Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 26-06-2016 01 Executado por ADM (2016-06-26 13:52:35) Executando a partir de C:\Users\ADM\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2010-11-13 20:46:12) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= ADM (S-1-5-21-2957143589-1019319754-4208424685-1000 - Administrator - Enabled) => C:\Users\ADM Administrador (S-1-5-21-2957143589-1019319754-4208424685-500 - Administrator - Disabled) Convidado (S-1-5-21-2957143589-1019319754-4208424685-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2957143589-1019319754-4208424685-1007 - Limited - Enabled) ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) 7-Data Android Recovery versão 1.0 (HKLM-x32\...\{2D32F845-CC8B-4521-8B99-E5D26665C0B6}_is1) (Version: 1.0 - SharpNight Co,Ltd) Adobe Community Help (HKLM-x32\...\{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}) (Version: - ) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Fireworks CS5 (HKLM-x32\...\{164965E8-4BB0-4EEB-AFBA-75785A2A2A7F}) (Version: 11.0 - Adobe Systems Incorporated) Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.117 - Adobe Systems Incorporated) Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Apple Mobile Device Support (HKLM\...\{2F72F540-1F60-4266-9506-952B21D6640D}) (Version: 6.1.0.13 - Apple Inc.) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform) Crystal Reports Basic for Visual Studio 2008 (HKLM-x32\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects) Crystal Reports Basic Runtime for Visual Studio 2008 (x64) (HKLM\...\{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}) (Version: 10.5.0.0 - Business Objects) Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden Doro 1.75 (HKLM-x32\...\Doro_is1) (Version: - CompSoft) Dotfuscator Software Services - Community Edition (HKLM-x32\...\{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}) (Version: 5.0.2300.0 - PreEmptive Solutions) Emergency Download Driver (HKLM-x32\...\{05DBF996-83D0-4C40-8D3A-A6850800BC88}) (Version: 1.1.7.1439 - Nokia) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Estudo de aprimoramento de produto para HP Deskjet 2540 series (HKLM\...\{44FE0FDF-E044-4EA9-AC22-325CDD4C3241}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Estudo de melhoria do produto HP Deskjet 3050 J610 series (HKLM\...\{D23F32FF-5AFF-4D21-8CBA-D8142AAE7068}) (Version: 22.50.231.0 - Hewlett-Packard Co.) Ferramentas da Web do Microsoft SQL Server Compact 4.0 PTB (HKLM-x32\...\{06F10ED5-41FC-4110-B5CE-4F8F79B0D38B}) (Version: 4.0.8482.1 - Microsoft Corporation) Ferramentas do Visual Studio 2005 para Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 5.4.5.124 - Foxit Corporation) Fuse Installer (x32 Version: 5.0.7 - Nokia) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Chrome (HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\Google Chrome) (Version: 28.0.1464.0 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro) HP Deskjet 2540 series Ajuda (HKLM-x32\...\{70B5D5B2-8014-4C22-9963-361B1F07B81A}) (Version: 30.0.0 - Hewlett Packard) HP Deskjet 2540 series Software básico do dispositivo (HKLM\...\{A4BA74B3-3DCB-47CC-9C80-C2CBAC26C6EB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP Deskjet 3050 J610 series Ajuda (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard) HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard) HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IIS 7.5 Express (HKLM-x32\...\{22025051-1991-48EB-8BE8-7A3329DAE7ED}) (Version: 7.5.1070 - Microsoft Corporation) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.0 - Receita Federal do Brasil) IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil) iTunes (HKLM\...\{0225AD21-F3E2-4916-BFF3-65D3F9052582}) (Version: 11.0.2.26 - Apple Inc.) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java(TM) SE Development Kit 6 Update 22 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160220}) (Version: 1.6.0.220 - Oracle) K-Lite Mega Codec Pack 9.7.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.0 - ) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Lumia UEFI Blue Driver (HKLM-x32\...\{D6EEB835-5BBF-4F6B-8382-1681148D7771}) (Version: 1.1.8.1448 - Nokia) Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) MCTS Self-Paced Training Kit (Exam 70-432): Microsoft SQL Server 2008-Implementation and Maintenance (HKLM-x32\...\{89952D4E-52CD-4B94-9EC0-2E5A6E3FFB3C}) (Version: 2.00.00 - Microsoft Press) MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info) Microsoft .NET Compact Framework 2.0 SP2 (HKLM-x32\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft Corporation) Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation) Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft ASP.NET Web Pages (HKLM-x32\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation) Microsoft Device Emulator (64 bit) version 3.0 - ENU (HKLM\...