Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 27-07-2016
Executado por Roger (2016-07-29 21:10:40)
Executando a partir de C:\Users\Roger\Downloads
Windows 7 Home Basic (X64) (2016-06-21 01:26:40)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-3031372502-3409888114-1513606368-500 - Administrator - Disabled)
Convidado (S-1-5-21-3031372502-3409888114-1513606368-501 - Limited - Disabled)
Roger (S-1-5-21-3031372502-3409888114-1513606368-1000 - Administrator - Enabled) => C:\Users\Roger
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Andy OS (HKLM\...\Andy OS) (Version: 46.2 - Andy OS, Inc)
Atualizações da NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
BitComet 1.40 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.40 - CometNetwork)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6817.107 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell System Detect (HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\58d94f3ce2c27db0) (Version: 7.6.0.17 - Dell)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.4.311 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3945 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
K-Lite Mega Codec Pack 12.2.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Macromedia Fireworks 8 (HKLM-x32\...\{4C24A8C1-7CFA-4650-AF15-732F5BD7B46D}) (Version: 8.0.0.777 - Macromedia)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
NVIDIA Driver de gráficos 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Painel de controle da NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7288 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
VMware Player (HKLM\...\{537B7F85-2B95-44ED-8D90-765F6F36D666}) (Version: 12.1.1 - VMware, Inc.)
VMware VIX (HKLM-x32\...\{F99FC179-EA67-4BBC-8955-BDDA0CB94B88}) (Version: 1.15.3.00000 - VMware, Inc.)
Wampserver64 3.0.0 (HKLM\...\{5C1D66DE-19D8-487B-860D-2BDB4F19B0D3}_is1) (Version: 3.0.0 - Dominique Ottello aka Otomatic)
Warsaw 1.12.4.14 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.4.14 - GAS Tecnologia)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {02E75924-DA4A-43AE-B1D7-F2EFA7DD6217} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {10DB7694-6225-4BB4-A373-974BA799891A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-21] (Google Inc.)
Task: {227E4FBB-CED4-4110-AFC3-DB211163C16A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {24876E6D-FC21-4985-834D-30E24F81D98D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {379E114F-640B-4D31-8B4B-142A91378AA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-21] (Google Inc.)
Task: {56197538-83DE-4393-ADAD-61488CFBE65D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {D7162AAF-FC7B-4B8A-AA62-06CE1A219DD8} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {FDB8EB0E-091B-40EC-BDC0-67AC8797CE42} - System32\Tasks\{73E6827B-D13A-4FD0-8531-8D332EC8AE6E} => pcalua.exe -a C:\Users\Roger\Downloads\vs_community__37ea5b9794d6ae43885e54a6b7e94d66.exe -d C:\Users\Roger\Downloads
Task: {FF9CC477-C652-4487-802E-70946EB523AF} - System32\Tasks\{F81E7B1D-48CE-458A-8E67-96F81998FFC7} => pcalua.exe -a "D:\# Instalações e Programas\Wamp - Xampp - Servidores Locais\vs_community__37ea5b9794d6ae43885e54a6b7e94d66.exe" -d "D:\# Instalações e Programas\Wamp - Xampp - Servidores Locais"
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-07-07 23:50 - 2015-08-07 16:17 - 00011896 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2016-07-07 23:51 - 2015-08-06 21:44 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-06-21 00:26 - 2016-06-15 05:26 - 02334360 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-21 00:26 - 2016-06-15 05:26 - 00105112 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-04-14 17:17 - 2016-04-14 17:17 - 01301696 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2016-07-07 23:50 - 2015-08-07 16:17 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-07-07 23:51 - 2016-06-14 17:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-07-21 09:29 - 2013-12-10 10:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Windows\System32:6DFD3E38_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\dell.com -> dell.com
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Roger\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 189.4.64.110 - 189.4.64.95
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{DA85633D-7077-47A9-A435-796CABAF85CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{25A819A0-FE27-4120-ABFA-7D582DF76D2A}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{083BF4CD-B9BC-445D-8E89-662B9D090D5A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{2896CCB1-F557-4307-B8BA-AA0C9D380D89}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{89E3035A-63A6-4153-B703-F3D71E47688E}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{E32C4D6A-F8B2-4F66-BFA5-8CB390161588}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{6348E0D2-EB97-4B72-B5F1-229787CA70D6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{75A1F933-17E1-4719-B8BC-69C815CD0C3E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AB0BC223-0027-4C4E-B997-AB8F7DD0F272}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CAB7B778-4EF0-499F-8398-055BBEB1F868}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B6A521D9-C7AA-4D6B-962C-9D2222BAA735}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C76C73A2-5521-43D4-B7AB-F4D346CE8791}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6FD5A125-CCFF-474B-9D74-0EF960D22E7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F0023554-9E79-48F1-8A5B-A8ABD6B4DBED}] => (Allow) C:\Users\Roger\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{17003325-037A-4E22-9DB5-4A740E77CD0B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{BEB77495-81A6-4063-87BC-F90EF1F74FAF}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{D6F95154-8E1A-40E9-9E05-ECB6A9192452}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{56DF0B73-1F49-4EEF-AD14-BD3B0C73A286}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{5304AC07-9E97-4683-BDF6-CD898AB237B6}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{23025D34-1C28-43EE-A944-F2E4A97273BC}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{A1246EE0-C0D7-498C-97A5-3D6C9AAD3EDF}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{1734B62F-8BAB-4094-9C8F-ED2AF157F0E2}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{256E2C81-A67D-4E95-BCDB-53ABD67FB5C3}] => (Allow) C:\Users\Roger\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3B12E8D4-E869-42FD-96FB-7D715C5C5D9F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{71B09775-DD85-4449-A8CC-AD03FC848371}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8B34DB3A-8545-4992-99F8-8587B8E059C3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1D7720E2-0611-4E70-80A1-25849D417C37}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{24B1A08B-6D1D-448C-8B33-8B2434B5F3BF}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{CC8190CF-B9B0-49FF-B9B1-930C54153CC2}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [TCP