cjoint

Publicité


Publicité

Commentaire : http://www.cjoint.com/c/FFymWRkvSFb

Format du document : text/plain

Prévisualisation

Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-06-2016 01
Executado por MarcoAnt (2016-06-24 09:42:35)
Executando a partir de C:\Users\Marquinho\Desktop
Windows 7 Enterprise Service Pack 1 (X64) (2012-06-02 21:04:34)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3248169965-2079311710-3991951774-500 - Administrator - Disabled)
Convidado (S-1-5-21-3248169965-2079311710-3991951774-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3248169965-2079311710-3991951774-1010 - Limited - Enabled)
MarcoAnt (S-1-5-21-3248169965-2079311710-3991951774-1000 - Administrator - Enabled) => C:\Users\Marquinho

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Aplicativo Itaú (HKLM-x32\...\{A43DE586-3B07-4DC2-B40B-5D5C89B72931}) (Version: 1.0.70 - Banco Itaú)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
AutoCAD 2013 - English (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 Language Pack - English (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Central de Mouse e Teclado da Microsoft (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Estudo de aprimoramento de produto para HP Officejet 7610 series (HKLM\...\{189538B9-5DB6-4729-AEC9-547FAF7BC61E}) (Version: 29.1.971.39251 - Hewlett-Packard Co.)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Guardião - Itaú 30 horas (HKLM-x32\...\{70e5f739-1d2a-40ae-bbc9-4b3e6af4c831}_is1) (Version: 3.10.0.1 - )
High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 7610 series Ajuda (HKLM-x32\...\{E9C92725-DF45-4E76-9CA1-51898CCDD497}) (Version: 29.0.0 - Hewlett Packard)
HP Officejet 7610 series Software básico do dispositivo (HKLM\...\{05B3BA73-F4DA-4F57-BD69-37E6B575BFD7}) (Version: 29.1.971.39251 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{57A79409-9C79-4080-9FFA-09D4DAECC26B}) (Version: 12.4.18.7 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IRPF2013 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2013) (Version: 1.2 - Receita Federal do Brasil)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
K-Lite Mega Codec Pack 8.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.6.0 - )
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
LogMeIn Client (HKLM-x32\...\{0952A0F1-1B10-4382-A4C1-49752AB315EB}) (Version: 1.3.435 - LogMeIn, Inc.)
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-US)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)
Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)
Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)
Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)
Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6409 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6804 - Realtek Semiconductor Corp.)
Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.03 - Serpro - Serviço Federal de Processamento de Dados)
Riocusto2010 versão 4.5 (HKLM-x32\...\{7211E3F6-0096-4078-BD44-7E87D33772E4}_is1) (Version: 4.5 - Riocusto Consultoria Ltda)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Warsaw 1.12.3.5 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia)
WinRAR 4.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0013}\InprocServer32 -> C:\Users\Marquinho\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0013}\InprocServer32 -> C:\Users\Marquinho\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {00AE022B-B536-420F-9D08-D8DB49D43830} - System32\Tasks\HP AR Program Upload - 55a3e83f0f2a4b939b72c3d6ef91f38883a1799681e54b94b64febfdc5144efd => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {1A5B6A40-4EB8-402D-862D-11A64819DA84} - System32\Tasks\HP AR Program Upload - 6067c359daa3403eba5e4f4ca5a1d0e0a1d7a6022c2146388c16ecdfb3f7772d => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {1C09A90E-A351-4DBE-B3E0-1B8C0F2CC6F4} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {2CC30E01-A324-496F-844C-E99F6AE96BF0} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> Nenhum Arquivo <==== ATENÇÃO
