Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:27-02-2016 Executado por Thays (2016-02-28 22:07:00) Executando a partir de C:\Users\Thays\Downloads Windows 10 Pro Versão 1511 (X64) (2016-02-26 03:03:14) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-301848933-3102585458-3987709532-500 - Administrator - Disabled) Convidado (S-1-5-21-301848933-3102585458-3987709532-501 - Limited - Disabled) DefaultAccount (S-1-5-21-301848933-3102585458-3987709532-503 - Limited - Disabled) Thays (S-1-5-21-301848933-3102585458-3987709532-1001 - Administrator - Enabled) => C:\Users\Thays ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe Reader XI (11.0.13) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.68.1077 - AB Team, d.o.o.) CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform) Desktop Plagiarism Checker versão 1.12 (HKLM-x32\...\{34A87D60-D177-4ACB-B08E-5558E229DA7F}_is1) (Version: 1.12 - Plagiarisma.Net) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.) Google Drive (HKLM-x32\...\{EF61675D-9BBC-4EC7-B906-F13BE8D3BD20}) (Version: 1.27.1227.2094 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation) Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation) Mozilla Firefox 39.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 pt-BR)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0 - Mozilla) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-301848933-3102585458-3987709532-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Thays\AppData\Local\Microsoft\OneDrive\17.3.6301.0127_1\FileCoAuth.exe (Microsoft Corporation) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {08FE81A7-8C7C-4BF8-9979-7E440324DEDC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {0CC8BB53-B778-4423-8182-124609436EF3} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO Task: {1F7B0A68-EF6D-4624-A9B7-AE6CFB9C36A2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd) Task: {3EBF298C-FFF3-43AD-98C1-EBB9A6982AD0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {53A36ABE-122C-4167-AA7C-890D0AAD9016} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {6797FECD-7F1B-4184-918F-42AA9B286EBA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO Task: {82A92F90-1281-445B-8077-38815DB71CA2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {85346BD3-B2D5-44C1-AD70-571AC644FF94} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {89324F9E-77C2-4562-91C6-7C9689B1E7CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {8A806BB2-DDCA-49E9-A0E6-6AC5CFB1BE05} - System32\Tasks\avastBCLRestartS-1-5-21-301848933-3102585458-3987709532-1001 => Chrome.exe Task: {97546556-88A5-4581-9956-7202E88BB153} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO Task: {A4420B13-494F-4576-B1D1-2B73EF1299A4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {B3F68082-3CE9-4BE5-90CD-E30A35FD2CE1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO Task: {DE8CB14C-D064-4ED9-8DAD-0C03DF96C582} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-02-17] (Microsoft Corporation) Task: {F6BB95AF-FF05-481D-845F-8D1DDC6DF0FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {F7586240-7CD6-4853-A8F4-5F335F272061} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {FB5A163E-254E-4232-BA58-E1AE9DAF9E88} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yeabests.cc/ ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yeabests.cc/ ==================== Módulos Carregados (Whitelisted) ============== 2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-02-25 23:16 - 2016-02-25 23:16 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-02-25 23:16 - 2016-02-25 23:16 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-02-12 18:13 - 2016-02-12 18:13 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-02-25 23:17 - 2016-02-25 23:17 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-02-28 21:11 - 2016-02-28 21:12 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-02-26 00:23 - 2016-02-04 14:57 - 02010624 _____ () C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll 2016-02-28 21:11 - 2016-02-28 21:12 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-02-28 21:11 - 2016-02-28 21:12 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-02-23 21:20 - 2016-02-18 01:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll 2016-02-23 21:20 - 2016-02-18 01:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2016-02-17 21:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-301848933-3102585458-3987709532-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Thays\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{52f8e28b-cca9-4eb2-8247-54421a29ea2d}.JPG DNS Servers: 186.236.32.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "SysTrayApp" HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "AvastUI.exe" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "SynTPEnh" HKLM\...\StartupApproved\Run32: => "gmsd_br_005010241" HKLM\...\StartupApproved\Run32: => "sun7" HKLM\...\StartupApproved\Run32: => "sun3" HKLM\...\StartupApproved\Run32: => "mbot_en_037050241" HKU\S-1-5-21-301848933-3102585458-3987709532-1001\...\StartupApproved\Run: => "Pritc" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{93241D29-598E-4104-8122-98F760A57C82}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{5EA2AECC-C030-4BF0-8B7A-B42A141EDD17}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [{3F1B1B29-0BC4-4E3E-B79A-01905512F109}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe FirewallRules: [{89139497-BA94-4CC7-9A04-45CB04D3EAC2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FA0200B7-A2B5-407B-AA2C-0A0901F4673C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E31CC3E5-43E6-4A99-8F92-5F2194298A53}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{94607B44-7FD9-40D4-A4D3-4A11493D7A22}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{948A169C-0851-4397-8594-D2EEEBA92BB1}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{6F037306-CAC6-4E73-838F-42B000D38F92}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{89E4896A-373C-4F9C-831D-96BEC6630A14}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{EBE14F74-EA5C-4157-8B54-E9D36207D24C}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{92D71753-6A09-44B8-9A17-45B411A895EA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{060AEB6F-0196-4FFC-A366-27AECB10AE88}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{AAAF82E3-8BA1-414A-B0F2-89BB278122AB}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{9B5269BD-4844-418D-BB42-0DEDC18DCA81}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{4F472150-B9AF-4514-ACFF-B28AD0871E2E}] => (Allow) LPort=1688 ==================== Pontos de Restauração ========================= ATENÇÃO: A Restauração do Sistema está desabilitada ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (02/26/2016 12:54:20 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2147024770. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:46:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2147024770. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:43:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Explorer.exe, versão: 10.0.10586.104, carimbo de data/hora: 0x56aaffa0 Nome do módulo com falha: SHELL32.dll, versão: 10.0.10586.103, carimbo de data/hora: 0x56a84d77 Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000015cc97 ID do processo com falha: 0x588 Hora de início do aplicativo com falha: 0xExplorer.exe0 Caminho do aplicativo com falha: Explorer.exe1 Caminho do módulo com falha: Explorer.exe2 ID do Relatório: Explorer.exe3 Nome completo do pacote com falha: Explorer.exe4 ID do aplicativo relativo ao pacote com falha: Explorer.exe5 Error: (02/26/2016 12:38:32 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2147024770. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:28:32 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2147024770. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:24:14 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:23:31 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2147024770. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:20:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:20:06 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/26/2016 12:20:05 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: notebook) Description: Falha na ativação do aplicativo Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Erros de Sistema: ============= Error: (02/28/2016 10:00:10 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível Error: (02/28/2016 09:29:59 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:29:59 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:14:40 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:14:40 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:14:40 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:14:40 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/28/2016 09:02:17 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível Error: (02/28/2016 09:01:40 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (02/28/2016 09:01:06 PM) (Source: DCOM) (EventID: 10016) (User: notebook) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}notebookThaysS-1-5-21-301848933-3102585458-3987709532-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 CodeIntegrity: =================================== Date: 2016-02-28 21:33:29.407 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-25 23:51:49.741 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-25 23:51:47.805 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-25 23:26:25.380 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz Percentagem de memória em uso: 57% RAM física total: 4043.86 MB RAM física disponível: 1719.73 MB Virtual Total: 4747.86 MB Virtual disponível: 2335.79 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:697.48 GB) (Free:499.13 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: B82D681D) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=697.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=829 MB) - (Type=27) ==================== Fim de Addition.txt ============================