Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:29-05-2016 02
Executado por teteu (2016-05-29 18:07:31)
Executando a partir de C:\Users\teteu\Desktop
Windows 10 Pro Versão 1511 (X64) (2016-05-01 01:33:11)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1250866198-237274365-681837531-500 - Administrator - Disabled)
Convidado (S-1-5-21-1250866198-237274365-681837531-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1250866198-237274365-681837531-503 - Limited - Disabled)
teteu (S-1-5-21-1250866198-237274365-681837531-1001 - Administrator - Enabled) => C:\Users\teteu
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Aplicativos da Autodesk em destaque 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Atualizações da NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.)
Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - )
Driver Booster 3.3 (HKLM-x32\...\Driver Booster_is1) (Version: 3.3 - IObit)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
Fallout 4 Portuguese-Brazil Language Pack (HKLM-x32\...\Fallout 4 Portuguese-Brazil Language Pack_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Importação do SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 92 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418092F0}) (Version: 8.0.920.14 - Oracle Corporation)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - )
NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 Update v1.04 Incl. DLC (HKLM\...\bmFydXRvc2hpcHB1ZGVudWx0aW1hdGVuaW5qYXN0b3JtNA_is1) (Version: 1 - )
NVIDIA Driver de áudio HD 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Driver de controle do 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Driver de gráficos 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
One Finger Death Punch (HKLM\...\Steam App 264200) (Version: - Silver Dollar Games)
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Painel de controle da NVIDIA 368.22 (Version: 368.22 - NVIDIA Corporation) Hidden
PC DUAL SHOCK (HKLM-x32\...\{42DC7D64-F389-4E37-B545-E7D674A97D66}) (Version: 1.00.0000 - GASIA)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 11.0.0.18 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.12.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.12.0 - GOG.com)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Filmora(Build 7.2.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {03D60E2B-9C4B-48A2-9844-03A1E89B74EF} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {05E09DBE-B824-41D4-BBD2-9D89B2BFEEA3} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic
Task: {07A75899-3610-4F38-B0DC-5A8040FD10C3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {0F4DEB63-BE94-4CF7-93B5-9A8101FAC934} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {2AE1DBDA-C35D-45F3-BD1B-DE94DCFE5B0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
Task: {36418D41-B332-410E-B2F7-0E1AB0D48583} - System32\Tasks\CCleanerSkipUAC => C:\Users\teteu\AppData\Local\Temp\RarSFX2\CCleaner.exe [2015-10-19] (Piriform Ltd) <==== ATENÇÃO
Task: {5E231C32-877F-4AB2-8210-36DCFC9FF882} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic
Task: {846601B0-6C66-49F4-AADD-6DF457616F9F} - System32\Tasks\Driver Booster SkipUAC (teteu) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-04-06] (IObit)
Task: {874E5F75-6652-4E9D-B1C9-7095191242F8} - System32\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {B4968E41-4DFA-4736-B2BD-B83FC2904EAB} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-12-09] ()
Task: {BE56255D-9391-4B90-99F2-DA7039093B19} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {EA569BC7-295D-4805-A316-6E4D4D33CA67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
Task: {F7EB7B89-C520-4194-8A73-26CD7B661688} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-04-01] (IObit)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-10-30 04:17 - 2015-10-30 04:17 - 00028672 _____ () C:\Windows\SYSTEM32\efsext.dll
2016-05-03 17:49 - 2016-05-27 20:15 - 00026112 _____ () C:\Windows\KMS-R@1n.exe
2016-05-07 12:05 - 2016-05-07 12:05 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-05-13 14:36 - 2016-05-19 23:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-04-30 22:41 - 2016-04-30 22:41 - 00959176 _____ () C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
2016-02-13 14:39 - 2016-02-13 14:39 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 17:44 - 2016-04-23 01:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-10 17:44 - 2016-04-23 01:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 17:44 - 2016-04-23 00:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 17:45 - 2016-04-23 00:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 17:45 - 2016-04-23 01:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-03 17:49 - 2016-05-27 20:15 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe
2016-05-27 20:15 - 2016-05-27 20:15 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll
2016-05-16 20:21 - 2014-12-04 23:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-05-16 20:21 - 2014-12-04 23:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-04-30 22:55 - 2016-05-02 03:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-12 20:54 - 2016-05-11 08:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-12 20:54 - 2016-05-11 08:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\system32\Drivers\wacrmway.sys:changelist [1666]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-1250866198-237274365-681837531-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" <===== ATENÇÃO
