Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 23-11-2016
Executado por Claudio (26-11-2016 11:59:41)
Executando a partir de C:\Users\Claudio\Desktop
Windows 10 Pro Versão 1511 (X64) (2016-06-02 05:24:04)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
00001 (S-1-5-21-4027680159-780384288-1035963222-1001 - Administrator - Enabled) => C:\Users\00001
Administrador (S-1-5-21-4027680159-780384288-1035963222-500 - Administrator - Enabled) => C:\Users\Administrador.000
Claudio (S-1-5-21-4027680159-780384288-1035963222-1004 - Administrator - Enabled) => C:\Users\Claudio
Convidado (S-1-5-21-4027680159-780384288-1035963222-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4027680159-780384288-1035963222-503 - Limited - Disabled)
Proworks (S-1-5-21-4027680159-780384288-1035963222-1088 - Administrator - Enabled) => C:\Users\Proworks
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
. . . (Version: 2.1.28.3 - Intel) Hidden
. . . (x32 Version: 2.6.1.4 - Intel) Hidden
µTorrent (HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Aplicativo Itaú (HKLM-x32\...\{C6E1E8D4-F485-4B7B-9B87-696DE382695C}) (Version: 1.0.73 - Banco Itaú)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.5-r5 - Arduino LLC)
Arquivos de Suporte à Instalação do Microsoft SQL Server 2008 (HKLM\...\{D1EB7FFB-2C4E-4BF6-80B6-09ABB1A3FEFC}) (Version: 10.1.2731.0 - Microsoft Corporation)
AviSynth 2.5 (HKLM-x32\...\Avisynth) (Version: - )
Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
BufferChm (x32 Version: 130.0.327.000 - Hewlett-Packard) Hidden
BurnAware Free 7.0 BETA (HKLM-x32\...\BurnAware Free_is1) (Version: - Burnaware)
Cadastro das Indústrias do Paraná 2015 (HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Cadastro das Indústrias do Paraná 2015) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation)
Central de Mouse e Teclado da Microsoft (Version: 2.5.166.0 - Microsoft Corporation) Hidden
Componentes de Formulas Prosoft (HKLM-x32\...\ Componentes de Formulas Prosoft) (Version: 1.0 - Prosoft Tecnologia)
Componentes de Formulas Prosoft (x32 Version: 1.0 - Prosoft Tecnologia) Hidden
Crystal Reports 9 (HKLM-x32\...\Crystal Reports 9) (Version: 1.0 - Prosoft Tecnologia LTDA)
Crystal Reports 9 (x32 Version: 1.0 - Prosoft Tecnologia) Hidden
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - CutePDF.com)
Cypress TrackPad (HKLM\...\{7F2F6CC5-434B-4311-9DE2-60C7CAF50B73}_is1) (Version: 2.5.1.65 - Cypress Semiconductor, Inc.)
dBpoweramp [Calculate Audio CRC] Codec (HKLM-x32\...\dBpoweramp [Calculate Audio CRC] Codec) (Version: - )
dBpoweramp FLAC Codec (HKLM-x32\...\dBpoweramp FLAC Codec) (Version: - )
dBpoweramp Monkeys Audio Codec (HKLM-x32\...\dBpoweramp Monkeys Audio Codec) (Version: - )
dBpoweramp Mp2 and BwfMp2 codec (HKLM-x32\...\dBpoweramp Mp2 and BwfMp2 codec) (Version: - )
dBpoweramp mp3 (Fraunhofer IIS) Codec (HKLM-x32\...\dBpoweramp mp3 (Fraunhofer IIS) Codec) (Version: - )
dBpoweramp Music Converter (HKLM-x32\...\dBpoweramp Music Converter) (Version: - )
dBpoweramp Ogg Vorbis Codec (HKLM-x32\...\dBpoweramp Ogg Vorbis Codec) (Version: - )
dBpoweramp WavPack Codec (HKLM-x32\...\dBpoweramp WavPack Codec) (Version: - )
dBpoweramp Windows Media Audio 10 Codec (HKLM-x32\...\dBpoweramp Windows Media Audio 10 Codec) (Version: - )
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DevID Agent (HKLM-x32\...\DevID_Agent) (Version: 4,28 - DevID)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
Diretivas do Microsoft SQL Server 2008 (HKLM-x32\...\{9430D89B-6526-4006-94D9-2E673A00BE9D}) (Version: 10.0.1600.22 - Microsoft Corporation)
DivXLand Media Subtitler 2.1.2 (HKLM-x32\...\{74D5F45B-EC9F-4083-9493-364D159FFFBE}_is1) (Version: - divxland.org)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 14.4.19 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
DVD Architect Pro 6.0 (HKLM-x32\...\{E0E531A2-17C1-11E2-984D-1040F3E7010F}) (Version: 6.0.237 - Sony)
DVD Identifier (HKLM-x32\...\DVD Identifier_is1) (Version: 5.2.0 - Kris Schoofs)
DVDFab 9.2.3.1 (23/02/2016) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Emul3000 (HKLM-x32\...\{F3A2ADBA-6F7D-491E-8C6B-3DE996B42FB9}) (Version: 1.0.0.0 - Bematech)
Evans FTP (HKLM-x32\...\Evans FTP) (Version: - )
ffdshow v1.3.4532 [2014-07-17] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4532.0 - )
FileZilla Client 3.9.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.2 - Tim Kosse)
Free Audio Converter version 5.0.54.1215 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.54.1215 - DVDVideoSoft Ltd.)
