8021775-58EB-4BEC-9FED-93A03422BDAF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{8EA93C35-8CF2-4D0C-BE6E-A4A48F04785D}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{A88396DF-4935-485D-9EBD-CC42DCDDC762}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{497CA388-EAB1-4BDF-9AD8-99C5FDF6EF29}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{E0A0B230-F0A6-4B18-833A-6F5584262A17}] => (Allow) C:\Users\Juliana\AppData\Local\Temp\7zS9047.tmp\SymNRT.exe
FirewallRules: [{68ACED87-525B-48D1-B450-214F47F55340}] => (Allow) C:\Users\Juliana\AppData\Local\Temp\7zS9047.tmp\SymNRT.exe
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Flash Reader
Description: Flash Reader
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Multi
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/23/2015 00:58:40 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina ConvertStringSidToSid. hr = 0x80070539.
Operação:
Evento OnIdentify
Obtendo Dados do Gravador
Contexto:
Contexto de Execução: Shadow Copy Optimization Writer
Id de Classe de Gravador: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Nome do Gravador: Shadow Copy Optimization Writer
ID de Instância de Gravador: {7c95b772-baf1-4b50-9189-643c75379484}
Error: (11/23/2015 00:10:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/23/2015 11:36:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 05:01:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:49:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:46:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/08/2015 04:46:10 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
Error: (11/06/2015 04:03:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/06/2015 02:26:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/06/2015 01:22:44 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina ConvertStringSidToSid. hr = 0x80070539.
Operação:
Evento OnIdentify
Obtendo Dados do Gravador
Contexto:
Contexto de Execução: Shadow Copy Optimization Writer
Id de Classe de Gravador: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Nome do Gravador: Shadow Copy Optimization Writer
ID de Instância de Gravador: {f3d5478d-1fb1-4bc6-9387-63817dd65219}
Erros de Sistema:
=============
Error: (11/23/2015 00:11:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (11/23/2015 00:11:37 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (11/23/2015 00:10:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Bhbase
Bnbase
Bndef
Bprotect
Error: (11/23/2015 00:08:47 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description:
Error: (11/23/2015 11:42:10 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (11/23/2015 11:41:17 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (11/23/2015 11:38:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (11/23/2015 11:38:44 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (11/23/2015 11:36:34 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Bhbase
Bnbase
Bndef
Bprotect
Error: (11/23/2015 11:35:10 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORIDADE NT)
Description:
CodeIntegrity:
===================================
Date: 2015-11-23 13:24:14.864
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:14.347
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:13.640
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:12.878
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:09.802
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:09.232
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:08.782
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-23 13:24:08.098
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-08 16:49:46.698
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-08 16:49:46.091
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM)2 Duo CPU E7400 @ 2.80GHz
Percentagem de memória em uso: 64%
RAM física total: 2814.52 MB
RAM física disponível: 993.82 MB
Virtual Total: 5840.19 MB
Virtual disponível: 3570.16 MB
==================== Drives ================================
Drive c: (Unidade de Disco) (Fixed) (Total:298.09 GB) (Free:241.12 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: C2DDD14D)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================