Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 10-10-2016
Executado por marise (11-10-2016 11:07:10)
Executando a partir de C:\Users\marise\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-05-07 15:56:30)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1436142009-3570348431-4129401212-500 - Administrator - Disabled)
Convidado (S-1-5-21-1436142009-3570348431-4129401212-501 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
64 Bit HP CIO Components Installer (Version: 7.2.9 - Hewlett-Packard) Hidden
ACI (HKLM-x32\...\EBB7DDC5-F8A7-4C1A-8BDB-C64456D342A5) (Version: 1.58 - Ministério do Trabalho e Emprego)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.8.800.175 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Assistente de Instalação Certisign (HKLM-x32\...\{6FBA74BD-149F-4521-B921-FFCC84876864}) (Version: 1.10.0.0 - CERTISIGN)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
CAT VERSÃO 4.0 (HKLM-x32\...\CAT 4.0_mp1) (Version: - DATAPREV)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
CMS (HKLM-x32\...\{E44BF26A-3EA8-4DF0-BB89-66B5A9834E44}) (Version: 4.1.11.0506 - CMS)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Conectividade Social (HKLM-x32\...\Conectividade Social) (Version: - )
Conexant Audio Filter Agent (HKLM\...\cAudioFilterAgent) (Version: 1.7.36.0 - Conexant Systems)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.50.5.51 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.109.0 - Conexant Systems)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.2.6102 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Desinstalar impressora EPSON L200 Series (HKLM\...\EPSON L200 Series) (Version: - SEIKO EPSON Corporation)
ePass2003 (Remover somente) (HKLM-x32\...\ePass2003-4FE7-A218-48BDAE051E2B_std) (Version: - )
EPSON L365 Series Printer Uninstall (HKLM\...\EPSON L365 Series) (Version: - SEIKO EPSON Corporation)
Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Giesecke & Devrient GmbH StarSign CUT (HKLM-x32\...\SZCCID) (Version: 1.7.17.0 - Giesecke & Devrient GmbH)
Giesecke & Devrient GmbH StarSign CUT (x32 Version: 1.7.17.0 - Giesecke & Devrient GmbH) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GRRF Eletrônica (HKLM-x32\...\GRRF Eletrônica) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2639 - Intel Corporation)
IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2014) (Version: 1.0 - Receita Federal do Brasil)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 48.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 pt-BR)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nuance PaperPort 12 (HKLM-x32\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
PC-CCID (HKLM\...\{3DCDFCDB-4D96-4CF0-9BB3-C91DAE9073F3}) (Version: 2.0.0 - Gemalto)
Player (HKLM-x32\...\Player) (Version: - )
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0019 - Realtek)
SafeSign 64-bits (HKLM\...\{2DF407D3-A8AD-4ACF-BFD5-5F7D42EC62FD}) (Version: 3.0.87 - A.E.T. Europe B.V.)
Samsung SCX-6x55X Series (HKLM-x32\...\Samsung SCX-6x55X Series) (Version: - Samsung Electronics CO.,LTD)
Samsung SyncThru 5.0 (HKLM-x32\...\SyncThru5) (Version: - Samsung Electronics Co., Ltd.)
Scan and Fax Manager 2 (3.01.11.00) (HKLM-x32\...\Scan and Fax Manager 2) (Version: 3.01.11 - Samsung)
Scansoft PDF Professional (x32 Version: - ) Hidden
SEFIP 8.40 (HKLM-x32\...\SEFIP 8.40) (Version: - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SXPIS - Sistema CAIXA - PIS Empresa - Ambiente Empresa (HKLM-x32\...\SXPIS - Sistema CAIXA - PIS Empresa - Ambiente Empresa) (Version: - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
UltraVnc (HKLM\...\Ultravnc2_is1) (Version: 1.1.9.6 - uvnc bvba)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebCC (HKLM-x32\...\WebCC9.0) (Version: 9.0 - NVSIP)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {029B85C8-0AC3-4133-AE58-E4B258798539} - System32\Tasks\{33F30E61-1266-4CD5-8945-47545ED6BD7B} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
Task: {28C86780-6D6E-4619-863B-260F137D05EF} - System32\Tasks\{839A3F3C-406F-4945-8EF7-8064162BCCA8} => pcalua.exe -a "C:\Users\admin\Downloads\GDRAIS2014-1.4-Setup (1).exe" -d C:\Users\admin\Downloads
Task: {30B1E81A-75CE-4743-AD41-D49547D93CE1} - System32\Tasks\1114avUpdateInfo => C:\ProgramData\Avg_Update_1114av\1114av_AVG-Secure-Search-Update.exe
Task: {3661D386-00B3-43AC-9859-EB31F3E8A88A} - System32\Tasks\{2AC9B961-F4BF-4A37-808B-9FAEB7B80435} => pcalua.exe -a C:\Users\marise\Downloads\GDRAIS2015-1.8-Setup.exe -d C:\Users\marise\Desktop
Task: {6B232291-92DE-4B86-9412-22120C37E0B5} - System32\Tasks\{6D9DF63A-A915-4D90-9607-C32C31AB9386} => pcalua.exe -a "C:\Users\marise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LTPYX4X7\GDRAIS2015-1.8-Setup.exe" -d C:\Users\marise\Desktop
Task: {6EBB41C4-6B3C-4B66-80AE-98235CF15814} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {7052FDD7-94FB-4DEA-984F-97D9FE04D4C6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13] (Google Inc.)
