Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:29-12-2015
Executado por Thalles (2015-12-30 09:08:30)
Executando a partir de C:\Users\Thalles\Desktop
Windows 10 Home Single Language (X64) (2015-12-04 04:01:54)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-4241094925-3632923355-2694955044-500 - Administrator - Disabled)
Convidado (S-1-5-21-4241094925-3632923355-2694955044-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4241094925-3632923355-2694955044-503 - Limited - Disabled)
paulo (S-1-5-21-4241094925-3632923355-2694955044-1001 - Administrator - Enabled) => C:\Users\paulo
Thalles (S-1-5-21-4241094925-3632923355-2694955044-1002 - Administrator - Enabled) => C:\Users\Thalles
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
"Spore" (HKLM-x32\...\{6D35DF2D-7523-4CB6-9E8F-A1660D9F8637}_is1) (Version: 3.0.0.2818 - )
µTorrent (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
AMCap (HKLM-x32\...\AMCap) (Version: 9.20.132.2 - Noël Danjou)
Ares 2.3.0 (HKLM-x32\...\Ares) (Version: 2.3.0-Build#3054 - Seekar Ltd)
BitTorrent (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\BitTorrent) (Version: 7.9.3.40634 - BitTorrent Inc.)
Camtasia Studio 8 (HKLM-x32\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
Creativerse (HKLM-x32\...\Steam App 280790) (Version: - Playful Corporation)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.0 - Synaptics Incorporated)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Game Launcher (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\Game Launcher) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HiAlgo BOOST 5.0 (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\HiAlgoBOOST) (Version: 5.0 - HiAlgo Inc.)
Horizon (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\{a992c86f-c4b7-4f69-9655-f3073705ce5a}) (Version: 2.8.14 - Daring Development Inc.)
Horizon (x32 Version: 2.8.14 - Daring Development Inc.) Hidden
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Jogos Level Up (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\6d7bdf9c3c2a31f9) (Version: 0.9.4.29 - Level Up)
KogamaLauncher-BR (HKLM-x32\...\{264979F3-0B07-46C2-9364-50093E2682E8}) (Version: 1.0.2.0 - Multiverse ApS)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team)
Rayman Origins (HKLM-x32\...\{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}) (Version: 1.01 - Ubisoft)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Royal Quest (HKLM-x32\...\{16C02E13-C2DF-4781-8F6A-AA9A62318E2B}_is1) (Version: 1.0.0.0 - 1С Online Games Ltd.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.101 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Touro Cloud Backup (HKLM\...\Touro Cloud Backup) (Version: 4.0.0 - Touro Cloud Backup)
Warface (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.1.375.83 - Level Up! Games)
Windows 7 Upgrade Advisor (HKLM-x32\...\{4AEFA609-87D4-4964-B650-03EC904E673E}) (Version: 2.0.5000.0 - Microsoft Corporation)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{6d4c2238-c1b9-5d67-81d8-2cf6949997db}\InprocServer32 -> C:\Program Files (x86)\EagleGet\npEagleget64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\paulo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0330EC28-47A5-400C-B5FB-5A91A9840125} - System32\Tasks\{FAC0A62A-3C75-4E08-B677-0354CEDB82DF} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {21950D1F-319B-435A-8BE3-507D22B7B76B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-16] (Google Inc.)