Free CD to MP3 Converter (HKLM-x32\...\Free CD to MP3 Converter) (Version: - Eusing Software)
Free Video Editor version 1.4.12.415 (HKLM-x32\...\Free Video Editor_is1) (Version: 1.4.12.415 - DVDVideoSoft Ltd.)
Freemake Video Converter versão 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
GDR 4033 para o SQL Server 2008 R2 (KB2977320) (64-bit) (HKLM\...\KB2977320) (Version: 10.52.4033.0 - Microsoft Corporation)
GDR 4042 para o SQL Server 2008 R2 (KB3045313) (64-bit) (HKLM\...\KB3045313) (Version: 10.52.4042.0 - Microsoft Corporation)
GFC Small (HKLM-x32\...\GFC Small_is1) (Version: 5.20.3 - )
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.367.000 - Hewlett-Packard) Hidden
Hábil Empresarial (HKLM-x32\...\HabilCS2012_is1) (Version: - Koinonia Software)
HH NumEval Control (C:\Windows\system32\) (HKLM-x32\...\ST5UNST #2) (Version: - )
HH NumEval Control (HKLM-x32\...\ST5UNST #1) (Version: - )
Hotfix para o Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{689D30EF-AEFD-3349-B75D-30FE99496CCE}.KB947789) (Version: 1 - Microsoft Corporation)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Scanjet 2400 (HKLM\...\{7B604AC7-B496-473F-A17C-489398E38BEA}) (Version: 13.0 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
hpg2410 (x32 Version: 14.0.0.0 - Nome de sua empresa:) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.367.000 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (x32 Version: 1.0.0.1 - Hewlett-Packard) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Instalação do Microsoft SQL Server 2008 R2 (Inglês) (HKLM-x32\...\{3CBB3765-224B-4793-AEDC-42C91FFD9A6B}) (Version: 10.52.4000.0 - Microsoft Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{E20BF76E-E463-4043-B95F-C133FD1195E4}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.6.101 - IObit)
IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2014) (Version: 1.0 - Receita Federal do Brasil)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
MajorWare PDF To Excel Converter (HKLM-x32\...\MajorWare PDF To Excel Converter) (Version: 4.0.0.0 - MajorWare)
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Media Player Codec Pack 4.2.9 (HKLM-x32\...\Media Player - Codec Pack) (Version: 4.2.9 - Media Player Codec Pack)
MediaInfo 0.7.71 (HKLM\...\MediaInfo) (Version: 0.7.71 - MediaArea.net)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Access Runtime 2010 (HKLM-x32\...\Office14.AccessRT) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0416-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (64-bit) (HKLM\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{49860BCD-24D6-44C1-922E-AC12FE32234E}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{B2213E4E-F502-4D36-BE95-9293C866EF3F}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{336FEB35-3257-4467-BC8B-2F5CF432BCF8}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 PTB (HKLM-x32\...\{AA3E5E7A-993A-4E70-9A87-6AFAF492C84B}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{5FDC08C3-F54B-4A82-8257-00F54C73C7B7}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{4ECF4BDC-8387-329A-ABE9-CF5798F84BB2}) (Version: 9.0.35191 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - PTB (HKLM-x32\...\{689D30EF-AEFD-3349-B75D-30FE99496CCE}) (Version: 9.0.35191 - Microsoft Corporation)
Microsoft XML Parser and SDK (HKLM-x32\...\{35343FF7-939B-401A-87B3-FF90A5123D88}) (Version: 4.10.9404.0 - Microsoft Corporation)
MKVToolNix 7.8.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 7.8.0 - Moritz Bunkus)
Mozilla Firefox 50.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 50.0 (x86 pt-BR)) (Version: 50.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.0.6152 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NetSurveillance (HKLM-x32\...\NetSurveillance) (Version: - )
NFe Prosoft Emissor (HKLM-x32\...\{4B17EC7F-8758-43FA-8FC8-794F466F50BE}) (Version: 5.14.00 - Prosoft)
NF-e Prosoft Gerenciador (HKLM-x32\...\{9463261B-0BDA-4A5B-9123-C310C92E2072}) (Version: 5.21.3 - Prosoft Tecnologia Ltda)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
o serviço de integração do Prosoft Cnpj (HKLM-x32\...\Serviço de Integração GFC x Prosoft CNPJ_is1) (Version: 1.3.0.3 - )