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-10-30 04:24 - 2015-10-30 04:21 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-1250866198-237274365-681837531-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\teteu\Desktop\team_gurren_a_by_spleko-d69ym9j.jpg
DNS Servers: 201.82.0.62 - 201.82.0.64
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A1A926E7-37F4-4D02-8FD2-ED4C9AAF1A36}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D3348832-780A-4530-9A62-CB8BA2D479FD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F75606F5-1A37-4B7F-874D-F26955536231}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{77EA9BA3-5B0C-4DBF-BF9D-D58327601302}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D6441F1F-4E97-4219-8E92-D84E83497783}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{734E0491-B2C9-4A67-82A1-101CB8097BDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6371B84-8219-4B1E-93EF-788C6D906C96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{15B7CBEF-08DF-4BE4-9CE7-817AEBB66158}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{6156D3CA-4B9A-4DD7-8C09-8F3277D229A0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{0C359D26-CE31-4797-B63A-C5867FB91AB7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2926726A-5038-4BCE-BE3C-6990BEA33568}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2A65AD9B-A49E-4803-BFD5-46B0CE5821A8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{834A0AEF-43B5-4904-A876-A409C0A51CCF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{76706ED0-F800-48F5-A200-7ECD4199C3DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{914EEFF2-091B-4820-8774-B1CCAB93FA45}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4E5F4009-D15D-4752-8FFB-5095D32BB1BC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6411B5F9-5913-403E-A9CB-9846917AD1F7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{3BCCB0B1-9606-45EF-B7D3-61F1EFE8EFC2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe
FirewallRules: [UDP Query User{F5A4C815-6B74-46CB-90B0-28FDFE2448D2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe
FirewallRules: [TCP Query User{FF26FE9E-ABCF-4644-99BA-BB81FB403DFA}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{9E12E2E0-B08B-4AD1-B651-410067A851CF}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{D3DB9B4D-318D-4FEF-A2D4-E8E44CCDE904}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{59EA5FC7-4127-4170-AEB1-E512F3DDBF28}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6CA48798-3D7C-4847-99D1-A2599E28C2DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9C845A91-3F92-43DA-8A64-3EEC74C18BC5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7F9EB483-37F5-4557-BF4C-31EA6906A3C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{39329E26-8B74-4B17-BDC9-5C38E1529A00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{5A3D3915-1F79-4CA2-9578-8CB11C729CF4}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{B1B80868-D1F6-4B43-BF34-14276274D21A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{862D9509-8133-481F-B5B0-C11FBF45CA12}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{97FD6596-3D9F-4810-86B3-F2047C41BB99}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{D5AF28C6-E4B6-4516-8C9D-7712849F7131}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{601E0B77-04D8-4A93-A5A8-4C727300C162}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0F75C1D8-E164-45F0-81B8-450685915D84}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7901315E-DA80-4E71-A576-DBFA4D40B502}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{133349C7-77C5-4FD5-A735-0637022C37E0}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{D13FF804-739F-4C20-90C1-E721D1F4FB88}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{D60B7412-FB0B-48B2-B88F-0D15B6B53EE4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{15268109-0470-4208-A6AC-616CC9511CF8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{42202046-3247-42BD-9EE6-6CB25267DE3B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{968C9C9A-81AA-4B43-AEF9-1184844B02D4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [TCP Query User{46FC4A08-786F-49CC-A88F-4ECB6A38EA59}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{4C79FE4B-6254-4E2E-89EB-E22A9369CDF2}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [{DAFEC05F-FC5C-4BF1-8C02-FC658176673B}] => (Block) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
FirewallRules: [{EC5EF0DB-FD12-4EF7-8A33-F0E313001700}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{874828E9-F6C2-4FF8-B4BE-E59778FC5D2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{ECD62254-CE00-4719-84DA-52DA08CF28F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{BF8EEE95-83CE-49B7-9713-BD2AAFD41C7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{3057BC60-83D9-48F6-8C3F-87C1B6CAFDD5}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{54099ADA-66EB-4144-9321-DB1DB7898630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D1093B8A-BCB3-4BA3-8C28-E8B99D0A954B}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{10A3FCA8-4404-4B2D-9C33-8F9FD5E46FF3}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FB5DBEA1-5E75-46D0-A0F6-AEA68CB20630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{747A3520-1F0D-4AFD-BF30-36BC68F0B740}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D2511476-88F4-4917-8716-62FEA1479F36}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{A5F2B3CA-6BF7-4013-AE45-E9870CC99BC7}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [{5DFD3770-AE86-4809-96FF-7C990624F0F1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6E175EF2-A2BD-43FB-BD2E-274277E2DE6E}] => (Allow) LPort=50248
