Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 12-09-2016
Executado por Administrador (13-09-2016 09:24:15)
Executando a partir de C:\Users\Administrador\Downloads
Windows 8.1 Pro (Update) (X64) (2014-12-30 14:39:37)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-2031058113-4014658272-1403780906-500 - Administrator - Enabled) => C:\Users\Administrador
Convidado (S-1-5-21-2031058113-4014658272-1403780906-501 - Limited - Disabled)
Hamilton (S-1-5-21-2031058113-4014658272-1403780906-1011 - Limited - Enabled) => C:\Users\Hamilton.ENG09TVAM

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version:  - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version:  - Microsoft)
AutoCAD 2011 - Brasil (HKLM\...\AutoCAD 2011 - Brasil) (Version: 18.1.49.0 - Autodesk)
AutoCAD 2011 - Brasil (Version: 18.1.49.0 - Autodesk) Hidden
AutoCAD 2011 Language Pack - Brasil (Version: 18.1.49.0 - Autodesk) Hidden
Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Blackmagic ATEM Switchers (HKLM\...\{5E575C31-6265-4AB1-A118-98EAF3375F96}) (Version: 6.9.0.0 - Blackmagic Design)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform)
Crystal Reports 10 .NET runtime (HKLM-x32\...\{40FCE4CC-6115-49ED-B6E2-36C99330F930}) (Version: 10.0.0.0 - Crystal Decisions, Inc.)
Dell Resource CD (HKLM-x32\...\{42929F0F-CE14-47AF-9FC7-FF297A603021}) (Version: 1.00.0000 - Nome de sua empresa:)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.3 - Synaptics Incorporated)
doPDF 7.1 printer (HKLM\...\doPDF 7 printer_is1) (Version:  - Softland)
Eclipse Configuration System 5.2 (HKLM-x32\...\Eclipse Configuration System 5.2) (Version: 5.2 - ClearCom)
Eclipse Configuration System 5.2 (x32 Version: 5.2 - Clear-Com) Hidden
EHX Configuration System 8.0 (HKLM-x32\...\EHX80) (Version:  - Clear-Com)
EPSON T1110 Series Printer Uninstall (HKLM\...\EPSON T1110 Series) (Version:  - SEIKO EPSON Corporation)
FormatFactory 3.9.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.9.5.0 - Free Time)
GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.7.1.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.101 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - )
HDD Regenerator (HKLM-x32\...\{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}) (Version: 1.71.0012 - Abstradrome)
iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Management Suite 1.0 (HKLM-x32\...\{34254C1B-41CF-476B-A0ED-73E944FEA4BF}_is1) (Version: 1.0 - Radio TV do Amazonas LTDA)
Media Suite 1.0 (HKLM-x32\...\{C530CF1E-013C-4172-BFA6-DE1F813349A9}_is1) (Version: 1.0 - Radio TV do Amazonas LTDA)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Mp3tag v2.70 (HKLM-x32\...\Mp3tag) (Version: v2.70 - Florian Heidenreich)
MTM400 Remote Configuration (HKLM-x32\...\{3C7C7100-0ED3-4C41-B213-1FB7948AD8A6}) (Version: 1.0.0 - Tektronix)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
Nero MediaHome Free (HKLM-x32\...\{BB842C3B-B4B1-4586-BED1-C5F07ABB0E09}) (Version: 16.0.01700 - Nero AG)
NetUpdate3 (HKLM-x32\...\{58304A4C-04BE-4133-BC78-AF74FF434B4A}) (Version: 1.2.4 - PROMAX)
NetUpdate3 (HKLM-x32\...\NetUpdate3) (Version:  - )
PDF Creator Pilot 4.3  (HKLM-x32\...\{467D4F46-B75D-4E9F-B710-D933D687B9BD}) (Version: 4.3 - Two Pilots)
PkUpdate (HKLM-x32\...\{382B3639-26D4-415E-9BD3-45BE4B90A1A7}) (Version: 1.58.16 - PROMAX ELECTRONICA, S.A.)
Prerequisite installer (x32 Version: 16.0.0003 - Nero AG) Hidden
Project64 versão 2.2 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.2 - Henryxs87)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RM404 (HKLM-x32\...\{AE25F383-A0C5-4A5B-872F-E9C8E04F426F}) (Version: 2.57 - Promax Electronics, S.L.)
SafeZone Stable 1.51.2220.53 (x32 Version: 1.51.2220.53 - Avast Software) Hidden
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
SNC toolbox (HKLM-x32\...\{312881F2-427C-4D5A-8396-2D4C364B4AAA}) (Version: 1.40.2057 - Sony Corporation)
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.20.9.4533 - Enigma Software Group, LLC)
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Symantec pcAnywhere (HKLM-x32\...\{125E8183-866A-11D3-97DF-0000F8D8F2E9}) (Version: 12.5.0.442 - Symantec Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.55321 - TeamViewer)
TeraCentral (HKLM-x32\...\{3A971636-157A-4503-AA59-D445AD833D83}) (Version: 0.9.1 - Teradek)
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
UltraVnc (HKLM\...\Ultravnc2_is1) (Version: 1.2.1.0 - uvnc bvba)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Administrador\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Administrador\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2011\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2031058113-4014658272-1403780906-500_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Administrador\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {074F5D5F-E219-4410-9441-55211BD74469} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2031058113-4014658272-1403780906-1007 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2136C3D9-A752-4381-8113-4A1868CB5177} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2031058113-4014658272-1403780906-500UA => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-06] (Google Inc.)