Task: {5346236E-0499-44FE-A7BB-E3B47FB7329A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-12] (Microsoft Corporation)
Task: {8CD636B1-D34B-4274-A5D1-6389938EFAFE} - System32\Tasks\{1B07662A-841E-4D4A-8A5B-DCB76508428E} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {8D738347-1AE1-419D-AD1A-9C07BEEC149D} - System32\Tasks\{16D24918-5730-4BE2-A083-6EACEBEF2D6A} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {94D87411-8B0F-4F2C-BEB0-B9CF3B9E02B0} - System32\Tasks\{DFA4DDEC-9917-499B-9EA6-9EEEAB0ED990} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {C2BF164D-6460-40CE-B79B-947AF8BBD693} - System32\Tasks\{726D2BFF-19B7-4855-AAA2-B99966E041EF} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {D77C0A1F-13E8-49E2-88B7-2D39A51BE163} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-16] (Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-05 12:04 - 2015-11-22 06:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-05 12:04 - 2015-11-22 06:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-10-13 15:44 - 2014-10-13 15:44 - 02218592 _____ () C:\Program Files\Touro Cloud Backup\ShellExtensionx64\ShellExtension.dll
2015-12-20 12:37 - 2015-12-07 00:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-20 12:37 - 2015-12-07 00:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-20 12:37 - 2015-12-07 00:00 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2015-12-20 12:38 - 2015-12-06 23:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-20 12:38 - 2015-12-06 23:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-20 12:38 - 2015-12-06 23:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-20 12:38 - 2015-12-06 23:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-17 08:08 - 2015-12-17 08:17 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-10-30 03:18 - 2015-10-30 03:18 - 02100064 _____ () C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
2015-11-16 18:17 - 2015-11-16 18:17 - 99375104 _____ () C:\Windows\SysWOW64\SYSDESKTOP-LD5KDK6.exe
2015-12-17 08:08 - 2015-12-17 08:17 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-17 08:08 - 2015-12-17 08:17 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-12-17 08:19 - 2015-12-10 23:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 08:19 - 2015-12-10 23:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-25 21:21 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\paulo\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== EXE Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-11-08 14:54 - 2015-11-21 10:46 - 00001456 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18# 127.0.0.1 activation.cloud.techsmith.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\paulo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-4241094925-3632923355-2694955044-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
MSCONFIG\Services: egGetSvc => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Touro Cloud Backup Crawler => 2
MSCONFIG\Services: wuauserv => 3
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "ares"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "Skype"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{948FA49B-BDDB-4D0B-BCB5-7D7298F6DAA7}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqmain.exe
FirewallRules: [{D8BD07A2-513A-4F74-9C87-C92204B680E7}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqmain.exe
FirewallRules: [{8160B0BF-91E9-4902-9ABD-8A01918D5492}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqlauncher.exe
FirewallRules: [{92E081CD-359E-47A9-945D-563F74FDB31A}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqlauncher.exe
FirewallRules: [{5760B93A-748C-4465-85E9-83977E92907B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{20B9C540-0D95-4131-8CB0-1300D834471C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{BFD5828A-7F2F-4179-BBB5-229EC01E5812}C:\users\paulo\desktop\pokemon generations\pokegen.exe] => (Allow) C:\users\paulo\desktop\pokemon generations\pokegen.exe
FirewallRules: [TCP Query User{CB58B79E-5109-4D06-8FA2-0403496AE68F}C:\users\paulo\desktop\pokemon generations\pokegen.exe] => (Allow) C:\users\paulo\desktop\pokemon generations\pokegen.exe
FirewallRules: [{5F9D7B18-A797-4E81-9077-DD9ABD8FF55B}] => (Allow) LPort=8317
FirewallRules: [{7E760B75-E630-4FF2-B89B-C41BD2A52F90}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{2B3211EC-E274-45CA-93A0-BEDA7179EDFB}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{6095411D-7362-47FA-8C09-CB992C3562AD}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{629130C9-04E3-4F08-A1C6-5121E9A6DC75}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{8251195D-2BE8-4E57-BFCD-7069E91F6810}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{ED2CF37E-6A77-45AF-8C81-A1128E51C500}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{6923ED1C-95DF-455D-B678-F5F50031B2B0}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{28B89EBB-5CD3-45D2-9D7B-C587F8365DD9}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [UDP Query User{9041AE29-8CC3-428C-837B-0312ACF3D7EA}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{D154D8E9-8030-4646-86B8-FEF40F119A84}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [{CC576369-3CDF-49EB-A7EA-D95FE41F956B}] => (Allow) C:\Users\paulo\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{F8F0FD38-B5B4-464B-AACA-932A7CCED989}] => (Allow) C:\Users\paulo\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6CAB5779-54AA-47B5-B9D5-83B2903801CC}] => (Allow) C:\Users\paulo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9091045-89C8-4D7E-ADC6-ABDB33316DA6}] => (Allow) C:\Users\paulo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{7ECB3CA1-C9FC-482A-8B09-5E7E51142709}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{76DBC282-862B-47CA-8626-B5C7A23483BD}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{1297DA8A-21AB-477A-A0D0-76419225B4FD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1837BF57-5DAB-4423-B653-4A1225EF05B5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5F35C6C2-1F69-4363-915D-DFF35B019A07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{57125805-9454-4265-8B3B-85347348C5ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [TCP