Query User{3D26B6E0-18C0-4EFB-A205-7C955FE8EB6A}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{5F6CFF45-74E9-4B80-A7BC-4DF3ABBE011B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{F37744AF-3832-40A1-B5F7-4A47403713AC}] => (Block) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{DDBAD4A8-D0B7-4E0F-A067-83BE2B6CC142}] => (Block) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{56FF4064-62DA-4F16-A001-A65984EACBE4}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{998C45CE-B903-420D-9D7D-F27B73B1E16E}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{E5E1FACF-F382-4A67-B4B1-86E662C5ECC7}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{832AED6B-0ACD-492E-9075-DE14BA68918D}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
==================== Pontos de Restauração =========================
29-07-2016 14:40:36 Ponto de Verificação Agendado
29-07-2016 16:05:02 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
29-07-2016 16:06:27 Removed Camtasia Studio 8
29-07-2016 20:44:27 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
29-07-2016 21:02:55 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Controlador de barramento SM
Description: Controlador de barramento SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: USB2.0-CRW
Description: USB2.0-CRW
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (07/29/2016 09:05:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: chrome.exe, versão: 51.0.2704.103, carimbo de hora: 0x57610874
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0000000000000000
Identificação do processo com falha: 0xc38
Hora de início do aplicativo com falha: 0xchrome.exe0
Caminho do aplicativo com falha: chrome.exe1
FCaminho do módulo de falhas: chrome.exe2
Identificação do Relatório: chrome.exe3
Error: (07/29/2016 08:46:03 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (07/29/2016 08:45:07 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:45:07 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:44:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Erros de Sistema:
=============
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:57:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac
gbpddreg
Error: (07/29/2016 05:18:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (07/29/2016 04:12:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 04:11:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 04:11:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
CodeIntegrity:
===================================
Date: 2016-07-29 14:33:50.093
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.073
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.053
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.043
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.988
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.973
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.942
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.906
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-19 11:27:38.257
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-19 11:27:38.238
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentagem de memória em uso: 58%
RAM física total: 8095.82 MB
RAM física disponível: 3362.85 MB
Virtual Total: 16189.8 MB
Virtual disponível: 10953.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:28.4 GB) NTFS
Drive d: (Partition_RRL) (Fixed) (Total:833.51 GB) (Free:440.29 GB) NTFS
Drive f: (Reservado pelo Sistema) (Fixed) (Total:0.34 GB) (Free:0.04 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4C4C4544)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.5 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Roger (2016-07-29 21:10:40)
Executando a partir de C:\Users\Roger\Downloads
Windows 7 Home Basic (X64) (2016-06-21 01:26:40)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-3031372502-3409888114-1513606368-500 - Administrator - Disabled)
Convidado (S-1-5-21-3031372502-3409888114-1513606368-501 - Limited - Disabled)
Roger (S-1-5-21-3031372502-3409888114-1513606368-1000 - Administrator - Enabled) => C:\Users\Roger
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Andy OS (HKLM\...\Andy OS) (Version: 46.2 - Andy OS, Inc)
Atualizações da NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
BitComet 1.40 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.40 - CometNetwork)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6817.107 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell System Detect (HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\58d94f3ce2c27db0) (Version: 7.6.0.17 - Dell)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.4.311 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3945 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
K-Lite Mega Codec Pack 12.2.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Macromedia Fireworks 8 (HKLM-x32\...\{4C24A8C1-7CFA-4650-AF15-732F5BD7B46D}) (Version: 8.0.0.777 - Macromedia)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
NVIDIA Driver de gráficos 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Painel de controle da NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7288 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
VMware Player (HKLM\...\{537B7F85-2B95-44ED-8D90-765F6F36D666}) (Version: 12.1.1 - VMware, Inc.)