Task: {218D3C03-C3A5-45D6-A889-7F42CBF0918F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-10] (Piriform Ltd)
Task: {23880812-75BB-4D0C-A10E-EF8B71D3BA9B} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-500 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {48FD2777-01B8-4FD5-8ED1-056503CA300A} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {50D19DF0-DE86-4FDF-9693-E7F2FCBD71CC} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2031058113-4014658272-1403780906-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {5202A27C-AB6A-4CDA-A088-87EDFF867F96} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {542C73F0-F698-44B4-9FAD-927B2EBEC147} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2031058113-4014658272-1403780906-500 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {6789B605-FD9F-4AA4-A513-4E5154594727} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-1007 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {6AE19AB2-9F37-429F-9A52-FD02829ED5B9} - System32\Tasks\Chromium => C:\Users\ADMINI~1\AppData\Local\Chromium\APPLIC~1\450242~1.0\INSTAL~1\UNINST~1.EXE
Task: {6EC9E97E-C3CA-4D37-B144-E5B9BF65AAA9} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-500 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {75ED0A7A-5DFA-4F5D-9623-2FDC1CA161F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {813D96EB-0E45-4675-A01A-DAA84B9091D6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-08-26] (Microsoft Corporation)
Task: {8B7B94EF-A849-4206-90E6-EA7BEBFAAAE4} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-1007 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {8BA8FE04-2416-4A30-8ACE-177B90D28636} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {8E7B2343-9351-46A8-A06E-30309504D9E0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-08-25] (AVAST Software)
Task: {98E300D6-272F-4906-B3FC-EADD0F5AF814} - System32\Tasks\SafeZone scheduled Autoupdate 1472129419 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software)
Task: {B16014CF-7B97-4498-872C-84131CF5DB13} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-1007 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {C045DC99-3919-462A-8C52-0917B7DFFF8F} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2031058113-4014658272-1403780906-1007 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {C0E1CA5A-5AD5-465D-81E8-7A53615D2071} - System32\Tasks\{FD59844B-51BB-441C-AE16-D0150165C309} => pcalua.exe -a C:\Suporte\Encoder\settmp.exe -d C:\Suporte\Encoder
Task: {C1E1CBBB-198D-48F2-A271-2FE79F7B6313} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-08-26] (Microsoft Corporation)
Task: {C51C3590-6847-4F9A-A7FE-6B7B03847C52} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2031058113-4014658272-1403780906-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {C90D3A42-B887-4CE1-BD89-F4E61490F5A2} - System32\Tasks\ReclaimerResumeInstallLogin_Administrador => C:\Users\Administrador\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.03\agent\rnupgagent.exe [2016-06-21] (RealNetworks, Inc.)
Task: {D632D257-49F6-4084-89C5-0E02F9A7AF90} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-05] (AVAST Software)
Task: {DD709934-DD17-4098-8970-EFA5B4BAC2A5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2031058113-4014658272-1403780906-500Core => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-06] (Google Inc.)
Task: {EFD8078B-B16C-4856-BDBE-CCF9EFEF7683} - System32\Tasks\ReclaimerResumeInstall_Administrador => C:\Users\Administrador\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.03\agent\rnupgagent.exe [2016-06-21] (RealNetworks, Inc.)
Task: {F9F7B79D-F24E-4CC4-ABAC-3F63DF947DDE} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {FFE51ECF-A667-42F5-AB93-C9D067709A11} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Chromium.job => C:\Users\ADMINI~1\AppData\Local\Chromium\APPLIC~1\450242~1.0\INSTAL~1\UNINST~1.EXE
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2031058113-4014658272-1403780906-500Core.job => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2031058113-4014658272-1403780906-500UA.job => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d76736477ba15566\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 10"
ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d755e1040e5d38ac\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 8"
ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 7"
ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\371b6590bc8d800\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 6"