Task: {34AC5929-7699-4A0B-83D2-3A7699D69A3D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
Task: {3E63EB19-32D8-4077-AD7F-A3CF8F72FE17} - System32\Tasks\{EF96112F-6770-40E9-89CE-E3BD95A3CBB3} => pcalua.exe -a "C:\Users\Marquinho\Downloads\iGBPCEFsf (3).exe" -d C:\Users\Marquinho\Downloads
Task: {40C45816-89E4-49AD-B1AF-59F6C536F4DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {422FD3D4-DBCB-4F77-BCEA-5D75C1D71A15} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {46DD946C-4EA4-4AA9-97C0-D83B79137A1C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {4DD502DE-49A4-4660-97CB-E4EC0E53A7E2} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {4E182609-3FC6-4F2D-A93C-C6419DF91AF3} - System32\Tasks\{E95E9E1A-80F3-4457-A560-7031EE4BB88E} => pcalua.exe -a E:\Bin\Instaladores\Sprinkler\setup.exe -d E:\Bin\Instaladores\Sprinkler
Task: {531C2DDE-6D17-4FB4-BA00-36C4BC813A85} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {552C015E-91D0-40AF-B18E-6AAFBC30E2E4} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-12-04] (@ByELDI)
Task: {560BBBF0-D970-4E13-805F-DAAF4286759E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {63675B36-D47B-4E5C-BD51-94D31DFA26DB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {94D121A6-F91A-4159-A965-A16B524D895B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A1F387CC-DD6A-4811-B35C-3D704D09D1F5} - System32\Tasks\HP AR Program Upload - dea38e104a1f4dd3b5ea78c1b04ed703fa11568efe0a42e28b2fa6e2c22a059a => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {AF12A399-A5EF-42D1-A097-7DF731E51A15} - System32\Tasks\HPCeeScheduleForMarcoAnt => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B422AE2A-6501-4463-A788-C690D0C2EA8E} - System32\Tasks\HPCustParticipation HP Officejet 7610 series => C:\Program Files\HP\HP Officejet 7610 series\Bin\HPCustPartic.exe [2012-10-21] (Hewlett-Packard Co.)
Task: {B6739A4C-9B8B-49F8-9756-8AE87C6C3F12} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {C7A89BAF-3D6E-4A63-8D74-DAB429855B78} - System32\Tasks\HP AR Program Upload - b64c956a6d5149638265cad76bb49e5fd8d32321a453477d8b3d46343b95af87 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {CCE14BF1-F47B-417F-AF5B-F181683ED3C5} - System32\Tasks\HP AR Program Upload - b83833d04a5f4122b9a07626fa62d37cc29698cbbd004700b27a3f76f3119a14 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {D79356D7-4C16-42E7-9DFC-808FD99EBEFD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {D8DB44D9-BB26-4E50-A7EB-36429DCF7640} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {DFCA265A-FF6E-47F9-9E39-3383E1ED2049} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E285D347-1D81-4FB1-95DC-B2938D60E64E} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {E49FD79B-1BB1-498D-95FC-E8134B398C5E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E8678A74-1E1C-459B-8D15-DA753DC0E734} - System32\Tasks\HP AR Program Upload - 4ad37efbdbb6464b9b7bc00da490bb1f18a7f89079624de984d7cf396c3d01cb => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {EEDF0C40-E988-442B-A1EF-99CAD00A2958} - System32\Tasks\HP AR Program Upload - dd02af865a5d499289b38a9df50b8112d1ef901a1af34ef79d9deaba85084991 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {EF979B30-9D89-49F0-9FC1-36EBA58351ED} - System32\Tasks\HP AR Program Upload - d65d8f09cc134d578e963c69f1750b6ae84993583e6f4d459bead0e065f5e6fa => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {F0A11DE8-A95C-4508-A432-5CB01EC4E1C6} - System32\Tasks\HP AR Program Upload - 41ea4780ebae4480b96e6348c6078f1242b03842acda4b859e78dc79fe1f17f8 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {F67A17F2-2DEE-4660-A582-D192ED8F37A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {FE9A7A97-D324-48A0-B8B5-4C22E19882D7} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> Nenhum Arquivo <==== ATENÇÃO

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForMarcoAnt.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Marquinho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Fair AdBlock App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dcnofaichneijfbkdkghmhjjbepjmble