Task: {7B8A52AB-179B-4915-A82F-1C9C61EEEFA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13] (Google Inc.)
Task: {7C8EA5E8-306B-4A71-B095-D82F78DC7DF6} - System32\Tasks\SYSPC1137 => C:\Windows\SysWOW64\Java\gquguzrq.nk4.vbs [2016-09-29] ()
Task: {A12AE9DF-32FA-46B9-8A79-D1B7B2FDFF07} - System32\Tasks\{1F7207CD-9A77-482E-BB96-CFDEFF5FA676} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
Task: {AB65965C-56A1-4AAE-B7C5-48F2B82827F2} - \Script de segurancaX -> Nenhum Arquivo <==== ATENÇÃO
Task: {F9C7BFF8-146C-41D3-BD45-D056FBC0010D} - System32\Tasks\{E2AF8703-344C-4BBD-983B-C68973B43DF9} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\1114avUpdateInfo.job => C:\ProgramData\Avg_Update_1114av\1114av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\marise\Desktop\GDRais 2015.lnk -> C:\GDRais2015\gdrais.bat ()
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chrome RDP for Google Cloud Platform.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=mpbbnannobiobpnfblimoapbephgifkm
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chrome RDP.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=cbkkbcmdlboombapidmoeolnmdacpkch
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
==================== Módulos Carregados (Whitelisted) ==============
2015-02-11 10:42 - 2012-05-07 05:04 - 00034304 _____ () C:\Windows\System32\ssu2mlm.dll
2011-11-01 04:51 - 2011-11-01 04:51 - 00204800 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\syncthru5.exe
2014-05-07 13:29 - 2009-04-02 00:51 - 00052736 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2013-12-21 02:30 - 2012-02-01 15:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-03-09 08:58 - 2012-03-09 08:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2015-02-11 10:43 - 2011-10-17 11:49 - 00626688 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2015-02-11 10:43 - 2009-11-30 02:28 - 00306688 _____ () C:\Windows\Samsung\PanelMgr\caller64.exe
2015-02-11 10:44 - 2011-10-17 11:50 - 00565248 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\Spanel.exe
2015-02-11 10:43 - 2009-11-30 02:28 - 00306688 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\caller64.exe
2015-02-11 10:42 - 2012-08-21 08:42 - 01212928 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\ssu2mdu.dll
2016-09-29 15:15 - 2016-09-25 03:02 - 02279528 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libglesv2.dll
2016-09-29 15:15 - 2016-09-25 03:02 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libegl.dll
2016-09-19 15:25 - 2016-09-12 17:48 - 30996160 _____ () C:\Users\marise\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.166\pepflashplayer.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00167936 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\LIBPQ.dll
2011-11-01 04:51 - 2011-11-01 04:51 - 00081920 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\wrapper.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00963584 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\libxml2.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00059904 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\zlib1.dll
2013-12-20 20:59 - 2013-09-12 18:54 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2009-02-26 13:46 - 2009-02-26 13:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 11:46 - 2011-06-22 11:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2011-05-31 15:45 - 2011-05-31 15:45 - 00756048 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2015-02-11 10:44 - 2011-10-17 11:50 - 00139264 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\spiomgr.dll
2015-02-11 10:44 - 2009-11-30 02:30 - 00184320 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\SecSNMPR.dll
2015-02-11 10:43 - 2011-10-17 11:50 - 04554752 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\SMBalloon.dll
2009-02-27 11:52 - 2009-02-27 11:52 - 00258048 _____ () C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\caixa.gov.br -> hxxps://conectividade.caixa.gov.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\caixa.gov.br -> hxxp://conectividade.caixa.gov.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\jus.br -> consultapje.trt1.jus.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\mte.gov.br -> mte.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-547232108-2432671586-1288168431-1132\Control Panel\Desktop\\Wallpaper -> C:\Users\marise\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: cAudioFilterAgent => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: IndexSearch => "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe
MSCONFIG\startupreg: PDFHook => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe
MSCONFIG\startupreg: PDVD9LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
MSCONFIG\startupreg: RemoteControl9 => "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{335ED9FB-708C-4F6E-947C-6F5ABC27C5BE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{11121071-3EAE-4499-A5B3-888E07987E3F}] => (Allow) LPort=2869
FirewallRules: [{F54D69A6-46EA-4006-B240-718E28C3D8CB}] => (Allow) LPort=1900
FirewallRules: [{552A2088-CD89-4826-8396-B48859DD2D45}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{AB140AF7-FF7F-44D9-9A70-BAA2246DCDFC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{1652687E-5652-4E8D-B3DF-742A9D2B84E5}] => (Allow) LPort=54925
FirewallRules: [{CF9641F1-DECD-4BE0-B8EF-63C4FDAFAAEE}] => (Allow) LPort=5900
FirewallRules: [{C022C2C1-1899-450E-9975-922505F94214}] => (Allow) LPort=5800
FirewallRules: [{00DACA01-6097-4D07-BD2E-CA0FD7FCF5A9}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{0C87A2B1-F52E-4CE4-9E0B-6DC0B031B0A1}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{DF3B3992-0B99-413F-B0E0-97B363172E06}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{32455CDE-28B6-4EBC-BFA8-DCCB77FF7C2A}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{A44E008A-6A2F-4E8A-872E-0829B3E9D299}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{39E05F35-94F9-4E6D-9CF3-0BBFC2113D7F}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{9B9A7B5F-4F79-455C-90E7-A1834DD5CB25}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{552D344B-6346-47F5-A4DA-C115A9ED4543}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{05E784A9-2845-4746-AF33-C8D56964E7F4}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{2AE23F8A-97BB-46C1-9499-2A8A148ED033}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{302F2452-FD60-4055-9F6D-8C943E268058}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{5F67AD2B-2450-47FA-979E-29D802AE2AEF}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{244DF67E-FDF5-4253-B4F9-873BE786649D}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{7322A605-38B5-4D0C-AE4D-577CFEC3AC14}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{8BD3EC7A-90B9-4D5D-8BCF-16F44952FC5A}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{F3DF681A-DDC7-4A00-ABD4-35AD78E50F38}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{608A8166-C803-4ACD-B626-7A1959706D46}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{D36C1034-FF55-47E6-8484-22ACB24A9B30}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B71CC12C-72B6-4A6E-A4B0-1F9AE76D60B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{693D743D-049E-4674-8123-DDB29240DAF3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{688CDA93-1456-4238-8FD5-632B93D41000}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{BFA03899-DBFA-4FE2-9B65-BC83E36211FA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{BE0EF3A9-7DC6-4932-BC55-D3782B3AD1FB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C075F5F3-82B9-4EDF-B290-0456C2E17C53}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{66905F3D-0C97-4AF0-8604-A69CEA2D6A8F}] => (Block) C:\Program Files\Windows Defender\MpCmdRun.exe
FirewallRules: [{B6F856E8-854C-4B36-85C6-A68CBD4A8764}] => (Block) C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
FirewallRules: [{A5130E82-5183-4A00-99AC-431667A84EA9}] => (Block) C:\Program Files\Windows Defender\MSASCui.exe
FirewallRules: [{3757D3B5-F73F-44D6-A756-D474E658E241}] => (Block) C:\Program Files (x86)\Windows Defender\MpClient.dll
FirewallRules: [{B911BAC6-E6EA-498B-8EE5-CDE0A1CD1A16}] => (Block) C:\Program Files (x86)\Windows Defender\MpOAV.dll
FirewallRules: [{6BE36DFF-5C1C-425D-A14B-D656BAC4EA66}] => (Block) C:\Program Files\Windows Defender\MpAsDesc.dll
FirewallRules: [{3A1779B4-A5F0-4E07-AE0D-700998AB1BD7}] => (Block) C:\Program Files (x86)\Windows Defender\MsMpLics.dll
FirewallRules: [{2EF2050D-60C8-4894-98C2-FB856FEDCCFA}] => (Block) C:\Program Files\Windows Defender\MpClient.dll
FirewallRules: [{CCB9E29B-2CE6-4A3A-BAA4-5DD823E4DC86}] => (Block) C:\Program Files\Windows Defender\MpCommu.dll
FirewallRules: [{0D9357E9-D744-4ED8-A929-58AF22E3415D}] => (Block) C:\Program Files\Windows Defender\MpEvMsg.dll
FirewallRules: [{008DD85B-6F4F-474E-B266-6C0E3A87875F}] => (Block) C:\Program Files\Windows Defender\MpOAV.dll
FirewallRules: [{90D3E6FB-EF67-4110-9A35-5057C23B4B1B}] => (Block) C:\Program Files\Windows Defender\MpRTP.dll
FirewallRules: [{9402707B-8103-4EE5-85E7-CD0A6E4CAB62}] => (Block) C:\Program Files\Windows Defender\MpSvc.dll