==================== Módulos Carregados (Whitelisted) ==============

2015-07-01 10:43 - 2015-07-01 10:43 - 00022528 _____ () C:\WINDOWS\System32\ssm4mlm.dll
2016-09-12 10:36 - 2016-09-07 01:03 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libglesv2.dll
2016-09-12 10:36 - 2016-09-07 01:03 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libegl.dll
2016-09-12 10:36 - 2016-09-07 00:50 - 31541952 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\PepperFlash\pepflashplayer.dll
2016-08-25 08:47 - 2016-08-25 08:47 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-13 08:40 - 2016-09-13 08:40 - 03085112 _____ () C:\Program Files\AVAST Software\Avast\defs\16091301\algo.dll
2016-08-25 08:47 - 2016-08-25 08:47 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-08-25 08:47 - 2016-08-25 08:47 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\ProgramData\Temp:1AAB2E68 [175]
AlternateDataStreams: C:\ProgramData\Temp:7311BB85 [328]
AlternateDataStreams: C:\ProgramData\Temp:F0D7EE30 [138]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:1AAB2E68 [175]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:7311BB85 [328]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:F0D7EE30 [138]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)

HKU\S-1-5-21-2031058113-4014658272-1403780906-500\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\85 -> 85
IE trusted site: HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\85 -> 85