VMware VIX (HKLM-x32\...\{F99FC179-EA67-4BBC-8955-BDDA0CB94B88}) (Version: 1.15.3.00000 - VMware, Inc.)
Wampserver64 3.0.0 (HKLM\...\{5C1D66DE-19D8-487B-860D-2BDB4F19B0D3}_is1) (Version: 3.0.0 - Dominique Ottello aka Otomatic)
Warsaw 1.12.4.14 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.4.14 - GAS Tecnologia)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {02E75924-DA4A-43AE-B1D7-F2EFA7DD6217} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {10DB7694-6225-4BB4-A373-974BA799891A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-21] (Google Inc.)
Task: {227E4FBB-CED4-4110-AFC3-DB211163C16A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {24876E6D-FC21-4985-834D-30E24F81D98D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {379E114F-640B-4D31-8B4B-142A91378AA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-21] (Google Inc.)
Task: {56197538-83DE-4393-ADAD-61488CFBE65D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {D7162AAF-FC7B-4B8A-AA62-06CE1A219DD8} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {FDB8EB0E-091B-40EC-BDC0-67AC8797CE42} - System32\Tasks\{73E6827B-D13A-4FD0-8531-8D332EC8AE6E} => pcalua.exe -a C:\Users\Roger\Downloads\vs_community__37ea5b9794d6ae43885e54a6b7e94d66.exe -d C:\Users\Roger\Downloads
Task: {FF9CC477-C652-4487-802E-70946EB523AF} - System32\Tasks\{F81E7B1D-48CE-458A-8E67-96F81998FFC7} => pcalua.exe -a "D:\# Instalações e Programas\Wamp - Xampp - Servidores Locais\vs_community__37ea5b9794d6ae43885e54a6b7e94d66.exe" -d "D:\# Instalações e Programas\Wamp - Xampp - Servidores Locais"
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2016-07-07 23:50 - 2015-08-07 16:17 - 00011896 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2016-07-07 23:51 - 2015-08-06 21:44 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-07-14 12:42 - 2016-06-14 17:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-06-21 00:26 - 2016-06-15 05:26 - 02334360 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-21 00:26 - 2016-06-15 05:26 - 00105112 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-04-14 17:17 - 2016-04-14 17:17 - 01301696 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2016-07-07 23:50 - 2015-08-07 16:17 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-07-07 23:51 - 2016-06-14 17:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-07-21 09:29 - 2013-12-10 10:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Windows\System32:6DFD3E38_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\...\dell.com -> dell.com
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-3031372502-3409888114-1513606368-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Roger\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 189.4.64.110 - 189.4.64.95
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{DA85633D-7077-47A9-A435-796CABAF85CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{25A819A0-FE27-4120-ABFA-7D582DF76D2A}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{083BF4CD-B9BC-445D-8E89-662B9D090D5A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{2896CCB1-F557-4307-B8BA-AA0C9D380D89}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{89E3035A-63A6-4153-B703-F3D71E47688E}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{E32C4D6A-F8B2-4F66-BFA5-8CB390161588}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{6348E0D2-EB97-4B72-B5F1-229787CA70D6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{75A1F933-17E1-4719-B8BC-69C815CD0C3E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AB0BC223-0027-4C4E-B997-AB8F7DD0F272}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CAB7B778-4EF0-499F-8398-055BBEB1F868}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B6A521D9-C7AA-4D6B-962C-9D2222BAA735}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C76C73A2-5521-43D4-B7AB-F4D346CE8791}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6FD5A125-CCFF-474B-9D74-0EF960D22E7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F0023554-9E79-48F1-8A5B-A8ABD6B4DBED}] => (Allow) C:\Users\Roger\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{17003325-037A-4E22-9DB5-4A740E77CD0B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{BEB77495-81A6-4063-87BC-F90EF1F74FAF}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{D6F95154-8E1A-40E9-9E05-ECB6A9192452}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{56DF0B73-1F49-4EEF-AD14-BD3B0C73A286}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{5304AC07-9E97-4683-BDF6-CD898AB237B6}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{23025D34-1C28-43EE-A944-F2E4A97273BC}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{A1246EE0-C0D7-498C-97A5-3D6C9AAD3EDF}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{1734B62F-8BAB-4094-9C8F-ED2AF157F0E2}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{256E2C81-A67D-4E95-BCDB-53ABD67FB5C3}] => (Allow) C:\Users\Roger\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3B12E8D4-E869-42FD-96FB-7D715C5C5D9F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{71B09775-DD85-4449-A8CC-AD03FC848371}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8B34DB3A-8545-4992-99F8-8587B8E059C3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1D7720E2-0611-4E70-80A1-25849D417C37}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{24B1A08B-6D1D-448C-8B33-8B2434B5F3BF}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{CC8190CF-B9B0-49FF-B9B1-930C54153CC2}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [TCP