==================== Módulos Carregados (Whitelisted) ==============

2013-03-28 22:31 - 2013-03-28 22:31 - 00210944 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-09-23 13:53 - 2012-09-23 13:53 - 00748544 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-09-23 13:53 - 2012-09-23 13:53 - 03645952 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-04-22 15:11 - 2011-05-28 22:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2013-02-04 23:21 - 2013-02-04 23:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2013-02-04 23:21 - 2013-02-04 23:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2013-02-04 23:21 - 2013-02-04 23:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll
2013-02-04 23:21 - 2013-02-04 23:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2016-05-05 19:17 - 2016-05-05 19:17 - 02703784 _____ () C:\ProgramData\ServWin.exe
2016-04-01 18:56 - 2013-04-08 15:29 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2013-03-28 22:30 - 2013-03-28 22:30 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2016-04-01 18:56 - 2013-03-12 20:48 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2016-04-01 18:56 - 2013-04-02 11:34 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2016-06-17 22:14 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-17 22:14 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:4A44E179_Cef.gbp [2]
AlternateDataStreams: C:\Windows\System32:AA95E480_Uni.gbp [2]
AlternateDataStreams: C:\Windows\System32:E02CB1C8_Uni.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [906]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)

HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\rj.gov.br -> hxxps://www.dgst.cbmerj.rj.gov.br
IE trusted site: HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\...\siapenet.gov.br -> hxxps://www1.siapenet.gov.br

==================== Hosts Conteúdo: ==========================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:34 - 2015-09-19 12:39 - 00000067 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 validation.sls.microsoft.com

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3248169965-2079311710-3991951774-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marquinho\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 201.17.0.43 - 201.17.0.85
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)