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2012-07-26 01:26 - 2016-09-12 09:48 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-2031058113-4014658272-1403780906-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: awhost32 => 3
MSCONFIG\Services: Bluetooth Device Monitor => 2
MSCONFIG\Services: Bluetooth OBEX Service => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: FLEXnet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NAUpdate => 3
MSCONFIG\Services: RealNetworks Downloader Resolver Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: ss_conn_service => 2
MSCONFIG\Services: TeamViewer => 2
HKLM\...\StartupApproved\Run: => "BTMTrayAgent"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "TkBellExe"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "Baidu Antivirus"
HKLM\...\StartupApproved\Run32: => "Blackmagic CheckVersion"
HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_28ED99370516446D061097DD928B8504"
HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\StartupApproved\Run: => "Epson Stylus Office T1110"
HKU\S-1-5-21-2031058113-4014658272-1403780906-500\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [UDP Query User{97E543E3-6EF8-45AD-A7E2-21431FFED0BB}C:\program files\clearcom\ehx configuration system 8.0\eclipseclient.exe] => (Allow) C:\program files\clearcom\ehx configuration system 8.0\eclipseclient.exe
FirewallRules: [TCP Query User{8B995A1D-1918-4F7D-8872-BA10E0A97E2C}C:\program files\clearcom\ehx configuration system 8.0\eclipseclient.exe] => (Allow) C:\program files\clearcom\ehx configuration system 8.0\eclipseclient.exe
FirewallRules: [{2A934118-39C2-4E95-881B-5FEEF2B41AF6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{40EA77AD-E08B-4925-9ACF-EE483BDBF32D}] => (Allow) C:\Program Files (x86)\Symantec\pcAnywhere\awhost32.exe
FirewallRules: [{5B7FBC70-D2EA-41A9-BDDC-72D0D990E562}] => (Allow) C:\Program Files (x86)\Symantec\pcAnywhere\awhost32.exe
FirewallRules: [UDP Query User{C481E16B-CF46-4A38-B0B3-7CA031B85E61}C:\mint cabine_todas_as_cameras\mint-todas_as_cameras.exe] => (Allow) C:\mint cabine_todas_as_cameras\mint-todas_as_cameras.exe
FirewallRules: [TCP Query User{771CA817-7772-434B-9563-E1F5C5EC7506}C:\mint cabine_todas_as_cameras\mint-todas_as_cameras.exe] => (Allow) C:\mint cabine_todas_as_cameras\mint-todas_as_cameras.exe
FirewallRules: [{40111ADD-182A-4853-8ACB-80AD7C4719EA}] => (Allow) C:\Program Files (x86)\Symantec\pcAnywhere\awhost32.exe
FirewallRules: [{2BC93851-6041-4888-898A-5501E06FAC31}] => (Allow) C:\Program Files (x86)\Symantec\pcAnywhere\awhost32.exe
FirewallRules: [{286A44C0-7B5B-4152-B842-5E4DE75115C5}] => (Allow) C:\Program Files (x86)\MediaHome\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{AB56FCE0-8983-4F33-A8E4-E03C49243AC4}] => (Allow) C:\Program Files (x86)\MediaHome\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{C5B44F33-AF39-4654-A3B5-FDF13444243F}] => (Allow) C:\Program Files (x86)\MediaHome\KM\NMDllHost.exe
FirewallRules: [TCP Query User{C4843F02-39C4-4CEF-9186-40875530F68F}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe
FirewallRules: [UDP Query User{ED8B5FE3-800E-483A-A004-872E46C7371D}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe
FirewallRules: [TCP Query User{5CC86CE0-CED4-49B5-989C-7C8323CB65EE}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe
FirewallRules: [UDP Query User{E1C28080-F548-4A21-B248-FA34F9028C3E}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\irpf2015.exe
FirewallRules: [TCP Query User{50961BC2-81BB-4BFF-B287-1A0154D669FF}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2013.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2013.exe
FirewallRules: [UDP Query User{D0C165E3-6DA7-4047-AB97-41EE0B135E4B}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2013.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\irpf2013.exe
FirewallRules: [{EA65A431-62CB-4B31-A20D-01B59C305919}] => (Allow) LPort=14058
FirewallRules: [{08664C01-F41A-419A-BA86-F265FD040F91}] => (Allow) LPort=5000
FirewallRules: [TCP Query User{B5B46E00-6F13-46E6-B87E-A5AE799CA75D}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{9644D7AD-99D2-4AF2-A3C1-A88436B8A447}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [{71EB854A-CA1A-4C8E-9E97-3B4BA9D6FF42}] => (Allow) LPort=5900