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Pacote de Driver do Windows - NXP (usbser) Ports (09/12/2013 1.0.0.0) (HKLM\...\8AB6E2E5EA47B91A654D8E77D1FFB07C70DEAFAE) (Version: 09/12/2013 1.0.0.0 - NXP)
Pacote de Driver do Windows - NXP (usbser) Ports (09/12/2013 1.0.0.0) (HKLM\...\8B13F4F0C2700006C64D9949CDAAD960C67C09BC) (Version: 09/12/2013 1.0.0.0 - NXP)
Pacote de Driver do Windows - NXP (usbser) Ports (09/12/2013 1.0.0.0) (HKLM\...\C75E84E1D04FF0511242E00ED9EBB45F39E91AED) (Version: 09/12/2013 1.0.0.0 - NXP)
Pacote de Driver do Windows - NXP USBDevice (10/11/2013 13.54.20.544) (HKLM\...\C6744D53F47A3312B8C147241CF580AE9BD00054) (Version: 10/11/2013 13.54.20.544 - NXP)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Pervasive PSQL v11 Workgroup (32-bit) (x32 Version: 11.31.025 - Pervasive Software) Hidden
Pervasive PSQL v11 Workgroup (32-bit) SP3 (HKLM-x32\...\Pervasive PSQL v11 Workgroup (32-bit)) (Version: 11.31.025 - Pervasive Software)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.11.0 - Prolific Technology INC)
ProManager (x32 Version: 5.4 - Prosoft Tecnologia) Hidden
Prosoft - Componentes .NET (HKLM-x32\...\{2BD43198-F1BB-4EE6-B29C-81828D4C97DF}) (Version: 4.0.0 - Prosoft Tecnologia Ltda)
Prosoft CND (HKLM-x32\...\Prosoft CND) (Version: 5.0 - Prosoft CND)
Prosoft CND (x32 Version: 5.0 - Prosoft Tecnologia) Hidden
Prosoft CNPJ (HKLM-x32\...\Prosoft CNPJ) (Version: 5.14 - Wolters Kluwer Prosoft)
Prosoft CNPJ (Version: 5.14 - Wolters Kluwer Prosoft) Hidden
Prosoft Tecnologia (HKLM-x32\...\Prosoft Tecnologia) (Version: 5.8 - Prosoft Tecnologia )
Prosoft Tecnologia (x32 Version: 5.8 - Prosoft Tecnologia ) Hidden
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
Repetier-Host versão 1.5.6 (HKLM\...\{1143F758-929B-4EEB-8784-46CCB622F037}_is1) (Version: 1.5.6 - repetier)
Repetier-Server (HKLM-x32\...\Repetier-Server) (Version: 0.60.4 - Hot-World GmbH & Co. KG)
S Agent (Version: 1.1.51 - Samsung Electronics CO., LTD.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_6 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.2.14014_6 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
SAP Crystal Reports runtime engine for .NET Framework 4 (64-bit) (HKLM\...\{0441D301-5C34-4DC6-B7C8-0727344AA220}) (Version: 13.0.0.99 - SAP)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-001C-0000-0000-0000000FF1CE}_Office14.AccessRT_{54846D1D-E5D5-4A28-AA6D-7208259007EA}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 para o SQL Server 2008 R2 (KB2630458) (64-bit) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Serviio (HKLM\...\Serviio) (Version: - )
Sistema de Dados (HKLM-x32\...\Sistema de Dados 1.01_is1) (Version: 1.01 - Dragonsoft Tecnologia)
Skype Web Plugin (HKLM-x32\...\{AC7406B6-BB3B-4CD1-AEBA-0527B9CB16FE}) (Version: 7.27.0.105 - Skype Technologies S.A.)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
Software de dispositivo do Chipset Intel® (x32 Version: 10.1.1.14 - Intel(R) Corporation) Hidden
SolutionCenter (x32 Version: 130.0.369.000 - Hewlett-Packard) Hidden
SQL Server 2008 R2 SP2 Common Files (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server Compact 3.5 SP1 Query Tools Portuguese - Brazil (HKLM-x32\...\{A1547558-A8AE-4026-9AB6-B0CD7ADB09A7}) (Version: 3.5.5692.0 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
SQLite ODBC Driver (remove only) (HKLM-x32\...\SQLite ODBC Driver) (Version: - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1212 - SUPERAntiSpyware.com)
Suporte para Aplicativos Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Support Center FAQ (x32 Version: 1.0.11 - Samsung Electronics CO., LTD.) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.11.3 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.65452 - TeamViewer)
Terminal Programador Intelbras (HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Terminal Programador Intelbras) (Version: - )
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\TimeAdjuster) (Version: - IrekSoftware.com)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\TimeAdjuster) (Version: - IrekSoftware.com)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\TimeAdjuster) (Version: - IrekSoftware.com)
TMPGEnc Authoring Works 5 Trial Version (HKLM-x32\...\{05463513-EC7C-4621-ACA2-F532E61AD8AC}) (Version: 5.2.2.61 - Pegasys Inc.)