\{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version: - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office 2003 Web Components (HKLM-x32\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Press Training Kit Exam Prep Suite 70-432 (HKLM-x32\...\{26DEB0DF-3FF0-4365-8577-5259C13FCC6E}) (Version: 1.0.0 - MeasureUp) Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation) Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation) Microsoft SQL Server 2005 Backward compatibility (HKLM\...\{C92556F2-4950-48CF-ABA3-F0026B05BCE8}) (Version: 8.05.1054 - Microsoft Corporation) Microsoft SQL Server 2005 Books Online (English) (HKLM-x32\...\{0B43A744-B1B8-4089-9BD1-9D41C7EC0AA3}) (Version: 9.00.1399.06 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{0DDCEC37-369C-484B-B16D-B4413FD42FB9}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{E5AE9031-79A5-4627-9641-BEFA82819B08}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{B692E59A-055C-43B7-BE0A-9C2FE0AB88B6}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{DA67488A-2689-4F10-B90F-D2F6977509D6}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{2180B33F-3225-423E-BBC1-7798CFD3CD1F}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{78C3657E-742C-40B1-9F53-E5A921D40F17}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server 2008 Report Builder 2.0 (HKLM-x32\...\{91CB3AD8-DFA7-4BA5-86F7-4DA10724CF5F}) (Version: 10.0.1600.60 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files RC0 (English) (HKLM-x32\...\{7D3F6746-94DE-4E1F-94F9-933B68EB68C4}) (Version: 10.0.1442.32 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM-x32\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 x64 PTB (HKLM\...\{072F491C-BF8C-4C46-A48D-C6722188E21B}) (Version: 4.0.8482.1 - Microsoft Corporation) Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation) Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation) Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4A8CE6D7-4D52-43B9-970B-03FC75FAD667}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM-x32\...\{1CBE3804-20DF-48DA-B048-895C206E80A5}) (Version: 9.00.1399.06 - Microsoft Corporation) Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation) Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation) Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation) Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation) Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2005 Premier Partner Edition - ENU (HKLM-x32\...\{C25EF637-BE7A-4761-9B45-9069989C319F}) (Version: 8.0.50728 - Microsoft Corporation) Microsoft Visual Studio 2005 Premier Partner Edition - ENU Service Pack 1 (KB926601) (HKLM-x32\...\KB926601.T2_28ToU260_28) (Version: 1 - Microsoft Corporation) Microsoft Visual Studio 2008 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2008 Professional Edition - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio 2008 Remote Debugger - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (HKLM\...\{88BAE373-00F4-3E33-828F-96E89E5E0CB9}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010 Ultimate - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Ultimate - ENU) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation) Microsoft Web Deploy 2.0 (HKLM\...\{5134B35A-B559-4762-94A4-FD4918977953}) (Version: 2.0.1070 - Microsoft Corporation) Microsoft Web Platform Installer 3.0 (HKLM\...\{CC4878C0-4A6A-49CD-AAA7-DD3FCB06CC84}) (Version: 3.0.5 - Microsoft Corporation) Microsoft WebMatrix (HKLM-x32\...\{66F0E678-69C2-4C46-BA95-117DF28C87E4}) (Version: 1.0.1073 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{29C93182-34F6-3275-A18D-59326851CD57}) (Version: 3.5.21022 - Microsoft) Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{9aa5f39c-a8de-46b0-919a-0248f8bc8490}) (Version: 6.1.5288.17011 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{62EED300-E841-4083-A1D6-60B906271804}) (Version: 6.1.5288.17011 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{A992BBAA-723D-4574-A07F-983BF8FAA3E1}) (Version: 6.1.5288.17011 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 7 Ultra Edition (HKLM-x32\...\{293C9DF5-7669-4826-BBB2-E1F182D71046}) (Version: 7.02.8631 - Nero AG) Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) PDFZilla V3.0.0 (HKLM-x32\...\PDFZilla_is1) (Version: - PDFZilla, Inc.) Perfect Uninstaller v6.3.4.0 (HKLM\...\Perfect Uninstaller_is1) (Version: - www.PerfectUninstaller.net) PRN - Edite (HKLM-x32\...