FirewallRules: [{EA280DA2-A6A6-4A5A-AD75-CEE59B4F6831}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{E6BE6249-D2DF-4AD2-BA83-698C12D3D2E3}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{EFEE9B94-0F2F-4424-8F3B-614478FA24CD}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{7E3A168D-0FD7-44E7-89FD-0FFE8316A8EC}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{28EA0A38-8FD8-4F3C-9A3F-1CAED48D5E1B}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{5DDB8622-3609-4307-868E-472F3F06E05B}] => (Allow) C:\Windows\KMS-R@1n.exe
==================== Pontos de Restauração =========================
26-05-2016 19:14:57 Ponto de Verificação Agendado
27-05-2016 20:02:59 Installed Microsoft Office Professional Plus 2016
27-05-2016 20:03:33 PROPLUS
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/29/2016 09:13:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x1770
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 11:36:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: dwm.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d756
Nome do módulo com falha: combase.dll, versão: 10.0.10586.103, carimbo de data/hora: 0x56a849ab
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000067e3c
ID do processo com falha: 0x184
Hora de início do aplicativo com falha: 0xdwm.exe0
Caminho do aplicativo com falha: dwm.exe1
Caminho do módulo com falha: dwm.exe2
ID do Relatório: dwm.exe3
Nome completo do pacote com falha: dwm.exe4
ID do aplicativo relativo ao pacote com falha: dwm.exe5
Error: (05/28/2016 09:24:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B)
Description: O pacote Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy+CortanaUI foi terminado porque levou muito tempo para ser suspenso.
Error: (05/28/2016 08:47:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: Microsoft.Photos.exe, versão: 16.325.12390.0, carimbo de data/hora: 0x56f59965
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2bb8
Hora de início do aplicativo com falha: 0xMicrosoft.Photos.exe0
Caminho do aplicativo com falha: Microsoft.Photos.exe1
Caminho do módulo com falha: Microsoft.Photos.exe2
ID do Relatório: Microsoft.Photos.exe3
Nome completo do pacote com falha: Microsoft.Photos.exe4
ID do aplicativo relativo ao pacote com falha: Microsoft.Photos.exe5
Error: (05/28/2016 08:46:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x227c
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 08:33:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2dac
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 08:13:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x1e40
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:58:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2454
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:43:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0xc80
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:33:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B)
Description: O pacote Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe+App foi terminado porque levou muito tempo para ser suspenso.
Erros de Sistema:
=============
Error: (05/29/2016 05:57:02 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:57 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:54 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:51 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:48 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:44 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:41 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:37 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:34 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:31 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
CodeIntegrity:
===================================
Date: 2016-05-28 22:28:54.298
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-05-28 09:19:54.683
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-27 20:16:49.230
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-27 20:11:12.765
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-18 17:40:12.174
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-16 19:32:52.932
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-15 19:26:49.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-14 12:31:17.069
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-13 13:40:29.826
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-12 13:02:48.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Percentagem de memória em uso: 35%
RAM física total: 7605.11 MB
RAM física disponível: 4910.02 MB
Virtual Total: 7605.11 MB
Virtual disponível: 4565.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.96 GB) (Free:513.19 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 29F329F2)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por teteu (2016-05-29 18:07:31)
Executando a partir de C:\Users\teteu\Desktop
Windows 10 Pro Versão 1511 (X64) (2016-05-01 01:33:11)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1250866198-237274365-681837531-500 - Administrator - Disabled)
Convidado (S-1-5-21-1250866198-237274365-681837531-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1250866198-237274365-681837531-503 - Limited - Disabled)
teteu (S-1-5-21-1250866198-237274365-681837531-1001 - Administrator - Enabled) => C:\Users\teteu
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Aplicativos da Autodesk em destaque 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Atualizações da NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.)
Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - )
Driver Booster 3.3 (HKLM-x32\...\Driver Booster_is1) (Version: 3.3 - IObit)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
Fallout 4 Portuguese-Brazil Language Pack (HKLM-x32\...\Fallout 4 Portuguese-Brazil Language Pack_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Importação do SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 92 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418092F0}) (Version: 8.0.920.14 - Oracle Corporation)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - )
NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 Update v1.04 Incl. DLC (HKLM\...\bmFydXRvc2hpcHB1ZGVudWx0aW1hdGVuaW5qYXN0b3JtNA_is1) (Version: 1 - )
NVIDIA Driver de áudio HD 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Driver de controle do 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Driver de gráficos 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
One Finger Death Punch (HKLM\...\Steam App 264200) (Version: - Silver Dollar Games)
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Painel de controle da NVIDIA 368.22 (Version: 368.22 - NVIDIA Corporation) Hidden
PC DUAL SHOCK (HKLM-x32\...\{42DC7D64-F389-4E37-B545-E7D674A97D66}) (Version: 1.00.0000 - GASIA)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 11.0.0.18 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.12.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.12.0 - GOG.com)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Filmora(Build 7.2.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {03D60E2B-9C4B-48A2-9844-03A1E89B74EF} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {05E09DBE-B824-41D4-BBD2-9D89B2BFEEA3} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic
Task: {07A75899-3610-4F38-B0DC-5A8040FD10C3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {0F4DEB63-BE94-4CF7-93B5-9A8101FAC934} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {2AE1DBDA-C35D-45F3-BD1B-DE94DCFE5B0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
Task: {36418D41-B332-410E-B2F7-0E1AB0D48583} - System32\Tasks\CCleanerSkipUAC => C:\Users\teteu\AppData\Local\Temp\RarSFX2\CCleaner.exe [2015-10-19] (Piriform Ltd) <==== ATENÇÃO
Task: {5E231C32-877F-4AB2-8210-36DCFC9FF882} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic
Task: {846601B0-6C66-49F4-AADD-6DF457616F9F} - System32\Tasks\Driver Booster SkipUAC (teteu) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-04-06] (IObit)
Task: {874E5F75-6652-4E9D-B1C9-7095191242F8} - System32\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {B4968E41-4DFA-4736-B2BD-B83FC2904EAB} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-12-09] ()
Task: {BE56255D-9391-4B90-99F2-DA7039093B19} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {EA569BC7-295D-4805-A316-6E4D4D33CA67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
Task: {F7EB7B89-C520-4194-8A73-26CD7B661688} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-04-01] (IObit)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
==================== Módulos Carregados (Whitelisted) ==============
2015-10-30 04:17 - 2015-10-30 04:17 - 00028672 _____ () C:\Windows\SYSTEM32\efsext.dll
2016-05-03 17:49 - 2016-05-27 20:15 - 00026112 _____ () C:\Windows\KMS-R@1n.exe
2016-05-07 12:05 - 2016-05-07 12:05 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-05-13 14:36 - 2016-05-19 23:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-04-30 22:41 - 2016-04-30 22:41 - 00959176 _____ () C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
2016-02-13 14:39 - 2016-02-13 14:39 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 17:44 - 2016-04-23 01:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-10 17:44 - 2016-04-23 01:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 17:44 - 2016-04-23 00:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 17:45 - 2016-04-23 00:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 17:45 - 2016-04-23 01:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-03 17:49 - 2016-05-27 20:15 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe
2016-05-27 20:15 - 2016-05-27 20:15 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll
2016-05-16 20:21 - 2014-12-04 23:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-05-16 20:21 - 2014-12-04 23:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-04-30 22:55 - 2016-05-02 03:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-05-01 10:05 - 2016-05-01 10:06 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-12 20:54 - 2016-05-11 08:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-12 20:54 - 2016-05-11 08:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
AlternateDataStreams: C:\Windows\system32\Drivers\wacrmway.sys:changelist [1666]
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
HKU\S-1-5-21-1250866198-237274365-681837531-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" <===== ATENÇÃO
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ===============================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2015-10-30 04:24 - 2015-10-30 04:21 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-1250866198-237274365-681837531-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\teteu\Desktop\team_gurren_a_by_spleko-d69ym9j.jpg
DNS Servers: 201.82.0.62 - 201.82.0.64
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
(Atualmente não há nenhuma correção automática para esta seção.)