Query User{634020C9-624E-41F0-8B25-19E253640EB5}C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Block) C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [UDP Query User{3DCCCF6B-C86B-40C3-94D6-11C0C04355B3}C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Block) C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [{8EF7E5D1-7979-42B1-BB2A-D98C35C62225}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{BD7B09B1-BA1D-4FE7-879A-D9DF918B899A}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [UDP Query User{468621D7-E4AB-4AE7-8B8D-A250144F723F}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [{38E9D376-BB01-40FC-8E7C-827F42F9FB8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{F1EDCF1B-00C7-4DE5-8191-4AFB1ED490A0}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{94A7F2D7-E6A1-4651-B51C-E274EE24262C}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [{6FDD28FD-2B84-4E7C-81F6-48A97E2AC708}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{9E92CD2D-A85C-4F5D-8D77-1A7CEEDC47D5}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{02A706D3-9438-4DBF-AED1-C423A7EC29E4}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{3879AA23-6C60-4387-8ED5-7452D75CC758}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [TCP Query User{73DEE65F-5D78-4069-A287-9E9B7037F6D9}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{75AEB15E-61C4-4F0E-B1EB-57C3F2F05251}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [{22E85B73-AD43-463C-A6E0-FFF83692A349}] => (Allow) C:\Games\Spore\SporeBin\SporeApp.exe
FirewallRules: [{1FF87E45-9D89-47C3-8AB3-3D6A68A99371}] => (Allow) C:\Games\Spore\SporeBin\SporeApp.exe
FirewallRules: [{0E56BB6A-D07D-4827-8CC1-E00ADFC96FFB}] => (Allow) C:\Games\Spore\SporebinEP1\SporeApp.exe
FirewallRules: [{C025C07A-3FBB-4B84-BFF2-6253DFB4CBEC}] => (Allow) C:\Games\Spore\SporebinEP1\SporeApp.exe
==================== Pontos de Restauração =========================
13-12-2015 16:48:59 Operação de restauração
20-12-2015 18:19:25 Windows Update
28-12-2015 19:27:22 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (12/29/2015 03:51:41 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: This event has been logged by the BugSplat crash reporting library (http://www.bugsplatsoftware.com)
in partnership with your vendor lol_rads_riotgames_com.
A crash report from the application 'LoLPatcher' has been successfully logged into the BugSplat database with id=7006994.
Please contact your vendor for more information.
Error: (12/29/2015 12:39:04 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (12/29/2015 11:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 11:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:59:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:59:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 09:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Erros de Sistema:
=============
Error: (12/30/2015 08:19:46 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 10:56:47 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 09:54:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 08:38:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 02:06:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_49e933 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.
Error: (12/29/2015 02:06:14 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 02:06:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 12:52:39 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{3185A766-B338-11E4-A71E-12E3F512A338}{7006698D-2974-4091-A424-85DD0B909E23}AUTORIDADE NTSERVIÇO DE REDES-1-5-20LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 12:23:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_5eca41 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.
Error: (12/29/2015 12:23:51 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
CodeIntegrity:
===================================
Date: 2015-12-22 08:27:14.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-21 01:48:51.287
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-14 18:15:23.890
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-13 16:57:38.797
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-13 04:59:32.621
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-11 00:03:03.083
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-09 08:25:41.078
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-08 03:53:56.624
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-03 23:55:29.692
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-03 23:55:28.295
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentagem de memória em uso: 59%
RAM física total: 3993.09 MB
RAM física disponível: 1633.05 MB
Virtual Total: 5199.34 MB
Virtual disponível: 1780.04 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:920.88 GB) (Free:740.33 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5992DDA4)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por Thalles (2015-12-30 09:08:30)
Executando a partir de C:\Users\Thalles\Desktop
Windows 10 Home Single Language (X64) (2015-12-04 04:01:54)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-4241094925-3632923355-2694955044-500 - Administrator - Disabled)
Convidado (S-1-5-21-4241094925-3632923355-2694955044-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-4241094925-3632923355-2694955044-503 - Limited - Disabled)
paulo (S-1-5-21-4241094925-3632923355-2694955044-1001 - Administrator - Enabled) => C:\Users\paulo
Thalles (S-1-5-21-4241094925-3632923355-2694955044-1002 - Administrator - Enabled) => C:\Users\Thalles
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
"Spore" (HKLM-x32\...\{6D35DF2D-7523-4CB6-9E8F-A1660D9F8637}_is1) (Version: 3.0.0.2818 - )
µTorrent (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
AMCap (HKLM-x32\...\AMCap) (Version: 9.20.132.2 - Noël Danjou)
Ares 2.3.0 (HKLM-x32\...\Ares) (Version: 2.3.0-Build#3054 - Seekar Ltd)
BitTorrent (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\BitTorrent) (Version: 7.9.3.40634 - BitTorrent Inc.)