\{9FD30AE4-2167-4803-BC11-D9FEC21D7005}) (Version: 2.07.00 - PROCERGS - Cia. de Processamento de Dados do Estado do Rio Grande do Sul) Product API Installer (x32 Version: 5.0.7 - Microsoft) Hidden Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.07 - Serpro - Serviço Federal de Processamento de Dados) Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.102 - Skype Technologies S.A.) Software básico do dispositivo HP Deskjet 3050 J610 series (HKLM\...\{477347C0-64CF-4E41-8D51-4EB47EEE6460}) (Version: 22.50.231.0 - Hewlett-Packard Co.) SpywareBlaster 5.4 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.4.0 - BrightFort LLC) Suporte para Aplicativos Apple (HKLM-x32\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Unchecky v0.4.3 (HKLM-x32\...\Unchecky) (Version: 0.4.3 - RaMMicHaeL) Unity Web Player (HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) USB Serial Port Driver (HKLM-x32\...\{3D924542-36BE-49DE-8805-8887C0C8A912}) (Version: 1.1.6.1439 - Nokia) VAP11G version 5.0.32.7 (HKLM-x32\...\VAP11G_is1) (Version: 5.0.32.7 - ) VC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) Hidden Visual Studio .NET Prerequisites - English (HKLM\...\{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}) (Version: 9.0.21022 - Microsoft Corporation) Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.30319 - Microsoft Corporation) Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Warface (HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\Warface) (Version: - Warface) Warsaw 1.12.3.5 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia) Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM-x32\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation) Windows Mobile 5.0 SDK R2 for Smartphone (HKLM-x32\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation) Windows Phone app for desktop (HKLM-x32\...\{1E18A938-C9B7-415D-8C43-753D6A917662}) (Version: 1.1.2726.0 - Microsoft Corporation) WinPatrol (HKLM-x32\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 33.5.2015.7 - Ruiware) WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - ) WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia) WinUSB Compatible ID Drivers (HKLM-x32\...\{316ED84C-ACDA-4F1F-8E64-52B7AFF8677D}) (Version: 1.1.9.1439 - Nokia) WinUSB Drivers ext (HKLM-x32\...\{238EAE31-4E9E-43CF-B244-C4879279E6AF}) (Version: 1.1.12.1439 - Nokia) Wondershare Data Recovery(Build 4.8.2.1) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 4.8.2.1 - Wondershare Software Co.,Ltd.) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\ADM\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\ADM\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\ADM\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\ADM\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {3EE4843A-55DC-4897-B50C-B578651803B5} - System32\Tasks\AdobeAAMUpdater-1.0-ADM-PC-ADM => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated) Task: {559719A5-A7F5-489B-A50D-ECCECD7EBE26} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {641DFC46-1574-48D3-8DA6-36F2C8F21A8E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2957143589-1019319754-4208424685-1000Core => C:\Users\ADM\AppData\Local\Google\Update\GoogleUpdate.exe Task: {731939C7-3365-4FDB-B4F0-4F0579595997} - System32\Tasks\{A56C3021-65E8-484A-83E3-0E19CB2EC058} => pcalua.exe -a "C:\Arquivos de Programas RFB\IRPF2015\IRPF2015.exe" -d "C:\Arquivos de Programas RFB\IRPF2015" Task: {733C6DE0-4DE9-44FE-BC00-181A791FB5D9} - System32\Tasks\{224754D6-3D62-487C-A8C8-6F12766ECB3C} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-07-18] (Skype Technologies S.A.) Task: {771EB281-B23E-4E3B-A49D-491BF4B38C2D} - System32\Tasks\{64FBA9E2-B4FC-4748-AC9A-A2F15C843538} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.120/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent Task: {7D7831D9-3BBA-4D41-98DE-0B69FCC54216} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2957143589-1019319754-4208424685-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {963ECDEA-BE4B-4C6C-92B6-48EE8363D929} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.) Task: {A392990B-5DE7-4A1A-92C6-2888E70D0E56} - System32\Tasks\Uninstaller_SkipUac_ADM => C:\\Users\\ADM\\Downloads\\IObitUninstallerPortable\\App\\uninstaller\\IObitUninstaler.exe Task: {A8A15D0D-7808-4C10-AD8E-A12D43F365D6} - System32\Tasks\GoogleUpdateTaskMachineCore1d02ab6b4bfa991 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {B58E639B-0ED4-4770-9D98-35CAF3C89924} - System32\Tasks\{D8BF3C83-A6A1-44D0-81EC-9D315A794547} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent Task: {B842BA4D-421D-4696-B8D0-AB1034E08668} - System32\Tasks\{D0DEC5D3-CD24-4BBE-9F8F-E185D4C1FB8E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent Task: {B95E1C18-D12A-4F0C-85B4-B31E3A596572} - System32\Tasks\{76F2C1A0-1172-4101-82A0-CBF244D897F9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.116.