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A1A926E7-37F4-4D02-8FD2-ED4C9AAF1A36}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D3348832-780A-4530-9A62-CB8BA2D479FD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F75606F5-1A37-4B7F-874D-F26955536231}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{77EA9BA3-5B0C-4DBF-BF9D-D58327601302}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D6441F1F-4E97-4219-8E92-D84E83497783}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{734E0491-B2C9-4A67-82A1-101CB8097BDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6371B84-8219-4B1E-93EF-788C6D906C96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{15B7CBEF-08DF-4BE4-9CE7-817AEBB66158}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{6156D3CA-4B9A-4DD7-8C09-8F3277D229A0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{0C359D26-CE31-4797-B63A-C5867FB91AB7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2926726A-5038-4BCE-BE3C-6990BEA33568}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2A65AD9B-A49E-4803-BFD5-46B0CE5821A8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{834A0AEF-43B5-4904-A876-A409C0A51CCF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{76706ED0-F800-48F5-A200-7ECD4199C3DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{914EEFF2-091B-4820-8774-B1CCAB93FA45}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4E5F4009-D15D-4752-8FFB-5095D32BB1BC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6411B5F9-5913-403E-A9CB-9846917AD1F7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{3BCCB0B1-9606-45EF-B7D3-61F1EFE8EFC2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe
FirewallRules: [UDP Query User{F5A4C815-6B74-46CB-90B0-28FDFE2448D2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe
FirewallRules: [TCP Query User{FF26FE9E-ABCF-4644-99BA-BB81FB403DFA}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{9E12E2E0-B08B-4AD1-B651-410067A851CF}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{D3DB9B4D-318D-4FEF-A2D4-E8E44CCDE904}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{59EA5FC7-4127-4170-AEB1-E512F3DDBF28}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6CA48798-3D7C-4847-99D1-A2599E28C2DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9C845A91-3F92-43DA-8A64-3EEC74C18BC5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7F9EB483-37F5-4557-BF4C-31EA6906A3C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{39329E26-8B74-4B17-BDC9-5C38E1529A00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{5A3D3915-1F79-4CA2-9578-8CB11C729CF4}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{B1B80868-D1F6-4B43-BF34-14276274D21A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{862D9509-8133-481F-B5B0-C11FBF45CA12}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{97FD6596-3D9F-4810-86B3-F2047C41BB99}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{D5AF28C6-E4B6-4516-8C9D-7712849F7131}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{601E0B77-04D8-4A93-A5A8-4C727300C162}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0F75C1D8-E164-45F0-81B8-450685915D84}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7901315E-DA80-4E71-A576-DBFA4D40B502}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{133349C7-77C5-4FD5-A735-0637022C37E0}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{D13FF804-739F-4C20-90C1-E721D1F4FB88}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{D60B7412-FB0B-48B2-B88F-0D15B6B53EE4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{15268109-0470-4208-A6AC-616CC9511CF8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{42202046-3247-42BD-9EE6-6CB25267DE3B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{968C9C9A-81AA-4B43-AEF9-1184844B02D4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [TCP Query User{46FC4A08-786F-49CC-A88F-4ECB6A38EA59}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{4C79FE4B-6254-4E2E-89EB-E22A9369CDF2}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [{DAFEC05F-FC5C-4BF1-8C02-FC658176673B}] => (Block) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
FirewallRules: [{EC5EF0DB-FD12-4EF7-8A33-F0E313001700}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{874828E9-F6C2-4FF8-B4BE-E59778FC5D2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{ECD62254-CE00-4719-84DA-52DA08CF28F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{BF8EEE95-83CE-49B7-9713-BD2AAFD41C7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{3057BC60-83D9-48F6-8C3F-87C1B6CAFDD5}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{54099ADA-66EB-4144-9321-DB1DB7898630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D1093B8A-BCB3-4BA3-8C28-E8B99D0A954B}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{10A3FCA8-4404-4B2D-9C33-8F9FD5E46FF3}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FB5DBEA1-5E75-46D0-A0F6-AEA68CB20630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{747A3520-1F0D-4AFD-BF30-36BC68F0B740}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D2511476-88F4-4917-8716-62FEA1479F36}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{A5F2B3CA-6BF7-4013-AE45-E9870CC99BC7}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [{5DFD3770-AE86-4809-96FF-7C990624F0F1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6E175EF2-A2BD-43FB-BD2E-274277E2DE6E}] => (Allow) LPort=50248