==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{E094412F-4514-4F00-B2B2-C57E3BEF75ED}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{F8AA080D-0736-4E84-929A-B9D29A5AF473}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{1BDA3EF0-BBC8-4BDD-A8AE-2248B3056D38}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{36E88FD9-6670-43E6-89A4-15A04DE882F1}] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{AE7A4CEE-8889-4972-AFC9-C1A5938206E7}] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{FC9D91C4-5C71-42B9-BA34-69F01BACF831}] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe
FirewallRules: [{39CBC5A9-1FE2-42F6-B133-0937805428E9}] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe
FirewallRules: [TCP Query User{DDBDB678-94C2-4003-B70B-4DB40CABF643}C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe] => (Allow) C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe
FirewallRules: [UDP Query User{1518B20D-68C8-45F9-8580-BD78948712EB}C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe] => (Allow) C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe
FirewallRules: [{25BE00DF-392B-47AB-8650-8A0152970CA4}] => (Block) C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe
FirewallRules: [{6AD237F0-0F7D-4987-AF9C-95D8DC2C939F}] => (Block) C:\users\marquinho\documents\docs marquinhos\duke3dw 4.2.0\duke 3dw 4.2.0\duke3dw.exe
FirewallRules: [TCP Query User{628E968A-08F8-4883-99FB-00870F18B7A4}C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe
FirewallRules: [UDP Query User{0060B676-5A95-47CA-A6F3-F0F92128413A}C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe
FirewallRules: [TCP Query User{4B023BD1-8EC2-4AF3-9061-F3DDBCA868BF}C:\users\marquinho\downloads\2320.10075.@!1382125579_2l1ui14ck2ts@!aa_v3.exe] => (Block) C:\users\marquinho\downloads\2320.10075.@!1382125579_2l1ui14ck2ts@!aa_v3.exe
FirewallRules: [UDP Query User{6F5EB148-DDF7-402F-9BA7-A359CF45DB3C}C:\users\marquinho\downloads\2320.10075.@!1382125579_2l1ui14ck2ts@!aa_v3.exe] => (Block) C:\users\marquinho\downloads\2320.10075.@!1382125579_2l1ui14ck2ts@!aa_v3.exe
FirewallRules: [TCP Query User{AE9B34E1-D96A-4F4B-AECC-80E342B55F4F}C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe
FirewallRules: [UDP Query User{8A8743C2-67CE-4F51-9F3B-B0ACC834DD32}C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp deskjet 2540 series\bin\hpnetworkcommunicatorcom.exe
FirewallRules: [TCP Query User{A35770BB-22C4-4C26-BC83-E09D55E201AF}C:\users\marquinho\appdata\local\logmein client\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\logmein client\logmein client.exe
FirewallRules: [UDP Query User{B7E5B9DC-26D9-413C-B33A-9C995FF20C68}C:\users\marquinho\appdata\local\logmein client\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\logmein client\logmein client.exe
FirewallRules: [TCP Query User{028828F3-3D02-402D-A261-60F444049594}C:\users\marquinho\appdata\local\temp\lmia9d2.tmp\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\temp\lmia9d2.tmp\logmein client.exe
FirewallRules: [UDP Query User{2CDC35D6-1F21-4AA4-B578-AE7785CD8B03}C:\users\marquinho\appdata\local\temp\lmia9d2.tmp\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\temp\lmia9d2.tmp\logmein client.exe
FirewallRules: [TCP Query User{621AB8C6-74A0-41BA-ADCC-2EFAF7AA34FB}C:\users\marquinho\appdata\local\temp\lmicc8a.tmp\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\temp\lmicc8a.tmp\logmein client.exe
FirewallRules: [UDP Query User{44BCB3F3-D31C-4138-8B95-8FC91B33C481}C:\users\marquinho\appdata\local\temp\lmicc8a.tmp\logmein client.exe] => (Allow) C:\users\marquinho\appdata\local\temp\lmicc8a.tmp\logmein client.exe
FirewallRules: [TCP Query User{663B7D4C-2F15-490E-80F0-EEFB304EFA62}C:\program files (x86)\miniget\miniget.exe] => (Block) C:\program files (x86)\miniget\miniget.exe
FirewallRules: [UDP Query User{2B85D732-7C3F-47CF-AE59-31DF621FD774}C:\program files (x86)\miniget\miniget.exe] => (Block) C:\program files (x86)\miniget\miniget.exe
FirewallRules: [{1483DE50-C08F-491D-A6B3-22A4DC373929}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{206B8BEA-4F43-4206-8C9B-2A9FD00BE2D9}C:\users\marquinho\appdata\local\temp\lmiadf0.tmp\logmein client.exe] => (Block) C:\users\marquinho\appdata\local\temp\lmiadf0.tmp\logmein client.exe
FirewallRules: [UDP Query User{CCBB8B72-92D5-455C-939B-5A37BB71ACF4}C:\users\marquinho\appdata\local\temp\lmiadf0.tmp\logmein client.exe] => (Block) C:\users\marquinho\appdata\local\temp\lmiadf0.tmp\logmein client.exe
FirewallRules: [TCP Query User{59E61420-45B0-4059-96C4-6DFF5D1348C6}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [UDP Query User{C47E63EC-E963-4358-9B0E-1716AE78BF76}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [{4D9DB829-CFDA-49E0-B0D5-FF7F31E23495}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS269B\HPDiagnosticCoreUI.exe
FirewallRules: [{FE36E81D-17B4-4544-AA79-AA69CFF680DA}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS269B\HPDiagnosticCoreUI.exe
FirewallRules: [{57E52247-75F9-40CD-82FE-AF1022C280AD}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS26F9\HPDiagnosticCoreUI.exe
FirewallRules: [{D1EF1694-8AF1-426F-9BA5-D4FD12C94147}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS26F9\HPDiagnosticCoreUI.exe