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent Task: {B9C63F16-DAC5-412D-A645-8A9CE7196B44} - System32\Tasks\HPCustParticipation HP Deskjet 3050 J610 series => C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.) Task: {B9F5638F-DC7F-41FB-9DCF-C98BA06C613A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd) Task: {BC940274-D8FC-40C1-86EC-0A5418ED8B9C} - System32\Tasks\{56670519-A456-4C87-A836-1554EBA652DA} => pcalua.exe -a C:\Windows\vstor_redist.exe -d C:\Windows Task: {C52FFC32-964F-4349-B289-DE0219FE5E54} - System32\Tasks\{2EBF65BF-ADA6-44FF-AED4-7512E6CBE023} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.116.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent Task: {C93A63D7-52E2-4E19-8F31-75883AF8DF4E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2957143589-1019319754-4208424685-1000UA => C:\Users\ADM\AppData\Local\Google\Update\GoogleUpdate.exe Task: {C98984F0-6859-484B-8AAD-674FCBBE0D53} - \{FF81205E-70FE-41A1-83AE-F652A6A1A287} -> Nenhum Arquivo <==== ATENÇÃO Task: {CAF511A9-5CD8-408A-907C-A73135A894E3} - System32\Tasks\DeepSoftware.AM.CollectLogsTask => C:\Program Files (x86)\SoftActivity\Activity Monitor\CollectLogs.exe Task: {D76D29F8-589B-451F-BE93-B3D3A5E9A2B8} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2957143589-1019319754-4208424685-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {E82B40C9-29FB-4C31-902B-F1EDF5489BE6} - \{056C18FC-653E-47CD-8E44-8F7C1EA8902D} -> Nenhum Arquivo <==== ATENÇÃO Task: {E97B25E1-6D90-49DD-89A8-C70042F10943} - System32\Tasks\{F1F8D8A8-E0A9-43DF-9FCF-86A323885007} => pcalua.exe -a "C:\Users\ADM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ICG2TRSZ\JavaSetup8u45.exe" -d C:\Users\ADM\Desktop Task: {F38DD9E3-D63D-4B94-AFC7-3B3C117AA500} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DeepSoftware.AM.CollectLogsTask.job => C:\Program Files (x86)\SoftActivity\Activity Monitor\CollectLogs.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfa419e8b3bd6.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d02ab6b4bfa991.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HP Deskjet 3510 series.exe_{AE47217B-519D-4A7F-9994-CCC3D2250706}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HP Deskjet 3510 series.exeý-install -prfn HP Deskjet 3510 series -ePCUrl hxxps:/h30495.www3.hp.com Task: C:\Windows\Tasks\HP Deskjet 3510 series.exe_{D8C521EA-83BE-45F6-8058-A089404456CF}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HP Deskjet 3510 series.exez-install -prfn HP Deskjet 3510 series (Rede) -ePCUrl hxxps:/h30495.www3.hp.com Task: C:\Windows\Tasks\HPCustPartic.exe_{C2BE5DEF-6ECB-40A5-8FA3-791045244E28}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe Task: C:\Windows\Tasks\ScanToPCActivationApp.exe_{754AAEC7-2778-48C2-A5F0-A2A04F2B6F79}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe Task: C:\Windows\Tasks\Toolbox.exe_{59D7E2DB-B37E-4BA6-9AB7-D0EC1AAD6403}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\Toolbox.exe Task: C:\Windows\Tasks\Toolbox.exe_{64C78935-E603-4301-BA25-AEBD8266F261}.job => C:\Program Files\HP\HP Deskjet 3510 series\Bin\Toolbox.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2013-10-18 12:12 - 2012-05-02 21:26 - 00460800 _____ () C:\Program Files (x86)\DoroPDFWriter\Doro.dll 2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2010-11-17 22:08 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll 2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-06-19 15:22 - 2016-06-15 06:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll 2016-06-19 15:22 - 2016-06-15 06:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\Windows\System32:DC83F454_Abn.gbp [2] AlternateDataStreams: C:\Windows\System32:DC83F454_Bb.gbp [2] AlternateDataStreams: C:\Windows\System32:DC83F454_Bnt.gbp [2] AlternateDataStreams: C:\Windows\System32:DC83F454_Cef.gbp [2] AlternateDataStreams: C:\Windows\System32:DC83F454_Uni.gbp [2] AlternateDataStreams: C:\Windows\SysWOW64\drivers:GbpKmAp.lst [212] AlternateDataStreams: C:\Windows\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [2770] AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198] AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\ProgramData\TEMP:0A8E2C33 [140] AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [134] AlternateDataStreams: C:\ProgramData\TEMP:A31FAD21 [118] AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:0A8E2C33 [140] AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:5C321E34 [134] AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:A31FAD21 [118] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\bancoreal.com.br -> hxxp://www.bancoreal.