FirewallRules: [{E380058A-206D-4603-978E-A047E06E9871}] => (Block) C:\Program Files\Windows Defender\MsMpCom.dll
FirewallRules: [{0537E30B-9EE5-475B-BF48-8E6F375B7747}] => (Block) C:\Program Files\Windows Defender\MsMpLics.dll
FirewallRules: [{87BF0833-CDBA-4744-AC53-8E24457E6F63}] => (Block) C:\Program Files\Windows Defender\MsMpRes.dll
FirewallRules: [{2F0E84FE-9C0D-4F2D-91F9-CA2CFBB413FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{63E3A14A-38BF-46D7-B812-D597BFEA5F1C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E1F2C2A1-60A9-4177-935B-F6C53E400494}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{40BC296E-7DD2-4779-B49F-AE2B3300D938}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{FFD6E063-1C4C-4BE3-BDDF-FD14D2FF5EEE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{6D8ACDE3-5E93-4048-A40A-10387F2A4DD2}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{BD62CF2D-972D-4163-AF84-1BB57C3B0A1B}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{AEFA498D-A9BF-4501-B8B4-B58EBBAD1832}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{012082A6-7470-48DF-BB4F-200F38A032BE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{08332C86-8FBD-48F6-9EDA-0A6C98C4AB6E}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{4AD25396-5C65-4107-A5EE-C25317F067AE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{B120BF28-EAF3-4F8D-A35D-4988450CACA4}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{649755EA-6510-449C-BD4C-B5C19F242F99}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B89125BB-5840-4DE6-9A92-C5C39F1B02C7}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B97A022E-DF5C-4DD0-92BC-5126980ED21A}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{B9F4CFC0-06C8-4557-9220-4BC5044B9BFD}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{69D8B9EB-C600-4B72-B041-9377DF7B2C76}] => (Allow) C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\jre\bin\java.exe
FirewallRules: [TCP Query User{F50F74E7-349F-4A8D-91CE-F201052BD0F7}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [UDP Query User{7285FBA1-D815-4665-BB70-C22B419AA4E6}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [TCP Query User{3F868E8B-3660-4DED-8D50-CFD2C1DFC5CB}E:\english\software\cms\data\cms.exe] => (Allow) E:\english\software\cms\data\cms.exe
FirewallRules: [UDP Query User{A1207F4B-50C0-40D2-9F25-3041775B5E9C}E:\english\software\cms\data\cms.exe] => (Allow) E:\english\software\cms\data\cms.exe
FirewallRules: [TCP Query User{B5711DEF-4C64-48A1-B735-4A0D501650E7}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [UDP Query User{6F6E1247-067A-439C-A098-FD8F303ED7EA}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [{4412D083-0D80-4858-A4E8-76551355AB7D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Pontos de Restauração =========================
30-08-2016 08:32:22 Windows Update
06-09-2016 07:46:48 Windows Update
13-09-2016 07:46:09 Windows Update
20-09-2016 13:46:35 Windows Update
28-09-2016 07:38:38 Windows Update
06-10-2016 07:51:58 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Erros de Sistema:
=============
CodeIntegrity:
===================================
Date: 2016-01-08 16:58:34.118
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:58:34.084
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:50:36.278
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:50:36.224
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3240 CPU @ 3.40GHz
Percentagem de memória em uso: 78%
RAM física total: 3998.06 MB
RAM física disponível: 841.91 MB
Virtual Total: 7994.31 MB
Virtual disponível: 4737.82 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:236.47 GB) (Free:185.08 GB) NTFS
Drive d: (Backup) (Fixed) (Total:228.51 GB) (Free:220.8 GB) NTFS
Drive f: (MARISE) (Removable) (Total:3.73 GB) (Free:3.51 GB) FAT32
Drive s: () (Network) (Total:270.11 GB) (Free:260.94 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: EE4477CA)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=750 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=236.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=228.5 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por marise (11-10-2016 11:07:10)
Executando a partir de C:\Users\marise\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-05-07 15:56:30)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1436142009-3570348431-4129401212-500 - Administrator - Disabled)
Convidado (S-1-5-21-1436142009-3570348431-4129401212-501 - Limited - Disabled)
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