FirewallRules: [{26B7A6B8-DF3B-4E0F-8D1C-310B31341B1D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F1523DDD-2877-4C1A-8CDF-197D61E3AC85}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{09A83849-DB61-45FB-8C1B-F018EFBD526D}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS7367\HPDiagnosticCoreUI.exe
FirewallRules: [{548E1083-FE44-41FE-A226-951435E15C0E}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS7367\HPDiagnosticCoreUI.exe
FirewallRules: [{D3B09F02-480D-43C5-A648-36820F156D10}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS3278\HPDiagnosticCoreUI.exe
FirewallRules: [{69DDCADF-2338-4062-8F87-59794F89290B}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS3278\HPDiagnosticCoreUI.exe
FirewallRules: [TCP Query User{1A56711B-3BAF-4BF2-9F8A-063A4D357C84}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{650033BE-8E22-47A1-B63F-C6D0103656A8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{07BF29CF-FACA-4FF1-89F2-AE7C10A9819E}C:\users\marquinho\appdata\local\temp\kmsnano\kmsserver.exe] => (Allow) C:\users\marquinho\appdata\local\temp\kmsnano\kmsserver.exe
FirewallRules: [UDP Query User{041350E5-CC7D-4764-A5D6-EB8508CB499B}C:\users\marquinho\appdata\local\temp\kmsnano\kmsserver.exe] => (Allow) C:\users\marquinho\appdata\local\temp\kmsnano\kmsserver.exe
FirewallRules: [{48687B2D-4B90-4A08-A8D3-4AB694DAD0F3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{4A85CE81-AF77-4B0B-8898-6C1CA1FF70D1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{0EE3CA89-CFB5-4493-94DF-9DF06C6EB590}] => (Allow) C:\Users\Marquinho\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{09C49CFC-F5B7-4555-9126-F7F865072257}] => (Allow) C:\Users\Marquinho\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A0583643-05FD-4056-9739-5B0A027621F3}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS77A3\HPDiagnosticCoreUI.exe
FirewallRules: [{8175E7DD-9095-4C05-8EB4-DD6F2041E56D}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS77A3\HPDiagnosticCoreUI.exe
FirewallRules: [{8B75C6CD-CA21-4C6A-88A6-CE29561D146F}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS7884\HPDiagnosticCoreUI.exe
FirewallRules: [{C5505257-9D7B-405E-B5E1-E22EC0BF2C42}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS7884\HPDiagnosticCoreUI.exe
FirewallRules: [TCP Query User{881969DC-902E-4053-9F09-812E8CF6279F}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [UDP Query User{7F22B10D-3E2E-4F66-BDD8-EAF2FC9F9027}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [{C84D849B-7F26-42A5-9C3A-8759D67D2ABB}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{A2568E80-F8EB-4BDD-A6DF-ACBB452CFAB8}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{C3B2E943-1240-4C07-B9F7-2EB843B4875E}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{47B91CB2-F38B-4A11-8E80-4892D98F5A4E}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS566A\HPDiagnosticCoreUI.exe
FirewallRules: [{E761E6D9-736F-4B85-BCCE-8B6DA7B9E5B7}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS566A\HPDiagnosticCoreUI.exe
FirewallRules: [{244A4178-8DDA-4774-B4F7-9E86D599B0F6}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS571E\HPDiagnosticCoreUI.exe
FirewallRules: [{8724AF76-427C-44BC-8CF0-D7CCF4DFC8CB}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS571E\HPDiagnosticCoreUI.exe
FirewallRules: [{3B01BA85-4216-4941-8320-7D39865285C0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{71AD7FA4-A6C2-473D-A0A1-C66D42C5225E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7CBB90B1-B79A-4D82-AF9F-5B0BF59E3075}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS1133\HPDiagnosticCoreUI.exe
FirewallRules: [{7A235B1D-D246-432C-A97D-BE778EC5ECAE}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS1133\HPDiagnosticCoreUI.exe
FirewallRules: [{D987125D-D230-4719-8186-0CB78072DECD}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS63F5\HPDiagnosticCoreUI.exe
FirewallRules: [{A1B61A9D-5AB9-4C25-BFF7-5BE5EA25974A}] => (Allow) C:\Users\Marquinho\AppData\Local\Temp\7zS63F5\HPDiagnosticCoreUI.exe
FirewallRules: [{35A30AE5-F74F-4A03-8BD4-6B9FD2D6C24A}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{42CD6AD2-C7B8-4B72-93B9-67FD3FDFA4CA}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{3346A8C1-B7A1-4A6A-BB82-4E2E9F430BD4}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{C53D3727-B56A-40B5-B2B3-8109B4044185}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{A61CC043-BA62-4CF7-9BC9-4670BEA5C08A}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\FaxApplications.exe
FirewallRules: [{C52238FD-2495-47F6-9361-7DAB73FA5D74}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\DigitalWizards.exe
FirewallRules: [{4154760A-CD37-47A0-9561-DD20CC568D40}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\SendAFax.exe
FirewallRules: [{69512613-D766-489D-A774-CC42FA304AFA}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\DeviceSetup.exe
FirewallRules: [{5A59A36F-65F2-492F-8B8F-2EC4F0C97578}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{7B0720E9-A268-4479-8F21-BE6F02D99419}] => (Allow) LPort=1688
FirewallRules: [{5F07BD67-4EF5-4675-B566-8B705A30F2B5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{977B8DEB-6B52-46D0-B7E1-C5173F7AB1E2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{B2440D68-7AFB-42E8-AC8A-4E74D1487083}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