Camtasia Studio 8 (HKLM-x32\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
Creativerse (HKLM-x32\...\Steam App 280790) (Version: - Playful Corporation)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.0 - Synaptics Incorporated)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Game Launcher (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\Game Launcher) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HiAlgo BOOST 5.0 (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\HiAlgoBOOST) (Version: 5.0 - HiAlgo Inc.)
Horizon (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\{a992c86f-c4b7-4f69-9655-f3073705ce5a}) (Version: 2.8.14 - Daring Development Inc.)
Horizon (x32 Version: 2.8.14 - Daring Development Inc.) Hidden
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Jogos Level Up (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\6d7bdf9c3c2a31f9) (Version: 0.9.4.29 - Level Up)
KogamaLauncher-BR (HKLM-x32\...\{264979F3-0B07-46C2-9364-50093E2682E8}) (Version: 1.0.2.0 - Multiverse ApS)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team)
Rayman Origins (HKLM-x32\...\{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}) (Version: 1.01 - Ubisoft)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Royal Quest (HKLM-x32\...\{16C02E13-C2DF-4781-8F6A-AA9A62318E2B}_is1) (Version: 1.0.0.0 - 1С Online Games Ltd.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.101 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Touro Cloud Backup (HKLM\...\Touro Cloud Backup) (Version: 4.0.0 - Touro Cloud Backup)
Warface (HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.1.375.83 - Level Up! Games)
Windows 7 Upgrade Advisor (HKLM-x32\...\{4AEFA609-87D4-4964-B650-03EC904E673E}) (Version: 2.0.5000.0 - Microsoft Corporation)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{6d4c2238-c1b9-5d67-81d8-2cf6949997db}\InprocServer32 -> C:\Program Files (x86)\EagleGet\npEagleget64.dll => Nenhum Arquivo
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\paulo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4241094925-3632923355-2694955044-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {0330EC28-47A5-400C-B5FB-5A91A9840125} - System32\Tasks\{FAC0A62A-3C75-4E08-B677-0354CEDB82DF} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {21950D1F-319B-435A-8BE3-507D22B7B76B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-16] (Google Inc.)