Query User{3D26B6E0-18C0-4EFB-A205-7C955FE8EB6A}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{5F6CFF45-74E9-4B80-A7BC-4DF3ABBE011B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{F37744AF-3832-40A1-B5F7-4A47403713AC}] => (Block) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{DDBAD4A8-D0B7-4E0F-A067-83BE2B6CC142}] => (Block) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{56FF4064-62DA-4F16-A001-A65984EACBE4}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{998C45CE-B903-420D-9D7D-F27B73B1E16E}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{E5E1FACF-F382-4A67-B4B1-86E662C5ECC7}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{832AED6B-0ACD-492E-9075-DE14BA68918D}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
==================== Pontos de Restauração =========================
29-07-2016 14:40:36 Ponto de Verificação Agendado
29-07-2016 16:05:02 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
29-07-2016 16:06:27 Removed Camtasia Studio 8
29-07-2016 20:44:27 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
29-07-2016 21:02:55 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: Controlador de barramento SM
Description: Controlador de barramento SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: USB2.0-CRW
Description: USB2.0-CRW
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (07/29/2016 09:05:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: chrome.exe, versão: 51.0.2704.103, carimbo de hora: 0x57610874
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0x0000000000000000
Identificação do processo com falha: 0xc38
Hora de início do aplicativo com falha: 0xchrome.exe0
Caminho do aplicativo com falha: chrome.exe1
FCaminho do módulo de falhas: chrome.exe2
Identificação do Relatório: chrome.exe3
Error: (07/29/2016 08:46:03 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (07/29/2016 08:45:07 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:45:07 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:44:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Error: (07/29/2016 08:01:11 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (608) SUS20ClientDataStore: Não é possível ler o cabeçalho do arquivo de log C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Erro -546.
Erros de Sistema:
=============
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:58:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 07:57:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac
gbpddreg
Error: (07/29/2016 05:18:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (07/29/2016 04:12:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 04:11:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
Error: (07/29/2016 04:11:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.
CodeIntegrity:
===================================
Date: 2016-07-29 14:33:50.093
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.073
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.053
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-29 14:33:50.043
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.988
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.973
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.942
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-27 02:35:28.906
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-19 11:27:38.257
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-19 11:27:38.238
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\libAndyPipe.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentagem de memória em uso: 58%
RAM física total: 8095.82 MB
RAM física disponível: 3362.85 MB
Virtual Total: 16189.8 MB
Virtual disponível: 10953.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:28.4 GB) NTFS
Drive d: (Partition_RRL) (Fixed) (Total:833.51 GB) (Free:440.29 GB) NTFS
Drive f: (Reservado pelo Sistema) (Fixed) (Total:0.34 GB) (Free:0.04 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4C4C4544)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.5 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================