FirewallRules: [{EA280DA2-A6A6-4A5A-AD75-CEE59B4F6831}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{E6BE6249-D2DF-4AD2-BA83-698C12D3D2E3}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{EFEE9B94-0F2F-4424-8F3B-614478FA24CD}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{7E3A168D-0FD7-44E7-89FD-0FFE8316A8EC}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{28EA0A38-8FD8-4F3C-9A3F-1CAED48D5E1B}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{5DDB8622-3609-4307-868E-472F3F06E05B}] => (Allow) C:\Windows\KMS-R@1n.exe
==================== Pontos de Restauração =========================
26-05-2016 19:14:57 Ponto de Verificação Agendado
27-05-2016 20:02:59 Installed Microsoft Office Professional Plus 2016
27-05-2016 20:03:33 PROPLUS
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/29/2016 09:13:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x1770
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 11:36:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: dwm.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d756
Nome do módulo com falha: combase.dll, versão: 10.0.10586.103, carimbo de data/hora: 0x56a849ab
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000067e3c
ID do processo com falha: 0x184
Hora de início do aplicativo com falha: 0xdwm.exe0
Caminho do aplicativo com falha: dwm.exe1
Caminho do módulo com falha: dwm.exe2
ID do Relatório: dwm.exe3
Nome completo do pacote com falha: dwm.exe4
ID do aplicativo relativo ao pacote com falha: dwm.exe5
Error: (05/28/2016 09:24:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B)
Description: O pacote Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy+CortanaUI foi terminado porque levou muito tempo para ser suspenso.
Error: (05/28/2016 08:47:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: Microsoft.Photos.exe, versão: 16.325.12390.0, carimbo de data/hora: 0x56f59965
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2bb8
Hora de início do aplicativo com falha: 0xMicrosoft.Photos.exe0
Caminho do aplicativo com falha: Microsoft.Photos.exe1
Caminho do módulo com falha: Microsoft.Photos.exe2
ID do Relatório: Microsoft.Photos.exe3
Nome completo do pacote com falha: Microsoft.Photos.exe4
ID do aplicativo relativo ao pacote com falha: Microsoft.Photos.exe5
Error: (05/28/2016 08:46:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x227c
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 08:33:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2dac
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 08:13:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x1e40
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:58:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0x2454
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:43:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000004b199
ID do processo com falha: 0xc80
Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0
Caminho do aplicativo com falha: backgroundTaskHost.exe1
Caminho do módulo com falha: backgroundTaskHost.exe2
ID do Relatório: backgroundTaskHost.exe3
Nome completo do pacote com falha: backgroundTaskHost.exe4
ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5
Error: (05/28/2016 07:33:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B)
Description: O pacote Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe+App foi terminado porque levou muito tempo para ser suspenso.
Erros de Sistema:
=============
Error: (05/29/2016 05:57:02 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:57 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:54 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:51 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:48 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:44 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:41 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:37 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:34 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
Error: (05/29/2016 05:56:31 PM) (Source: disk) (EventID: 7) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
CodeIntegrity:
===================================
Date: 2016-05-28 22:28:54.298
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-05-28 09:19:54.683
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-27 20:16:49.230
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-27 20:11:12.765
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-18 17:40:12.174
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-16 19:32:52.932
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-15 19:26:49.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-14 12:31:17.069
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-13 13:40:29.826
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-12 13:02:48.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Percentagem de memória em uso: 35%
RAM física total: 7605.11 MB
RAM física disponível: 4910.02 MB
Virtual Total: 7605.11 MB
Virtual disponível: 4565.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.96 GB) (Free:513.19 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 29F329F2)
Partition: GPT.
==================== Fim de Addition.txt ============================