UltraVnc (HKLM-x32\...\Ultravnc2_is1) (Version: 1.2.0.6 - uvnc bvba)
Virtual Serial Ports Emulator (HKLM-x32\...\{8F3F769D-E9C4-42E5-9B35-82DDCE0790C1}) (Version: 0.938 - Eterlogic.com)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
VSO ConvertXtoDVD 5 (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.24 - VSO-Software SARL)
Warsaw 1.12.4.14 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.4.14 - GAS Tecnologia)
WebCam SCB-1100N (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.3.6.06 - SunplusIT)
WebReg (x32 Version: 130.0.128.017 - Hewlett-Packard) Hidden
Windows Media Codec Pack (HKLM-x32\...\Windows Media Codec Pack) (Version: 1.00 - Windows Media Codec Pack)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WMPx64PluginFix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
XviD4PSP 5.10.330.0 (HKLM-x32\...\XviD4PSP5_is1) (Version: - Winnydows & fcp team)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0013}\InprocServer32 -> C:\Users\00001\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0013}\InprocServer32 -> C:\Users\00001\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{58743271-597A-401B-AF4A-1450179151C0}\InprocServer32 -> C:\Users\00001\AppData\Local\SkypePlugin\7.27.0.105\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (hxxp://MediaArea.net/MediaInfo)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\00001\AppData\Local\SkypePlugin\7.27.0.105\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{D0FC4B60-C60D-4908-8365-0C64C03E0291}\localserver32 -> C:\Users\00001\AppData\Local\SkypePlugin\7.27.0.105\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (hxxp://MediaArea.net/MediaInfo)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1004_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (hxxp://MediaArea.net/MediaInfo)
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Proworks\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Proworks\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\00001\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll => Nenhum Arquivo
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {1DA12EC4-6D61-4E6F-9689-87A825B0C002} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {1E97147E-0F54-4D25-B7B2-E3EDF442FDA0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {32231333-905F-4C9E-9E33-68EC32195615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {322AF56F-B1A2-4694-B005-7038DA3D9898} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {38255549-147E-490F-9FB3-C4F0391A58DA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-31] (Adobe Systems Incorporated)
Task: {3A56E178-3671-4652-A95A-69700721F118} - \{E7C54C97-4986-4BF4-AF48-D5909567153C} -> Nenhum Arquivo <==== ATENÇÃO
Task: {3AE65788-94FE-4D0F-AB3F-3A0CF3B68434} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe
Task: {4281D990-B4A4-46CF-8E5D-F7373B7C8655} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {44C96F92-77AF-4E72-B210-867175DAC7A1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {45BBEA89-CC3C-44B3-8A24-E244F8FE634B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-12] (Dropbox, Inc.)
Task: {49110007-BD49-48FA-B007-1E915696EB29} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-4027680159-780384288-1035963222-1001
Task: {5306204B-B4FD-4297-B6B2-6A38D1443D1D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {5F01934A-C4DC-4569-A873-D96966B357B9} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {64D677F5-5277-4A4C-89AC-E812A015332A} - System32\Tasks\{2D3EB6C5-D5E6-4A43-980E-E5D7B6078448} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Phys-It\uninstall.exe" -c shuz -f "C:\Program Files (x86)\Common Files\Phys-It\uninstall.dat" -a uninstallme 8C03BB9F-D462-4F6A-9D32-7FE2BC9455C7 DeviceId=b899fcf7-dbf9-dca6-bb3b-a373a1f562a4 BarcodeId=51129011 ChannelId=11 DistributerName=APSFSWAds
Task: {690E7FD4-A115-4050-B7F0-34FFB828B23C} - System32\Tasks\Uninstaller_SkipUac_00001 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-03-04] (IObit)
Task: {698A1A4B-DF34-45BC-B282-57F919378965} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {69F2B5FE-101C-4037-B0DD-5F6086B5C113} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {6C3946CE-F23E-4DA9-8C3B-DB86C7DB48F6} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {6D360662-B183-4368-9C11-B11F27732678} - System32\Tasks\Uninstaller_SkipUac_Administrador => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-03-04] (IObit)
Task: {6FE2E931-0B31-4E44-8A72-F4F32BC8CE99} - System32\Tasks\{3BB6CC6B-EF30-4F87-A283-C85430A215E5} => pcalua.exe -a "D:\00001-Configuracoes e Dados Usuario\Arquivos Recebidos\Firefox\ELVIS.exe" -d "D:\00001-Configuracoes e Dados Usuario\Arquivos Recebidos\Firefox"
Task: {80D6B63D-E1BE-4439-B6D8-EC8527E0EA0E} - System32\Tasks\{1EA314F6-31A2-45FC-896E-AB2F6D0D0C8E} => pcalua.exe -a "c:\Program Files\Microsoft SQL Server\100\Setup Bootstrap\Release\x64\SetupARP.exe"
Task: {92CF1BF7-DC2F-43A4-847F-8BC97EC68E62} - System32\Tasks\Uninstaller_SkipUac_Claudio => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-03-04] (IObit)
Task: {93785A3D-6CB5-4582-9310-7CB4D4AC8E31} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO
Task: {9BC727E0-FAEF-4837-8D76-C754120F4BB1} - não caminho do arquivo
Task: {A6CC5E5F-55EC-4B24-89A1-375EAC4F03C2} - System32\Tasks\{64DFCB3F-F384-45F6-A9DA-7D786484F5B2} => pcalua.exe -a "D:\00001-Configuracoes e Dados Usuario\Arquivos Recebidos\Firefox\DiskMon\Diskmon.exe" -d "D:\00001-Configuracoes e Dados Usuario\Arquivos Recebidos\Firefox\DiskMon"
Task: {B6407C0A-3877-4BAC-AAEF-2D2CC836BAEF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd)
Task: {BF98AB0B-AEEE-4942-AC79-C189B51742A4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {D78D3E06-7E7C-4C5B-A1C2-5983D2331D9E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-12] (Dropbox, Inc.)
Task: {D820F000-F763-47D4-A1BE-4AFB81F85558} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {DFD66C49-AEEC-452A-B3B9-B314F70D7DA1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {E04E6F73-47BF-48DA-9CFB-2FB5C3B94F5D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {E1928E15-E907-4659-BE00-96FA1AB43AE2} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {EB204A24-9E73-4C7C-A502-FF7983D10DF2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\SYSTEM32\MRT.EXE [2016-11-08] (Microsoft Corporation)
Task: {F15C3973-25E3-400B-81AB-B00A13D8E4EA} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {F2AB6CB6-F59C-4CF3-A56D-7035E191F852} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {F309BE21-BDCE-47B9-AAA5-0CD6A5A39B0B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_00001.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrador.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Claudio.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-10-30 05:18 - 2015-10-30 05:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2013-08-19 18:33 - 2012-10-04 20:49 - 00087152 _____ () C:\WINDOWS\System32\cpwmon64.dll
2016-01-06 21:13 - 2016-01-06 21:13 - 00137712 _____ () C:\WINDOWS\System32\HPCP1020LM.DLL
2015-01-26 18:32 - 2012-08-31 15:03 - 00288768 _____ () C:\WINDOWS\System32\HP1100LM.DLL
2013-08-20 20:30 - 2012-08-31 15:02 - 00074240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2016-11-08 20:05 - 2016-10-25 07:42 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-08 20:05 - 2016-10-25 07:42 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-05-12 07:49 - 2014-05-12 07:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-06-02 10:14 - 2016-06-02 10:14 - 00959168 _____ () C:\Users\Claudio\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-04-27 04:29 - 2016-04-27 04:29 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-12 21:29 - 2016-07-01 01:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-06-01 22:00 - 2015-06-01 22:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-10-23 23:18 - 2016-06-08 18:07 - 00458904 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
2016-10-23 23:18 - 2016-06-08 18:18 - 00709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll
2016-10-23 23:18 - 2016-06-08 18:17 - 00188568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll
2016-11-08 20:05 - 2016-10-25 07:32 - 03081568 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2016-07-12 21:29 - 2016-07-01 02:44 - 02394976 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2016-11-08 20:05 - 2016-10-25 02:49 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-08 20:05 - 2016-10-25 02:44 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-08 20:06 - 2016-10-25 02:45 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-08 20:05 - 2016-10-25 02:48 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-03-12 22:39 - 2016-10-10 14:29 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-11-12 13:25 - 2016-10-10 14:29 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-11-12 13:25 - 2016-10-10 14:29 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-11-12 13:25 - 2016-10-10 14:29 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-03-12 22:39 - 2016-10-10 14:29 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-03-12 22:39 - 2016-10-10 14:29 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-03-12 22:39 - 2016-10-10 14:29 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-11-12 13:25 - 2016-11-07 20:58 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-03-12 22:39 - 2016-10-10 14:30 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-11-12 13:25 - 2016-11-07 20:58 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-11-12 13:25 - 2016-11-07 20:58 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-09 14:53 - 2016-11-07 20:59 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-11-12 13:25 - 2016-10-10 14:29 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-11-12 13:25 - 2016-10-10 14:31 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-08-09 14:53 - 2016-11-07 20:59 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-11-12 13:25 - 2016-11-07 20:58 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-08-09 14:53 - 2016-10-10 14:30 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-11-12 13:25 - 2016-11-07 20:58 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-03-12 22:39 - 2016-11-07 20:59 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-11-12 13:25 - 2016-10-10 14:27 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-11-12 13:25 - 2016-11-07 20:59 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2016-11-12 13:25 - 2016-11-07 20:49 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2016-11-12 13:25 - 2016-11-07 20:59 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-11-12 13:25 - 2016-11-07 20:59 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-03-12 22:39 - 2016-10-10 14:29 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-08-09 14:53 - 2016-11-07 20:59 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-11-12 13:25 - 2016-10-10 14:33 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-11-12 13:25 - 2016-10-10 14:34 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-11-12 13:25 - 2016-11-07 20:59 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-04-16 22:38 - 2016-11-07 20:59 - 00037192 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2016-03-12 22:39 - 2016-10-10 14:31 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-11-12 13:25 - 2016-11-07 20:59 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\WINDOWS\System32:2BBA6959_Uni.gbp [2]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\ProgramData\Windows NT:74A1657361C767CEE4C36B3EC4299B6C [17]
AlternateDataStreams: C:\ProgramData\Windows NT:D65EBF23C619A595DC64CC63566DAE47 [16]
AlternateDataStreams: C:\Users\Claudio\Desktop\CCR - Toombstone Shadow.txt:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\Windows NT:74A1657361C767CEE4C36B3EC4299B6C [17]
AlternateDataStreams: C:\Users\Todos os Usuários\Windows NT:D65EBF23C619A595DC64CC63566DAE47 [16]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\21420699.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\91B0869F.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\21420699.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\91B0869F.sys => ""="Driver"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\caixa.gov.br -> imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com -> www.google.com
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\google.com.br -> www.google.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.b.br -> www.itau.b.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> hxxps://bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itau.com.br -> bankline.itau.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br
IE trusted site: HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2012-07-26 03:26 - 2016-11-20 22:30 - 00001274 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> d:\00001-configuracoes e dados usuario\fundos tela\pskuxvp.jpg
HKU\S-1-5-21-4027680159-780384288-1035963222-1004\Control Panel\Desktop\\Wallpaper -> d:\00001-configuracoes e dados usuario\fundos tela\guitar3.jpg
HKU\S-1-5-21-4027680159-780384288-1035963222-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> d:\00001-configuracoes e dados usuario\fundos tela\guitar3.jpg
HKU\S-1-5-21-4027680159-780384288-1035963222-1088-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-82-1036420768-1044797643-1061213386-2937092688-4282445334-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-82-271721585-897601226-2024613209-625570482-296978595-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-82-3682073875-1643277370-2842298652-3532359455-2406259117-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-82-3876422241-1344743610-1729199087-774402673-2621913236-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-82-4068219030-1673637257-3279585211-533386110-4122969689-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.25.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DigitalWave.Update.Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: ProLic => 3
MSCONFIG\Services: ProNFeClientMonitor => 3
MSCONFIG\Services: psqlWGE => 3
MSCONFIG\Services: RepetierServer => 2
MSCONFIG\Services: Serviio => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: ss_conn_service => 2
MSCONFIG\Services: TeamViewer => 3
HKLM\...\StartupApproved\Run: => "BTMTrayAgent"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "Diebold - Warsaw"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Habil_Servidor_MSA"
HKU\S-1-5-21-4027680159-780384288-1035963222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Habil_Tray"
HKU\S-1-5-21-4027680159-780384288-1035963222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{4D96410B-6067-451B-92BA-AA33A2EDE305}C:\users\claudio\downloads\ffinstonline.exe] => (Block) C:\users\claudio\downloads\ffinstonline.exe
FirewallRules: [TCP Query User{003C6A23-D057-4D98-8629-B01F43204E5A}C:\users\claudio\downloads\ffinstonline.exe] => (Block) C:\users\claudio\downloads\ffinstonline.exe
FirewallRules: [{D969CA13-226B-48D6-85A0-8F51D8A6748A}] => (Allow) C:\Program Files (x86)\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{5ED31841-844A-4C4E-83E3-2D6488225505}] => (Allow) C:\Program Files (x86)\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{0C1781E4-6D27-4364-AA34-886A444E57E9}] => (Allow) C:\Program Files (x86)\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{90B90F4B-A161-4EE4-8B41-4018A8348835}] => (Allow) C:\Program Files (x86)\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [UDP Query User{8EC06993-70B2-4114-B2ED-2C3C6560D156}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe
FirewallRules: [TCP Query User{8260A86E-97AA-484D-8B06-BC06194D5607}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe
FirewallRules: [UDP Query User{D3857C6F-9465-4EFE-B71D-43757FAA3604}C:\program files (x86)\koinonia software\habil empresarial\habil_servidorrelatorios.exe] => (Allow) C:\program files (x86)\koinonia software\habil empresarial\habil_servidorrelatorios.exe
FirewallRules: [TCP Query User{64F3B61E-E21A-489E-86E3-C31C113929DD}C:\program files (x86)\koinonia software\habil empresarial\habil_servidorrelatorios.exe] => (Allow) C:\program files (x86)\koinonia software\habil empresarial\habil_servidorrelatorios.exe
FirewallRules: [UDP Query User{BD4B52EF-760B-431B-AC2E-DA501385A6BD}C:\program files (x86)\koinonia software\habil empresarial\habil_servidor_msa.exe] => (Allow) C:\program files (x86)\koinonia software\habil empresarial\habil_servidor_msa.exe
FirewallRules: [TCP Query User{EA92C174-FF67-42C4-B605-A58496BEAA99}C:\program files (x86)\koinonia software\habil empresarial\habil_servidor_msa.exe] => (Allow) C:\program files (x86)\koinonia software\habil empresarial\habil_servidor_msa.exe
FirewallRules: [{945051E0-6DB6-45A4-8D4F-5DBCA4AA3780}] => (Allow) C:\Program Files (x86)\Koinonia Software\Habil Empresarial\Habil_ServidorRelatorios.exe
FirewallRules: [{43F8EF1F-EF5E-403A-BD40-6844AAE9D370}] => (Allow) C:\Program Files (x86)\Koinonia Software\Habil Empresarial\Habil_ServidorRelatorios.exe