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\bancosantander.com.br -> hxxp://www.bancosantander.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\bancosantander.com.br -> hxxps://www.bancosantander.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\banestes.com.br -> hxxps://seg.banestes.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\bb.com.br -> hxxps://seg.bb.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\caixa.gov.br -> imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\realsecureweb.com.br -> hxxps://www.realsecureweb.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\santander.com.br -> hxxp://www.santander.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\santanderempresarial.com.br -> hxxp://www.santanderempresarial.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\santandernet.com.br -> hxxps://www.santandernet.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\santandernetibe.com.br -> hxxps://www.santandernetibe.com.br IE trusted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\secureweb.com.br -> hxxps://www.secureweb.com.br IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\...\1001movie.com -> 1001movie.com Existem ainda 6091 sites a mais. ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2009-07-13 23:34 - 2016-03-25 07:13 - 00002022 ____N C:\Windows\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com Existem ainda 4 mais linhas. ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2957143589-1019319754-4208424685-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ADM\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 200.175.5.139 - 200.175.89.139 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: ADUServiceNSRT => 2 MSCONFIG\Services: Apple Mobile Device => 2 MSCONFIG\Services: Avira.ServiceHost => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: MBAMScheduler => 2 MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: NBService => 3 MSCONFIG\Services: NMIndexingService => 3 MSCONFIG\Services: scpVista => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Unchecky => 2 MSCONFIG\Services: WsAppService => 2 MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: Winconnection7 => "C:\Program Files (x86)\Winco\Winconnection7\wc_tray.exe" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [TCP Query User{C6277B57-5CE4-49E0-A412-B6293BC420DE}C:\users\adm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\adm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{BD48ED15-F4A4-4C49-A9CD-FF20AF69EEF8}C:\users\adm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\adm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{52765AD1-D7EA-4122-A6BC-E6E521E9CFF2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{DC0427B0-D980-489A-9DA4-CE07B8D0AE48}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{0919802F-F8DB-493C-BFB6-D9DE3217B250}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3FB9D98C-5969-420B-9FEC-291C06E61FDE}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe FirewallRules: [{F0F31557-FD9A-4396-9859-B0C0F44F3F74}] => (Allow) LPort=5357 FirewallRules: [{E0A92D4C-2D76-4DC8-8BBC-ADBBDD1B2616}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{6F4357A7-D9BA-4ED3-90AB-3B357A60E9E5}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2016.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2016.exe FirewallRules: [UDP Query User{7EC72BC3-A251-4082-B3A3-3BB0A0CAD293}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2016.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2016.exe FirewallRules: [{00DEC037-A74D-4306-AD60-ED4276A68D09}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 13-06-2016 22:32:58 Ponto de Verificação Agendado 15-06-2016 01:20:25 Windows Update 22-06-2016 09:21:31 Ponto de Verificação Agendado 23-06-2016 16:56:26 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: Warsaw - Driver (PP) Description: Warsaw - Driver (PP) Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: wsddpp Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (06/26/2016 01:51:28 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: O programa FRST64.exe versão 26.6.2016.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações. ID de Processo: e20 Hora de Início: 01d1cfcac9d00ef0 Hora de Término: 1 Caminho do Aplicativo: C:\Users\ADM\Desktop\FRST64.exe Id do Relatório: Error: (06/26/2016 01:38:43 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: Não foi possível obter informações do Registro sobre os contadores de desempenho para WSearchIdxPi para a instância devido ao seguinte erro: A operação foi concluída com êxito. 0x0. Error: (06/26/2016 01:38:42 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Não é possível inicializar o monitoramento de desempenho não para o objeto coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Contexto: Aplicativo , Catálogo SystemIndex Error: (06/26/2016 01:38:42 PM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: Não é possível inicializar o monitoramento de desempenho do serviço coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Error: (06/26/2016 01:25:38 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: Não foi possível obter informações do Registro sobre os contadores de desempenho para WSearchIdxPi para a instância devido ao seguinte erro: A operação foi concluída com êxito. 0x0. Error: (06/26/2016 01:25:33 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Não é possível inicializar o monitoramento de desempenho não para o objeto coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Contexto: Aplicativo , Catálogo SystemIndex Error: (06/26/2016 01:25:32 PM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: Não é possível inicializar o monitoramento de desempenho do serviço coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Error: (06/25/2016 06:39:01 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: Não foi possível obter informações do Registro sobre os contadores de desempenho para WSearchIdxPi para a instância devido ao seguinte erro: A operação foi concluída com êxito. 0x0. Error: (06/25/2016 06:38:59 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Não é possível inicializar o monitoramento de desempenho não para o objeto coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Contexto: Aplicativo , Catálogo SystemIndex Error: (06/25/2016 06:38:58 PM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: Não é possível inicializar o monitoramento de desempenho do serviço coletor, pois os contadores não estão carregados ou o objeto de memória compartilhado não pode ser aberto. Isso afeta somente a disponibilidade dos contadores de desempenho. Reinicie o computador. Erros de Sistema: ============= Error: (06/26/2016 01:41:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (06/26/2016 01:40:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (06/26/2016 01:39:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (06/26/2016 01:39:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. Error: (06/26/2016 01:39:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização: gbpddreg Error: (06/26/2016 01:38:27 PM) (Source: NETLOGON) (EventID: 3095) (User: ) Description: Este computador foi configurado como membro de um grupo de trabalho e não como membro de um domínio. Não é necessário executar o serviço de logon de rede nesta configuração. Error: (06/26/2016 01:38:07 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 13:36:18 às ‎26/‎06/‎2016 não era esperado. Error: (06/26/2016 01:36:09 PM) (Source: NETLOGON) (EventID: 3095) (User: ) Description: Este computador foi configurado como membro de um grupo de trabalho e não como membro de um domínio. Não é necessário executar o serviço de logon de rede nesta configuração. Error: (06/26/2016 01:35:50 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento anterior do sistema em 13:29:14 às ‎26/‎06/‎2016 não era esperado. Error: (06/26/2016 01:28:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 = O sistema não pode encontrar o arquivo especificado. CodeIntegrity: =================================== Date: 2015-04-18 09:59:20.826 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2015-04-07 22:39:30.761 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2015-04-07 22:17:53.631 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2014-06-21 09:50:27.972 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2014-06-21 09:31:13.505 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2013-06-22 05:47:48.586 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2013-06-01 09:40:39.419 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2013-06-01 09:35:14.833 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2013-06-01 09:27:27.293 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2013-06-01 09:24:47.207 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz Percentagem de memória em uso: 68% RAM física total: 3895.11 MB RAM física disponível: 1234.17 MB Virtual Total: 7788.4 MB Virtual disponível: 4270.85 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:224.51 GB) (Free:46.62 GB) NTFS Drive d: () (Fixed) (Total:241.15 GB) (Free:93.81 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2BD2C32A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=224.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=241.2 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================