FirewallRules: [{BD716686-3215-49F6-B9A7-F6680C0A5604}] => (Allow) LPort=5800
FirewallRules: [{C85D0EEA-F398-49A7-93A7-606CE4B0128F}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{B3754A46-DAE0-4FFC-AD23-82268A2DF8E8}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe
FirewallRules: [{80AFDE03-F0E6-4C29-A149-1E699723336A}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{99FB903C-DC59-4333-B4FC-88AE1F898D66}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe
FirewallRules: [{91E60835-9989-4A8F-B52E-4BDF7FCCBA5A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9026187E-A13B-4B46-929E-016891476EA7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4984F78C-98E4-4305-BB08-15654E74A81B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EB75DD56-959C-4286-9B6F-CFA90C7C93F8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{ED14A9F4-CD4D-457C-9E24-392FD2E85158}C:\program files\uvnc bvba\ultravnc\repeater.exe] => (Allow) C:\program files\uvnc bvba\ultravnc\repeater.exe
FirewallRules: [UDP Query User{868185FB-27AB-4894-AF1D-DA7EA3C33EBA}C:\program files\uvnc bvba\ultravnc\repeater.exe] => (Allow) C:\program files\uvnc bvba\ultravnc\repeater.exe
FirewallRules: [{D69DFA8B-5310-46D7-BEDF-7B90C99BE76F}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{D7F60168-0055-4803-B729-726A79C2E2A3}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{E6DA2CDD-0AC1-4BC3-9746-499FD8A69D90}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{84F7E9F6-1679-4C89-A40A-362772802DD9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{CC6DEFAD-DC4A-401D-9216-4899FC82B9E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{94C878BE-2623-46E1-B5B9-30DD3C55B68F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{973B60BD-C55E-4BA5-A19F-F6CB0BD125AA}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{B4FB89F4-2D51-454E-BEAD-BDDD4BFBC81B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{09B51465-A900-44D2-9B79-9361A7F02DE3}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{21624AA3-00C1-4146-84B1-E8246EA747AC}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BE22CDFA-DE08-43CB-9F57-6F8A5B8F228D}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{80C70F24-3A91-4376-8C5D-F9DC7D9B1ADA}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{026BE6D8-4F67-405D-9FF1-ADC96E34952C}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1F118092-0193-41E4-9FB9-F9633A9D0F6D}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7488E757-B988-4EDB-BF2F-DDC89644107F}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{43653372-E3E8-4AFC-9413-58E7EB7C75ED}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [{9B310448-AF43-4306-8BE8-770A9401D260}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [{4E8C7849-D0A6-4039-9FBA-7028AA61783C}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{AFF2DCC5-EBED-43FF-B2BC-F08AFA1DA517}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [{5B0A9463-9C30-4E4B-A1DF-4790D568A5D8}] => (Allow) C:\Users\Administrador\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [TCP Query User{99120554-8021-4943-868E-A4DE76CE2602}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Allow) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [UDP Query User{CF81006C-9995-4DA8-98DA-FF474C4767C4}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Allow) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [{7B83B081-55EB-4DDE-A4F3-0005EFA555EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C1602543-AF54-4F35-B4ED-98A75E5861AC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B6452C23-E1D6-4A1D-9F25-7ED8A8ABA24D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B647FF1A-11A1-436A-936B-C5E9F0BE79CF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{40D2CD59-47AC-4EDD-B3E2-CEFCE9DBA03A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{D0F465DD-1DE8-45FF-AA8F-D667D4C5B3A6}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Block) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [UDP Query User{A92E2DDD-A284-4BF8-99FD-B5724DE101A6}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Block) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe
FirewallRules: [{957FE8CD-EB44-4C5D-8DD8-78EA2CF53501}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Pontos de Restauração =========================