64 Bit HP CIO Components Installer (Version: 7.2.9 - Hewlett-Packard) Hidden
ACI (HKLM-x32\...\EBB7DDC5-F8A7-4C1A-8BDB-C64456D342A5) (Version: 1.58 - Ministério do Trabalho e Emprego)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.8.800.175 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Assistente de Instalação Certisign (HKLM-x32\...\{6FBA74BD-149F-4521-B921-FFCC84876864}) (Version: 1.10.0.0 - CERTISIGN)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
CAT VERSÃO 4.0 (HKLM-x32\...\CAT 4.0_mp1) (Version: - DATAPREV)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
CMS (HKLM-x32\...\{E44BF26A-3EA8-4DF0-BB89-66B5A9834E44}) (Version: 4.1.11.0506 - CMS)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Conectividade Social (HKLM-x32\...\Conectividade Social) (Version: - )
Conexant Audio Filter Agent (HKLM\...\cAudioFilterAgent) (Version: 1.7.36.0 - Conexant Systems)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.50.5.51 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.109.0 - Conexant Systems)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.2.6102 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Desinstalar impressora EPSON L200 Series (HKLM\...\EPSON L200 Series) (Version: - SEIKO EPSON Corporation)
ePass2003 (Remover somente) (HKLM-x32\...\ePass2003-4FE7-A218-48BDAE051E2B_std) (Version: - )
EPSON L365 Series Printer Uninstall (HKLM\...\EPSON L365 Series) (Version: - SEIKO EPSON Corporation)
Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Giesecke & Devrient GmbH StarSign CUT (HKLM-x32\...\SZCCID) (Version: 1.7.17.0 - Giesecke & Devrient GmbH)
Giesecke & Devrient GmbH StarSign CUT (x32 Version: 1.7.17.0 - Giesecke & Devrient GmbH) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GRRF Eletrônica (HKLM-x32\...\GRRF Eletrônica) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2639 - Intel Corporation)
IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2014) (Version: 1.0 - Receita Federal do Brasil)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 48.0.2 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 pt-BR)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nuance PaperPort 12 (HKLM-x32\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
PC-CCID (HKLM\...\{3DCDFCDB-4D96-4CF0-9BB3-C91DAE9073F3}) (Version: 2.0.0 - Gemalto)
Player (HKLM-x32\...\Player) (Version: - )
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0019 - Realtek)
SafeSign 64-bits (HKLM\...\{2DF407D3-A8AD-4ACF-BFD5-5F7D42EC62FD}) (Version: 3.0.87 - A.E.T. Europe B.V.)
Samsung SCX-6x55X Series (HKLM-x32\...\Samsung SCX-6x55X Series) (Version: - Samsung Electronics CO.,LTD)
Samsung SyncThru 5.0 (HKLM-x32\...\SyncThru5) (Version: - Samsung Electronics Co., Ltd.)
Scan and Fax Manager 2 (3.01.11.00) (HKLM-x32\...\Scan and Fax Manager 2) (Version: 3.01.11 - Samsung)
Scansoft PDF Professional (x32 Version: - ) Hidden
SEFIP 8.40 (HKLM-x32\...\SEFIP 8.40) (Version: - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SXPIS - Sistema CAIXA - PIS Empresa - Ambiente Empresa (HKLM-x32\...\SXPIS - Sistema CAIXA - PIS Empresa - Ambiente Empresa) (Version: - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
UltraVnc (HKLM\...\Ultravnc2_is1) (Version: 1.1.9.6 - uvnc bvba)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebCC (HKLM-x32\...\WebCC9.0) (Version: 9.0 - NVSIP)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {029B85C8-0AC3-4133-AE58-E4B258798539} - System32\Tasks\{33F30E61-1266-4CD5-8945-47545ED6BD7B} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
Task: {28C86780-6D6E-4619-863B-260F137D05EF} - System32\Tasks\{839A3F3C-406F-4945-8EF7-8064162BCCA8} => pcalua.exe -a "C:\Users\admin\Downloads\GDRAIS2014-1.4-Setup (1).exe" -d C:\Users\admin\Downloads
Task: {30B1E81A-75CE-4743-AD41-D49547D93CE1} - System32\Tasks\1114avUpdateInfo => C:\ProgramData\Avg_Update_1114av\1114av_AVG-Secure-Search-Update.exe
Task: {3661D386-00B3-43AC-9859-EB31F3E8A88A} - System32\Tasks\{2AC9B961-F4BF-4A37-808B-9FAEB7B80435} => pcalua.exe -a C:\Users\marise\Downloads\GDRAIS2015-1.8-Setup.exe -d C:\Users\marise\Desktop
Task: {6B232291-92DE-4B86-9412-22120C37E0B5} - System32\Tasks\{6D9DF63A-A915-4D90-9607-C32C31AB9386} => pcalua.exe -a "C:\Users\marise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LTPYX4X7\GDRAIS2015-1.8-Setup.exe" -d C:\Users\marise\Desktop
Task: {6EBB41C4-6B3C-4B66-80AE-98235CF15814} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {7052FDD7-94FB-4DEA-984F-97D9FE04D4C6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13] (Google Inc.)
Task: {7B8A52AB-179B-4915-A82F-1C9C61EEEFA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13] (Google Inc.)
Task: {7C8EA5E8-306B-4A71-B095-D82F78DC7DF6} - System32\Tasks\SYSPC1137 => C:\Windows\SysWOW64\Java\gquguzrq.nk4.vbs [2016-09-29] ()
Task: {A12AE9DF-32FA-46B9-8A79-D1B7B2FDFF07} - System32\Tasks\{1F7207CD-9A77-482E-BB96-CFDEFF5FA676} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
Task: {AB65965C-56A1-4AAE-B7C5-48F2B82827F2} - \Script de segurancaX -> Nenhum Arquivo <==== ATENÇÃO
Task: {F9C7BFF8-146C-41D3-BD45-D056FBC0010D} - System32\Tasks\{E2AF8703-344C-4BBD-983B-C68973B43DF9} => C:\Users\admin\Desktop\SE201412.EXE [2014-12-05] ()
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\1114avUpdateInfo.job => C:\ProgramData\Avg_Update_1114av\1114av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
Shortcut: C:\Users\marise\Desktop\GDRais 2015.lnk -> C:\GDRais2015\gdrais.bat ()
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chrome RDP for Google Cloud Platform.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=mpbbnannobiobpnfblimoapbephgifkm
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Chrome RDP.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=cbkkbcmdlboombapidmoeolnmdacpkch
ShortcutWithArgument: C:\Users\marise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Área de trabalho remota do Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
==================== Módulos Carregados (Whitelisted) ==============
2015-02-11 10:42 - 2012-05-07 05:04 - 00034304 _____ () C:\Windows\System32\ssu2mlm.dll
2011-11-01 04:51 - 2011-11-01 04:51 - 00204800 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\syncthru5.exe
2014-05-07 13:29 - 2009-04-02 00:51 - 00052736 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2013-12-21 02:30 - 2012-02-01 15:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-03-09 08:58 - 2012-03-09 08:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2015-02-11 10:43 - 2011-10-17 11:49 - 00626688 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2015-02-11 10:43 - 2009-11-30 02:28 - 00306688 _____ () C:\Windows\Samsung\PanelMgr\caller64.exe
2015-02-11 10:44 - 2011-10-17 11:50 - 00565248 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\Spanel.exe
2015-02-11 10:43 - 2009-11-30 02:28 - 00306688 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\caller64.exe
2015-02-11 10:42 - 2012-08-21 08:42 - 01212928 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\ssu2mdu.dll
2016-09-29 15:15 - 2016-09-25 03:02 - 02279528 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libglesv2.dll
2016-09-29 15:15 - 2016-09-25 03:02 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libegl.dll
2016-09-19 15:25 - 2016-09-12 17:48 - 30996160 _____ () C:\Users\marise\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.166\pepflashplayer.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00167936 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\LIBPQ.dll
2011-11-01 04:51 - 2011-11-01 04:51 - 00081920 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\wrapper.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00963584 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\libxml2.dll
2011-11-01 04:52 - 2011-11-01 04:52 - 00059904 _____ () C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\postgresql\engine\bin\zlib1.dll
2013-12-20 20:59 - 2013-09-12 18:54 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2009-02-26 13:46 - 2009-02-26 13:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 11:46 - 2011-06-22 11:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2011-05-31 15:45 - 2011-05-31 15:45 - 00756048 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2015-02-11 10:44 - 2011-10-17 11:50 - 00139264 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\spiomgr.dll
2015-02-11 10:44 - 2009-11-30 02:30 - 00184320 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\SecSNMPR.dll
2015-02-11 10:43 - 2011-10-17 11:50 - 04554752 _____ () C:\Program Files (x86)\Samsung\Samsung SCX-6x55X Series\SPanel\SMBalloon.dll
2009-02-27 11:52 - 2009-02-27 11:52 - 00258048 _____ () C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\caixa.gov.br -> hxxps://conectividade.caixa.gov.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\caixa.gov.br -> hxxp://conectividade.caixa.gov.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\jus.br -> consultapje.trt1.jus.br
IE trusted site: HKU\S-1-5-21-547232108-2432671586-1288168431-1132\...\mte.gov.br -> mte.gov.br
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-547232108-2432671586-1288168431-1132\Control Panel\Desktop\\Wallpaper -> C:\Users\marise\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: cAudioFilterAgent => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: IndexSearch => "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe
MSCONFIG\startupreg: PDFHook => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe
MSCONFIG\startupreg: PDVD9LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
MSCONFIG\startupreg: RemoteControl9 => "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{335ED9FB-708C-4F6E-947C-6F5ABC27C5BE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{11121071-3EAE-4499-A5B3-888E07987E3F}] => (Allow) LPort=2869
FirewallRules: [{F54D69A6-46EA-4006-B240-718E28C3D8CB}] => (Allow) LPort=1900
FirewallRules: [{552A2088-CD89-4826-8396-B48859DD2D45}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{AB140AF7-FF7F-44D9-9A70-BAA2246DCDFC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{1652687E-5652-4E8D-B3DF-742A9D2B84E5}] => (Allow) LPort=54925
FirewallRules: [{CF9641F1-DECD-4BE0-B8EF-63C4FDAFAAEE}] => (Allow) LPort=5900
FirewallRules: [{C022C2C1-1899-450E-9975-922505F94214}] => (Allow) LPort=5800
FirewallRules: [{00DACA01-6097-4D07-BD2E-CA0FD7FCF5A9}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{0C87A2B1-F52E-4CE4-9E0B-6DC0B031B0A1}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{DF3B3992-0B99-413F-B0E0-97B363172E06}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{32455CDE-28B6-4EBC-BFA8-DCCB77FF7C2A}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{A44E008A-6A2F-4E8A-872E-0829B3E9D299}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{39E05F35-94F9-4E6D-9CF3-0BBFC2113D7F}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{9B9A7B5F-4F79-455C-90E7-A1834DD5CB25}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{552D344B-6346-47F5-A4DA-C115A9ED4543}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{05E784A9-2845-4746-AF33-C8D56964E7F4}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{2AE23F8A-97BB-46C1-9499-2A8A148ED033}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{302F2452-FD60-4055-9F6D-8C943E268058}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{5F67AD2B-2450-47FA-979E-29D802AE2AEF}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{244DF67E-FDF5-4253-B4F9-873BE786649D}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{7322A605-38B5-4D0C-AE4D-577CFEC3AC14}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{8BD3EC7A-90B9-4D5D-8BCF-16F44952FC5A}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{F3DF681A-DDC7-4A00-ABD4-35AD78E50F38}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{608A8166-C803-4ACD-B626-7A1959706D46}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{D36C1034-FF55-47E6-8484-22ACB24A9B30}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B71CC12C-72B6-4A6E-A4B0-1F9AE76D60B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{693D743D-049E-4674-8123-DDB29240DAF3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{688CDA93-1456-4238-8FD5-632B93D41000}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{BFA03899-DBFA-4FE2-9B65-BC83E36211FA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{BE0EF3A9-7DC6-4932-BC55-D3782B3AD1FB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C075F5F3-82B9-4EDF-B290-0456C2E17C53}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{66905F3D-0C97-4AF0-8604-A69CEA2D6A8F}] => (Block) C:\Program Files\Windows Defender\MpCmdRun.exe
FirewallRules: [{B6F856E8-854C-4B36-85C6-A68CBD4A8764}] => (Block) C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
FirewallRules: [{A5130E82-5183-4A00-99AC-431667A84EA9}] => (Block) C:\Program Files\Windows Defender\MSASCui.exe
FirewallRules: [{3757D3B5-F73F-44D6-A756-D474E658E241}] => (Block) C:\Program Files (x86)\Windows Defender\MpClient.dll
FirewallRules: [{B911BAC6-E6EA-498B-8EE5-CDE0A1CD1A16}] => (Block) C:\Program Files (x86)\Windows Defender\MpOAV.dll
FirewallRules: [{6BE36DFF-5C1C-425D-A14B-D656BAC4EA66}] => (Block) C:\Program Files\Windows Defender\MpAsDesc.dll
FirewallRules: [{3A1779B4-A5F0-4E07-AE0D-700998AB1BD7}] => (Block) C:\Program Files (x86)\Windows Defender\MsMpLics.dll
FirewallRules: [{2EF2050D-60C8-4894-98C2-FB856FEDCCFA}] => (Block) C:\Program Files\Windows Defender\MpClient.dll
FirewallRules: [{CCB9E29B-2CE6-4A3A-BAA4-5DD823E4DC86}] => (Block) C:\Program Files\Windows Defender\MpCommu.dll
FirewallRules: [{0D9357E9-D744-4ED8-A929-58AF22E3415D}] => (Block) C:\Program Files\Windows Defender\MpEvMsg.dll
FirewallRules: [{008DD85B-6F4F-474E-B266-6C0E3A87875F}] => (Block) C:\Program Files\Windows Defender\MpOAV.dll
FirewallRules: [{90D3E6FB-EF67-4110-9A35-5057C23B4B1B}] => (Block) C:\Program Files\Windows Defender\MpRTP.dll