FirewallRules: [{338EB671-629E-4E69-B1AF-2BCD9B8990AE}] => (Allow) C:\Program Files (x86)\Koinonia Software\Habil Empresarial\Habil_Servidor_MSA.exe
FirewallRules: [{F14A5738-7479-4D03-9EA5-A0305BAE207E}] => (Allow) C:\Program Files (x86)\Koinonia Software\Habil Empresarial\Habil_Servidor_MSA.exe
FirewallRules: [{4AFB390D-624A-494E-B7EC-246A5623EAA4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{30544B1F-AB6C-4057-8F4C-EA24859EED7A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A00C64EF-05FB-4DE8-8F06-F0F5A64E012B}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1DD17804-A0BB-46B5-9D81-BFC8E5B11A47}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9F1375D2-39BF-4C49-AB62-81D33FB17C50}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{958D3A43-1279-4023-A08A-69E532121DAB}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F1426D9E-677D-4802-8C4F-8033DED5A74D}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{046A12CA-FBA1-4438-9E51-8517DD12A5CC}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{97858FFE-402D-4FBC-A75F-3DE628FBC2B5}C:\users\00001\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\00001\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{D88AC56A-1204-4AB2-B54C-93AC1D6CF87E}C:\users\00001\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\00001\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{90BCB538-744F-45D4-8719-83CD0C5D199F}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{577C4A95-C306-422A-B080-6BC966433228}] => (Allow) C:\Users\Claudio\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{C6DE7C18-4A03-4F01-9603-102BEFB0F65E}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{D2FF474F-6CED-4AE5-80F2-AE0A1A4B88DA}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{82B04D6E-B822-4AEA-BC8C-F25BBCC98982}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{1E871277-0BAD-4304-9BB5-51A6649F6E8E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{63ADACA6-E910-451C-8E08-C2E54C7CFF9B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{4F9821A5-B1EE-4F6E-B10A-45A882CDBD13}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{552FC586-B87E-4290-A2C0-D64C2F895818}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{899CAE92-B4FF-41AA-A268-D27C86EE675E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{7530D6F8-FC8E-4B27-9981-1F94B9A89F11}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{71E88FA3-6D9C-41E6-8156-6398211A3FC6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{E19996D4-E8EB-410F-B20C-D0580B5D61F0}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{3F824E55-0419-46A9-82F3-FF59434F6557}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{795A2C16-7750-453F-BD38-643AF194D9FE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{30898895-61CF-4CBD-A5F4-E8827E7663F4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{A510B7FC-2641-47F8-876C-CB2EC4663300}] => (Allow) LPort=35119
FirewallRules: [{8804B15B-F38F-4932-8096-115F4C774A25}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BE1CFCA0-F7F4-4B5D-A087-02660400F692}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B25EE234-E34A-46E1-ADB4-AD4135280999}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{5C34CB48-BC03-4BB9-A271-D6881A1D3EBA}] => (Allow) LPort=1434
FirewallRules: [{33AB5508-01FF-477A-8741-DFAB4AD32404}] => (Allow) LPort=1433
FirewallRules: [UDP Query User{8894F9D6-5979-4A7C-A880-7966F060B9F6}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{DAFE6F72-38AE-49F8-B4BB-29C7BABCEE58}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{CE61CBA5-2581-45F6-87CD-B9AB0446A65E}] => (Allow) LPort=5800
FirewallRules: [{97257DD5-3B21-468C-8DCA-A872358CF35D}] => (Allow) LPort=5900
FirewallRules: [{9ECC07CF-01C4-41CC-B744-19F6E72F94E1}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe
FirewallRules: [{0F2AAC1A-9FDB-496D-89EE-FE321F2DACB8}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe
FirewallRules: [{E8698E97-AE11-4828-AF91-66883A66F0E0}] => (Allow) C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
FirewallRules: [{C3AA9FD5-2FD1-48E1-9C8A-EE5F312C3E2A}] => (Allow) C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
FirewallRules: [{8B723BB5-6BF8-4151-97B8-AC4828FB2ABD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5677CC9E-5F2F-442C-9D78-BA96315FBFC1}] => (Allow) LPort=427
FirewallRules: [{9958947E-239D-4C14-BBEB-08D09B56241E}] => (Allow) LPort=161
FirewallRules: [{2ECAD950-BE35-47D9-86EA-B25075E54B8A}] => (Allow) LPort=427
FirewallRules: [{2064660C-CF2E-4895-963D-A64544D68B30}] => (Allow) LPort=9100
FirewallRules: [TCP Query User{66A3D05B-0A85-44EF-A682-2577B8DA346A}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{0C5BD71F-5BB0-49BB-AE6F-2937B886F6D0}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [{BDA3D507-A9F5-4A0A-BBDB-85FCB613AE9B}] => (Allow) LPort=5900
FirewallRules: [{E99424F5-EA67-41F3-854F-11F9D096B8E0}] => (Allow) LPort=5800
FirewallRules: [{51363C98-6C6B-4294-B076-87A2688F9872}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0FF1ADBC-F382-463A-802A-3986C843DF56}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{644763DF-C779-43DE-94D3-D10649A394A8}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{7DCBBB00-C4E9-4495-987E-DFCD68636270}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{ABB4DA8A-7414-403C-BF4F-986884E121AA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{252C7408-DFC6-47C4-8AD0-3F3CFA777B6A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{AEEAA4F3-0915-48CE-8086-C7226C3C985D}C:\program files (x86)\teamviewer\teamviewer.exe] => (Block) C:\program files (x86)\teamviewer\teamviewer.exe
FirewallRules: [UDP Query User{DF0CC5F3-9423-4EDE-A397-DD343FFCB6DC}C:\program files (x86)\teamviewer\teamviewer.exe] => (Block) C:\program files (x86)\teamviewer\teamviewer.exe
FirewallRules: [TCP Query User{1659283C-5672-4C59-8386-C5C7F81616F4}C:\users\00001\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\00001\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{10305A2E-C267-4647-BB0D-A0DDD702527F}C:\users\00001\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\00001\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [{9F6924A2-18DB-4BD1-9D36-EBE59891E6FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A18653FA-E4DD-41F1-B9A3-1A0574BEDB50}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DE03CE27-7B0F-493C-A859-AB160689AED2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3FB5F1E0-94D8-4E68-8933-A9589D031F76}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{ABF7C176-81FD-40BD-BE5F-27ABA759F3B6}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{D121494C-513F-425B-B6F6-F149A204E0A7}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{F5D24D97-93FF-4714-B5FF-EAA0A3F81FAE}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe
FirewallRules: [{714EEB1D-634F-4B51-A6E8-2A7BD359D3BC}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{ECC7F65B-3373-4F93-820C-941A3DD6C07C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{DD233947-A855-41F1-AA65-14851FE3A353}] => (Allow) C:\ProgramData\Microsoft\Network\Dsq\network\sysnetwk.exe
FirewallRules: [{C1B58825-3CB0-41FE-A7DC-75C5F40DB49A}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{47F9F7E9-F600-41E9-A3F7-7E812184A728}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
==================== Pontos de Restauração =========================
20-11-2016 19:09:11 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/26/2016 12:01:26 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (11/26/2016 12:01:26 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/26/2016 12:01:21 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (11/26/2016 12:01:21 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/26/2016 12:01:16 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (11/26/2016 12:01:16 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/26/2016 12:01:11 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (11/26/2016 12:01:11 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/26/2016 12:01:06 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (11/26/2016 12:01:06 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Erros de Sistema:
=============
Error: (11/26/2016 11:45:16 AM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT)
Description: O servidor {784E29F4-5EBE-4279-9948-1E8FE941646D} não se registrou no DCOM dentro do tempo limite necessário.
Error: (11/26/2016 11:42:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (11/26/2016 11:42:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (11/26/2016 11:42:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (11/26/2016 11:42:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
O sistema não pode encontrar o arquivo especificado.
Error: (11/26/2016 11:42:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Freemake Improver foi encerrado inesperadamente. Isso aconteceu 1 vez(es).
Error: (11/26/2016 11:41:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço Merzoentujergh terminou com o erro:
Não foi possível encontrar o módulo especificado.
Error: (11/26/2016 11:41:34 AM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: AUTORIDADE NT)
Description: Falha do Agendador de Tarefas ao carregar as tarefas na inicialização do serviço. Dados adicionais: Valor do Erro: 2147942402.
Error: (11/26/2016 11:41:28 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: O serviço Themes depende do seguinte serviço: iThemes5. Esse serviço pode não ter sido instalado.
Error: (11/26/2016 11:40:34 AM) (Source: DCOM) (EventID: 10010) (User: cgnote2)
Description: O servidor {9BA05972-F6A8-11CF-A442-00A0C90A8F39} não se registrou no DCOM dentro do tempo limite necessário.
CodeIntegrity:
===================================
Date: 2016-11-20 23:39:31.540
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-20 23:37:40.362
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-20 23:31:51.963
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-12 13:59:48.614
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-11-10 09:33:16.798
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-11-09 18:30:23.982
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
Date: 2016-11-09 17:30:24.220
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
Date: 2016-11-09 16:30:36.350
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
Date: 2016-11-09 15:30:32.725
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
Date: 2016-11-09 14:30:35.704
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentagem de memória em uso: 67%
RAM física total: 4009.54 MB
RAM física disponível: 1314.7 MB
Virtual Total: 6057.54 MB
Virtual disponível: 3557.76 MB
==================== Drives ================================
Drive c: (C-CGNote2) (Fixed) (Total:102 GB) (Free:42.7 GB) NTFS ==>[drive com componentes de inicialização (obtido através de BCD)]
Drive d: (D-CGNote2) (Fixed) (Total:341.16 GB) (Free:43.75 GB) NTFS
Drive e: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]
Drive f: () (Fixed) (Total:22.5 GB) (Free:0.16 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 383924BA)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=102 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=341.2 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=22.5 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================