25-08-2016 07:37:36 WinZip Driver Updater (25/08/2016 07:37)
25-08-2016 07:40:14 Removed Bonjour
25-08-2016 08:57:53 ASU_MSI_TRAN
29-08-2016 16:58:12 ASU_MSI_TRAN
05-09-2016 19:47:11 Installed Blackmagic ATEM Switchers
05-09-2016 19:49:25 Removed Blackmagic ATEM Switchers
05-09-2016 19:58:39 Installed Blackmagic ATEM Switchers
13-09-2016 09:03:50 ZHPFix Restore System Point
13-09-2016 09:14:59 JRT Pre-Junkware Removal

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26
Description: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (09/10/2016 02:39:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: EclipseConfigurationSystem.exe, versão: 1.100.1.20444, carimbo de data/hora: 0x00000031
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de exceção: 0xc0000005
Deslocamento da falha: 0x004c95c1
ID do processo com falha: 0x132c
Hora de início do aplicativo com falha: 0x01d20b92a4f4dfcb
Caminho do aplicativo com falha: C:\Program Files (x86)\ClearCom\Eclipse Configuration System 5.2\EclipseConfigurationSystem.exe
Caminho do módulo com falha: unknown
ID do Relatório: e702623d-7785-11e6-bfc3-685d43225555
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/06/2016 04:07:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4857484

Error: (09/06/2016 04:07:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4857484

Error: (09/06/2016 04:07:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/06/2016 01:22:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: ATEM Setup.exe, versão: 0.0.0.0, carimbo de data/hora: 0x577064fb
Nome do módulo com falha: MSVCR120.dll, versão: 12.0.21005.1, carimbo de data/hora: 0x524f7ce6
Código de exceção: 0xc0000409
Deslocamento da falha: 0x000a7666
ID do processo com falha: 0x1d8
Hora de início do aplicativo com falha: 0x01d208523a5a0c15
Caminho do aplicativo com falha: C:\Program Files (x86)\Blackmagic Design\Blackmagic ATEM Switchers\ATEM Setup.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\MSVCR120.dll
ID do Relatório: 8d1c731c-7456-11e6-bfc3-685d43225555
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (09/05/2016 07:58:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa uTorrent.exe versão 3.4.8.42449 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 16c0

Hora de Início: 01d207d13fe7c568

Hora de Término: 0

Caminho do Aplicativo: C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe

ID do Relatório: 9c2c64d9-73c4-11e6-bfc1-685d43225555

Nome completo do pacote com falha: 

ID do aplicativo relativo ao pacote com falha:

Error: (09/05/2016 07:49:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (09/05/2016 07:48:50 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: AUTORIDADE NT)
Description: There was an error with the Windows Location Provider database

Error: (09/05/2016 07:48:10 PM) (Source: MsiInstaller) (EventID: 10005) (User: ENG09TVAM)
Description: Product: Blackmagic ATEM Switchers -- Please uninstall the following Blackmagic Design product before installing this version of Blackmagic ATEM Switchers:
 - ATEM Switchers

Error: (09/05/2016 07:47:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.


Erros de Sistema:
=============
Error: (09/13/2016 09:10:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço DrvCovEx devido ao seguinte erro: 
O sistema não pode encontrar o arquivo especificado.

Error: (09/13/2016 09:10:08 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:05 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:05 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:02 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:01 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:10:01 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\mpfilt.sys

Error: (09/13/2016 09:09:00 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: O Gerenciador de controle de serviços tentou executar uma ação corretiva (Reiniciar o serviço) após a finalização inesperada do serviço Windows Search, mas essa ação falhou com o seguinte erro: 
Uma cópia deste serviço já está sendo executada.


CodeIntegrity:
===================================
  Date: 2015-07-18 11:59:07.180
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:07.030
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.890
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.740
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.590
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.440
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.300
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.150
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:06.000
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 11:59:05.850
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Percentagem de memória em uso: 30%
RAM física total: 6010.51 MB
RAM física disponível: 4205.06 MB
Virtual Total: 6970.51 MB
Virtual disponível: 5223.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.81 GB) (Free:250.62 GB) NTFS
Drive d: (Blackmagic) (CDROM) (Total:1.61 GB) (Free:0 GB) CDFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 29.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fim de Addition.txt ============================