13-06-2016 11:17:45 Windows Update
15-06-2016 06:24:04 Windows Update
17-06-2016 23:40:31 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (06/24/2016 09:39:57 AM) (Source: HP Active Health) (EventID: 401) (User: )
Description: SmartDrive executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe]

Error: (06/24/2016 09:39:52 AM) (Source: HP Active Health) (EventID: 1100) (User: )
Description: Agent DiskPhysical threw an exception: System.NullReferenceException: Referência de objeto não definida para uma instância de um objeto.
em HP.ActiveHealth.Agents.DiskPhysical.DiskPhysicalAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector)
em HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj)

Error: (06/24/2016 09:39:52 AM) (Source: HP Active Health) (EventID: 1101) (User: )
Description: DiskPhysical executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe]

Error: (06/24/2016 09:33:24 AM) (Source: HP Active Health) (EventID: 401) (User: )
Description: SmartDrive executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe]

Error: (06/24/2016 09:33:23 AM) (Source: HP Active Health) (EventID: 1100) (User: )
Description: Agent DiskPhysical threw an exception: System.NullReferenceException: Referência de objeto não definida para uma instância de um objeto.
em HP.ActiveHealth.Agents.DiskPhysical.DiskPhysicalAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector)
em HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj)

Error: (06/24/2016 09:33:23 AM) (Source: HP Active Health) (EventID: 1101) (User: )
Description: DiskPhysical executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe]

Error: (06/23/2016 09:14:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: TWCU.exe, versão: 0.0.0.0, carimbo de hora: 0x516270de
Nome do módulo de falhas: gbiehuni.dll_unloaded, versão: 0.0.0.0, carimbo de hora: 0x53cd83b7
Código de exceção: 0xc0000005
Deslocamento com falha: 0x74a85636
Identificação do processo com falha: 0xba8
Hora de início do aplicativo com falha: 0xTWCU.exe0
Caminho do aplicativo com falha: TWCU.exe1
FCaminho do módulo de falhas: TWCU.exe2
Identificação do Relatório: TWCU.exe3

Error: (06/23/2016 04:09:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa LMIIgnition.exe versão 1.3.0.2254 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 1540

Hora de Início: 01d1cd6dddea7a3e

Hora de Término: 18

Caminho do Aplicativo: C:\Program Files (x86)\LogMeIn Ignition\LMIIgnition.exe

Id do Relatório: 03e3c046-3976-11e6-b565-902b34f47fb9

Error: (06/23/2016 12:41:57 PM) (Source: HP Active Health) (EventID: 401) (User: )
Description: SmartDrive executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe]

Error: (06/23/2016 12:41:57 PM) (Source: HP Active Health) (EventID: 1100) (User: )
Description: Agent DiskPhysical threw an exception: System.NullReferenceException: Referência de objeto não definida para uma instância de um objeto.
em HP.ActiveHealth.Agents.DiskPhysical.DiskPhysicalAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector)
em HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj)


Erros de Sistema:
=============
Error: (06/24/2016 09:34:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/24/2016 09:34:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/24/2016 09:29:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/24/2016 09:29:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac

Error: (06/23/2016 08:07:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (06/23/2016 07:07:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (06/23/2016 12:44:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/23/2016 12:44:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/23/2016 12:39:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.


Error: (06/23/2016 12:39:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddfac


CodeIntegrity:
===================================
Date: 2014-05-05 21:25:40.085
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-05-05 21:25:40.023
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Informações da Memória ===========================

Processador: AMD FX(tm)-4100 Quad-Core Processor
Percentagem de memória em uso: 50%
RAM física total: 4077.55 MB
RAM física disponível: 2027.43 MB
Virtual Total: 8153.29 MB
Virtual disponível: 5565.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:234.28 GB) (Free:124.62 GB) NTFS
Drive d: () (Fixed) (Total:231.38 GB) (Free:214.22 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 68D06B01)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=234.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=231.4 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité