Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 21-09-2016
Executado por User (23-09-2016 09:16:55)
Executando a partir de C:\Users\User\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2015-07-06 18:40:16)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2791830172-3265485023-3169156640-500 - Administrator - Disabled)
Convidado (S-1-5-21-2791830172-3265485023-3169156640-501 - Limited - Enabled)
User (S-1-5-21-2791830172-3265485023-3169156640-1000 - Administrator - Enabled) => C:\Users\User
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
4shared Desktop (HKLM\...\4shared Desktop) (Version: 4.0.14.27376 - 4shared)
Adobe Flash Player 23 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.17) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.)
Aplicativo Itaú (HKLM\...\{A43DE586-3B07-4DC2-B40B-5D5C89B72931}) (Version: 1.0.70 - Banco Itaú)
Catalogo SR versão Catalogo SR (HKLM\...\{3AFCB471-58C4-4A25-B490-EF4DAD3CE505}_is1) (Version: Catalogo SR - SR Eletronica)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1531 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3234 - Intel Corporation)
J-Link ARM V4.24c (HKLM\...\J-Link ARM V4.24c) (Version: V4.24c - SEGGER Microcontroller Systeme GmbH)
J-Link V512g (HKLM\...\J-Link V512g) (Version: 5.12g - SEGGER)
Junk Mail filter update (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Localizador de Defeitos-2015 versão 8.0 (HKLM\...\{4B56C689-308B-43B2-B832-167BB1552F60}_is1) (Version: 8.0 - VeRSis Tecnologia)
Microsoft .NET Framework 4 Client Profile 简体中文语言包 (HKLM\...\Microsoft .NET Framework 4 Client Profile CHS Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended 简体中文语言包 (HKLM\...\Microsoft .NET Framework 4 Extended CHS Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Módulo de Proteção - Banco Santander (Brasil) S.A. (HKLM\...\{83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1) (Version: 3.12.1.2 - )
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero 7 Ultra Edition (HKLM\...\{4908C75E-E5E2-43F7-B1DF-023CBA831046}) (Version: 7.02.2631 - Nero AG)
NI LabVIEW Run-Time Engine 6.0 (HKLM\...\{9035E260-3188-11D4-80F7-0050DA5A2C97}) (Version: 6.0 - National Instruments)
Pacote de Driver do Windows - Segger (jlink) USB (07/28/2014 2.6.8.1) (HKLM\...\468237BA12C6D9DD0125166A16609C632EE9CF1C) (Version: 07/28/2014 2.6.8.1 - Segger)
Pacote de Driver do Windows - SEGGER (JLinkCDC) Ports (08/28/2014 6.0.2601.5) (HKLM\...\ED80E3D3A350D18BFD3D3D8DAED8E2B19105763A) (Version: 08/28/2014 6.0.2601.5 - SEGGER)
Plugable Digital Viewer (HKLM\...\Plugable Technologies Plugable Digital Viewer) (Version: 3.1.07 - Plugable Technologies)
ShopStream Connect (HKLM\...\{400D3672-C44E-475E-A6AF-BAB4BC3B37D6}) (Version: 11.2.0.1 - Snap-on Incorporated)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.26 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 11 (HKLM\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
Transpronics (HKLM\...\{E8269A94-E371-4F9C-BE63-5A2FEE02032B}) (Version: 2.09 - Al-Pron Electronics Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Warsaw 1.12.3.5 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia)
WELLON Uninstall (HKLM\...\WELLON) (Version: 4.5.1 - Tianjin Weilei Technology Ltd.)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinZip (HKLM\...\WinZip) (Version: 10.0 (6667) - WinZip Computing LP)
X431 One Click Update V1.01.001 (HKLM\...\{BF906EB7-25CE-44fc-9B13-8696FDB3AA80}_is1) (Version: - Launch Software Corporation)
Zed-BULL (HKLM\...\{4B74E8AE-35AB-4C7E-B40C-60794780B12D}) (Version: 5.0.6 - IstanbulAnahtar)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00000320-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0002E005-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0A5EFF5E-EE55-4B48-A050-757C5C1E3E35}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{10C2D663-8B04-11D2-860C-006097B7CE79}\localserver32 -> c:\Program Files\National Instruments\DataSocket\cwdssmgr.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{13486D50-4821-11D2-A494-3CB306C10000}\InprocServer32 -> c:\Windows\system32\opccomn_ps.dll (OPC Foundation)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{13486D51-4821-11D2-A494-3CB306C10000}\localserver32 -> c:\Windows\system32\Opcenum.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{17301DA3-C84D-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{17301DA4-C84D-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{192BB45A-9A99-4F62-8292-50957C910847}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{1ECC70A0-2BA2-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{2AFA9F10-0B6A-11D2-A250-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA0-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA1-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA2-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA3-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA4-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A0-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A1-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A2-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A3-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A4-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A5-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A6-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A7-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A8-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A9-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AA-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AB-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AC-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AD-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AE-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AF-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408B0-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408B8-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{36F5B0A5-2343-11D3-8CBF-0050049FD5AD}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{39C13A4D-011E-11D0-9675-0020AFD8ADB3}\InprocServer32 -> c:\Windows\system32\opcproxy.dll (OPC Foundation)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{3B6DFFB0-27B1-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{4F16D524-6F57-11D2-860C-006097B7CE79}\localserver32 -> c:\Program Files\National Instruments\DataSocket\cwdss.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{592301E0-2EF7-11CF-A543-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{5B789B81-E46E-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{672C43B0-27B5-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{6B4A54FB-4578-42F0-84A6-3E4BF5EFAEC6}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{6B5670C8-1EEC-4897-9A20-8FCA24056F3F}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{71029BF3-FCF5-11D2-9D5A-0060082AF991}\InprocServer32 -> c:\Windows\system32\ninetbrw.ocx (National Instruments Corp.)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{71FE8300-BC15-11D0-B248-00A024D830A2}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB250-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB251-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB252-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7ADE1830-2583-11D2-A39E-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7E985DEE-3D20-11D2-A3EA-006008CA119A}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicont.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7FB9A441-429A-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7FB9A442-429A-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{81124122-34F7-11D3-B548-444553540000}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{95F224E0-1366-11CF-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{97C81FAE-7A51-11D2-938C-00A02411EBE6}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B21-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B23-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B25-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B27-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A7C10FE5-E3FC-11D0-80E8-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{AC74EF35-F94C-11D0-80F9-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{ACCED810-35E9-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B52C4D77-A715-11D2-9BC4-006008CA11C3}\localserver32 -> c:\Program Files\National Instruments\DataSocket\OPCDemo.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B68DBFAB-16A0-11CE-80BF-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B8DA6310-E19B-11D0-933C-00A0C90DCAA9}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{C91C3158-8147-40AA-B79B-C9EFB35325C3}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{CFDC9C41-AF86-11D1-9B4D-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D1-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D2-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D3-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D5912801-7E0B-11D0-809C-00A02454310A}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D5DE8D20-5BB8-11D1-A1E3-00A0C90F2731}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69220-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69221-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69222-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69223-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69224-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D88AD4C0-2AE5-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4BE-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4C8-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4D2-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{DC60CED0-603E-11D1-B2E3-006097B77FF5}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{E5F37B00-EDF6-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446720-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446721-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446722-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F7C06880-F9B2-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F7C06881-F9B2-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F853ED23-9984-4FDE-9EDF-760A47043F79}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {269BE2A3-E253-46A3-98B1-3C5E7AF10686} - System32\Tasks\{A37E9DF4-2DA6-4C20-B3E8-197C45320260} => pcalua.exe -a "D:\microsoft .net framework 3.5.EXE" -d D:\
Task: {30A1C926-38CF-42D8-91B7-7FA00F2A268A} - System32\Tasks\{39FA02E5-EE3D-4750-8025-6B6341FE109F} => pcalua.exe -a "D:\Zed-BULLv508\Zed-BULL Setup v506.exe" -d D:\Zed-BULLv508
Task: {8A7543BE-ACD6-4D3C-9FB7-32E4197D280F} - System32\Tasks\{18D47685-753C-4C05-A7F4-559C3AF812DD} => pcalua.exe -a "E:\dados\SDG\SDG TEC\Arquivos EcuRepair BH\mega dvd\DIAGRAMA UPA\reparo hodometro\Peugeot BSI Calc\ST6UNST.EXE" -d "E:\dados\SDG\SDG TEC\Arquivos EcuRepair BH\mega dvd\DIAGRAMA UPA\reparo hodometro\Peugeot BSI Calc"
Task: {9726F0AF-0045-480B-B8D3-2F0996955B1E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
Task: {A1E9BA56-41CA-4079-9876-1184C39C8A86} - System32\Tasks\{8FB84A78-16B8-4CEC-88E5-FE7C0F1DE288} => pcalua.exe -a "C:\Users\User\Documents\SDG TEC\CD OBDTRONIC - NOVO\OBDTRONIC\install\Drivers Win98-ME-2K-XP\CtU2Kun.exe" -d "C:\Users\User\Documents\SDG TEC\CD OBDTRONIC - NOVO\OBDTRONIC\install\Drivers Win98-ME-2K-XP"
Task: {B844BACC-6A4A-41A8-B2A8-76864DE56509} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {CDD626E7-4698-4820-BD2E-ACE317EA8AA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {D100C093-F6C1-44BB-A6EF-5E6A0DAEC452} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {FE73A40F-CBFF-4553-95AC-8A79BE3FDD8F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-07-07 13:10 - 2012-09-29 13:24 - 00167936 _____ () C:\Windows\System32\HPM1210LM.DLL
2015-07-07 15:32 - 2012-09-29 13:24 - 00069632 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\HPM1210PP.dll
2015-07-07 13:10 - 2012-09-29 13:24 - 02396160 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\hpm1210su.dll
2015-07-07 13:10 - 2012-09-29 13:54 - 00794624 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\HPM1210GC.dll
2015-07-06 15:46 - 2013-07-09 13:56 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2016-03-11 17:31 - 2016-03-11 17:31 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-2070.dll
2016-09-15 09:58 - 2016-09-13 21:38 - 01806152 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-15 09:58 - 2016-09-13 21:38 - 00094024 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.116\libegl.dll
2016-09-23 09:10 - 2016-09-23 09:10 - 00012970 _____ () C:\Users\User\AppData\Local\Temp\winokgytv.exe
2006-10-26 21:30 - 2006-10-26 21:30 - 00065312 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2006-10-27 15:35 - 2006-10-27 15:35 - 00436512 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2006-10-26 13:56 - 2006-10-26 13:56 - 00757008 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\System32:94B8D4C9_Abn.gbp [2]
AlternateDataStreams: C:\Windows\System32:94B8D4C9_Uni.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [314]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancoreal.com.br -> hxxp://www.bancoreal.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancosantander.com.br -> hxxp://www.bancosantander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancosantander.com.br -> hxxps://www.bancosantander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\realsecureweb.com.br -> hxxps://www.realsecureweb.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santander.com.br -> hxxp://www.santander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santander.com.br -> www.santander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santanderempresarial.com.br -> hxxp://www.santanderempresarial.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santanderempresarial.com.br -> www.santanderempresarial.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernet.com.br -> hxxps://www.santandernet.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernet.com.br -> www.santandernet.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernetibe.com.br -> hxxps://www.santandernetibe.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernetibe.com.br -> www.santandernetibe.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\secureweb.com.br -> hxxps://www.secureweb.com.br
Existem ainda 1 sites a mais.
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2015-12-28 09:06 - 00000822 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{BC8B7936-3E20-4532-A977-1CC0A1D34065}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{260D1E81-7994-4E1A-9F67-914ABDCF2422}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{02E6B91C-2DA8-43A5-B47E-9EAD165AF5D8}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E18D459B-FF85-4FEC-9088-FA353600929F}] => (Allow) LPort=2869
FirewallRules: [{AD455284-94CC-4478-BCEC-C271A1317CC8}] => (Allow) LPort=1900
FirewallRules: [{7A3BF99B-02BF-480C-A99F-4B2C585DB913}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{6F50034D-5BC2-403E-B730-886A1D3FE712}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{85F20978-D676-4DB1-8FD7-4AC36EB7A9CA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{0D4C94A3-5A0F-4F51-A7B9-DABC99CB5DDF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{72E72B47-C056-4E37-9D77-42AF6213A5EB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{6E299D61-75A2-46BB-8234-77E538D84A7D}E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe] => (Allow) E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe
FirewallRules: [UDP Query User{C185B861-349B-46B5-94D8-8B44D362DBF7}E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe] => (Allow) E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe
FirewallRules: [TCP Query User{CB23BAB0-E166-4C90-8960-2D48B8755479}C:\windows\system32\igfxtray.exe] => (Block) C:\windows\system32\igfxtray.exe
FirewallRules: [UDP Query User{A06C9AF2-6573-472A-AE5F-92BD9A78D8CA}C:\windows\system32\igfxtray.exe] => (Block) C:\windows\system32\igfxtray.exe
FirewallRules: [TCP Query User{6341C0B7-13B7-48AA-8D21-CC880A40B01F}C:\program files\ccleaner\ccleaner.exe] => (Allow) C:\program files\ccleaner\ccleaner.exe
FirewallRules: [UDP Query User{930FAB35-91EB-4120-8489-55945CF5386D}C:\program files\ccleaner\ccleaner.exe] => (Allow) C:\program files\ccleaner\ccleaner.exe
FirewallRules: [TCP Query User{FDE4D559-AFD7-4648-AE77-F5363A0CFCFC}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe
FirewallRules: [UDP Query User{E63D1722-FF89-46FA-99BF-11268BCD8A37}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe
FirewallRules: [{11C03DFD-01D0-45D9-B206-BF0BDE6668EF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{669B5533-58A7-4783-959D-C435B3FB3E0F}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{08B1E9DC-D745-4560-8E06-681AFEEBD827}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{69CBDD73-E2C8-461F-A22C-8A635CB9FEB2}C:\users\user\appdata\local\temp\windluym.exe] => (Block) C:\users\user\appdata\local\temp\windluym.exe
FirewallRules: [UDP Query User{9C1A15DC-4D39-41A1-9365-79260CEEBD44}C:\users\user\appdata\local\temp\windluym.exe] => (Block) C:\users\user\appdata\local\temp\windluym.exe
FirewallRules: [TCP Query User{D2F8F966-1D58-4591-9FD6-D30131F67472}C:\users\user\appdata\local\temp\winpexsqk.exe] => (Block) C:\users\user\appdata\local\temp\winpexsqk.exe
FirewallRules: [UDP Query User{9847F1FA-57FF-4B5C-A766-177B8F0C6EEB}C:\users\user\appdata\local\temp\winpexsqk.exe] => (Block) C:\users\user\appdata\local\temp\winpexsqk.exe
FirewallRules: [TCP Query User{6C15BAF5-741B-49E2-804E-B40B701C4604}C:\windows\system32\igfxpers.exe] => (Block) C:\windows\system32\igfxpers.exe
FirewallRules: [UDP Query User{4B657CB1-384A-4E9C-AAD6-E2A1432E6807}C:\windows\system32\igfxpers.exe] => (Block) C:\windows\system32\igfxpers.exe
FirewallRules: [TCP Query User{BBDEF601-48D9-4BD3-8569-5C884B622D1C}C:\users\user\appdata\local\temp\wood.exe] => (Block) C:\users\user\appdata\local\temp\wood.exe
FirewallRules: [UDP Query User{538301C9-8630-4BD8-9770-F8E85938D826}C:\users\user\appdata\local\temp\wood.exe] => (Block) C:\users\user\appdata\local\temp\wood.exe
FirewallRules: [TCP Query User{2FA1C2A3-98EF-442B-A886-C4A617AE1DFC}C:\users\user\appdata\local\temp\winqgji.exe] => (Block) C:\users\user\appdata\local\temp\winqgji.exe
FirewallRules: [UDP Query User{58E6318C-BB96-47B5-867C-CED0D8E09C87}C:\users\user\appdata\local\temp\winqgji.exe] => (Block) C:\users\user\appdata\local\temp\winqgji.exe
FirewallRules: [TCP Query User{B5729FBA-C5B4-4B8A-97B1-018B6B885264}C:\users\user\appdata\local\temp\winokgytv.exe] => (Block) C:\users\user\appdata\local\temp\winokgytv.exe
FirewallRules: [UDP Query User{ACE61D29-3CD0-4364-9C16-CABF579FE022}C:\users\user\appdata\local\temp\winokgytv.exe] => (Block) C:\users\user\appdata\local\temp\winokgytv.exe
==================== Pontos de Restauração =========================
ATENÇÃO: A Restauração do Sistema está desabilitada
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (09/23/2016 08:56:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RRT (1).exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1b94
Hora de Início: 01d215916ca01e41
Hora de Término: 0
Caminho do Aplicativo: C:\Users\User\Downloads\RRT (1).exe
Id do Relatório: b5cfee7f-8184-11e6-8c7b-382c4a8d1138
Error: (09/23/2016 08:55:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RRT (1).exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 974
Hora de Início: 01d215913048997b
Hora de Término: 0
Caminho do Aplicativo: C:\Users\User\Downloads\RRT (1).exe
Id do Relatório: a6cbce9e-8184-11e6-8c7b-382c4a8d1138
Error: (09/20/2016 11:14:50 AM) (Source: Microsoft Office 12) (EventID: 2001) (User: )
Description: Rejected Safe Mode action : Microsoft Office Outlook.
Error: (09/19/2016 05:07:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa OUTLOOK.EXE versão 12.0.4518.1014 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 2cec
Hora de Início: 01d212b159a4e039
Hora de Término: 3
Caminho do Aplicativo: C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
Id do Relatório: 9e14fb78-7ea4-11e6-a5bd-382c4a8d1138
Error: (09/19/2016 03:38:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Wellon.exe versão 4.5.0.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 11a8
Hora de Início: 01d212871cca510a
Hora de Término: 50
Caminho do Aplicativo: C:\weilei\WELLON\Wellon.exe
Id do Relatório: 3104b0d4-7e98-11e6-b90f-382c4a8d1138
Error: (09/14/2016 08:57:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: setup.exe_Google Chrome Installer, versão: 53.0.2785.101, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x688
Hora de início do aplicativo com falha: 0x01d20e7f36893fbb
Caminho do aplicativo com falha: C:\Program Files\Google\Chrome\Application\53.0.2785.101\Installer\setup.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 74ed918c-7a72-11e6-b90b-382c4a8d1138
Error: (09/14/2016 08:57:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: svchost.exe, versão: 5.1.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00055f1b
Identificação do processo com falha: 0x1078
Hora de início do aplicativo com falha: 0x01d20e7f36b2729f
Caminho do aplicativo com falha: C:\Windows\svchost.exe
FCaminho do módulo de falhas: C:\Windows\SYSTEM32\ntdll.dll
Identificação do Relatório: 74edb89c-7a72-11e6-b90b-382c4a8d1138
Error: (09/08/2016 09:56:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: svchost.exe, versão: 5.1.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00055f1b
Identificação do processo com falha: 0xb3c
Hora de início do aplicativo com falha: 0x01d209d079ad76ca
Caminho do aplicativo com falha: C:\Windows\svchost.exe
FCaminho do módulo de falhas: C:\Windows\SYSTEM32\ntdll.dll
Identificação do Relatório: b83e08bf-75c3-11e6-87e3-382c4a8d1138
Error: (09/08/2016 09:56:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: setup.exe_Google Chrome Installer, versão: 53.0.2785.89, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x1e0
Hora de início do aplicativo com falha: 0x01d209d0798d6ba7
Caminho do aplicativo com falha: C:\Program Files\Google\Chrome\Application\53.0.2785.89\Installer\setup.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: b837ee3e-75c3-11e6-87e3-382c4a8d1138
Error: (09/06/2016 06:21:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: WinRAR.exe, versão: 5.20.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x3fb4
Hora de início do aplicativo com falha: 0x01d2088495a6c6b0
Caminho do aplicativo com falha: C:\Program Files\WinRAR\WinRAR.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: d3558411-7477-11e6-8a35-382c4a8d1138
Erros de Sistema:
=============
Error: (09/23/2016 09:06:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/23/2016 09:00:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/23/2016 08:38:13 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/23/2016 08:37:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/22/2016 07:52:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou com o DCOM dentro do tempo limite requerido.
Error: (09/22/2016 07:33:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 11 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 06:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 10 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 05:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 9 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 04:33:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 8 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 03:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 7 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
CodeIntegrity:
===================================
Date: 2016-08-04 17:04:51.197
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.177
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.177
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.157
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3250 CPU @ 3.50GHz
Percentagem de memória em uso: 76%
RAM física total: 1910.06 MB
RAM física disponível: 443.52 MB
Virtual Total: 4775.06 MB
Virtual disponível: 2916.07 MB
==================== Drives ================================
Drive c: (Sistema) (Fixed) (Total:931.16 GB) (Free:746.29 GB) NTFS
Drive e: (SAMSUNG) (Fixed) (Total:465.76 GB) (Free:174.67 GB) NTFS
Drive y: (Sistema) (Network) (Total:465.66 GB) (Free:416.68 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6AC284F7)
Partition 1: (Active) - (Size=356 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B6ABC142)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por User (23-09-2016 09:16:55)
Executando a partir de C:\Users\User\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2015-07-06 18:40:16)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-2791830172-3265485023-3169156640-500 - Administrator - Disabled)
Convidado (S-1-5-21-2791830172-3265485023-3169156640-501 - Limited - Enabled)
User (S-1-5-21-2791830172-3265485023-3169156640-1000 - Administrator - Enabled) => C:\Users\User
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
4shared Desktop (HKLM\...\4shared Desktop) (Version: 4.0.14.27376 - 4shared)
Adobe Flash Player 23 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.17) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.)
Aplicativo Itaú (HKLM\...\{A43DE586-3B07-4DC2-B40B-5D5C89B72931}) (Version: 1.0.70 - Banco Itaú)
Catalogo SR versão Catalogo SR (HKLM\...\{3AFCB471-58C4-4A25-B490-EF4DAD3CE505}_is1) (Version: Catalogo SR - SR Eletronica)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1531 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3234 - Intel Corporation)
J-Link ARM V4.24c (HKLM\...\J-Link ARM V4.24c) (Version: V4.24c - SEGGER Microcontroller Systeme GmbH)
J-Link V512g (HKLM\...\J-Link V512g) (Version: 5.12g - SEGGER)
Junk Mail filter update (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Localizador de Defeitos-2015 versão 8.0 (HKLM\...\{4B56C689-308B-43B2-B832-167BB1552F60}_is1) (Version: 8.0 - VeRSis Tecnologia)
Microsoft .NET Framework 4 Client Profile 简体中文语言包 (HKLM\...\Microsoft .NET Framework 4 Client Profile CHS Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended 简体中文语言包 (HKLM\...\Microsoft .NET Framework 4 Extended CHS Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Módulo de Proteção - Banco Santander (Brasil) S.A. (HKLM\...\{83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1) (Version: 3.12.1.2 - )
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero 7 Ultra Edition (HKLM\...\{4908C75E-E5E2-43F7-B1DF-023CBA831046}) (Version: 7.02.2631 - Nero AG)
NI LabVIEW Run-Time Engine 6.0 (HKLM\...\{9035E260-3188-11D4-80F7-0050DA5A2C97}) (Version: 6.0 - National Instruments)
Pacote de Driver do Windows - Segger (jlink) USB (07/28/2014 2.6.8.1) (HKLM\...\468237BA12C6D9DD0125166A16609C632EE9CF1C) (Version: 07/28/2014 2.6.8.1 - Segger)
Pacote de Driver do Windows - SEGGER (JLinkCDC) Ports (08/28/2014 6.0.2601.5) (HKLM\...\ED80E3D3A350D18BFD3D3D8DAED8E2B19105763A) (Version: 08/28/2014 6.0.2601.5 - SEGGER)
Plugable Digital Viewer (HKLM\...\Plugable Technologies Plugable Digital Viewer) (Version: 3.1.07 - Plugable Technologies)
ShopStream Connect (HKLM\...\{400D3672-C44E-475E-A6AF-BAB4BC3B37D6}) (Version: 11.2.0.1 - Snap-on Incorporated)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.26 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 11 (HKLM\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
Transpronics (HKLM\...\{E8269A94-E371-4F9C-BE63-5A2FEE02032B}) (Version: 2.09 - Al-Pron Electronics Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Warsaw 1.12.3.5 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.3.5 - GAS Tecnologia)
WELLON Uninstall (HKLM\...\WELLON) (Version: 4.5.1 - Tianjin Weilei Technology Ltd.)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinZip (HKLM\...\WinZip) (Version: 10.0 (6667) - WinZip Computing LP)
X431 One Click Update V1.01.001 (HKLM\...\{BF906EB7-25CE-44fc-9B13-8696FDB3AA80}_is1) (Version: - Launch Software Corporation)
Zed-BULL (HKLM\...\{4B74E8AE-35AB-4C7E-B40C-60794780B12D}) (Version: 5.0.6 - IstanbulAnahtar)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00000320-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0002E005-0000-0000-C000-000000000046}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0001}\InprocServer32 -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0001}\InprocServer32 -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0A5EFF5E-EE55-4B48-A050-757C5C1E3E35}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{10C2D663-8B04-11D2-860C-006097B7CE79}\localserver32 -> c:\Program Files\National Instruments\DataSocket\cwdssmgr.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{13486D50-4821-11D2-A494-3CB306C10000}\InprocServer32 -> c:\Windows\system32\opccomn_ps.dll (OPC Foundation)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{13486D51-4821-11D2-A494-3CB306C10000}\localserver32 -> c:\Windows\system32\Opcenum.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{17301DA3-C84D-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{17301DA4-C84D-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{192BB45A-9A99-4F62-8292-50957C910847}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{1ECC70A0-2BA2-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{2AFA9F10-0B6A-11D2-A250-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA0-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA1-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA2-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA3-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{310FDEA4-B150-11D3-B3F0-00104B726EA8}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A0-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A1-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A2-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A3-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A4-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A5-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A6-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A7-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A8-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408A9-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AA-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AB-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AC-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AD-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AE-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408AF-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408B0-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{316408B8-41E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{36F5B0A5-2343-11D3-8CBF-0050049FD5AD}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{39C13A4D-011E-11D0-9675-0020AFD8ADB3}\InprocServer32 -> c:\Windows\system32\opcproxy.dll (OPC Foundation)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{3B6DFFB0-27B1-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{4F16D524-6F57-11D2-860C-006097B7CE79}\localserver32 -> c:\Program Files\National Instruments\DataSocket\cwdss.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{592301E0-2EF7-11CF-A543-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{5B789B81-E46E-11CF-AE6F-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{672C43B0-27B5-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{6B4A54FB-4578-42F0-84A6-3E4BF5EFAEC6}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{6B5670C8-1EEC-4897-9A20-8FCA24056F3F}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{71029BF3-FCF5-11D2-9D5A-0060082AF991}\InprocServer32 -> c:\Windows\system32\ninetbrw.ocx (National Instruments Corp.)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{71FE8300-BC15-11D0-B248-00A024D830A2}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB250-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB251-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{72CEB252-CB2D-11D1-B3A7-006097B77FF4}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7ADE1830-2583-11D2-A39E-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7E985DEE-3D20-11D2-A3EA-006008CA119A}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicont.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7FB9A441-429A-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{7FB9A442-429A-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{81124122-34F7-11D3-B548-444553540000}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{95F224E0-1366-11CF-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{97C81FAE-7A51-11D2-938C-00A02411EBE6}\InprocServer32 -> c:\Program Files\National Instruments\shared\nicontdt.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B21-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B23-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B25-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A0027B27-37E5-11D0-A547-0020AF1E73B9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{A7C10FE5-E3FC-11D0-80E8-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{AC74EF35-F94C-11D0-80F9-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{ACCED810-35E9-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B52C4D77-A715-11D2-9BC4-006008CA11C3}\localserver32 -> c:\Program Files\National Instruments\DataSocket\OPCDemo.exe ()
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B68DBFAB-16A0-11CE-80BF-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{B8DA6310-E19B-11D0-933C-00A0C90DCAA9}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{C91C3158-8147-40AA-B79B-C9EFB35325C3}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{CFDC9C41-AF86-11D1-9B4D-00A02454310A}\InprocServer32 -> c:\Windows\system32\nids.dll (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D1-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D2-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D4A414D3-379C-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D5912801-7E0B-11D0-809C-00A02454310A}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D5DE8D20-5BB8-11D1-A1E3-00A0C90F2731}\InprocServer32 -> não caminho do arquivo
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69220-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69221-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69222-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69223-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D7E69224-36A8-11D2-A257-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D88AD4C0-2AE5-11D2-A254-00A024D8324D}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4BE-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4C8-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{D940E4D2-6079-11CE-88CB-0020AF6845F6}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{DC60CED0-603E-11D1-B2E3-006097B77FF5}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{E5F37B00-EDF6-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446720-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446721-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{EA446722-595A-11D2-A3AA-00A024D8325C}\InprocServer32 -> c:\Windows\system32\cw3dgrph.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F7C06880-F9B2-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F7C06881-F9B2-11CE-AE6E-0020AF31CEF9}\InprocServer32 -> c:\Windows\system32\cwui.ocx (National Instruments)
CustomCLSID: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000_Classes\CLSID\{F853ED23-9984-4FDE-9EDF-760A47043F79}\InprocServer32 -> c:\Program Files\National Instruments\Shared\NI-Reports\NiReports.dll (National Instruments)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {269BE2A3-E253-46A3-98B1-3C5E7AF10686} - System32\Tasks\{A37E9DF4-2DA6-4C20-B3E8-197C45320260} => pcalua.exe -a "D:\microsoft .net framework 3.5.EXE" -d D:\
Task: {30A1C926-38CF-42D8-91B7-7FA00F2A268A} - System32\Tasks\{39FA02E5-EE3D-4750-8025-6B6341FE109F} => pcalua.exe -a "D:\Zed-BULLv508\Zed-BULL Setup v506.exe" -d D:\Zed-BULLv508
Task: {8A7543BE-ACD6-4D3C-9FB7-32E4197D280F} - System32\Tasks\{18D47685-753C-4C05-A7F4-559C3AF812DD} => pcalua.exe -a "E:\dados\SDG\SDG TEC\Arquivos EcuRepair BH\mega dvd\DIAGRAMA UPA\reparo hodometro\Peugeot BSI Calc\ST6UNST.EXE" -d "E:\dados\SDG\SDG TEC\Arquivos EcuRepair BH\mega dvd\DIAGRAMA UPA\reparo hodometro\Peugeot BSI Calc"
Task: {9726F0AF-0045-480B-B8D3-2F0996955B1E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
Task: {A1E9BA56-41CA-4079-9876-1184C39C8A86} - System32\Tasks\{8FB84A78-16B8-4CEC-88E5-FE7C0F1DE288} => pcalua.exe -a "C:\Users\User\Documents\SDG TEC\CD OBDTRONIC - NOVO\OBDTRONIC\install\Drivers Win98-ME-2K-XP\CtU2Kun.exe" -d "C:\Users\User\Documents\SDG TEC\CD OBDTRONIC - NOVO\OBDTRONIC\install\Drivers Win98-ME-2K-XP"
Task: {B844BACC-6A4A-41A8-B2A8-76864DE56509} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {CDD626E7-4698-4820-BD2E-ACE317EA8AA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {D100C093-F6C1-44BB-A6EF-5E6A0DAEC452} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {FE73A40F-CBFF-4553-95AC-8A79BE3FDD8F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-07-07 13:10 - 2012-09-29 13:24 - 00167936 _____ () C:\Windows\System32\HPM1210LM.DLL
2015-07-07 15:32 - 2012-09-29 13:24 - 00069632 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\HPM1210PP.dll
2015-07-07 13:10 - 2012-09-29 13:24 - 02396160 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\hpm1210su.dll
2015-07-07 13:10 - 2012-09-29 13:54 - 00794624 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\HPM1210GC.dll
2015-07-06 15:46 - 2013-07-09 13:56 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2016-03-11 17:31 - 2016-03-11 17:31 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-2070.dll
2016-09-15 09:58 - 2016-09-13 21:38 - 01806152 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-15 09:58 - 2016-09-13 21:38 - 00094024 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.116\libegl.dll
2016-09-23 09:10 - 2016-09-23 09:10 - 00012970 _____ () C:\Users\User\AppData\Local\Temp\winokgytv.exe
2006-10-26 21:30 - 2006-10-26 21:30 - 00065312 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2006-10-27 15:35 - 2006-10-27 15:35 - 00436512 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2006-10-26 13:56 - 2006-10-26 13:56 - 00757008 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\System32:94B8D4C9_Abn.gbp [2]
AlternateDataStreams: C:\Windows\System32:94B8D4C9_Uni.gbp [2]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [314]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancoreal.com.br -> hxxp://www.bancoreal.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancosantander.com.br -> hxxp://www.bancosantander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\bancosantander.com.br -> hxxps://www.bancosantander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\realsecureweb.com.br -> hxxps://www.realsecureweb.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santander.com.br -> hxxp://www.santander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santander.com.br -> www.santander.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santanderempresarial.com.br -> hxxp://www.santanderempresarial.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santanderempresarial.com.br -> www.santanderempresarial.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernet.com.br -> hxxps://www.santandernet.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernet.com.br -> www.santandernet.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernetibe.com.br -> hxxps://www.santandernetibe.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\santandernetibe.com.br -> www.santandernetibe.com.br
IE trusted site: HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\...\secureweb.com.br -> hxxps://www.secureweb.com.br
Existem ainda 1 sites a mais.
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:04 - 2015-12-28 09:06 - 00000822 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-2791830172-3265485023-3169156640-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{BC8B7936-3E20-4532-A977-1CC0A1D34065}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{260D1E81-7994-4E1A-9F67-914ABDCF2422}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{02E6B91C-2DA8-43A5-B47E-9EAD165AF5D8}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E18D459B-FF85-4FEC-9088-FA353600929F}] => (Allow) LPort=2869
FirewallRules: [{AD455284-94CC-4478-BCEC-C271A1317CC8}] => (Allow) LPort=1900
FirewallRules: [{7A3BF99B-02BF-480C-A99F-4B2C585DB913}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{6F50034D-5BC2-403E-B730-886A1D3FE712}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{85F20978-D676-4DB1-8FD7-4AC36EB7A9CA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{0D4C94A3-5A0F-4F51-A7B9-DABC99CB5DDF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{72E72B47-C056-4E37-9D77-42AF6213A5EB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{6E299D61-75A2-46BB-8234-77E538D84A7D}E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe] => (Allow) E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe
FirewallRules: [UDP Query User{C185B861-349B-46B5-94D8-8B44D362DBF7}E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe] => (Allow) E:\dados\sdg\chiptonic\obdtronic\cd obdtronic - novo\leitura de senha\gm\leitura de senha gm\delco vhc\delco.exe
FirewallRules: [TCP Query User{CB23BAB0-E166-4C90-8960-2D48B8755479}C:\windows\system32\igfxtray.exe] => (Block) C:\windows\system32\igfxtray.exe
FirewallRules: [UDP Query User{A06C9AF2-6573-472A-AE5F-92BD9A78D8CA}C:\windows\system32\igfxtray.exe] => (Block) C:\windows\system32\igfxtray.exe
FirewallRules: [TCP Query User{6341C0B7-13B7-48AA-8D21-CC880A40B01F}C:\program files\ccleaner\ccleaner.exe] => (Allow) C:\program files\ccleaner\ccleaner.exe
FirewallRules: [UDP Query User{930FAB35-91EB-4120-8489-55945CF5386D}C:\program files\ccleaner\ccleaner.exe] => (Allow) C:\program files\ccleaner\ccleaner.exe
FirewallRules: [TCP Query User{FDE4D559-AFD7-4648-AE77-F5363A0CFCFC}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe
FirewallRules: [UDP Query User{E63D1722-FF89-46FA-99BF-11268BCD8A37}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe
FirewallRules: [{11C03DFD-01D0-45D9-B206-BF0BDE6668EF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{669B5533-58A7-4783-959D-C435B3FB3E0F}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{08B1E9DC-D745-4560-8E06-681AFEEBD827}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{69CBDD73-E2C8-461F-A22C-8A635CB9FEB2}C:\users\user\appdata\local\temp\windluym.exe] => (Block) C:\users\user\appdata\local\temp\windluym.exe
FirewallRules: [UDP Query User{9C1A15DC-4D39-41A1-9365-79260CEEBD44}C:\users\user\appdata\local\temp\windluym.exe] => (Block) C:\users\user\appdata\local\temp\windluym.exe
FirewallRules: [TCP Query User{D2F8F966-1D58-4591-9FD6-D30131F67472}C:\users\user\appdata\local\temp\winpexsqk.exe] => (Block) C:\users\user\appdata\local\temp\winpexsqk.exe
FirewallRules: [UDP Query User{9847F1FA-57FF-4B5C-A766-177B8F0C6EEB}C:\users\user\appdata\local\temp\winpexsqk.exe] => (Block) C:\users\user\appdata\local\temp\winpexsqk.exe
FirewallRules: [TCP Query User{6C15BAF5-741B-49E2-804E-B40B701C4604}C:\windows\system32\igfxpers.exe] => (Block) C:\windows\system32\igfxpers.exe
FirewallRules: [UDP Query User{4B657CB1-384A-4E9C-AAD6-E2A1432E6807}C:\windows\system32\igfxpers.exe] => (Block) C:\windows\system32\igfxpers.exe
FirewallRules: [TCP Query User{BBDEF601-48D9-4BD3-8569-5C884B622D1C}C:\users\user\appdata\local\temp\wood.exe] => (Block) C:\users\user\appdata\local\temp\wood.exe
FirewallRules: [UDP Query User{538301C9-8630-4BD8-9770-F8E85938D826}C:\users\user\appdata\local\temp\wood.exe] => (Block) C:\users\user\appdata\local\temp\wood.exe
FirewallRules: [TCP Query User{2FA1C2A3-98EF-442B-A886-C4A617AE1DFC}C:\users\user\appdata\local\temp\winqgji.exe] => (Block) C:\users\user\appdata\local\temp\winqgji.exe
FirewallRules: [UDP Query User{58E6318C-BB96-47B5-867C-CED0D8E09C87}C:\users\user\appdata\local\temp\winqgji.exe] => (Block) C:\users\user\appdata\local\temp\winqgji.exe
FirewallRules: [TCP Query User{B5729FBA-C5B4-4B8A-97B1-018B6B885264}C:\users\user\appdata\local\temp\winokgytv.exe] => (Block) C:\users\user\appdata\local\temp\winokgytv.exe
FirewallRules: [UDP Query User{ACE61D29-3CD0-4364-9C16-CABF579FE022}C:\users\user\appdata\local\temp\winokgytv.exe] => (Block) C:\users\user\appdata\local\temp\winokgytv.exe
==================== Pontos de Restauração =========================
ATENÇÃO: A Restauração do Sistema está desabilitada
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (09/23/2016 08:56:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RRT (1).exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 1b94
Hora de Início: 01d215916ca01e41
Hora de Término: 0
Caminho do Aplicativo: C:\Users\User\Downloads\RRT (1).exe
Id do Relatório: b5cfee7f-8184-11e6-8c7b-382c4a8d1138
Error: (09/23/2016 08:55:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa RRT (1).exe versão 1.0.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 974
Hora de Início: 01d215913048997b
Hora de Término: 0
Caminho do Aplicativo: C:\Users\User\Downloads\RRT (1).exe
Id do Relatório: a6cbce9e-8184-11e6-8c7b-382c4a8d1138
Error: (09/20/2016 11:14:50 AM) (Source: Microsoft Office 12) (EventID: 2001) (User: )
Description: Rejected Safe Mode action : Microsoft Office Outlook.
Error: (09/19/2016 05:07:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa OUTLOOK.EXE versão 12.0.4518.1014 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 2cec
Hora de Início: 01d212b159a4e039
Hora de Término: 3
Caminho do Aplicativo: C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
Id do Relatório: 9e14fb78-7ea4-11e6-a5bd-382c4a8d1138
Error: (09/19/2016 03:38:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Wellon.exe versão 4.5.0.1 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.
ID de Processo: 11a8
Hora de Início: 01d212871cca510a
Hora de Término: 50
Caminho do Aplicativo: C:\weilei\WELLON\Wellon.exe
Id do Relatório: 3104b0d4-7e98-11e6-b90f-382c4a8d1138
Error: (09/14/2016 08:57:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: setup.exe_Google Chrome Installer, versão: 53.0.2785.101, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x688
Hora de início do aplicativo com falha: 0x01d20e7f36893fbb
Caminho do aplicativo com falha: C:\Program Files\Google\Chrome\Application\53.0.2785.101\Installer\setup.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: 74ed918c-7a72-11e6-b90b-382c4a8d1138
Error: (09/14/2016 08:57:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: svchost.exe, versão: 5.1.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00055f1b
Identificação do processo com falha: 0x1078
Hora de início do aplicativo com falha: 0x01d20e7f36b2729f
Caminho do aplicativo com falha: C:\Windows\svchost.exe
FCaminho do módulo de falhas: C:\Windows\SYSTEM32\ntdll.dll
Identificação do Relatório: 74edb89c-7a72-11e6-b90b-382c4a8d1138
Error: (09/08/2016 09:56:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: svchost.exe, versão: 5.1.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: ntdll.dll, versão: 6.1.7601.18247, carimbo de hora: 0x521ea91c
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00055f1b
Identificação do processo com falha: 0xb3c
Hora de início do aplicativo com falha: 0x01d209d079ad76ca
Caminho do aplicativo com falha: C:\Windows\svchost.exe
FCaminho do módulo de falhas: C:\Windows\SYSTEM32\ntdll.dll
Identificação do Relatório: b83e08bf-75c3-11e6-87e3-382c4a8d1138
Error: (09/08/2016 09:56:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: setup.exe_Google Chrome Installer, versão: 53.0.2785.89, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x1e0
Hora de início do aplicativo com falha: 0x01d209d0798d6ba7
Caminho do aplicativo com falha: C:\Program Files\Google\Chrome\Application\53.0.2785.89\Installer\setup.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: b837ee3e-75c3-11e6-87e3-382c4a8d1138
Error: (09/06/2016 06:21:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome de aplicativo com falha: WinRAR.exe, versão: 5.20.0.0, carimbo de hora: 0x3b866bf0
Nome do módulo de falhas: unknown, versão: 0.0.0.0, carimbo de hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento com falha: 0xffffffff
Identificação do processo com falha: 0x3fb4
Hora de início do aplicativo com falha: 0x01d2088495a6c6b0
Caminho do aplicativo com falha: C:\Program Files\WinRAR\WinRAR.exe
FCaminho do módulo de falhas: unknown
Identificação do Relatório: d3558411-7477-11e6-8a35-382c4a8d1138
Erros de Sistema:
=============
Error: (09/23/2016 09:06:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/23/2016 09:00:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/23/2016 08:38:13 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/23/2016 08:37:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Wellon usb programmer driver devido ao seguinte erro:
O serviço não pode ser iniciado porque está desativado ou não tem dispositivos ativados associados.
Error: (09/22/2016 07:52:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: O servidor {F9717507-6651-4EDB-BFF7-AE615179BCCF} não se registrou com o DCOM dentro do tempo limite requerido.
Error: (09/22/2016 07:33:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 11 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 06:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 10 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 05:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 9 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 04:33:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 8 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
Error: (09/22/2016 03:33:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 7 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.
CodeIntegrity:
===================================
Date: 2016-08-04 17:04:51.197
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.187
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.177
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.177
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.167
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2016-08-04 17:04:51.157
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3250 CPU @ 3.50GHz
Percentagem de memória em uso: 76%
RAM física total: 1910.06 MB
RAM física disponível: 443.52 MB
Virtual Total: 4775.06 MB
Virtual disponível: 2916.07 MB
==================== Drives ================================
Drive c: (Sistema) (Fixed) (Total:931.16 GB) (Free:746.29 GB) NTFS
Drive e: (SAMSUNG) (Fixed) (Total:465.76 GB) (Free:174.67 GB) NTFS
Drive y: (Sistema) (Network) (Total:465.66 GB) (Free:416.68 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6AC284F7)
Partition 1: (Active) - (Size=356 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B6ABC142)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================