Task: {5346236E-0499-44FE-A7BB-E3B47FB7329A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-12] (Microsoft Corporation)
Task: {8CD636B1-D34B-4274-A5D1-6389938EFAFE} - System32\Tasks\{1B07662A-841E-4D4A-8A5B-DCB76508428E} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {8D738347-1AE1-419D-AD1A-9C07BEEC149D} - System32\Tasks\{16D24918-5730-4BE2-A083-6EACEBEF2D6A} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {94D87411-8B0F-4F2C-BEB0-B9CF3B9E02B0} - System32\Tasks\{DFA4DDEC-9917-499B-9EA6-9EEEAB0ED990} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {C2BF164D-6460-40CE-B79B-947AF8BBD693} - System32\Tasks\{726D2BFF-19B7-4855-AAA2-B99966E041EF} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.12.0.101&LastError=12007
Task: {D77C0A1F-13E8-49E2-88B7-2D39A51BE163} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-16] (Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-05 12:04 - 2015-11-22 06:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-05 12:04 - 2015-11-22 06:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-10-13 15:44 - 2014-10-13 15:44 - 02218592 _____ () C:\Program Files\Touro Cloud Backup\ShellExtensionx64\ShellExtension.dll
2015-12-20 12:37 - 2015-12-07 00:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-20 12:37 - 2015-12-07 00:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-20 12:37 - 2015-12-07 00:00 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2015-12-20 12:38 - 2015-12-06 23:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-20 12:38 - 2015-12-06 23:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-20 12:38 - 2015-12-06 23:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-20 12:38 - 2015-12-06 23:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-17 08:08 - 2015-12-17 08:17 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-10-30 03:18 - 2015-10-30 03:18 - 02100064 _____ () C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
2015-11-16 18:17 - 2015-11-16 18:17 - 99375104 _____ () C:\Windows\SysWOW64\SYSDESKTOP-LD5KDK6.exe
2015-12-17 08:08 - 2015-12-17 08:17 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-17 08:08 - 2015-12-17 08:17 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-12-17 08:19 - 2015-12-10 23:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 08:19 - 2015-12-10 23:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-25 21:21 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\paulo\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== EXE Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-11-08 14:54 - 2015-11-21 10:46 - 00001456 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18# 127.0.0.1 activation.cloud.techsmith.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\paulo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-4241094925-3632923355-2694955044-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
MSCONFIG\Services: egGetSvc => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Touro Cloud Backup Crawler => 2
MSCONFIG\Services: wuauserv => 3
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "ares"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4241094925-3632923355-2694955044-1001\...\StartupApproved\Run: => "Skype"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{948FA49B-BDDB-4D0B-BCB5-7D7298F6DAA7}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqmain.exe
FirewallRules: [{D8BD07A2-513A-4F74-9C87-C92204B680E7}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqmain.exe
FirewallRules: [{8160B0BF-91E9-4902-9ABD-8A01918D5492}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqlauncher.exe
FirewallRules: [{92E081CD-359E-47A9-945D-563F74FDB31A}] => (Allow) C:\Program Files (x86)\1C\Royal Quest\rqlauncher.exe
FirewallRules: [{5760B93A-748C-4465-85E9-83977E92907B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{20B9C540-0D95-4131-8CB0-1300D834471C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{BFD5828A-7F2F-4179-BBB5-229EC01E5812}C:\users\paulo\desktop\pokemon generations\pokegen.exe] => (Allow) C:\users\paulo\desktop\pokemon generations\pokegen.exe
FirewallRules: [TCP Query User{CB58B79E-5109-4D06-8FA2-0403496AE68F}C:\users\paulo\desktop\pokemon generations\pokegen.exe] => (Allow) C:\users\paulo\desktop\pokemon generations\pokegen.exe
FirewallRules: [{5F9D7B18-A797-4E81-9077-DD9ABD8FF55B}] => (Allow) LPort=8317
FirewallRules: [{7E760B75-E630-4FF2-B89B-C41BD2A52F90}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{2B3211EC-E274-45CA-93A0-BEDA7179EDFB}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{6095411D-7362-47FA-8C09-CB992C3562AD}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{629130C9-04E3-4F08-A1C6-5121E9A6DC75}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{8251195D-2BE8-4E57-BFCD-7069E91F6810}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{ED2CF37E-6A77-45AF-8C81-A1128E51C500}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{6923ED1C-95DF-455D-B678-F5F50031B2B0}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{28B89EBB-5CD3-45D2-9D7B-C587F8365DD9}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [UDP Query User{9041AE29-8CC3-428C-837B-0312ACF3D7EA}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [TCP Query User{D154D8E9-8030-4646-86B8-FEF40F119A84}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe
FirewallRules: [{CC576369-3CDF-49EB-A7EA-D95FE41F956B}] => (Allow) C:\Users\paulo\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{F8F0FD38-B5B4-464B-AACA-932A7CCED989}] => (Allow) C:\Users\paulo\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6CAB5779-54AA-47B5-B9D5-83B2903801CC}] => (Allow) C:\Users\paulo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9091045-89C8-4D7E-ADC6-ABDB33316DA6}] => (Allow) C:\Users\paulo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{7ECB3CA1-C9FC-482A-8B09-5E7E51142709}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{76DBC282-862B-47CA-8626-B5C7A23483BD}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{1297DA8A-21AB-477A-A0D0-76419225B4FD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1837BF57-5DAB-4423-B653-4A1225EF05B5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5F35C6C2-1F69-4363-915D-DFF35B019A07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{57125805-9454-4265-8B3B-85347348C5ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [TCP Query User{634020C9-624E-41F0-8B25-19E253640EB5}C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Block) C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [UDP Query User{3DCCCF6B-C86B-40C3-94D6-11C0C04355B3}C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Block) C:\users\paulo\appdata\local\apps\2.0\l49dbotp.429\3ct1gkhh.v84\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
FirewallRules: [{8EF7E5D1-7979-42B1-BB2A-D98C35C62225}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{BD7B09B1-BA1D-4FE7-879A-D9DF918B899A}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [UDP Query User{468621D7-E4AB-4AE7-8B8D-A250144F723F}C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe
FirewallRules: [{38E9D376-BB01-40FC-8E7C-827F42F9FB8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{F1EDCF1B-00C7-4DE5-8191-4AFB1ED490A0}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{94A7F2D7-E6A1-4651-B51C-E274EE24262C}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [{6FDD28FD-2B84-4E7C-81F6-48A97E2AC708}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{9E92CD2D-A85C-4F5D-8D77-1A7CEEDC47D5}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{02A706D3-9438-4DBF-AED1-C423A7EC29E4}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{3879AA23-6C60-4387-8ED5-7452D75CC758}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [TCP Query User{73DEE65F-5D78-4069-A287-9E9B7037F6D9}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{75AEB15E-61C4-4F0E-B1EB-57C3F2F05251}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [{22E85B73-AD43-463C-A6E0-FFF83692A349}] => (Allow) C:\Games\Spore\SporeBin\SporeApp.exe
FirewallRules: [{1FF87E45-9D89-47C3-8AB3-3D6A68A99371}] => (Allow) C:\Games\Spore\SporeBin\SporeApp.exe
FirewallRules: [{0E56BB6A-D07D-4827-8CC1-E00ADFC96FFB}] => (Allow) C:\Games\Spore\SporebinEP1\SporeApp.exe
FirewallRules: [{C025C07A-3FBB-4B84-BFF2-6253DFB4CBEC}] => (Allow) C:\Games\Spore\SporebinEP1\SporeApp.exe
==================== Pontos de Restauração =========================
13-12-2015 16:48:59 Operação de restauração
20-12-2015 18:19:25 Windows Update
28-12-2015 19:27:22 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (12/29/2015 03:51:41 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: This event has been logged by the BugSplat crash reporting library (http://www.bugsplatsoftware.com)
in partnership with your vendor lol_rads_riotgames_com.
A crash report from the application 'LoLPatcher' has been successfully logged into the BugSplat database with id=7006994.
Please contact your vendor for more information.
Error: (12/29/2015 12:39:04 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (12/29/2015 11:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 11:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:59:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:59:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 10:25:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (12/29/2015 09:29:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-LD5KDK6)
Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147024891. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Erros de Sistema:
=============
Error: (12/30/2015 08:19:46 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 10:56:47 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 09:54:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 08:38:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 02:06:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_49e933 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.
Error: (12/29/2015 02:06:14 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 02:06:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 12:52:39 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{3185A766-B338-11E4-A71E-12E3F512A338}{7006698D-2974-4091-A424-85DD0B909E23}AUTORIDADE NTSERVIÇO DE REDES-1-5-20LocalHost (Usando LRPC)Não DisponívelNão Disponível
Error: (12/29/2015 12:23:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Host de Sincronização_5eca41 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço.
Error: (12/29/2015 12:23:51 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível
CodeIntegrity:
===================================
Date: 2015-12-22 08:27:14.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-21 01:48:51.287
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-14 18:15:23.890
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-13 16:57:38.797
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-13 04:59:32.621
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-11 00:03:03.083
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-09 08:25:41.078
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-08 03:53:56.624
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-03 23:55:29.692
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-03 23:55:28.295
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentagem de memória em uso: 59%
RAM física total: 3993.09 MB
RAM física disponível: 1633.05 MB
Virtual Total: 5199.34 MB
Virtual disponível: 1780.04 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:920.88 GB) (Free:740.33 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5992DDA4)
Partition: GPT.
==================== Fim de Addition.txt ============================