FirewallRules: [{9402707B-8103-4EE5-85E7-CD0A6E4CAB62}] => (Block) C:\Program Files\Windows Defender\MpSvc.dll
FirewallRules: [{E380058A-206D-4603-978E-A047E06E9871}] => (Block) C:\Program Files\Windows Defender\MsMpCom.dll
FirewallRules: [{0537E30B-9EE5-475B-BF48-8E6F375B7747}] => (Block) C:\Program Files\Windows Defender\MsMpLics.dll
FirewallRules: [{87BF0833-CDBA-4744-AC53-8E24457E6F63}] => (Block) C:\Program Files\Windows Defender\MsMpRes.dll
FirewallRules: [{2F0E84FE-9C0D-4F2D-91F9-CA2CFBB413FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{63E3A14A-38BF-46D7-B812-D597BFEA5F1C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E1F2C2A1-60A9-4177-935B-F6C53E400494}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{40BC296E-7DD2-4779-B49F-AE2B3300D938}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{FFD6E063-1C4C-4BE3-BDDF-FD14D2FF5EEE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{6D8ACDE3-5E93-4048-A40A-10387F2A4DD2}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\ScanMgr2.exe
FirewallRules: [{BD62CF2D-972D-4163-AF84-1BB57C3B0A1B}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{AEFA498D-A9BF-4501-B8B4-B58EBBAD1832}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\USDAgent\USDAgent.exe
FirewallRules: [{012082A6-7470-48DF-BB4F-200F38A032BE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{08332C86-8FBD-48F6-9EDA-0A6C98C4AB6E}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\PropertyUI\Sscan2io.exe
FirewallRules: [{4AD25396-5C65-4107-A5EE-C25317F067AE}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{B120BF28-EAF3-4F8D-A35D-4988450CACA4}] => (Allow) C:\Program Files (x86)\Samsung\Scan and Fax Manager 2\CDAS2PC\CDAS2PC.exe
FirewallRules: [{649755EA-6510-449C-BD4C-B5C19F242F99}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B89125BB-5840-4DE6-9A92-C5C39F1B02C7}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{B97A022E-DF5C-4DD0-92BC-5126980ED21A}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{B9F4CFC0-06C8-4557-9220-4BC5044B9BFD}] => (Allow) C:\Windows\twain_32\Samsung\SCX6x55X\Sscan2io.exe
FirewallRules: [{69D8B9EB-C600-4B72-B041-9377DF7B2C76}] => (Allow) C:\Program Files (x86)\Samsung Network Printer Utilities\SyncThru Admin 5\jre\bin\java.exe
FirewallRules: [TCP Query User{F50F74E7-349F-4A8D-91CE-F201052BD0F7}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [UDP Query User{7285FBA1-D815-4665-BB70-C22B419AA4E6}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [TCP Query User{3F868E8B-3660-4DED-8D50-CFD2C1DFC5CB}E:\english\software\cms\data\cms.exe] => (Allow) E:\english\software\cms\data\cms.exe
FirewallRules: [UDP Query User{A1207F4B-50C0-40D2-9F25-3041775B5E9C}E:\english\software\cms\data\cms.exe] => (Allow) E:\english\software\cms\data\cms.exe
FirewallRules: [TCP Query User{B5711DEF-4C64-48A1-B735-4A0D501650E7}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [UDP Query User{6F6E1247-067A-439C-A098-FD8F303ED7EA}C:\program files\ cms 2.0\cms.exe] => (Allow) C:\program files\ cms 2.0\cms.exe
FirewallRules: [{4412D083-0D80-4858-A4E8-76551355AB7D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Pontos de Restauração =========================
30-08-2016 08:32:22 Windows Update
06-09-2016 07:46:48 Windows Update
13-09-2016 07:46:09 Windows Update
20-09-2016 13:46:35 Windows Update
28-09-2016 07:38:38 Windows Update
06-10-2016 07:51:58 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Erros de Sistema:
=============
CodeIntegrity:
===================================
Date: 2016-01-08 16:58:34.118
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:58:34.084
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:50:36.278
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-01-08 16:50:36.224
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\marise\AppData\Local\Temp\hookmgr64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3240 CPU @ 3.40GHz
Percentagem de memória em uso: 78%
RAM física total: 3998.06 MB
RAM física disponível: 841.91 MB
Virtual Total: 7994.31 MB
Virtual disponível: 4737.82 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:236.47 GB) (Free:185.08 GB) NTFS
Drive d: (Backup) (Fixed) (Total:228.51 GB) (Free:220.8 GB) NTFS
Drive f: (MARISE) (Removable) (Total:3.73 GB) (Free:3.51 GB) FAT32
Drive s: () (Network) (Total:270.11 GB) (Free:260.94 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: EE4477CA)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=750 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=236.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=228.5 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fim de Addition.txt ============================