Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:27-01-2016 Executado por Sidneia (2016-02-04 18:25:55) Executando a partir de C:\Users\Sidneia\Desktop Windows 10 Home Single Language (X64) (2015-12-08 17:09:19) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2220204222-2514893637-543024124-500 - Administrator - Disabled) Convidado (S-1-5-21-2220204222-2514893637-543024124-501 - Limited - Disabled) DefaultAccount (S-1-5-21-2220204222-2514893637-543024124-503 - Limited - Disabled) Sidneia (S-1-5-21-2220204222-2514893637-543024124-1001 - Administrator - Enabled) => C:\Users\Sidneia ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Antivírus e antispyware da McAfee (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Antivírus e antispyware da McAfee (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2220204222-2514893637-543024124-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.) Adobe Reader XI (11.0.13) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Counter-Strike 1.6 (HKLM-x32\...\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}) (Version: 1.6 - ) CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Dell Inc.) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Dell Inc.) Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP) Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.1 - Synaptics Incorporated) Dell Update (HKLM-x32\...\{9E4750A7-90F6-4181-8A8A-B1ADF4216E93}) (Version: 1.0.1059.0 - Dell Inc.) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) FastAccess (HKLM\...\{E89914BB-7C2B-49D9-B4FE-C1AF0E9766DB}) (Version: 4.1.201.1 - Sensible Vision) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation) IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2015) (Version: 1.1 - Receita Federal do Brasil) Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation) Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation) K-Lite Codec Pack 11.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.0 - ) McAfee AntiVirus (HKLM-x32\...\MSC) (Version: 14.0.6120 - McAfee, Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.141 - McAfee, Inc.) Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Módulo de Segurança - Banco do Brasil (HKLM-x32\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - ) My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell) My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology) Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.4.1.0 - Popcorn Time) Popcorn Time (HKU\S-1-5-21-2220204222-2514893637-543024124-1001\...\Popcorn Time) (Version: - Popcorn Official) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.18 - Dell Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.) Receitanet (HKLM-x32\...\ECC16E3C-16D1-4DC2-9D8A-6AC06B3005A5) (Version: 1.05 - Serpro - Serviço Federal de Processamento de Dados) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATENÇÃO Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.) VIVO INTERNET (HKLM-x32\...\VIVO INTERNET 1.14.17.39.2.577) (Version: 1.14.17.39.2.577 - ) Wajam (HKLM-x32\...\WajaInternetEn) (Version: 1.51.14.6 - Wajam) <==== ATENÇÃO Warsaw 1.11.0.42826 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-2220204222-2514893637-543024124-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Sidneia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2220204222-2514893637-543024124-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Sidneia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {00FD0D54-1A6C-4AFA-8260-57F9FE7CB074} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {059A69EA-1513-4809-AA7B-3B188DD191C3} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {1A98694C-1CD7-486F-8DBB-AEA5CE0A3BD1} - System32\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} => C:\Program Files (x86)\baidu\update\baidujp_update.exe Task: {234C443D-58E9-463C-B55D-B24A267DA2D2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO Task: {24518356-7F97-4CC2-81CC-59F9BA59C643} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO Task: {2C827606-C5B2-4132-8D55-958FC65C7F20} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {43FA3D11-C844-4618-A47B-26A3FAD82680} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {4D5F01A6-DFB8-47D9-8F77-9111EC40563D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO Task: {53A3EF8D-747C-49BD-94BB-48683CC6DA3E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-16] (Microsoft Corporation) Task: {599FFDD6-BF01-4DC5-95F1-1CB8B3E754D9} - System32\Tasks\PocketCloudUpdater => C:\Program Task: {6B55B2F8-7C21-4125-B203-84AED70BCA84} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.) Task: {7692455B-D5BD-4044-9BAD-FE8C8653CB7C} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {805D1E94-6D33-4ABD-B550-89A2E4B23048} - System32\Tasks\PocketCloud => C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe [2013-08-22] () Task: {87188331-912F-46D6-90F4-257F62247B7B} - System32\Tasks\ttwifi => C:\Program Files (x86)\ttwifi\tiantianwifi.exe Task: {A16D17C4-3312-448A-8886-9F52331320C1} - System32\Tasks\Dell\Dell Product Registration => /boot /LSRC=autolaunch Task: {A37D4118-BD7D-4B8B-ABC8-DE42FCD53343} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {A7462B57-0EE1-4F46-900C-D615345FBEE0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO Task: {AC709722-0C37-43CC-9AC6-581673CCD845} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO Task: {B27ECB50-A328-474D-8902-5AF8EEA23240} - System32\Tasks\Dell\Dell Product Registration Update => /updatecheck /LSRC=autolaunch Task: {B6808A0D-0B5A-4B5E-8D1A-68DC2F83253B} - System32\Tasks\Sabhuqt => C:\PROGRA~1\GROOVE~1\Dijmommi.bat Task: {C1B1F030-0C11-4B9C-817F-5AF472232906} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-01-15] (Synaptics Incorporated) Task: {C553C8A1-FC1D-4FC5-AD76-F05B3DEE206B} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\21.0\mcdatrep.exe [2015-12-20] (McAfee, Inc.) Task: {D0A0E75B-0096-47F5-9002-3590BB4900F6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {D0D55868-4FB5-45C5-8FF1-C0BB29A02C2C} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink) Task: {D3440857-592A-4439-B7B5-249DB89DC9CF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {D6068A0B-0357-4F57-9E03-DB63D8E1C4AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-20] (Google Inc.) Task: {E1C9374F-77B8-403E-8906-C06F59115AF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-20] (Google Inc.) Task: {E38E518B-2341-4A16-B2B5-7FA8BBDE0CEA} - System32\Tasks\osTip => C:\ProgramData\WindowsMsg\osmsg.exe [2016-02-02] () Task: {E504B0DB-4063-4B77-8F18-073B570A68EE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO Task: {F0D5576E-92BE-4548-8F72-FB4CAEFBCB2B} - System32\Tasks\PocketCloudVirtualChannel => C:\Program Files (x86)\Wyse\PocketCloud\WPCRDPVirtualChannelServer.exe [2013-08-22] () (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-10-23 21:00 - 2013-06-21 12:35 - 00135168 _____ () C:\Windows\SysWOW64\ChgService.exe 2013-08-22 12:40 - 2013-08-22 12:40 - 00016176 _____ () C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe 2016-02-04 12:42 - 2016-02-04 12:42 - 00254464 _____ () C:\Program Files (x86)\4C4C4544-1453744389-5810-804D-C7C04F463232\knsfA319.tmp 2015-10-30 05:18 - 2015-10-30 05:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-08 15:35 - 2015-12-08 15:35 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-08 15:35 - 2015-12-08 15:35 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-07-18 00:35 - 2015-12-19 01:08 - 00402344 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-12-19 13:13 - 2015-12-07 02:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2015-12-19 13:13 - 2015-12-07 02:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-01-12 18:11 - 2016-01-04 23:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-01-12 18:11 - 2016-01-04 23:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-01-28 13:00 - 2016-01-16 03:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-01-28 13:00 - 2016-01-16 03:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2013-12-12 07:00 - 2013-12-12 07:00 - 02285568 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\USB Modem.exe 2016-01-22 08:26 - 2016-01-22 08:34 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-02-03 21:52 - 2016-02-02 00:08 - 02036224 _____ () C:\ProgramData\WindowsMsg\osmsg.exe 2014-07-01 17:00 - 2014-07-01 17:00 - 00094000 _____ () C:\WINDOWS\SYSTEM32\FAIEExtension.DLL 2013-04-04 15:42 - 2013-04-04 15:42 - 00012424 _____ () C:\Program Files (x86)\Sensible Vision\Fast Access\MFCaptureD3D_2_DLL.dll 2015-03-16 12:28 - 2015-03-16 12:28 - 00155528 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll 2014-10-08 11:21 - 2013-12-10 13:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2014-10-08 11:17 - 2013-03-05 01:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-03-05 12:41 - 2013-03-05 12:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2013-12-12 06:58 - 2013-12-12 06:58 - 00018432 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\LogModule.dll 2013-12-12 06:58 - 2013-12-12 06:58 - 00077824 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\ToolKit.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00389120 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\CxImage.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00061440 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\tinyxml.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00660992 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\sqlite3.dll 2013-06-21 12:30 - 2013-06-21 12:30 - 00139264 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\CommunicationInterface.dll 2013-06-21 12:30 - 2013-06-21 12:30 - 00069632 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\HardwareInterface.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00110592 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\ATCommand.dll 2013-12-12 06:58 - 2013-12-12 06:58 - 00147456 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\ATReturnValueParse.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00057344 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\ComManager.dll 2013-12-12 06:59 - 2013-12-12 06:59 - 00184320 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\DialModule.dll 2013-06-25 09:51 - 2013-06-25 09:51 - 01515520 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\NDISDirectDial.dll 2013-06-21 12:33 - 2013-06-21 12:33 - 00081920 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\DialAction_Win7.dll 2013-12-12 06:58 - 2013-12-12 06:58 - 00192512 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\PhoneBookModule.dll 2013-12-12 06:58 - 2013-12-12 06:58 - 00053248 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\OutLookMoudle.dll 2013-12-12 06:59 - 2013-12-12 06:59 - 00266240 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\SMSModule.dll 2013-12-12 07:00 - 2013-12-12 07:00 - 00090112 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\STKModule.dll 2013-12-12 06:59 - 2013-12-12 06:59 - 00077824 _____ () C:\Program Files (x86)\VIVO INTERNET\Main\SettingModule.dll 2016-01-22 08:26 - 2016-01-22 08:34 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-01-22 08:26 - 2016-01-22 08:34 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-01-28 20:21 - 2016-01-27 15:39 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libglesv2.dll 2016-01-28 20:21 - 2016-01-27 15:39 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2220204222-2514893637-543024124-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-2220204222-2514893637-543024124-1001\...\bb.com.br -> hxxps://seg.bb.com.br ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 11:25 - 2016-01-25 15:52 - 00000967 ____N C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2220204222-2514893637-543024124-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sidneia\Pictures\19353881279_9bfbfd96f9_o.jpg DNS Servers: 200.204.135.203 - 200.204.135.200 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run32: => "FATrayAlert" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [UDP Query User{018ECA77-85F2-45CF-AFCA-10CDF7E52B57}C:\users\sidneia\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\nw.exe FirewallRules: [TCP Query User{E19CEDCC-5C3D-4272-BA83-42D179F6F6CA}C:\users\sidneia\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\nw.exe FirewallRules: [UDP Query User{3C23D28A-F97E-497C-B3BF-7CFAF912BE5B}C:\users\sidneia\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\nw.exe FirewallRules: [TCP Query User{3B94FB3E-19A1-49A1-A283-F0DD30E9D451}C:\users\sidneia\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\nw.exe FirewallRules: [{5FF4E35B-72C8-4861-AA98-52E47C532B41}] => (Allow) C:\Users\Sidneia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{87F94AD0-60AC-41E6-8368-71A6780DBE95}] => (Allow) C:\Users\Sidneia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [UDP Query User{C8F8F693-D69A-42D9-8D80-EDB95BFC8EB0}C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe FirewallRules: [TCP Query User{872DD4AB-6631-4404-9B0A-3FE0234FE015}C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe FirewallRules: [UDP Query User{C9ED606A-9EC7-47C1-94DB-E969ED98E5DC}C:\users\sidneia\desktop\cs\hl.exe] => (Allow) C:\users\sidneia\desktop\cs\hl.exe FirewallRules: [TCP Query User{23A16DC1-FE1D-45E0-8116-8A3B1DDC4C2A}C:\users\sidneia\desktop\cs\hl.exe] => (Allow) C:\users\sidneia\desktop\cs\hl.exe FirewallRules: [UDP Query User{9D0E2565-1C42-4EF6-B833-F77C36F89976}C:\users\sidneia\desktop\hl.exe] => (Allow) C:\users\sidneia\desktop\hl.exe FirewallRules: [TCP Query User{52D444CB-2DAB-4AD9-9205-3ACC83B2256B}C:\users\sidneia\desktop\hl.exe] => (Allow) C:\users\sidneia\desktop\hl.exe FirewallRules: [UDP Query User{3310ED26-7F98-4B9A-8F4C-BC3A88BCCBE2}C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Block) C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe FirewallRules: [TCP Query User{767C077D-7DF7-49DD-99C0-E8638D76D555}C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Block) C:\users\sidneia\appdata\local\popcorn time\node-webkit\popcorn time.exe FirewallRules: [UDP Query User{4B56DCC5-2FD9-409D-B8E1-84E568FC41C6}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{210CB412-5D99-4A49-B191-43F48323E46A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{7A281E75-8362-45CD-8DC0-48C2452BCF17}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [UDP Query User{CA7E65C2-6EC8-4B39-A09A-C30854F17DBE}C:\users\sidneia\downloads\cm 0102\cm0102.exe] => (Block) C:\users\sidneia\downloads\cm 0102\cm0102.exe FirewallRules: [TCP Query User{64A69560-D649-43A8-8960-9706913693AC}C:\users\sidneia\downloads\cm 0102\cm0102.exe] => (Block) C:\users\sidneia\downloads\cm 0102\cm0102.exe FirewallRules: [{455AC93A-89F7-47A8-A111-CCC50CD7E5C6}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{827548BD-F267-48B3-9CD8-A216EA78BB3A}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [UDP Query User{CD19F737-6A98-4424-8CDB-CECDA13C4F47}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{29AF3C65-FE19-456F-9585-F41B6ED462B9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{72C76EFD-5DAD-49C7-80E9-440C51AA0A8A}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe FirewallRules: [TCP Query User{9DC4099A-5F71-431F-A264-BD8A9D82BAEE}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe FirewallRules: [{5FD7FABD-6733-41BA-BFB2-58754A353A2A}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{C6796A2B-4A9B-4A61-BE32-8712A0310AEF}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{BE204B04-CA5A-41D3-9694-7F380BBBA7C3}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{D4089B2B-CAEB-4210-BB20-33B47583D879}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe FirewallRules: [{C0043EC7-8469-4863-8076-1C34238CA560}] => (Allow) C:\Program Files\KMSpico\KMSServer.exe FirewallRules: [{22B507E1-B4F8-4C45-96DC-35D28E943E88}] => (Allow) C:\Program Files\KMSpico\KMSServer.exe FirewallRules: [{37D27A3A-923D-4F3F-B967-A85714C92C69}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{EFBEDB13-711C-4F26-9FB4-0E4E4689D977}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{909175B6-EC49-402B-85F3-30A894E1EB1D}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{196301DD-EBF1-495B-BD00-F43A1D65B5D9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{475DE233-64CE-44B3-9AB2-590F50DA46EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{136723DD-98C6-460A-B6CF-F86D363A20E9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{C82E8E45-5155-412E-9241-0C1E0B99E282}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{54B0D24D-3715-4BD8-97B2-F8FF21BB2986}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{0A4537F6-F60A-49D4-A8F8-A90FBF4C7A34}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe FirewallRules: [{F4EA053B-59B6-49A9-99D4-796214E343CB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{DA888540-5827-40C9-9C08-5AF98A34D0F5}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe FirewallRules: [{DABC2220-F9AA-48ED-ACC9-3EA9F4A9CF19}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\AetherWindowsService.exe FirewallRules: [{6062D0E0-5896-4862-A6BA-CBE3B7C04ED2}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe FirewallRules: [{0132721D-1B03-4D35-80C0-031ACFD7112C}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{3DCAA54B-829D-4A3B-ACCD-74751E17E609}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{3EC7D2CA-F04F-4F8A-B957-6446D8CED8F8}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{71C16118-1810-40AB-AD1A-3706759D65B8}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{2DBD8763-17CF-4469-8A3F-8DADBF42DB24}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe FirewallRules: [{C2123559-6CC6-4EB0-9C85-9E921BB92FD1}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe FirewallRules: [{537A36C1-E599-4A8D-A8C2-8D328A1EFE63}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe FirewallRules: [{8289C5DA-A0C0-49C0-B9AD-6BDCB0C626F4}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe FirewallRules: [{0784F63B-6DDC-493B-A111-3A16B7D04B61}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe FirewallRules: [{135FBE08-2F7E-4F59-BAA7-B521AD6F4292}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe FirewallRules: [{2048EA71-BC68-466B-BA86-12252D1C5A1F}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe FirewallRules: [{89ADD955-AE33-43F7-8D99-3B38AC82D42E}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe FirewallRules: [TCP Query User{EA51E723-AC2B-4BA9-903F-55D435069FD9}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe FirewallRules: [UDP Query User{0B3C7944-8FF2-436C-9925-0C1761C0C3D3}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe FirewallRules: [{4436040B-6426-4567-9840-AB135074BC80}] => (Allow) C:\Program Files (x86)\Max Driver Updater\maxdu.exe FirewallRules: [{9AC3D83B-127B-46A3-80B8-EF6305F93698}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 14-01-2016 16:10:40 Windows Update 22-01-2016 20:39:11 McAfee Vulnerability Scanner 25-01-2016 16:31:50 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 28-01-2016 12:19:08 Chrome Cleanup Tool 29-01-2016 14:09:23 McAfee Vulnerability Scanner 03-02-2016 21:15:46 Removed BlueStacks App Player ==================== Dispositivos Apresentando Falhas No Gerenciador ============= Name: facap, FastAccess Video Capture Description: facap, FastAccess Video Capture Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Sensible Vision Service: facap Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (02/04/2016 06:01:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Nome do módulo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Código de exceção: 0xc0000409 Deslocamento da falha: 0x0000000000015953 ID do processo com falha: 0x2300 Hora de início do aplicativo com falha: 0xigfxHK.exe0 Caminho do aplicativo com falha: igfxHK.exe1 Caminho do módulo com falha: igfxHK.exe2 ID do Relatório: igfxHK.exe3 Nome completo do pacote com falha: igfxHK.exe4 ID do aplicativo relativo ao pacote com falha: igfxHK.exe5 Error: (02/04/2016 02:51:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Note) Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/04/2016 01:39:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Note) Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023174. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/04/2016 01:39:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Note) Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023174. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/04/2016 01:04:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Note) Description: Falha na ativação do aplicativo Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2147023174. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/04/2016 12:35:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Nome do módulo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Código de exceção: 0xc0000409 Deslocamento da falha: 0x0000000000015953 ID do processo com falha: 0x1de4 Hora de início do aplicativo com falha: 0xigfxHK.exe0 Caminho do aplicativo com falha: igfxHK.exe1 Caminho do módulo com falha: igfxHK.exe2 ID do Relatório: igfxHK.exe3 Nome completo do pacote com falha: igfxHK.exe4 ID do aplicativo relativo ao pacote com falha: igfxHK.exe5 Error: (02/04/2016 11:34:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Nome do módulo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Código de exceção: 0xc0000409 Deslocamento da falha: 0x0000000000015953 ID do processo com falha: 0x97c Hora de início do aplicativo com falha: 0xigfxHK.exe0 Caminho do aplicativo com falha: igfxHK.exe1 Caminho do módulo com falha: igfxHK.exe2 ID do Relatório: igfxHK.exe3 Nome completo do pacote com falha: igfxHK.exe4 ID do aplicativo relativo ao pacote com falha: igfxHK.exe5 Error: (02/04/2016 11:33:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Note) Description: Falha na ativação do aplicativo microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 com o erro: -2144927141. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (02/04/2016 11:07:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Nome do módulo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Código de exceção: 0xc0000409 Deslocamento da falha: 0x0000000000015953 ID do processo com falha: 0x208c Hora de início do aplicativo com falha: 0xigfxHK.exe0 Caminho do aplicativo com falha: igfxHK.exe1 Caminho do módulo com falha: igfxHK.exe2 ID do Relatório: igfxHK.exe3 Nome completo do pacote com falha: igfxHK.exe4 ID do aplicativo relativo ao pacote com falha: igfxHK.exe5 Error: (02/03/2016 10:06:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Nome do módulo com falha: igfxHK.exe, versão: 6.15.10.4331, carimbo de data/hora: 0x564cc83e Código de exceção: 0xc0000409 Deslocamento da falha: 0x0000000000015953 ID do processo com falha: 0x1158 Hora de início do aplicativo com falha: 0xigfxHK.exe0 Caminho do aplicativo com falha: igfxHK.exe1 Caminho do módulo com falha: igfxHK.exe2 ID do Relatório: igfxHK.exe3 Nome completo do pacote com falha: igfxHK.exe4 ID do aplicativo relativo ao pacote com falha: igfxHK.exe5 Erros de Sistema: ============= Error: (02/04/2016 06:22:03 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível Error: (02/04/2016 06:12:14 PM) (Source: DCOM) (EventID: 10016) (User: Note) Description: padrão-computadorLocalAtivação{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NoteSidneiaS-1-5-21-2220204222-2514893637-543024124-1001LocalHost (Usando LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (02/04/2016 06:01:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (02/04/2016 02:51:24 PM) (Source: disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR5. Error: (02/04/2016 02:51:20 PM) (Source: DCOM) (EventID: 10010) (User: Note) Description: Windows.Networking.BackgroundTransfer.Internal.NetworkChangeTask.ClassId.3 Error: (02/04/2016 02:51:19 PM) (Source: DCOM) (EventID: 10010) (User: Note) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (02/04/2016 02:51:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Host de Sincronização_24d399 foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Reiniciar o serviço. Error: (02/04/2016 02:51:17 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível Error: (02/04/2016 02:33:20 PM) (Source: disk) (EventID: 11) (User: ) Description: O driver detectou um erro de controlador em \Device\Harddisk1\DR4. Error: (02/04/2016 02:33:11 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: específico do aplicativoLocalAtivação{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)Não DisponívelNão Disponível CodeIntegrity: =================================== Date: 2016-02-03 21:59:33.148 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:59:33.135 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:59:28.240 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:59:28.228 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:58:46.304 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:58:46.293 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:56:47.379 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:56:43.636 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:56:43.621 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 21:55:07.545 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz Percentagem de memória em uso: 64% RAM física total: 4000.18 MB RAM física disponível: 1438.78 MB Virtual Total: 4704.18 MB Virtual disponível: 1831.17 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:921.38 GB) (Free:858 GB) NTFS Drive e: (VIVO INTERNET) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: E43967B3) Partition: GPT. ==================== Fim de Addition.txt ============================